Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-10-2015 02 Ran by Jesus (2015-10-28 05:57:03) Running from C:\Users\Jesus\Desktop\jbj fix this bitch Microsoft Windows 7 Ultimate (X86) (2011-04-22 07:40:54) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-11595131-3550647590-3570146784-500 - Administrator - Disabled) Guest (S-1-5-21-11595131-3550647590-3570146784-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-11595131-3550647590-3570146784-1003 - Limited - Enabled) Jesus (S-1-5-21-11595131-3550647590-3570146784-1001 - Administrator - Enabled) => C:\Users\Jesus ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\uTorrent) (Version: 3.4.5.41073 - BitTorrent Inc.) 32 Bit HP CIO Components Installer (Version: 6.1.2 - Hewlett-Packard) Hidden 3-D Ultra Minigolf Adventures Deluxe (HKLM\...\114075133) (Version: - Oberon Media) AdFender (HKLM\...\AdFender) (Version: 1.80 - AdFender, Inc.) Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.2.0.2070 - Adobe Systems Incorporated) Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated) Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated) Adobe Reader X (10.1.6) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.6 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.) Amazon Browser Bar (HKLM\...\Amazon Browser Bar) (Version: 3.0.2012.0802 - Amazon) <==== ATTENTION Amazon Browser Settings (HKLM\...\Amazon Browser Settings) (Version: 3.0.2012.0507 - Amazon) <==== ATTENTION Amazon Kindle (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\Amazon Kindle) (Version: - Amazon) Angry Birds (HKLM\...\{AC30CF7C-2D62-4910-9147-3EC8EA5EB6D1}) (Version: 1.5.1 - Rovio) AnyProtect (HKLM\...\AnyProtect) (Version: 1.0.0.1 - CMI Limited) <==== ATTENTION ArcadeFrontier (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\{4AFCAFDC-D870-41FA-B9FB-1442B9DAFE76}) (Version: - ArcadeFrontier) Ashampoo WinOptimizer 2012 v.8.1.4 (HKLM\...\Ashampoo WinOptimizer 2012_is1) (Version: 8.1.4 - Ashampoo GmbH & Co. KG) Backspin Billiards (HKLM\...\111543617) (Version: - Oberon Media) Bejeweled 3 (HKLM\...\Bejeweled 31.0) (Version: 1.0 - AllSmartGames) Big Fish Games: Game Manager (HKLM\...\BFGC) (Version: 3.0.1.60 - ) BlueStacks App Player (HKLM\...\BlueStacks App Player) (Version: 0.10.0.4321 - BlueStack Systems, Inc.) BlueStacks Notification Center (HKLM\...\{473E82D7-79E2-43DF-8FA0-025407C93191}) (Version: 0.10.0.4321 - BlueStack Systems, Inc.) CinPlus-2.5cdTube HDV03.10 (HKLM\...\CinPlus-2.5cdTube HDV03.10) (Version: 1.35.9.29 - CinHD Tube PlusV03.10) <==== ATTENTION ConvertXtoDVD 3.3.4.106e (HKLM\...\{76C24F39-B161-498F-BD8B-C64789812D13}_is1) (Version: 3.3.4.106e - ) Dashlane (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\Dashlane) (Version: 3.5.2.91395 - Dashlane SAS) Dell Driver Download Manager (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\f031ef6ac137efc5) (Version: 2.1.0.0 - Dell Inc.) Delta Chrome Toolbar (HKLM\...\Delta Chrome Toolbar) (Version: - Visual Tools) <==== ATTENTION DivX Setup (HKLM\...\DivX Setup) (Version: 2.6.1.87 - DivX, LLC) Driver Genius Professional Edition (HKLM\...\Driver Genius Professional Edition_is1) (Version: 10.0 - Driver-Soft Inc.) DriverUpdate (HKLM\...\{04F46566-A95C-46FF-9CA1-F3FDBAB61283}) (Version: 2.2.16918 - SlimWare Utilities, Inc.) Dropbox (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\Dropbox) (Version: 3.10.8 - Dropbox, Inc.) ffdshow v1.2.4422 [2012-04-09] (HKLM\...\ffdshow_is1) (Version: 1.2.4422.0 - ) File Type Assistant (HKLM\...\Trusted Software Assistant_is1) (Version: - Trusted Software) <==== ATTENTION Final Media Player 2011 (HKLM\...\FinalMediaPlayer_is1) (Version: - Bitberry Software) <==== ATTENTION FLV Player (HKLM\...\FLV Player2.0.25) (Version: 2.0.25 - Martijn de Visser Software) FLV Player (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\FLV Player) (Version: 1.0 - Somoto Ltd.) <==== ATTENTION Foxit Reader 5.1 (HKLM\...\Foxit Reader_is1) (Version: 5.1.4.104 - Foxit Corporation) FoxTab PDF Converter (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\FoxTab PDF Converter) (Version: - ) <==== ATTENTION Free Download Manager 3.9.2 (HKLM\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG) Free File Viewer 2011 (HKLM\...\FreeFileViewer_is1) (Version: - Bitberry Software) <==== ATTENTION Free Ride Games Player (HKLM\...\{2B7BDADB-EC8C-4C54-B5DD-CE45A016D3A7}) (Version: - Exent Technologies Ltd) <==== ATTENTION FrostWire 6.1.2 (HKLM\...\FrostWire 6) (Version: 6.1.2.2 - FrostWire LLC) GOM Player (HKLM\...\GOM Player) (Version: 2.1.37.5085 - Gretech Corporation) Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.) Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden Haali Media Splitter (HKLM\...\HaaliMkx) (Version: - ) HP Product Detection (HKLM\...\{3C22981C-5C14-4176-B0E8-C2BE71174C41}) (Version: 11.14.0003 - HP) HTC BMP USB Driver (HKLM\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC) Intel AppUp(SM) center (HKLM\...\Intel AppUp(SM) center 18988) (Version: 18988 - Intel) Internet Download Manager (HKLM\...\Internet Download Manager) (Version: - ) Internet Security by BrowserSafeguard (HKLM\...\Browsersafeguardext) (Version: - BrowserSafeguard) <==== ATTENTION IWON toolbar (HKLM\...\iWon_5kbar Uninstall) (Version: - Mindspark Interactive Network) <==== ATTENTION Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation) Kingo ROOT version 1.3.1.2217 (HKLM\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.3.1.2217 - Kingosoft Technology Ltd.) K-Lite Codec Pack 7.0.0 (Standard) (HKLM\...\KLiteCodecPack_is1) (Version: 7.0.0 - ) Kodi (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\Kodi) (Version: - XBMC-Foundation) Liberty Slots Casino (HKLM\...\{FE8C9237-59BF-45A4-A179-EF24C882C03D}) (Version: 1.00.0000 - LibertySlots) Mahjong Match (HKLM\...\111177437) (Version: - Oberon Media) Mahjong: Mysteries of the Past Bundle by SweetPacks (HKLM\...\Mahjong: Mysteries of the Past Bundle by SweetPacks) (Version: 1.0.0.0 - SweetPacks LTD) <==== ATTENTION Media Player Codec Pack 4.2.5 (HKLM\...\Media Player - Codec Pack) (Version: 4.2.5 - Media Player Codec Pack) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft IntelliPoint 8.1 (HKLM\...\Microsoft IntelliPoint 8.1) (Version: 8.15.406.0 - Microsoft) Microsoft IntelliType Pro 8.1 (HKLM\...\Microsoft IntelliType Pro 8.1) (Version: 8.15.406.0 - Microsoft) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 3.0.40818.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Midnight Mysteries: Haunted Houdini Deluxe (HKLM\...\BFG-Midnight Mysteries - Haunted Houdini Deluxe) (Version: - ) Mobile App Sync (HKLM\...\Mobile App Sync) (Version: - Mobile App Sync) Mozilla Firefox 20.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 20.0.1 (x86 en-US)) (Version: 20.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 20.0.1 - Mozilla) MPEG2 Codec(libmpeg2/mad) (HKLM\...\MPEG2 Codec(libmpeg2/mad)) (Version: - ) Mplayer 0.6.9 (HKLM\...\Mplayer) (Version: 0.6.9 - ) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) My Web Search (My Fun Cards) (HKLM\...\MyWebSearch bar Uninstall) (Version: - My Web Search) <==== ATTENTION NOOK for PC (HKLM\...\{05B59BD3-1B29-4DFA-99B8-0EC8CF88A60C}) (Version: 2.5.2 - Barnes & Noble) PageRage Toolbar (HKLM\...\PageRage Toolbar) (Version: 6.5.0.202 - PageRage) Plantronics MyHeadset Updater (x86) (HKLM\...\{BAE54DD5-2727-4F6F-9577-2B83BD450BF4}) (Version: 2.8.26503.0 - Plantronics, Inc.) Pluto TV version 0.1.5 (HKLM\...\Pluto TV_is1) (Version: 0.1.5 - Pluto TV) PokerStars.net (HKLM\...\PokerStars.net) (Version: - PokerStars.net) RealDownloader (Version: 18.0.1.10 - RealNetworks, Inc.) Hidden RealDownloader (Version: 18.0.1.9 - RealNetworks) Hidden RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden RealTimes (RealPlayer) (HKLM\...\RealPlayer 18.0) (Version: 18.0.1 - RealNetworks) RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden Reel Deal Slots: Fishin' Fortune (HKLM\...\BFG-Reel Deal Slots - Fishin' Fortune) (Version: - ) RoboForm 7-4-1 (All Users) (HKLM\...