Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-07-2015 01 Ran by RossyC at 2015-07-19 12:18:20 Running from C:\Users\RossyC\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2707771882-331809377-1980215397-500 - Administrator - Disabled) Guest (S-1-5-21-2707771882-331809377-1980215397-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2707771882-331809377-1980215397-1006 - Limited - Enabled) RossyC (S-1-5-21-2707771882-331809377-1980215397-1002 - Administrator - Enabled) => C:\Users\RossyC ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: McAfee Anti-Virus and Anti-Spyware (Disabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: McAfee Anti-Virus and Anti-Spyware (Disabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB} FW: McAfee Firewall (Disabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2707771882-331809377-1980215397-1002\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.) AdDuplex Universal SDK 9.0.0.1 (HKLM-x32\...\{F6F5CEB9-5089-47F3-B234-1161F11EDB74}) (Version: 9.0.0.1 - AdDuplex) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.180 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated) Application Insights Tools for Visual Studio 2013 (x32 Version: 2.1 - Microsoft Corporation) Hidden Azure Resource Manager Tools (VS 2013) - v1.0 (x32 Version: 1.0.0.0 - Microsoft Corporation) Hidden AzureTools.Notifications (x32 Version: 2.5.21104.1601 - Microsoft Corporation) Hidden Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for Windows Phone 8.0 (x32 Version: 3.0.30924.0 - Microsoft Corporation) Hidden Build Tools - amd64 (Version: 12.0.30723 - Microsoft Corporation) Hidden Build Tools - x86 (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden Build Tools Language Resources - amd64 (Version: 12.0.30723 - Microsoft Corporation) Hidden Build Tools Language Resources - x86 (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden Cloud Deployment Project for Microsoft Visual Studio 2013 - v1.0 (x32 Version: 1.0.0.0 - Microsoft Corporation) Hidden Complemento do Microsoft Report Viewer para Visual Studio 2013 (x32 Version: 11.1.3442.2 - Microsoft Corporation) Hidden Complemento Microsoft Report Viewer para Visual Studio 2013 (x32 Version: 11.1.3442.2 - Microsoft Corporation) Hidden Compon. agg. Microsoft Report Viewer per Visual Studio 2013 (x32 Version: 11.1.3442.2 - Microsoft Corporation) Hidden Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.21.50 - Conexant) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc) Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden Dropbox (HKU\S-1-5-21-2707771882-331809377-1980215397-1002\...\Dropbox) (Version: 2.6.27 - Dropbox, Inc.) Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo) Energy Management (x32 Version: 8.0.2.4 - Lenovo) Hidden Entity Framework 6.1.1 Tools for Visual Studio 2013 (HKLM-x32\...\{85253F13-EE42-4850-A3A5-79B90E92D7AC}) (Version: 12.0.30610.0 - Microsoft Corporation) Epson USB Display (HKLM-x32\...\{7650F538-6274-44EA-8F50-843479073333}) (Version: 1.62.000 - SEIKO EPSON CORPORATION) Git version 1.9.4-preview20140611 (HKLM-x32\...\Git_is1) (Version: 1.9.4-preview20140611 - The Git Development Community) GitHub (HKU\S-1-5-21-2707771882-331809377-1980215397-1002\...\5f7eb300e2ea4ebf) (Version: 2.2.0.0 - GitHub, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden Google Web Designer (HKLM-x32\...\{811767F4-C586-4673-A41F-E9D767497222}) (Version: 1.1.7.0 - Google Inc.) IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation) IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - ) IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - ) Install Finalizer (x32 Version: 2.3.20320.1602 - Microsoft Corporation) Hidden Install Finalizer (x32 Version: 2.5.21104.1601 - Microsoft Corporation) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) Java SE Development Kit 7 Update 40 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170400}) (Version: 1.7.0.400 - Oracle) Kit SDK de vérification de Visual Studio 2012 - fra (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10227 - Realtek Semiconductor Corp.) Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.14.1 - ELAN Microelectronic Corp.) Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4331.52 - CyberLink Corp.) Lenovo PowerDVD10 (x32 Version: 10.0.4331.52 - CyberLink Corp.) Hidden Lenovo Solution Center (HKLM\...\{B73D2BF9-2C82-40A4-AFA8-32CE2E501640}) (Version: 2.2.002.00 - Lenovo Group Limited) Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3423 - CyberLink Corp.) Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden LocalESPCui for en-us (x32 Version: 8.59.29989 - Microsoft) Hidden LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) McAfee Total Protection (HKLM-x32\...\MSC) (Version: 14.0.1076 - McAfee, Inc.) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.354 - McAfee, Inc.) Memory Profiler (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft Advertising SDK for Windows 8.1 - ENU (HKLM-x32\...