\AI RoboForm) (Version: 7-4-1 - Siber Systems) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.24.0 - SAMSUNG Electronics Co., Ltd.) SlimCleaner (HKLM\...\{A95F1368-38A4-4E02-99B7-96F0DC2779C7}) (Version: 4.0.28412 - SlimWare Utilities, Inc.) Socialbox (HKLM\...\com.socialbox.socialbox) (Version: 2.109.1 - Zoosk, Inc.) Socialbox (Version: 2.109.1 - Zoosk, Inc.) Hidden Spotify (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\Spotify) (Version: 0.8.3.222.g317ab79d - Spotify AB) Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited) SweetIM for Messenger 3.7 (Version: 3.7.0007 - SweetIM Technologies Ltd.) Hidden <==== ATTENTION swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden The Treasures of Mystery Island (HKLM\...\exent_729150) (Version: - ) Unity Web Player (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS) UpdateService (Version: 1.0.0 - RealNetworks, Inc.) Hidden Usenet.nl (HKLM\...\Usenet.nl_is1) (Version: - ) Vacation Quest - The Hawaiian Islands (HKLM\...\Vacation Quest - The Hawaiian Islands) (Version: - PopCap Games) Vafmusic12 Toolbar for IE (HKLM\...\IECT3303005) (Version: 6.17.1.25 - Vafmusic12) <==== ATTENTION VAFPlayer (HKLM\...\{EBE677C0-CBCB-4EBF-8098-E27E1B5271CF}) (Version: 1.6.8 - Tuguu SL) <==== ATTENTION VC 9.0 Runtime (Version: 1.0.0 - Check Point Software Technologies Ltd) Hidden VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden VegasVip (HKLM\...\VegasVip_is1) (Version: - Kingsbury) Veoh Web Player (HKLM\...\Veoh Web Player Beta) (Version: 1.1.2.0000 - Veoh Networks, Inc.) Video Downloader (Version: 1.0.0 - RealNetworks) Hidden VideoPlayer v2.0.6 (HKLM\...\VideoPlayer) (Version: v2.0.6 - TUGUU SL) <==== ATTENTION VLC media player 1.1.9 (HKLM\...\VLC media player) (Version: 1.1.9 - VideoLAN) WhoCrashed 3.00 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.) Windows Driver Package - Cambridge Silicon Radio (CSRBC) USB (10/26/2012 2.4.0.0) (HKLM\...\20C7EDA3129B3FF8F72F9BF59252B718B554FBDC) (Version: 10/26/2012 2.4.0.0 - Cambridge Silicon Radio) WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) Xvid Video Codec (HKLM\...\Xvid Video Codec 1.3.1) (Version: 1.3.1 - Xvid Team) Yahoo! BrowserPlus 2.9.8 (HKU\S-1-5-21-11595131-3550647590-3570146784-1001\...\Yahoo! BrowserPlus) (Version: - Yahoo! Inc.) Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version: - ) Yahoo! Toolbar (HKLM\...\Yahoo! Companion) (Version: - ) Your Uninstaller! 2010 (HKLM\...\YU2010_is1) (Version: 7.0 - URSoft, Inc.) Zuma's Revenge! (HKLM\...\Zuma's Revenge!) (Version: - PopCap Games) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> C:\Users\Jesus\AppData\Local\Google\Update\1.3.21.135\psuser.dll => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{052253BF-F1FF-4686-B231-8D1904DEED68}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{0A368B9B-3566-4730-B40E-EAF6858A53AF}\InprocServer32 -> C:\Users\Jesus\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{0A5E59C5-E141-4134-8016-AFCED8DCE745}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{0F81C552-68AD-4AAB-99D2-26F7F72A423C}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Commmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{18195900-F78C-46FE-A55A-5A491C6F7230}\localserver32 -> c:\program files\palace of chance\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{1B72D1C3-A1B3-4C87-9552-894CFF74051F}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{1BC0C7E7-0ADF-4FCE-9FBD-70B2DBC3BD48}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\GameMdl.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{1E1C74D3-EF64-4F13-B631-DFDCEE4572FD}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Loginmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{1FD9E587-43E1-4F1F-A41F-A6E8B93A5546}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{2D0235FC-1701-4F1C-B36C-84CD8813EDB5}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{3059C9E6-9EDC-4C89-933E-C65623F8FD60}\localserver32 -> C:\Users\Jesus\AppData\Local\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{31DC369C-75C3-4D8B-9C2D-0B10BF77BA0F}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{343ADE39-3C61-421B-93CB-19C44D33ED9B}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{349D0BEB-C7A2-4818-896D-721349FB957F}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{3A2FF062-1CC7-4F01-B758-75218E9F653D}\localserver32 -> c:\program files\club world casinos\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{42866AA5-0088-481E-BE59-F526B4E1C21C}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Jesus\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{44d07caa-4fc4-5a84-9951-a485ad808d0e}\InprocServer32 -> C:\Program Files\Free Ride Games\npGameTreatWidget.dll (Exent Technologies Ltd.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{47231DCA-F7A4-4696-B836-B2430D451226}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Imagemgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{4AC4E235-EB53-4942-B113-931D66A470B8}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\GameSelectorMdl.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{50021F2A-9C64-4766-A697-84E366A407B1}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{50632C37-EDD8-4B8F-A32B-8E280D942A8E}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{51B894AD-B2D5-48F6-B1D1-C1F0CF849587}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{52FE3F2E-A71F-4EC7-BCA4-08D5C9FA57C4}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{553E32D1-AAF3-406A-B19E-E575829EC651}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{58456121-F6E2-4E74-96D5-521EBE19E124}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{58F0E5CC-C1B3-453A-B1EB-A1B40A6DAEF9}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{59715A3F-0AF7-427E-99AF-757668C8576E}\localserver32 -> c:\program files\palace of chance\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{5C5F7442-9ADC-4BD8-89CC-7C3615C26546}\localserver32 -> c:\program files\palace of chance\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> C:\Users\Jesus\AppData\Local\Google\Update\1.3.21.145\psuser.dll => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{648326CD-6F37-4A8F-BF14-E2BAD67AAAA8}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{6BB1EAF0-7572-4166-9DF4-2A817F5FCD83}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{6CE4B8A6-4DB5-4F63-8013-1197503692EF}\InprocServer32 -> C:\Users\Jesus\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\YBPAddon_2.9.8.dll (Yahoo! Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}\InprocServer32 -> C:\Users\Jesus\AppData\Local\Google\Update\1.3.21.153\psuser.dll => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{6F80F85C-FC5C-4C7E-B7ED-9ECCECC7CF57}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Configmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{72A62965-EF25-42E0-97CE-7A2D69BF28C0}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{7343C339-68AC-4BC0-964C-527FAF60BEBA}\localserver32 -> c:\program files\palace of chance\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{755185E0-4607-4122-BB8E-561D14049AC7}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{781629FE-B830-46BF-9C41-C20729D6DEB7}\localserver32 -> c:\program files\club world casinos\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{7E91D484-1252-42B1-9D0F-667777CD20F0}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{7F9521A5-6267-4619-A9D2-B2C83945FA74}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{83C57A5A-174A-4FF2-9792-02B761DE4C43}\localserver32 -> c:\program files\palace of chance\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{87DC457B-B35D-48AC-BD42-BDF35EF623CE}\localserver32 -> C:\Users\Jesus\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{87F1309E-CBFB-43D3-8A74-A0307875B2B3}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{8A0F754D-9636-4771-A1A6-8A1126E03345}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{8A73CF97-446B-46AD-964C-2C3400CAA60F}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{8B48847D-052F-4153-93B8-7223BFF1C406}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Commmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{8B5F91E9-0032-4560-93B0-4539497C5366}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{91EFB276-CEFE-48EC-BB3A-57795A7B4008}\InprocServer32 -> C:\Users\Jesus\AppData\Local\Google\Update\1.3.21.149\psuser.dll => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{941D2E9A-D724-4FB5-94D5-775B70E8C408}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{97637B78-01D0-4A40-A842-68774AA416BB}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{987585FA-DD0C-4E8B-8FC2-89B1181CA701}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{997A6674-4032-48E8-B1F9-7E6AA6F19312}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{9A5A84A0-2E60-47D1-8C75-278A8D0F41FF}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{9E8F05AF-C18E-4A72-8743-A479EFD255E6}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{9FAA38ED-5635-44F7-9BE0-8CAFE29B3783}\localserver32 -> C:\Users\Jesus\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{A16CA865-CD74-46EC-9432-74579FD657A0}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{A2DF38B5-93D0-44D6-8130-AA80F351F852}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Timemgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{A70E086C-1477-4B0C-808A-94EF8271ED39}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Resourcemgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{A7674421-DB75-4081-B0FE-2B378F1FFAEB}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\GameMdl.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{AA8DF900-A3B9-4231-8C2C-0CA3B95E6395}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{ACAB158F-423F-4D59-BEDD-15C9E0CC2DD1}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{AEDBA87C-4A7A-4C4C-8420-8A5E90AF2356}\localserver32 -> c:\program files\prism casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{B10A3751-CC13-4A25-875B-EEC84674C6C0}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Soundmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{B1267A8A-D143-41F7-A655-5765A8464796}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{B2EBB08B-3121-4C7C-974F-0161928A2937}\localserver32 -> c:\program files\club world casinos\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{B4DE0D49-3670-4D2F-9228-227FCD258C54}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{B5ED906A-3468-4A41-91B7-A77849329B7C}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{B6C64A50-7BB8-441B-AE31-C4366C84BF00}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{B7C3E3E1-E641-4354-BE71-C0FC5D935458}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{B8217B92-8FDD-4A74-9417-B77BD74F62B7}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{BD75936F-2B69-477E-9E9A-218FFAF35F49}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{BE742811-02F4-4D7E-87C1-886909462A16}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Modulemgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{C0CFC164-D12D-440B-AFE8-F673ED340749}\localserver32 -> c:\program files\slots plus casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{C0DD324D-A74F-4533-84AD-030F76771C77}\localserver32 -> C:\Users\Jesus\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{C32E3EEC-3C10-426E-95F3-38C7F139FADD}\localserver32 -> C:\Users\Jesus\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{C44643AF-E3B0-4F0B-92CA-1D86537B6F93}\localserver32 -> c:\program files\prism casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{D166BD15-03AF-413A-BEFD-0679FF410B49}\InprocServer32 -> C:\Users\Jesus\AppData\Local\Dropbox\Update\1.3.27.29\psuser.dll => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{D2E87C0B-C06A-4E69-8A41-0AC3117505B4}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{D4A86438-A95B-487D-8B1D-1E67B2A0F379}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\DownloadMgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{D4DA8972-E5CF-45FF-9D8E-F052A9BCDAFD}\localserver32 -> c:\program files\palace of chance\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{D7B3EAC0-36D9-459E-AC96-3A88309FDDCC}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{E65E6AAE-9169-4625-B98D-EB903E707116}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{E6BFA606-59F2-4CD6-89C8-DAED6D789027}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{E6F462CC-5075-4637-BC5C-D75DF985DD94}\localserver32 -> c:\program files\planet7 casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{E9003BF8-C69B-40BA-A86F-58243B39DCB1}\localserver32 -> c:\program files\club world casinos\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{E9AC37A2-E79C-4CA3-A6A8-1884BF9A7852}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{EA025CFF-6C5C-44EB-8148-97642749B719}\localserver32 -> c:\program files\palace of chance\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{EAD67B06-459C-48B9-90C1-5F2F34D4F83F}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{EC59A9FF-D43D-49ED-A72A-C84855087BD7}\localserver32 -> c:\program files\virtual casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{ECA7C134-E84B-4E6B-A3E2-355FCB853766}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{ece1a2a4-3672-46f1-82a7-d1137212d9dd}\InprocServer32 -> C:\Program Files\iWon_5k\bar\1.bin\5kSrcAs.dll (MindSpark) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{ED0BD0F4-ECAC-41D2-BD28-0ABFB129F40C}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\VersionMgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{ED2430C2-26C8-484C-8C31-CDBDFEAEB8D8}\localserver32 -> c:\program files\prism casino\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{F0349E13-BD03-4073-BA25-6B2610C0750D}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{F53E4C9E-703C-41f3-8F69-C7E3D277594B}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FB3A51E2-BBCF-4CE2-9EDA-4118A3D3B828}\localserver32 -> c:\program files\palace of chance\casino.exe %1 => No File CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Jesus\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FD995983-DC2B-4B97-B3FE-E9534AA1A769}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Graphicsmgr.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FE0AA82B-B32A-4D54-BA97-918D2A9F6E70}\InprocServer32 -> C:\Users\Jesus\AppData\Local\VTShared\Windowmgr.dll () CustomCLSID: HKU\S-1-5-21-11595131-3550647590-3570146784-1001_Classes\CLSID\{FE819BE5-BADF-4370-9913-6FB84ABA6FB1}\InprocServer32 -> C:\Users\Jesus\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.) ==================== Restore Points ========================= 14-10-2015 01:08:05 Installed Operation Blockade 27-10-2015 01:04:07 Avira System Speedup 1.6.13 27-10-2015 02:13:45 Restore Operation 27-10-2015 10:12:42 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 19:04 - 2009-06-10 14:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {06E425EB-0BEB-44F4-814C-D3B0151D2FA6} - System32\Tasks\APSnotifierPP3 => C:\Program Files\AnyProtectEx\AnyProtect.exe [2014-10-03] (AnyProtect.com) <==== ATTENTION Task: {0987B271-5EBD-4BC1-9D83-FDC05403E7AE} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-4 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-4.exe <==== ATTENTION Task: {0BBD681C-7304-41A0-B869-688657E40A9F} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-11595131-3550647590-3570146784-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2015-06-17] (RealNetworks, Inc.) Task: {0CCF29FD-FA33-4805-A17B-E55F567131B8} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-7 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-7.exe <==== ATTENTION Task: {0DF8152A-D272-4BDB-9F51-1721D7FE3452} - System32\Tasks\FCBfan => C:\Users\Jesus\AppData\Roaming\FCBfan\fcbfan.exe Task: {14CD0091-1916-43DE-BE88-82A718A49A39} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-5_user => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-5.exe <==== ATTENTION Task: {1ACCA364-6708-4C42-95BF-E8EB5A485B8D} - System32\Tasks\BackgroundContainer