\{916DF45F-3E75-47C1-8ACE-6D87B1646E4F}) (Version: 8.1.40402.2 - Microsoft Corporation) Microsoft Advertising SDK for Windows Phone 8.1 XAML - ENU (HKLM-x32\...\{3529AF14-7F67-470D-96B7-64074CC7A650}) (Version: 8.1.40505.0 - Microsoft Corporation) Microsoft ASP.NET and Web Tools 2013.3 - Visual Studio 12 (HKLM-x32\...\{B24634F9-C52C-3980-B77C-29C278932C6B}) (Version: 12.3.50923.0 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Azure Authoring Tools - v2.5 (HKLM\...\{A46322D1-A353-4F9A-8DA1-C58401E33639}) (Version: 2.5.6496.10 - Microsoft Corporation) Microsoft Azure Compute Emulator - v2.5 (HKLM\...\Microsoft Azure Compute Emulator - v2.5) (Version: 2.5.6496.10 - Microsoft Corporation) Microsoft Azure HDInsight Tools for Visual Studio 2013 (HKLM-x32\...\{46AF8AD4-0FF4-4B60-A0A5-280F1A1EC85E}) (Version: 2.0.0.0000 - Microsoft Corporation) Microsoft Azure Libraries for .NET – v2.5 (HKLM\...\{22F9A831-CA56-4406-85FE-47FFB0472804}) (Version: 2.5.1024.161 - Microsoft Corporation) Microsoft Azure Quickstarts (HKLM-x32\...\{06747CB9-4E28-3164-A1C5-F7FD307F08B5}) (Version: 1.5.0 - Microsoft Corporation) Microsoft Azure Storage Tools - v3.0.0 (HKLM-x32\...\{870D4E4E-1BE7-42E7-9655-E7792290FCB4}) (Version: 3.0.0.0 - Microsoft Corporation) Microsoft Azure Tools for Microsoft Visual Studio 2013 - v2.5 (HKLM-x32\...\{4be5d1d6-933d-4058-853b-047ed1258fc4}) (Version: 2.5.21104.1601 - Microsoft Corporation) Microsoft Expression Design 4 (HKLM-x32\...\Design_8.0.31217.1) (Version: 8.0.31217.1 - Microsoft Corporation) Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation) Microsoft Hive ODBC Driver (HKLM\...\{AC9970E8-7F55-4F50-A6D3-2BC041589904}) (Version: 1.0.5.5 - Microsoft Corporation) Microsoft Hive ODBC Driver (HKLM-x32\...\{7A580208-9E61-47FD-9AEB-DDDAA67CF0F6}) (Version: 1.0.5.5 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4727.1003 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation) Microsoft SkyDrive (HKU\S-1-5-21-2707771882-331809377-1980215397-1002\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation) Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation) Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft SQL Server Data Tools - enu (12.0.30919.1) (HKLM-x32\...\{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}) (Version: 12.0.30919.1 - Microsoft Corporation) Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation) Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual F# 3.1.2 (HKLM-x32\...\{d705b4dc-2aa8-4215-9b13-4fad5dcda72b}) (Version: 12.0.30815.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio Ultimate 2013 (HKLM-x32\...\{9e6e5a9b-6f0e-40ff-84fb-19cab458402e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Web Deploy 3.5 (HKLM\...\{69A998C5-00A9-42CA-AB4E-C31CFFCD9251}) (Version: 3.1237.1763 - Microsoft Corporation) Microsoft Web Platform Installer 5.0 (HKLM\...\{4D84C195-86F0-4B34-8FDE-4A17EB41306A}) (Version: 5.0.50430.0 - Microsoft Corporation) Module Microsoft Report Viewer pour Visual Studio 2013 (x32 Version: 11.1.3442.2 - Microsoft Corporation) Hidden Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Mozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) Nitro Pro 9 (HKLM-x32\...\{f35b0611-853e-4a79-bb05-861c8f295b90}) (Version: 9.5.3.8 - Nitro) Nitro Pro 9 (Version: 9.5.3.8 - Nitro) Hidden Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - ) NVIDIA GeForce Experience 2.5.11.45 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.11.45 - NVIDIA Corporation) NVIDIA Graphics Driver 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4727.1003 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4727.1003 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4727.1003 - Microsoft Corporation) Hidden Photon (HKLM-x32\...\Huawei Photon) (Version: 23.009.17.16.628 - Huawei Technologies Co.,Ltd) Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.) PowerISO (HKLM-x32\...\PowerISO) (Version: 6.1 - Power Software Ltd) PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden Prerequisites for SSDT (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation) Project My Screen App (HKLM-x32\...\{DF901456-7160-49DB-977B-0E91858CA2CB}) (Version: 8.0.12349 - Microsoft Corporation) Python Tools Redirection Template (x32 Version: 1.2 - Microsoft Corporation) Hidden Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.226 - Qualcomm Atheros Communications) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.15 - Qualcomm Atheros Communications Inc.) R for Windows 3.1.1 (HKLM\...\R for Windows 3.1.1_is1) (Version: 3.1.1 - R Core Team) Realtek USB Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.2.9200.39036 - Realtek Semiconductor Corp.) RStudio (HKLM-x32\...\RStudio) (Version: 0.98.994 - RStudio) SDK de comprobación de Visual Studio 2012 - esn (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.5.11.45 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.) Slik Subversion 1.8.5 (x64) (HKLM\...\{2B07B2AB-B3C7-4879-A50A-109284FF208C}) (Version: 1.8.5.0 - SlikSvn & The SharpSvn Project) Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - ) SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.) Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.31064 - TeamViewer) TortoiseSVN 1.8.4.24972 (64 bit) (HKLM\...\{A2EFDE01-96B3-4E55-8834-81617ED6BCBE}) (Version: 1.8.24972 - TortoiseSVN) TypeScript Power Tool (x32 Version: 1.0.3.1 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.3.1 - Microsoft Corporation) Hidden Uninstall Finalizer (x32 Version: 2.3.20320.1602 - Microsoft Corporation) Hidden Uninstall Finalizer (x32 Version: 2.5.21104.1601 - Microsoft Corporation) Hidden Unity Web Player (HKU\S-1-5-21-2707771882-331809377-1980215397-1002\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo) UserGuide (x32 Version: 1.0.0.9 - Lenovo) Hidden Visual Studio 2013 Update 3 (KB2829760) (HKLM-x32\...\{86438e3d-7f83-4dd2-94aa-047e7c3974cb}) (Version: 12.0.30723 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) VS Update core components (x32 Version: 12.0.30723 - Microsoft Corporation) Hidden WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation) WD Drive Utilities (HKLM-x32\...\{E61CFDDA-40DD-4400-95CA-12819C50B5C2}) (Version: 1.1.0.51 - Western Digital Technologies, Inc.) WD Quick View (HKLM-x32\...\{B74717F4-9E4D-4FEF-B234-97EC2ADACFD8}) (Version: 2.4.11.4 - Western Digital Technologies, Inc.) WD Security (HKLM-x32\...\{919ADA61-13BF-43C4-A2DD-8BA49A244FC8}) (Version: 1.1.0.51 - Western Digital Technologies, Inc.) WD SES Driver Setup (x32 Version: 1.0.6.3 - Western Digital) Hidden WD SmartWare (HKLM\...\{E0223E66-5682-4F65-9F5D-A2AB7C593323}) (Version: 2.4.11.4 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM-x32\...\{f8b1c3bb-688a-4421-a45e-a22dd15f22ee}) (Version: 2.4.11.4 - Western Digital Technologies, Inc.) Windows Azure Authoring Tools - v2.3 (HKLM\...\{CA53F7A1-A71D-4C7F-ABD2-7BDD26FE0D74}) (Version: 2.3.6491.3 - Microsoft Corporation) Windows Azure Libraries for .NET – v2.3 (HKLM\...\{C0591F2A-45AD-4189-86A7-C2B1DF3D148D}) (Version: 2.3.0424.070 - Microsoft Corporation) Windows Azure Storage Emulator - v3.4 (HKLM-x32\...\Windows Azure Storage Emulator - v3.4) (Version: 3.4.6848.0 - Microsoft Corporation) Windows Azure Tools for Microsoft LightSwitch for Visual Studio 2013 - v2.3 (HKLM-x32\...\{ad100c2d-0566-4608-9d2a-819f337f7c15}) (Version: 2.3.20305.1601 - Microsoft Corporation) Windows Azure Tools for Microsoft Visual Studio 2013 - v2.3 (HKLM-x32\...\{7223ffe5-5cbb-45ca-8aa3-a455015ab1cf}) (Version: 2.3.20320.1602 - Microsoft Corporation) Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo) Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation) Windows Phone 8.1 Emulators - ENU (HKLM-x32\...\{940596e5-652a-4970-8a5a-492e73ed0fbb}) (Version: 12.0.30501.0 - Microsoft Corporation) WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E1}) (Version: 18.0.11023 - WinZip Computing, S.L. ) XAMPP (HKLM-x32\...\xampp) (Version: 1.8.2-3 - BitNami) Надстройка Microsoft Report Viewer для Visual Studio 2013 (x32 Version: 11.1.3442.2 - Microsoft Corporation) Hidden Пакет Visual Studio 2012 Verification SDK - rus (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden 用于 Visual Studio 2013 的 Microsoft 报告查看器加载项 (x32 Version: 11.1.3442.2 - Microsoft Corporation) Hidden ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\RossyC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AC}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll No File CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{9E506282-69D3-5ABA-9C1D-15994B37F4AD}\InprocServer32 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll No File CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\RossyC\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811_1\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\RossyC\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811_1\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\RossyC\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811_1\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\RossyC\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811_1\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\RossyC\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811_1\amd64\FileSyncApi64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\RossyC\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\RossyC\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\RossyC\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2707771882-331809377-1980215397-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\RossyC\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.) ==================== Restore Points ========================= ATTENTION: System Restore is disabled ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 18:55 - 2013-08-22 18:55 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {2E7247D4-E92C-4C9E-94FD-F7D3DD5A17E0} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-05-28] (Microsoft Corporation) Task: {37A60BF5-BB9E-4E47-8680-D5DC75EFA6D2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-05-19] (Microsoft