Startup Task => Rundll32.exe "C:\Users\Jesus\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <==== ATTENTION Task: {1BBA4581-81D0-4964-AB8A-66C3D31D82D6} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-1 => C:\Program Files\TheHDvid-Codec V10\TheHDvid-Codec V10-codedownloader.exe <==== ATTENTION Task: {1F5C6582-94E5-4DF4-93BD-84D6F0467BBF} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-3 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-3.exe <==== ATTENTION Task: {217C4E71-2891-4963-9715-89B7C189A723} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-11595131-3550647590-3570146784-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2015-06-17] (RealNetworks, Inc.) Task: {21E511F1-54F9-417B-B428-CB47E06E30ED} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-27] (Adobe Systems Incorporated) Task: {27E62ECB-56C4-4B28-B276-7FDC4331965E} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-5 => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-5.exe <==== ATTENTION Task: {2B76F051-034B-4D14-8FE9-903815FD9F1B} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-6 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-6.exe <==== ATTENTION Task: {2DE646AB-A4FC-47BB-B49A-E30A184AF633} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe Task: {3110396D-9536-4D0B-BAFA-6EB5D0DD9DC7} - System32\Tasks\{D28D4A94-5DFA-4081-BFAE-D98440EFDCA4} => pcalua.exe -a C:\Users\Jesus\Downloads\Programs\SlotMadnessCasinoInstaller.exe -d C:\Users\Jesus\AppData\Roaming\IDM Task: {33D97B96-6262-40C3-8436-5153BF83A021} - System32\Tasks\HOBS => C:\Users\Jesus\AppData\Roaming\HOBS.exe <==== ATTENTION Task: {34AB68F6-2658-4BCD-B348-236C49C50E54} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files\Desk 365\desk365.exe <==== ATTENTION Task: {3DA3D8CB-B969-4A98-A4C1-B8C5E74FCD7F} - System32\Tasks\{45B4BE60-DFC5-4343-A749-E33917113EA3} => pcalua.exe -a C:\Users\Jesus\Downloads\Programs\setup.exe -d C:\Users\Jesus\AppData\Roaming\IDM Task: {475D8051-7C74-4EFB-8D2F-B87EB6AC0EBA} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2011-08-05] (Siber Systems) Task: {4A7603D4-7988-4D72-AE1C-9FC62227752E} - System32\Tasks\SuperLyrics-16-chromeinstaller => C:\Program Files\SuperLyrics-16\SuperLyrics-16-chromeinstaller.exe <==== ATTENTION Task: {504A8E35-584A-43EE-B0F0-90D12BE2318F} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-1 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\CinPlus-2.5cdTube HDV03.10-codedownloader.exe <==== ATTENTION Task: {5820F98F-67DD-47F1-80A2-F695BBB94502} - System32\Tasks\RunAsStdUser Task => C:\Program Files\FREEzeFrog\bin\1.0.670.0\FREEzeFrogSA.exe <==== ATTENTION Task: {59487B4D-DAB6-4C1D-AC61-5935D4B7F437} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-5_user => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-5.exe <==== ATTENTION Task: {5D56AE02-A011-4D32-86B7-035674FDA02F} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-11595131-3550647590-3570146784-1001 => C:\Program Files\RealNetworks\RealDownloader\RealUpgrade.exe [2015-06-17] (RealNetworks, Inc.) Task: {60E6A20E-6629-414A-9C27-7246C2DBA88C} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-04-13] (Microsoft Corporation) Task: {61177B66-66B5-46BA-9C33-4D9E726CA4C2} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-11 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-11.exe <==== ATTENTION Task: {61C18BFF-7684-4957-9EF0-1F0C353A27EB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {6A14ABBB-4F5F-4FD4-B49A-C1FC4207699F} - System32\Tasks\RunAsStdUser Task for VeohWebPlayer => C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe [2011-06-30] (Veoh Networks) Task: {7238DACE-DC11-406B-B80D-D67A3364DA9C} - System32\Tasks\SuperLyrics-16-enabler => C:\Program Files\SuperLyrics-16\SuperLyrics-16-enabler.exe <==== ATTENTION Task: {72D320CE-33E0-4902-AB6D-D0575859F970} - System32\Tasks\ITECXDE => C:\Users\Jesus\AppData\Roaming\ITECXDE.exe <==== ATTENTION Task: {73B8DE3E-D8BB-4ED3-9DF4-22494571B030} - System32\Tasks\SuperLyrics-16-codedownloader => C:\Program Files\SuperLyrics-16\SuperLyrics-16-codedownloader.exe <==== ATTENTION Task: {7AF47961-00CD-486D-8954-1FF90DE8A4FD} - System32\Tasks\VisualBee-firefoxinstaller => C:\Program Files\VisualBee\VisualBee-firefoxinstaller.exe <==== ATTENTION Task: {7CC318B5-0679-467C-8FD1-713512DA51B1} - System32\Tasks\ArcadeFrontier => C:\Users\Jesus\AppData\Local\ArcadeFrontier\veragent.exe [2014-06-28] () Task: {7EA70030-548C-4F56-A910-4BF7A04EF845} - System32\Tasks\EPUpdater => C:\Users\Jesus\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-05-09] () <==== ATTENTION Task: {7ED83585-D194-4FB0-9E34-57E6D2B90E50} - System32\Tasks\Go for FilesUpdate => C:\Program Files\GoforFiles\GFFUpdater.exe <==== ATTENTION Task: {8080BA93-8396-47B7-A3CD-492F16B1B087} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-2 => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-2.exe <==== ATTENTION Task: {8AF94FA0-2EC1-40ED-BD41-774A6509A38D} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-5 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-5.exe <==== ATTENTION Task: {8C7C1340-440C-4937-B801-FE78A5FDF832} - System32\Tasks\gameo_update => C:\Users\Jesus\AppData\Roaming\Gameo\gameo.exe [2015-07-04] () <==== ATTENTION Task: {8CA8DD93-8E5B-466D-89E2-468109F8BF40} - \Optimizer Pro Schedule -> No File <==== ATTENTION Task: {8D880592-9061-4FA0-8024-2259F319FC29} - System32\Tasks\577db44d-d9d7-469f-92dc-7b0e6d777170 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\577db44d-d9d7-469f-92dc-7b0e6d777170.exe <==== ATTENTION Task: {92FC6E35-3503-4726-AEF3-4722143FB8A9} - System32\Tasks\ShdUpdate => C:\Users\Jesus\AppData\Local\ShdUpdate\shupd.exe [2015-04-27] (Visual Tools) Task: {932B9A0E-EF5B-47C0-A598-C49E43CC969A} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-11595131-3550647590-3570146784-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2015-06-17] (RealNetworks, Inc.) Task: {9A6383B3-1F01-45ED-9A61-E58E42B5B737} - System32\Tasks\SuperLyrics-16-updater => C:\Program Files\SuperLyrics-16\SuperLyrics-16-updater.exe <==== ATTENTION Task: {9E1C3177-F39D-4F5A-AAF3-A66CE13BC0FA} - System32\Tasks\SuperLyrics-16-firefoxinstaller => C:\Program Files\SuperLyrics-16\SuperLyrics-16-firefoxinstaller.exe <==== ATTENTION Task: {A41A3A8C-2CC2-4102-9065-C8525D9A24A9} - System32\Tasks\{B4489070-50F4-459A-A65F-49CE70E4110C} => pcalua.exe -a "C:\Users\Jesus\Desktop\deer dr\SCS Software\makeDesktopIcon.exe" -d "C:\Users\Jesus\Desktop\deer dr\SCS Software" Task: {A5E24E6E-099B-42F9-9956-79182B2C8CA9} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-11595131-3550647590-3570146784-1001Core => C:\Users\Jesus\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19] (Dropbox, Inc.) Task: {A922BCA2-5CD6-4531-94AB-6879F23868DC} - System32\Tasks\{6BBEED7F-C68C-41D3-9751-E85EFC186AAD} => pcalua.exe -a E:\install\setup.exe -d E:\install Task: {B79089EE-5784-459F-B2DF-B44F4CBE6141} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-6 => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-6.exe <==== ATTENTION Task: {B8F5C814-D9C8-47D8-8631-4B249A089D4D} - System32\Tasks\APSnotifierPP2 => C:\Program Files\AnyProtectEx\AnyProtect.exe [2014-10-03] (AnyProtect.com) <==== ATTENTION Task: {BF4A1A15-21AE-4584-BA88-95321E8C8D2C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {CC98A113-7FCC-4478-B481-4F50ACE95E37} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-11595131-3550647590-3570146784-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2015-06-17] (RealNetworks, Inc.) Task: {CEE13C4F-4333-4DD5-9142-00BA67CC5BF2} - System32\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-2 => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-2.exe <==== ATTENTION Task: {CFD7D0C9-2845-4243-AF58-8B53738C0946} - System32\Tasks\FreeFileViewerUpdateChecker => C:\Program Files\FreeFileViewer\FFVCheckForUpdates.exe [2011-03-11] (Bitberry Software) <==== ATTENTION Task: {CFE19109-9F50-4DE7-86A0-73CA8287F775} - System32\Tasks\Final Media Player Update Checker => C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe [2011-03-11] (Bitberry Software) Task: {D93F69E5-0EA4-4ECA-B397-32FE2736858B} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-4 => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-4.exe <==== ATTENTION Task: {DDB7E82D-017D-410C-867A-E5CB41874779} - System32\Tasks\Go to RoboForm Install page => Rundll32.exe url.dll,FileProtocolHandler "hxxp://www.roboform.com/test-pass.html?aaa=KICMNJOMMJLMNJKMJJOMCNJJKJJMPMCNLMOJNJJJCNOJLJJMNJCNNMMMMMKMNJJJOMNJKMJMJMPMJNJICMIMCNMMCNPMFMGMCNPMCNHMOMOMNMFMJMCNOMCNIMJMPMPMCNNMJNPICMLMFMEKMICNJJCKFMPMJNHICMEKMICNJJCKJNBJCMFLKJMIKIMIJNKJCMJNNICMJNDJCMKJBJ" Task: {E16F6A82-7107-4BF2-BCD3-26AC698877F1} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-11595131-3550647590-3570146784-1001UA => C:\Users\Jesus\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19] (Dropbox, Inc.) Task: {E2C5D82A-0857-4537-8C08-329E4D82D66C} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-7 => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-7.exe <==== ATTENTION Task: {E6BCEEE9-A25A-432F-B170-9F2008F7E743} - System32\Tasks\Open URL by RoboForm => Rundll32.exe url.dll,FileProtocolHandler "hxxp://www.roboform.com/test-pass.html?aaa=KICMNJOMMJLMNJKMJJOMCNJJKJJMPMCNLMOJNJJJCNOJLJJMNJCNNMMMMMKMNJJJOMNJKMJMJMPMJNJICMIMCNLMCNOMFMGMCNPMCNHMOMOMNMFMJMCNOMCNIMJMPMPMCNNMJNPICMPMFMMJBJKJLIMJFMIMNMJNHICMMJBJKJLIMJJNBJCMFLKJMIKIMIJNKJCMJNNICMJNDJCMKJBJ" Task: {E81EFEAD-4F21-4CB4-86D1-BE7B2F7B1E94} - System32\Tasks\{5398D605-AC1F-4226-8D0A-92360D246A95} => pcalua.exe -a "C:\Users\Jesus\Desktop\Magellan roadmate\Magellan_Roadmate_1412_NA_3_12_Rel2.exe" -d "C:\Users\Jesus\Desktop\Magellan roadmate" Task: {ED7AA6B2-7FC7-4609-A5C3-C0C995F91388} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-11595131-3550647590-3570146784-1001 => C:\Program Files\RealNetworks\RealDownloader\RealUpgrade.exe [2015-06-17] (RealNetworks, Inc.) Task: {EE7D1483-02C0-41A3-B9DD-0C9AE2E6062B} - System32\Tasks\{5C942655-003B-42ED-89AD-1303AF7A188A} => pcalua.exe -a C:\Users\Jesus\AppData\Local\Temp\{FAED904B-E73C-4F5B-80C6-725A05BCD83D}\adobeshockwavextrabundle.exe -d "C:\Program Files\Mozilla Firefox" -c /xtrabundle=Shockwave_3D_Asset Task: {F008B7E9-EDC2-40EB-98DF-1049F51CD82A} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-3 => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-3.exe <==== ATTENTION Task: {F6D0A09A-D6D0-4CD0-B887-11B6AF6799AF} - System32\Tasks\RealDownloader Update Check => C:\Program Files\RealNetworks\RealDownloader\downloader2.exe [2015-06-17] () Task: {F6F993D8-AEAA-48E9-9012-AF7742E1ED11} - System32\Tasks\VisualBee-chromeinstaller => C:\Program Files\VisualBee\VisualBee-chromeinstaller.exe <==== ATTENTION Task: {F86B1A45-ED06-4870-B83B-BED3B8169232} - System32\Tasks\APSnotifierPP1 => C:\Program Files\AnyProtectEx\AnyProtect.exe [2014-10-03] (AnyProtect.com) <==== ATTENTION Task: {FA843751-5F22-4B03-B4F7-BBF0F65D6E3A} - System32\Tasks\51188396-c59e-46c6-b628-c324c540b86b => C:\Program Files\TheHDvid-Codec V10\51188396-c59e-46c6-b628-c324c540b86b.exe <==== ATTENTION Task: {FAE73402-DF76-428B-AE8D-C87661CB6341} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => c:\Program Files\Microsoft IntelliType Pro\IType.exe [2011-04-13] (Microsoft Corporation) Task: {FE7C4814-38BD-4C08-9A39-742230969083} - System32\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-11 => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-11.exe <==== ATTENTION (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\51188396-c59e-46c6-b628-c324c540b86b.job => C:\Program Files\TheHDvid-Codec V10\51188396-c59e-46c6-b628-c324c540b86b.exeǴ/agentregpath='TheHDvid-Codec V10' /appid=63315 /srcid='001824' /subid='0' /zdata='0' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_35_09_29 /installationtime=1412367452 /statsdomain=hxxp:/stats.newdatastatsserv.com /errorsdomain=hxxp:/errors.newdatastatsserv.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,184-0 /monetizationdomain=hxxp:/logs.newdatastatsserv.com <==== ATTENTION Task: C:\Windows\Tasks\577db44d-d9d7-469f-92dc-7b0e6d777170.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\577db44d-d9d7-469f-92dc-7b0e6d777170.exeȝ/agentregpath='CinPlus-2.5cdTube HDV03.10' /appid=63285 /srcid='002200' /subid='0' /zdata='0' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_35_09_29 /installationtime=1412367963 /statsdomain=hxxp:/stats.newdatastatsserv.com /errorsdomain=hxxp:/errors.newdatastatsserv.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=hxxp:/logs.newdatastatsserv.com <==== ATTENTION Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\ArcadeFrontier.job => C:\Users\Jesus\AppData\Local\ArcadeFrontier\veragent.exe Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-1.job => C:\Program Files\TheHDvid-Codec V10\TheHDvid-Codec V10-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-11.job => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-11.exe <==== ATTENTION Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-2.job => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-2.exe <==== ATTENTION Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-3.job => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-3.exe <==== ATTENTION Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-4.job => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-4.exe <==== ATTENTION Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-5.job => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-5.exe <==== ATTENTION Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-5_user.job => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-5.exe <==== ATTENTION Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-6.job => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-6.exe <==== ATTENTION Task: C:\Windows\Tasks\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-7.job => C:\Program Files\TheHDvid-Codec V10\b8234d50-54e3-4ecf-b98e-e7ffa8a0c005-7.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-1.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\CinPlus-2.5cdTube HDV03.10-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-11.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-11.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-2.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-2.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-3.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-3.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-4.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-4.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-5.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-5.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-5_user.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-5.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-6.