Corporation) Task: {54296571-C746-46CF-AF35-84C25C899C8A} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2015-05-06] (McAfee, Inc.) Task: {687F846D-AF7E-4A0A-9BE7-300660F5BEEB} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2015-06-01] (McAfee, Inc.) Task: {70E90FC1-B347-4C07-8705-E3EB6CF094C1} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-08-08] () Task: {745CD615-50C8-4A8C-9A97-22ECC07CBAA7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-10] (Google Inc.) Task: {76C6E649-26B0-41FD-BD16-0A0FBC2EF66C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-10] (Google Inc.) Task: {81EB7BBF-81F2-40E4-8CBB-E228DC801CE4} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-08-08] (Lenovo) Task: {8350D67E-3BCB-42F8-AC75-57A5DC1A92B1} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-08-08] () Task: {91CF8181-8276-40C4-83CF-3E81F49DAB29} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2013-08-08] (Lenovo) Task: {968BFFDC-755B-4733-AEDD-A9D0414C7D60} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-16] (Adobe Systems Incorporated) Task: {ABAA01BA-1638-4979-82FB-4863B6AB1675} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {B9DBC0B6-9783-4305-B0CA-76D1F933B03B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-05-19] (Microsoft Corporation) Task: {BD746A88-93DB-4929-AEC6-56CE4244C3FE} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-07-03] (Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2014-03-16 15:08 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2014-01-15 09:12 - 2014-01-15 09:12 - 00351824 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2014-08-01 14:23 - 2014-08-01 14:23 - 00418312 _____ () C:\Program Files (x86)\Nitro\Pro 9\Nitro_UpdateService.exe 2015-04-08 22:10 - 2013-10-26 15:15 - 00651856 _____ () C:\ProgramData\Photon\Huawei\EC156\OnlineUpdate\ouc.exe 2014-04-06 17:51 - 2015-05-12 11:57 - 00012104 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll 2014-04-06 17:59 - 2015-05-12 09:00 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2013-11-24 13:37 - 2013-11-24 13:37 - 00075504 _____ () E:\Software\Tortoise SVN\bin\TortoiseStub.dll 2013-11-24 13:36 - 2013-11-24 13:36 - 00088304 _____ () E:\Software\Tortoise SVN\bin\libsasl.dll 2015-03-17 23:06 - 2015-01-27 20:59 - 08898720 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll 2013-05-16 15:16 - 2013-05-16 15:16 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2013-05-16 15:13 - 2013-05-16 15:13 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll 2013-05-16 15:39 - 2013-05-16 15:39 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe 2015-07-14 21:02 - 2015-07-14 03:03 - 01670472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libglesv2.dll 2015-07-14 21:02 - 2015-07-14 03:03 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libegl.dll 2015-07-14 21:02 - 2015-07-14 03:03 - 28541768 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\PepperFlash\pepflashplayer.dll 2015-04-08 22:10 - 2012-10-31 14:41 - 02417152 _____ () C:\ProgramData\Photon\Huawei\EC156\OnlineUpdate\QtCore4.dll 2015-04-08 22:10 - 2012-10-31 14:44 - 01148416 _____ () C:\ProgramData\Photon\Huawei\EC156\OnlineUpdate\QtNetwork4.dll 2015-04-08 22:10 - 2009-01-11 00:02 - 00011362 _____ () C:\ProgramData\Photon\Huawei\EC156\OnlineUpdate\mingwm10.dll 2015-04-08 22:10 - 2009-06-23 08:12 - 00043008 _____ () C:\ProgramData\Photon\Huawei\EC156\OnlineUpdate\libgcc_s_dw2-1.dll 2013-07-09 13:01 - 2012-11-06 11:01 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2015-03-31 15:31 - 2015-07-15 00:36 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\Users\RossyC\SkyDrive:ms-properties ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2707771882-331809377-1980215397-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\RossyC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\Run32: => "YouCam Tray" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-2707771882-331809377-1980215397-1002\...\StartupApproved\StartupFolder: => "OneNote 2007 Screen Clipper and Launcher.lnk" HKU\S-1-5-21-2707771882-331809377-1980215397-1002\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk" HKU\S-1-5-21-2707771882-331809377-1980215397-1002\...\StartupApproved\Run: => "SkyDrive" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{FCA7ADB0-529A-46F0-9FED-623E6ECEA8ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8248EB99-4D69-4C7C-B821-36EDF0CC8C90}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{247003F6-DB57-4A4A-8F98-339F41D17232}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{C27601D0-C192-4D30-9F81-67A7AE6AF72F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{DD91BC6B-2F45-4026-9297-C79CB67AF9F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{7A915F3D-6B20-4CEE-A075-E78C75F076D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{09C88906-5D22-4984-8B3E-167E32120751}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{11A8DDC7-B71A-4726-978B-9FD72D010F1D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{7A39267B-F9D2-4859-8C2F-AA29A708E574}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{D02B9D76-D208-4F1A-A3D1-3A06C8EE06BC}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{FCA12C13-C3FB-4088-9AB6-D6BC5A909A6D}] => (Allow) C:\Users\RossyC\AppData\Local\Temp\7zS7345\hppiw.exe FirewallRules: [{F48BF4C9-3C87-4D13-AA81-0B0E1A830EF0}] => (Allow) C:\Users\RossyC\AppData\Local\Temp\7zS7345\hppiw.exe FirewallRules: [{375595EE-84A0-4CA4-BEF8-1DC914E4EADB}] => (Allow) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe FirewallRules: [{9B9E4489-B664-4530-884E-A52E5E9A3E86}] => (Allow) C:\Users\RossyC\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{69C79628-0087-46C8-876F-3A998DFAE9E4}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{1B7E3127-9CDB-4496-8388-30BD2F8FCABE}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{83AE4380-6792-4BAE-97AF-806E7545ADF8}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE FirewallRules: [{497385C4-1FF6-4C84-8A08-8BDE54A77068}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{2B795551-91F9-4B00-8AEB-EA4E69543BAC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{5C24E1AB-1E51-46DF-BF67-25F8073909EA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{FECF9055-9A6C-4E23-B68C-32C65FB3727C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{7B1BDC56-CFFC-4836-B6C6-710D4415A42D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{324B1739-EC1C-47BF-AA04-D49E10A17B2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{23C96FDB-43FA-4525-84C5-7024DC1F6A5D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{E318AD38-2E64-4301-8971-5F795CE6A255}] => (Allow) LPort=2869 FirewallRules: [{31878B0B-281E-4A8D-A360-F205028EF7AB}] => (Allow) LPort=1900 FirewallRules: [{E5196DF2-5FE4-4EDD-A37E-2F5F15272FA0}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe FirewallRules: [{BC9B28F6-78DB-4B10-B5D9-7BB3F37FF164}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe FirewallRules: [{48AF6C06-847F-4347-815D-EF2D3CFD7872}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe FirewallRules: [{E456C528-478A-42B1-996B-062EC397E6EB}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe FirewallRules: [{B3470E46-9B89-4F55-AC8B-D64279C5E968}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe FirewallRules: [{15F01BF9-77C6-4678-84BC-21828861F020}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe FirewallRules: [{C8740D75-DCB8-44BE-85F4-3411C596BC7E}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe FirewallRules: [{E5160574-BF9D-421A-AA36-3E0463E9B59B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{48EAD799-CCE6-4D45-A485-DF8C4F2238A7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{57DF39FC-7671-46F8-8BD7-D1EA082D7F12}] => (Allow) C:\Users\RossyC\AppData\Local\TNT2\2.0.0.1746\TNT2User.exe FirewallRules: [TCP Query User{511608A4-2513-4EBC-AE35-8E9CC2E47551}C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\apache\bin\httpd.exe] => (Allow) C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{1031D8C8-77D7-4D48-995A-9174C356001C}C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\apache\bin\httpd.exe] => (Allow) C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{F62C4C3A-F3F6-4732-9413-BDFD1D28A732}C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{E3C6F408-475C-42B1-B113-1D71AC2135E3}C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\mysql\bin\mysqld.exe] => (Allow) C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{8137BFFF-AAFB-420A-A0C0-8F7E6A3E7873}C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\filezillaftp\filezillaserver.exe FirewallRules: [UDP Query User{A1521CB3-1B48-4F73-B3BD-CE605E007C1B}C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\filezillaftp\filezillaserver.exe FirewallRules: [TCP Query User{CF65E8EB-05D3-4BB0-B014-CC563CA42BF7}C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\mercurymail\mercury.exe] => (Allow) C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\mercurymail\mercury.exe FirewallRules: [UDP Query User{CDE6D18B-C16F-448D-AF7E-1A3E4E0881C7}C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\mercurymail\mercury.exe] => (Allow) C:\users\rossyc\downloads\xampp-win32-1.8.2-3-vc9\xampp\mercurymail\mercury.exe FirewallRules: [TCP Query User{9211EEDD-C8EC-4B60-ADAF-3AC03E3B94E2}C:\program files\java\jdk1.7.0_40\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_40\bin\java.exe FirewallRules: [UDP Query User{D22F9E10-1C29-4C00-B6A9-5DE555837572}C:\program files\java\jdk1.7.0_40\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_40\bin\java.exe FirewallRules: [TCP Query User{D960D255-5803-4AD1-8A7A-D9F687455348}E:\software\xampp\apache\bin\httpd.exe] => (Allow) E:\software\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{66153CBD-9D01-472C-AF23-E4C4B1FCE6AC}E:\software\xampp\apache\bin\httpd.exe] => (Allow) E:\software\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{74A4FC8F-7597-4046-BF33-3DBFD042CA1F}E:\software\xampp\mysql\bin\mysqld.exe] => (Allow) E:\software\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{3958257C-96A1-4EEA-85C6-C40B58DD0770}E:\software\xampp\mysql\bin\mysqld.exe] => (Allow) E:\software\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{56234886-22A4-4BCC-92B5-2CF531A2E677}E:\software\xampp\filezillaftp\filezillaserver.exe] => (Allow) E:\software\xampp\filezillaftp\filezillaserver.exe