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-6.exe <==== ATTENTION Task: C:\Windows\Tasks\c18b53c1-d7c3-48f9-96b5-786590d4f08f-7.job => C:\Program Files\CinPlus-2.5cdTube HDV03.10\c18b53c1-d7c3-48f9-96b5-786590d4f08f-7.exe <==== ATTENTION Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-11595131-3550647590-3570146784-1001Core.job => C:\Users\Jesus\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-11595131-3550647590-3570146784-1001UA.job => C:\Users\Jesus\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\Final Media Player Update Checker.job => C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe Task: C:\Windows\Tasks\FreeFileViewerUpdateChecker.job => C:\Program Files\FreeFileViewer\FFVCheckForUpdates.exe <==== ATTENTION Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\HOBS.job => C:\Users\Jesus\AppData\Roaming\HOBS.exe <==== ATTENTION Task: C:\Windows\Tasks\ITECXDE.job => C:\Users\Jesus\AppData\Roaming\ITECXDE.exe <==== ATTENTION Task: C:\Windows\Tasks\SuperLyrics-16-chromeinstaller.job => C:\Program Files\SuperLyrics-16\SuperLyrics-16-chromeinstaller.exe̦/installcrx /agentregpath='SuperLyrics-16' /extensionfilepath C:\Program Files\SuperLyrics-16\44162.crx' /appid=44162 /srcid='000574' /subid='1060-2080' /zdata='d:gui.doneopen.net' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_29_153 /installerfullversion=1.29.153.2 /installationtime=1382902321 /statsdomain=hxxp:/stats.srvmystats.com /errorsdomain=hxxp:/errors.srvmystats.com <==== ATTENTION Task: C:\Windows\Tasks\SuperLyrics-16-codedownloader.job => C:\Program Files\SuperLyrics-16\SuperLyrics-16-codedownloader.exeLj/reinstallapp /agentregpath='SuperLyrics-16' /appid=44162 /srcid='000574' /subid='1060-2080' /zdata='d:gui.doneopen.net' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_29_153 /installerfullversion=1.29.153.2 /installationtime=1382902321 /statsdomain=hxxp:/stats.srvmystats.com /errorsdomain=hxxp:/errors.srvmystats.com /codedownloaddomain=hxxp:/app-static.crossrider.com <==== ATTENTION Task: C:\Windows\Tasks\SuperLyrics-16-enabler.job => C:\Program Files\SuperLyrics-16\SuperLyrics-16-enabler.exeƝ/enablebho /agentregpath='SuperLyrics-16' /appid=44162 /srcid='000574' /subid='1060-2080' /zdata='d:gui.doneopen.net' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_29_153 /installationtime=1382902321 /statsdomain=hxxp:/stats.srvmystats.com /errorsdomain=hxxp:/errors.srvmystats.com <==== ATTENTION Task: C:\Windows\Tasks\SuperLyrics-16-firefoxinstaller.job => C:\Program Files\SuperLyrics-16\SuperLyrics-16-firefoxinstaller.exe˿/installxpi /agentregpath='SuperLyrics-16' /extensionfilepath C:\Program Files\SuperLyrics-16\44162.xpi' /appid=44162 /srcid='000574' /subid='1060-2080' /zdata='d:gui.doneopen.net' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_29_153 /installerfullversion=1.29.153.2 /installationtime=1382902321 /statsdomain=hxxp:/stats.srvmystats.com /errorsdomain=hxxp:/errors.srvmystats.com /waitforbrowser=300 /extensionid=58ad0086-1cfb-48bb-8ad2-33a8905572bc@5715d2be-69b9-4930-8f7e-64bdeb961cfd.com /extensionversion=0.92 /prefsbranch=a58ad00861cfb48bb8ad233a8905572bc5715d2be69b949308f7e64bdeb961cfdcom44162 /updateurl=hxxps:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/44162.rdf <==== ATTENTION Task: C:\Windows\Tasks\SuperLyrics-16-updater.job => C:\Program Files\SuperLyrics-16\SuperLyrics-16-updater.exeǾ/runupdater /agentregpath='SuperLyrics-16' /appid=44162 /srcid='000574' /subid='1060-2080' /zdata='d:gui.doneopen.net' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_29_153 /installationtime=1382902321 /statsdomain=hxxp:/stats.srvmystats.com /errorsdomain=hxxp:/errors.srvmystats.com /monetizationdomain=hxxp:/stats.syncstatsdata.com /geoserviceurl=hxxp:/ipgeoapi.com/ /updatejsondomain=hxxp:/update.srvmystats.com <==== ATTENTION Task: C:\Windows\Tasks\VisualBee-chromeinstaller.job => C:\Program Files\VisualBee\VisualBee-chromeinstaller.exe̛/installcrx /agentregpath='VisualBee' /extensionfilepath C:\Program Files\VisualBee\33906.crx' /appid=33906 /srcid='000196' /subid='verticals-shopping,ads,' /zdata='0' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_27_153 /installerfullversion=1.27.153.8 /installationtime=1378625552 /statsdomain=hxxp:/stats.update-apps.com /errorsdomain=hxxp:/errors.update-apps.com <==== ATTENTION Task: C:\Windows\Tasks\VisualBee-firefoxinstaller.job => C:\Program Files\VisualBee\VisualBee-firefoxinstaller.exe˴/installxpi /agentregpath='VisualBee' /extensionfilepath C:\Program Files\VisualBee\33906.xpi' /appid=33906 /srcid='000196' /subid='verticals-shopping,ads,' /zdata='0' /bic=2B5C6EA23B6C4B07A5FABD38EFF02C0DIE /verifier=40a4ba2d7989047d6181998a87c21289 /installerversion=1_27_153 /installerfullversion=1.27.153.8 /installationtime=1378625552 /statsdomain=hxxp:/stats.update-apps.com /errorsdomain=hxxp:/errors.update-apps.com /waitforbrowser=300 /extensionid=67314b39-24e6-4f05-99f3-3f88c7cddd17@6c5fa560-13a3-4d42-8e90-53d9930111f9.com /extensionversion=0.91 /prefsbranch=a67314b3924e64f0599f33f88c7cddd176c5fa56013a34d428e9053d9930111f9com33906 /updateurl=hxxps:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/33906.rdf <==== ATTENTION ==================== Loaded Modules (Whitelisted) ============== 2011-10-30 18:23 - 2007-08-21 13:32 - 00098304 _____ () C:\Windows\System32\redmonnt.dll 2015-06-17 03:25 - 2015-06-17 03:25 - 00031856 _____ () C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe 2015-06-17 03:24 - 2015-06-17 03:24 - 00035976 _____ () C:\Program Files\Real\UpdateService\DL2UpdatePlugin.dll 2015-06-17 03:24 - 2015-06-17 03:24 - 00039560 _____ () C:\Program Files\Real\UpdateService\RealDownloaderUpdatePlugin.dll 2015-06-17 03:24 - 2015-06-17 03:24 - 00037528 _____ () C:\Program Files\Real\UpdateService\VideoDLUpdatePlugin.dll 2012-05-15 04:19 - 2012-05-15 04:19 - 00222368 _____ () C:\Program Files\Amazon Browser Bar\ToolbarUpdaterService.exe 2015-06-17 00:07 - 2015-06-17 00:07 - 00066112 _____ () C:\Program Files\RealNetworks\RealDownloader\dtvhooks.dll 2013-04-04 03:10 - 2013-04-04 03:10 - 00032768 _____ () C:\Program Files\Plantronics\MyHeadsetUpdater\NativeUsbLib.dll 2013-08-28 17:23 - 2013-08-28 17:23 - 01861968 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe 2013-08-28 17:25 - 2013-08-28 17:25 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll 2015-06-17 00:06 - 2015-06-17 00:06 - 00608320 _____ () C:\Program Files\RealNetworks\RealDownloader\downloader2.exe 2015-06-16 23:47 - 2015-06-16 23:47 - 01382048 _____ () C:\Program Files\RealNetworks\RealDownloader\cpprest100_1_2.dll 2015-10-27 10:41 - 2015-10-27 10:41 - 00004096 _____ () C:\ProgramData\U7dTFLnn96AD.dll 2015-10-27 10:42 - 2015-10-27 10:42 - 00005120 _____ () C:\ProgramData\taskhost.exe 2012-05-06 20:10 - 2012-05-06 20:10 - 00932528 _____ () C:\Users\Jesus\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe 2015-08-01 15:25 - 2015-07-04 14:35 - 42482176 _____ () C:\Users\Jesus\AppData\Roaming\Gameo\gameo.exe 2015-07-16 00:11 - 2015-07-16 00:11 - 00088640 _____ () c:\program files\real\realplayer\CrashRpt\CrashRpt1402.dll 2015-10-28 02:43 - 2015-10-28 02:43 - 00071168 _____ () c:\users\jesus\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp4byjhj.dll 2015-10-13 13:58 - 2015-09-23 16:07 - 00012800 _____ () C:\Users\Jesus\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll 2015-10-13 13:58 - 2015-09-23 16:07 - 00779776 _____ () C:\Users\Jesus\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-10-13 13:58 - 2015-09-23 16:07 - 00056320 _____ () C:\Users\Jesus\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-10-13 13:58 - 2015-09-23 16:07 - 00012288 _____ () C:\Users\Jesus\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll 2015-10-27 03:19 - 2015-10-20 07:08 - 01532744 _____ () C:\Program Files\Google\Chrome\Application\46.0.2490.80\libglesv2.dll 2015-10-27 03:19 - 2015-10-20 07:08 - 00081224 _____ () C:\Program Files\Google\Chrome\Application\46.0.2490.80\libegl.dll 2015-08-01 15:25 - 2015-07-04 14:35 - 01311232 _____ () C:\Users\Jesus\AppData\Roaming\Gameo\libglesv2.dll 2015-08-01 15:25 - 2015-07-04 14:35 - 00212992 _____ () C:\Users\Jesus\AppData\Roaming\Gameo\libegl.dll 2015-08-01 15:25 - 2015-07-04 14:35 - 00986624 _____ () C:\Users\Jesus\AppData\Roaming\Gameo\ffmpegsumo.dll 2015-10-28 02:42 - 2015-07-04 14:35 - 00246272 _____ () C:\Users\Jesus\AppData\Local\Temp\nw3136_2764\node_modules\gameo_utils\Build\Release\gameo_utils_node.node 2015-10-28 02:42 - 2015-07-04 14:35 - 00090112 _____ () C:\Users\Jesus\AppData\Local\Temp\nw3136_2764\node_modules\gameo_utils\Build\Release\gameo_utils.dll 2015-10-28 02:42 - 2015-07-04 14:35 - 00113664 _____ () C:\Users\Jesus\AppData\Local\Temp\nw3136_2764\node_modules\is-reaction\gg.node 2015-10-28 02:42 - 2015-07-04 14:35 - 00887296 _____ () C:\Users\Jesus\AppData\Local\Temp\nw3136_2764\node_modules\is-reaction\REACTION.dll 2015-10-28 02:43 - 2015-07-04 14:35 - 17048240 _____ () C:\Users\Jesus\AppData\Local\Temp\nw3136_2764\plugins\NPSWF32_14_0_0_179.