FirewallRules: [UDP Query User{1DA268F5-1908-4DA6-980E-CAE3CC15D56E}E:\software\xampp\filezillaftp\filezillaserver.exe] => (Allow) E:\software\xampp\filezillaftp\filezillaserver.exe FirewallRules: [TCP Query User{810E7252-FC98-48D2-A493-13644A7A90DD}E:\software\xampp\mercurymail\mercury.exe] => (Allow) E:\software\xampp\mercurymail\mercury.exe FirewallRules: [UDP Query User{59518A88-E1A3-4A82-A1C0-734EDAE65A02}E:\software\xampp\mercurymail\mercury.exe] => (Allow) E:\software\xampp\mercurymail\mercury.exe FirewallRules: [TCP Query User{F909B39A-46FA-4683-9A3A-670F92ABF243}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{F798B239-EE0E-4858-8DE8-7F7D94FBB7EC}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{6C9F8483-44C9-47AF-A41D-B83123350B19}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe FirewallRules: [UDP Query User{4DE36815-8962-4843-8E55-1E703D7EC674}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe FirewallRules: [TCP Query User{8E441B0C-A137-475E-BB79-C496F3F962E9}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{11783F19-158F-4CCA-A963-E342F1C2ECA0}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{9E7920DE-1031-4754-BB8C-6A6939583784}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe FirewallRules: [UDP Query User{4E390D80-8F93-4815-A90A-DB26EE0AEFA7}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe FirewallRules: [TCP Query User{38460C90-7678-4BC3-A5ED-BCCAE69AE904}E:\software\xampp\filezillaftp\filezillaserver.exe] => (Allow) E:\software\xampp\filezillaftp\filezillaserver.exe FirewallRules: [UDP Query User{D72C0AFF-C12B-439D-9672-1180030960D5}E:\software\xampp\filezillaftp\filezillaserver.exe] => (Allow) E:\software\xampp\filezillaftp\filezillaserver.exe FirewallRules: [TCP Query User{3357CBA6-E3D2-4C14-B20D-FA09F5511E6B}C:\program files\java\jdk1.7.0_40\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_40\bin\java.exe FirewallRules: [UDP Query User{D3B83B91-DEC1-45EB-8636-96561587661B}C:\program files\java\jdk1.7.0_40\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_40\bin\java.exe FirewallRules: [TCP Query User{4213350B-2230-4C18-A446-4D2F95824B09}C:\program files\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\program files\xampp\filezillaftp\filezillaserver.exe FirewallRules: [UDP Query User{221ECE04-DFF5-480D-B137-9B6B719BED36}C:\program files\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\program files\xampp\filezillaftp\filezillaserver.exe FirewallRules: [TCP Query User{D49C11BD-754D-40C2-BCCF-CA94148371EA}E:\software\xampp\apache\bin\httpd.exe] => (Allow) E:\software\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{D946F2D7-BA3B-4B96-97B3-06317C3781AF}E:\software\xampp\apache\bin\httpd.exe] => (Allow) E:\software\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{72F66D79-4C91-4CDB-B2FF-9B0095263123}E:\software\xampp\mysql\bin\mysqld.exe] => (Allow) E:\software\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{DB7F3CF1-B8A0-4F33-B286-28085A4314DF}E:\software\xampp\mysql\bin\mysqld.exe] => (Allow) E:\software\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{562F8B35-C9F2-4412-9006-A8C98C9ED7B6}C:\program files\java\jdk1.7.0_40\bin\rmiregistry.exe] => (Allow) C:\program files\java\jdk1.7.0_40\bin\rmiregistry.exe FirewallRules: [UDP Query User{7F31E5C8-208B-4D09-A8B0-7B30E3450162}C:\program files\java\jdk1.7.0_40\bin\rmiregistry.exe] => (Allow) C:\program files\java\jdk1.7.0_40\bin\rmiregistry.exe FirewallRules: [TCP Query User{63DA11B2-53DE-4527-80F7-87C7DA6CB391}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe FirewallRules: [UDP Query User{E845BDFE-4C09-41DB-9113-EBE14EDE7E09}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe FirewallRules: [TCP Query User{F9FF18FC-6AE2-40C9-89D9-1B0BA269347A}C:\program files\java\jdk1.7.0_40\bin\orbd.exe] => (Allow) C:\program files\java\jdk1.7.0_40\bin\orbd.exe FirewallRules: [UDP Query User{2B38F5E4-2D4B-4E84-B145-FD29D784C065}C:\program files\java\jdk1.7.0_40\bin\orbd.exe] => (Allow) C:\program files\java\jdk1.7.0_40\bin\orbd.exe FirewallRules: [TCP Query User{2AB69D12-D547-4568-8EC4-329B6A1CD322}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{85364550-FC4A-4ECB-932D-056ADEC31A3C}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{4A1DFF3E-A0D4-4FA6-BF91-CBD4FBA57FB8}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{44639F52-CA01-470B-B309-FE7C79A1047E}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [{11C39F7C-4170-4C53-8BA2-673112EE9EE9}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe FirewallRules: [{978955A8-CC22-4309-A9A6-5200231EC19C}] => (Allow) C:\Users\RossyC\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{81B1C831-20E7-43FF-A8AF-90AD89E6F36A}] => (Allow) C:\Users\RossyC\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{3936098D-3CA3-4F29-8232-7FDDBBA3EF13}] => (Allow) C:\Users\RossyC\Downloads\Techmax_Publications_Books_downloader.exe FirewallRules: [{0BC41DA1-E30B-4316-9EC1-84BA9637DFE0}] => (Allow) C:\Users\RossyC\Downloads\Techmax_Publications_Books_downloader.exe FirewallRules: [{A8D3DE47-83D3-453E-BE28-4EF1478E0707}] => (Allow) C:\Program Files (x86)\YourFileDownloader\Downloader.exe FirewallRules: [{7E592D98-A93A-4DA8-A350-052DD4E5BCDA}] => (Allow) C:\Program Files (x86)\YourFileDownloader\Downloader.exe FirewallRules: [{D43859F4-9580-4C06-B9F6-63ACC4A4D867}] => (Allow) C:\Program Files (x86)\YourFileDownloader\YourFile.exe FirewallRules: [{AFB1CF11-0718-49C2-926A-3FB1E05C545C}] => (Allow) C:\Program Files (x86)\YourFileDownloader\YourFile.exe FirewallRules: [{C0EEBC05-BFE3-446B-9CA9-6552C54D6E37}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{252164CB-BB8C-4CEF-ACBD-46A9724F7578}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{9A4D00B8-61CC-4A86-8908-A9DE135A95A6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{C496AFDE-D043-4942-B267-294AC55EBF7A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{7D2DB278-9C93-4A55-A2BD-7A9475301013}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{4EFB39A8-8686-442B-A94B-05EEFDAF6762}] => (Allow) C:\Users\RossyC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{ED955664-871F-452F-AAC9-96092A07D36A}] => (Allow) C:\Users\RossyC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{FCF30224-5AA6-46D3-B168-DB8D49A5F2F9}C:\windows\installer\{a8d38493-cde9-ea11-f756-6fb5d6eaf684}\syshost.exe] => (Allow) C:\windows\installer\{a8d38493-cde9-ea11-f756-6fb5d6eaf684}\syshost.exe FirewallRules: [UDP Query User{9C79C897-01AF-4A2F-894D-C5E4B7BACC32}C:\windows\installer\{a8d38493-cde9-ea11-f756-6fb5d6eaf684}\syshost.exe] => (Allow) C:\windows\installer\{a8d38493-cde9-ea11-f756-6fb5d6eaf684}\syshost.exe FirewallRules: [{7083E574-E1C3-418C-9F62-1484F0434430}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{AFDFA85F-5587-439C-963E-AF76817162A2}C:\windows\installer\{a8d38493-cde9-ea11-f756-6fb5d6eaf684}\syshost.exe] => (Block) C:\windows\installer\{a8d38493-cde9-ea11-f756-6fb5d6eaf684}\syshost.exe FirewallRules: [UDP Query User{9EE34C81-2614-4D9C-A09D-E327A15FC594}C:\windows\installer\{a8d38493-cde9-ea11-f756-6fb5d6eaf684}\syshost.exe] => (Block) C:\windows\installer\{a8d38493-cde9-ea11-f756-6fb5d6eaf684}\syshost.exe FirewallRules: [{845ABA7F-4BEC-4864-B901-B3B52C45DDB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{3EBF1BF8-0333-4794-8628-22619BB08DC3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{8F71F3AE-555E-49A8-AFF7-4AEE988FFE11}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{5A2C5650-C396-4F79-AADE-F4C2FA03D7C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{3A192977-D8B4-4AB9-8D21-C2F8C38969DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/19/2015 08:49:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROSSY) Description: Activation of app E046963F.LenovoSupport_k1h2ywk1493x8!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (07/19/2015 08:49:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROSSY) Description: Activation of app E046963F.LenovoSupport_k1h2ywk1493x8!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (07/19/2015 08:49:07 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROSSY) Description: Activation of app E046963F.LenovoCompanion_k1h2ywk1493x8!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (07/19/2015 12:36:25 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073422302 Error: (07/18/2015 08:20:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: stinger64.exe, version: 10.1.0.1069, time stamp: 0x4caf3063 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00000000e0eb14b0 Faulting process id: 0x15c0 Faulting application start time: 0xstinger64.exe0 Faulting application path: stinger64.exe1 Faulting module path: stinger64.exe2 Report Id: stinger64.exe3 Faulting package full name: stinger64.exe4 Faulting package-relative application ID: stinger64.exe5 Error: (07/18/2015 08:20:49 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: stinger64.exe, version: 10.1.0.1069, time stamp: 0x4caf3063 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00000000e0eb14b0 Faulting process id: 0x137c Faulting application start time: 0xstinger64.exe0 Faulting application path: stinger64.exe1 Faulting module path: stinger64.exe2 Report Id: stinger64.exe3 Faulting package full name: stinger64.exe4 Faulting package-relative application ID: stinger64.exe5 Error: (07/18/2015 08:20:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: stinger64.exe, version: 10.1.0.1069, time stamp: 0x4caf3063 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00000000e0eb14b0 Faulting process id: 0x370 Faulting application start time: 0xstinger64.exe0 Faulting application path: stinger64.exe1 Faulting module path: stinger64.exe2 