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:038F4577 AlternateDataStreams: C:\ProgramData\TEMP:09708CB7 AlternateDataStreams: C:\ProgramData\TEMP:10C8EAEC AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 AlternateDataStreams: C:\ProgramData\TEMP:373E1720 AlternateDataStreams: C:\ProgramData\TEMP:390B30B4 AlternateDataStreams: C:\ProgramData\TEMP:4E9307D7 AlternateDataStreams: C:\ProgramData\TEMP:7AB4D952 AlternateDataStreams: C:\ProgramData\TEMP:D1AE9882 AlternateDataStreams: C:\ProgramData\TEMP:DAF232F8 AlternateDataStreams: C:\ProgramData\TEMP:F2721624 ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-11595131-3550647590-3570146784-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jesus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{A83BBAB6-F2C4-49BD-9722-E1E3B0D1A0E4}] => (Allow) C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe FirewallRules: [{7A784CDB-971B-466A-B80A-02EA7C5EA6D8}] => (Allow) C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe FirewallRules: [{36907D82-DD55-407A-A399-14D8447B1A99}] => (Allow) C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe FirewallRules: [TCP Query User{6185CFB9-2B43-44A9-9708-BE96442DE65A}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{B3FA4339-CF70-4ACB-A307-BA1C0F593D83}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [TCP Query User{C8161B9B-794D-46D8-B386-B7F810D09474}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe] => (Block) C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe FirewallRules: [UDP Query User{47373C8B-A82C-42EA-90EB-B536AEF61E46}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe] => (Block) C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe FirewallRules: [TCP Query User{2384371E-C20C-472E-A6C9-86FBC9ABA9B8}C:\program files\relevantknowledge\rlvknlg.exe] => (Allow) C:\program files\relevantknowledge\rlvknlg.exe FirewallRules: [UDP Query User{189B13DB-5C16-41EE-B369-8D92723BE549}C:\program files\relevantknowledge\rlvknlg.exe] => (Allow) C:\program files\relevantknowledge\rlvknlg.exe FirewallRules: [{FA2B9148-2E97-423B-819B-384C8407CE4E}] => (Allow) C:\Windows\System32\ZoneLabs\vsmon.exe FirewallRules: [{9247F2EF-BDF4-4FC9-AA42-AF28FDCF52B0}] => (Allow) C:\Windows\System32\ZoneLabs\vsmon.exe FirewallRules: [{A4B594B4-2323-40A0-B653-D4C2760D3985}] => (Allow) C:\Program Files\FreeFileViewer\FFVCheckForUpdates.exe FirewallRules: [TCP Query User{001CCCAB-7132-4B73-AD67-F0284C03EED3}C:\users\jesus\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jesus\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{6498C408-AAE1-4FF5-A358-A9DDB19AE8C1}C:\users\jesus\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jesus\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{2CCE0A00-00E7-4191-9B07-A89BD2429BC4}C:\users\jesus\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\jesus\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{61B1D9FA-5EB0-4B23-96DB-7862D9FB9789}C:\users\jesus\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\jesus\appdata\roaming\spotify\spotify.exe FirewallRules: [{63A19801-6617-4B24-BB4F-09FB5A252A8D}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS3E09\setup\hpznui01.exe FirewallRules: [{4BB71658-1C30-4799-98CE-D4113AACD9DD}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{D1D27524-56B1-4DD1-BB15-2FB8A83904B2}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{DA355BAE-3339-4D24-81E5-62D7CDF7227C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [TCP Query User{280F7616-C78A-4375-8C04-AD8100A13873}C:\program files\mozilla firefox\plugin-container.exe] => (Allow) C:\program files\mozilla firefox\plugin-container.exe FirewallRules: [UDP Query User{CDFCF1FB-3F53-4396-BFAE-B63C9F0F2A45}C:\program files\mozilla firefox\plugin-container.exe] => (Allow) C:\program files\mozilla firefox\plugin-container.exe FirewallRules: [{8D5E4A02-DE83-45C0-8A7F-7B1E8E408454}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS07D1\HPDiagnosticCoreUI.exe FirewallRules: [{0F4FFF26-E501-4ED7-8717-5AF4D1DEDD1A}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS07D1\HPDiagnosticCoreUI.exe FirewallRules: [{39E9B839-3733-4D1E-B2EB-DD561A640B0C}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS0823\HPDiagnosticCoreUI.exe FirewallRules: [{51F11CCA-4D0D-42AE-B2CA-FF382027B652}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS0823\HPDiagnosticCoreUI.exe FirewallRules: [{9C14D8C9-8E04-49EE-A1DA-D7C12AD8AA91}] => (Allow) C:\Users\Jesus\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{462548CB-2CBB-44FE-B52B-30169D6AB79F}] => (Allow) C:\Users\Jesus\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{A498AA84-357C-4042-A0D7-DD29F71DC8C3}C:\users\jesus\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\jesus\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{9EE64CE1-C1A4-49CC-B574-3CDE2AABCE7E}C:\users\jesus\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\jesus\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{6DF886A4-EF95-466E-BED5-0A77B93D0442}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS2360\hppiw.exe FirewallRules: [{1359EFB4-9AC3-428C-9BCE-BB63BE90605C}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS2360\hppiw.exe FirewallRules: [{62C44071-D444-44A7-B04E-7F0313350016}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{B4ACDEBE-717D-4DCA-AE9C-83C3A7BF171E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{775E0A6B-9C35-4DB1-92C9-75849AFB37B6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe FirewallRules: [{3A0DEB72-085D-40F2-AA94-387270A2D616}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe FirewallRules: [{B145BE92-97A8-48D7-B69C-DB012C969356}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{BCAC67A4-17FD-4958-AD9B-D8A225694F2A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{3DDA7105-AAD6-4B21-B2F3-2C2B9019BF15}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe FirewallRules: [{077BD633-ABF0-4379-BB79-BD8E969A6D4C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{910725D0-9380-4AE6-A729-62F0D0B2553C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe FirewallRules: [{2DE9157D-6C55-4BAE-8EEA-5A666F8E9309}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe FirewallRules: [{05D1AFB7-AFC7-4E55-B793-02A4BDDDC95F}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe FirewallRules: [{049C44B8-6761-42EB-9580-A7476499C501}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe FirewallRules: [{6570AF2F-8E48-493E-AF1F-EAD48B743F12}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe FirewallRules: [{2F27F3DB-39EC-48C7-B66D-0435420D7180}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe FirewallRules: [{BC9CA938-53C0-472C-A487-D61482C27229}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe FirewallRules: [{DBB333BC-12D5-4C33-99B3-DEA67A3BFCDA}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{E0A59DB0-7659-488E-AA21-3D1A7370FB8B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{9A413204-FCC1-4DD8-9AB8-842F65B292EB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{5A553DF0-D456-4868-ACF8-620F04FA01EA}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{03130421-AC6C-4C4B-BCE4-0708001A6D44}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe FirewallRules: [{6D568F24-4CB9-4A91-BEC3-2B02275092D8}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe FirewallRules: [{C5A050A2-9470-4E93-AEF9-CEF8A551FE8A}] => (Allow) C:\Program Files\uTorrent\uTorrent.exe FirewallRules: [{2DEAC7A5-7E87-4E56-BB11-60B1CE54B82A}] => (Allow) C:\Program Files\uTorrent\uTorrent.exe FirewallRules: [{B9DABF82-AE07-43F3-AABE-DE5042006D66}] => (Allow) C:\Program Files\FrostWire\FrostWire.exe FirewallRules: [{25537DD3-B6F1-4974-B977-3BC4FEE8CF49}] => (Allow) C:\Program Files\FrostWire\FrostWire.exe FirewallRules: [TCP Query User{60F9B6C2-504E-482E-AC63-87FA5FBF3830}C:\program files\frostwire\frostwire.exe] => (Block) C:\program files\frostwire\frostwire.exe FirewallRules: [UDP Query User{F82D9D03-A1C9-4DE4-8B9D-D8D0D1B2A57E}C:\program files\frostwire\frostwire.exe] => (Block) C:\program files\frostwire\frostwire.exe FirewallRules: [{56A0F0DC-5831-4652-9028-0CE4B651C494}] => (Allow) C:\Windows\System32\dmwu.exe FirewallRules: [{78C22347-E375-4D37-9C48-D442EBB42B63}] => (Allow) C:\Windows\System32\dmwu.exe