Report Id: stinger64.exe3 Faulting package full name: stinger64.exe4 Faulting package-relative application ID: stinger64.exe5 Error: (07/18/2015 08:09:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: stinger64.exe, version: 10.1.0.1069, time stamp: 0x4caf3063 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00000000e0eb14b0 Faulting process id: 0x12d0 Faulting application start time: 0xstinger64.exe0 Faulting application path: stinger64.exe1 Faulting module path: stinger64.exe2 Report Id: stinger64.exe3 Faulting package full name: stinger64.exe4 Faulting package-relative application ID: stinger64.exe5 Error: (07/18/2015 08:09:26 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: stinger64.exe, version: 10.1.0.1069, time stamp: 0x4caf3063 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00000000e0eb14b0 Faulting process id: 0x1534 Faulting application start time: 0xstinger64.exe0 Faulting application path: stinger64.exe1 Faulting module path: stinger64.exe2 Report Id: stinger64.exe3 Faulting package full name: stinger64.exe4 Faulting package-relative application ID: stinger64.exe5 Error: (07/18/2015 08:09:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: stinger64.exe, version: 10.1.0.1069, time stamp: 0x4caf3063 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00000000e0eb14b0 Faulting process id: 0x8a4 Faulting application start time: 0xstinger64.exe0 Faulting application path: stinger64.exe1 Faulting module path: stinger64.exe2 Report Id: stinger64.exe3 Faulting package full name: stinger64.exe4 Faulting package-relative application ID: stinger64.exe5 System errors: ============= Error: (07/19/2015 12:11:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee AP Service service terminated unexpectedly. It has done this 53 time(s). Error: (07/19/2015 12:11:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee Validation Trust Protection Service service terminated unexpectedly. It has done this 31 time(s). Error: (07/19/2015 12:11:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee Platform Services service terminated unexpectedly. It has done this 58 time(s). Error: (07/19/2015 12:11:11 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: {209500FC-6B45-4693-8871-6296C4843751} Error: (07/19/2015 12:10:46 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee AP Service service terminated unexpectedly. It has done this 52 time(s). Error: (07/19/2015 12:10:46 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee Platform Services service terminated unexpectedly. It has done this 57 time(s). Error: (07/19/2015 12:10:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee AP Service service terminated unexpectedly. It has done this 51 time(s). Error: (07/19/2015 12:10:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee Validation Trust Protection Service service terminated unexpectedly. It has done this 30 time(s). Error: (07/19/2015 12:10:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee Platform Services service terminated unexpectedly. It has done this 56 time(s). Error: (07/19/2015 12:10:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The McAfee AP Service service terminated unexpectedly. It has done this 50 time(s). Microsoft Office: ========================= Error: (04/17/2015 10:42:30 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6720.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 25 seconds with 0 seconds of active time. This session ended with a crash. Error: (06/06/2014 01:56:58 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 8634 seconds with 480 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2015-07-19 09:06:39.705 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-07-19 08:56:35.712 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-07-18 19:25:35.248 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-07-18 14:51:51.310 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-07-17 11:07:16.085 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-07-17 10:14:28.163 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-07-16 22:26:22.695 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-07-13 21:17:57.681 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-07-13 21:15:18.127 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\809214a3.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-06-19 12:49:00.546 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3-3120M CPU @ 2.50GHz Percentage of memory in use: 73% Total physical RAM: 3961.77 MB Available physical RAM: 1030.64 MB Total Virtual: 5042.69 MB Available Virtual: 952.28 MB ==================== Drives ================================ Drive c: (Windows8.1_OS) (Fixed) (Total:229.87 GB) (Free:109.6 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.95 GB) NTFS Drive e: (Rossy's Drive) (Fixed) (Total:195.31 GB) (Free:105.34 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: DA8AD4CA) Partition: GPT Partition Type. ==================== End of log ============================