FirewallRules: [{7D67DAE3-D439-4B08-BBD1-CD7A36AE0BD0}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe FirewallRules: [{50F1AB90-37C0-427A-A066-2C76DB8F70D5}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe FirewallRules: [{EC4CAA6D-0CDA-40AA-95E1-23B9F2C6B00F}] => (Allow) C:\Windows\System32\dmwu.exe FirewallRules: [{63419E58-E4A5-476A-B4D0-F8B2D6259190}] => (Allow) C:\Windows\System32\dmwu.exe FirewallRules: [{D7E2B0F6-24E5-42C4-B8AC-8F174D6F8770}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe FirewallRules: [{FE66C115-BA96-4DB4-8F88-2F1DB64A57CA}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe FirewallRules: [{8D5503CA-9E8B-4AD3-993F-0386871AD56A}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS51EA\hppiw.exe FirewallRules: [{AC07A8C7-A8C6-46B4-9FFA-A597F909D1E5}] => (Allow) C:\Users\Jesus\AppData\Local\Temp\7zS51EA\hppiw.exe FirewallRules: [{3F7D9768-5300-49FC-B6EF-7512D2C7142B}] => (Allow) C:\Program Files\GoforFiles\goforfilesdl.exe FirewallRules: [{EB3805E1-5F5E-4C92-A4E7-EB8B6A16397A}] => (Allow) C:\Program Files\GoforFiles\goforfilesdl.exe FirewallRules: [{BDFF1364-B566-40E2-AEE9-F85AA6936DB9}] => (Allow) C:\Program Files\GoforFiles\GoforFiles.exe FirewallRules: [{D38FE597-5248-423F-BB9C-BA4A593D99F0}] => (Allow) C:\Program Files\GoforFiles\GoforFiles.exe FirewallRules: [{0B6DED41-BCAB-4D85-B813-35201C35D15E}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{1E4A3D69-F0E1-43B2-A4DE-11CDAB985A05}] => (Allow) C:\Users\Jesus\Downloads\Programs\ChainzGalaxy_SoftangoDownloader.exe FirewallRules: [{F860C8E9-3336-4DC0-A367-2189BACCF19F}] => (Allow) C:\Users\Jesus\Downloads\Programs\ChainzGalaxy_SoftangoDownloader.exe FirewallRules: [{49D2D9D8-A038-4673-866A-A77F182CDD10}] => (Allow) C:\ProgramData\eSafe\eGdpSvc.exe FirewallRules: [{49E8B9B5-1691-45A9-9549-B4FF3B3D78AB}] => (Allow) C:\Program Files\FrostWire 6\FrostWire.exe FirewallRules: [{70072B2D-3E6A-40BB-9840-F90344BF3754}] => (Allow) C:\Program Files\FrostWire 6\FrostWire.exe FirewallRules: [{93C948C7-481F-463B-9A9A-69CFDFC3254C}] => (Allow) c:\program files\real\realplayer\RPDS\Bin\rpdsvc.exe FirewallRules: [TCP Query User{B354850D-609B-4822-B042-C519A9D57FB8}C:\program files\frostwire 6\frostwire.exe] => (Block) C:\program files\frostwire 6\frostwire.exe FirewallRules: [UDP Query User{793F822F-0A1D-4A48-B80B-ACD9CD865C40}C:\program files\frostwire 6\frostwire.exe] => (Block) C:\program files\frostwire 6\frostwire.exe FirewallRules: [{7241F8E9-E8C5-45C8-BEFB-18238D0FE8C4}] => (Allow) C:\Users\Jesus\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AFC84571-1376-48F9-900F-AEE2B0080393}] => (Allow) C:\Users\Jesus\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AEE9A2CF-54F5-4CA1-9BB8-17E53A214E6A}] => (Allow) C:\Users\Jesus\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A5EF8DA6-1713-4A4D-A379-39D47EE7F124}] => (Allow) C:\Users\Jesus\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9323D896-69FD-4429-B04D-893A95094D35}] => (Allow) C:\Users\Jesus\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7B6C25C3-2690-495A-A184-4E0737268DEA}] => (Allow) C:\Users\Jesus\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{F1E93E4E-F071-48A3-8442-0E8B748A04ED}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe FirewallRules: [UDP Query User{E65A6A87-B614-4B9E-A73D-AFBD9614C3D6}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe FirewallRules: [{159BDD8D-44D4-4396-AFD8-F3724F75FDF9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Faulty Device Manager Devices ============= Name: X6XSEx Description: X6XSEx Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: X6XSEx Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Event log errors: ========================= Application errors: ================== Error: (10/28/2015 02:40:39 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Windows license activation failed. Error 0x80070005. Error: (10/28/2015 01:16:36 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Windows license activation failed. Error 0x80070005. Error: (10/28/2015 01:01:10 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code: 0x80070005 Error: (10/28/2015 12:01:06 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code: 0x80070005 Error: (10/27/2015 11:01:01 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code: 0x80070005 Error: (10/27/2015 10:00:48 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code: 0x80070005 Error: (10/27/2015 11:01:47 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code: 0x80070005 Error: (10/27/2015 02:49:06 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: chrome.exe, version: 45.0.2454.99, time stamp: 0x55fc6e2b Faulting module name: chrome.dll, version: 45.0.2454.99, time stamp: 0x55fc6868 Exception code: 0x80000003 Fault offset: 0x00016d0c Faulting process id: 0x1484 Faulting application start time: 0xchrome.exe0 Faulting application path: chrome.exe1 Faulting module path: chrome.exe2 Report Id: chrome.exe3 Error: (10/27/2015 02:47:16 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: chrome.exe, version: 45.0.2454.99, time stamp: 0x55fc6e2b Faulting module name: chrome.dll, version: 45.0.2454.99, time stamp: 0x55fc6868 Exception code: 0x80000003 Fault offset: 0x00016d0c Faulting process id: 0x1684 Faulting application start time: 0xchrome.exe0 Faulting application path: chrome.exe1 Faulting module path: chrome.exe2 Report Id: chrome.exe3 Error: (10/27/2015 02:46:28 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: chrome.exe, version: 45.0.2454.99, time stamp: 0x55fc6e2b Faulting module name: chrome.dll, version: 45.0.2454.99, time stamp: 0x55fc6868 Exception code: 0x80000003 Fault offset: 0x00016d0c Faulting process id: 0xb14 Faulting application start time: 0xchrome.exe0 Faulting application path: chrome.exe1 Faulting module path: chrome.exe2 Report Id: chrome.exe3 System errors: ============= Error: (10/28/2015 02:46:16 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Windows Update service hung on starting. Error: (10/28/2015 02:40:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Avira Mail Protection service depends on the Avira Real-Time Protection service which failed to start because of the following error: %%1053 Error: (10/28/2015 02:40:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The X6XSEx service failed to start due to the following error: %%2 Error: (10/28/2015 02:40:53 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The VO Service component service failed to start due to the following error: %%2 Error: (10/28/2015 02:40:41 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Avira Web Protection service depends on the Avira Real-Time Protection service which failed to start because of the following error: %%1053 Error: (10/28/2015 02:40:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Avira Real-Time Protection service failed to start due to the following error: %%1053 Error: (10/28/2015 02:40:41 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Avira Real-Time Protection service to connect. Error: (10/28/2015 02:40:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Avira Scheduler service failed to start due to the following error: %%1053 Error: (10/28/2015 02:40:41 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Avira Scheduler service to connect. Error: (10/28/2015 01:22:05 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Windows Update service hung on starting. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 CPU 6700 @ 2.66GHz Percentage of memory in use: 95% Total physical RAM: 2301.51 MB Available physical RAM: 107.14 MB Total Virtual: 4601.3 MB Available Virtual: 1788.34 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:186.21 GB) (Free:76.68 GB) NTFS Drive d: (Oper.Blockade) (CDROM) (Total:0.13 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 186.3 GB) (Disk ID: 2A61B455) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=186.2 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================