Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

error 0000142 [Solved]


  • This topic is locked This topic is locked

#1
tanyae

tanyae

    Member

  • Member
  • PipPip
  • 12 posts

Hello everyone,

 

I would be extremely grateful to you if you could help me solve the problem I recently started having with the constant error 0000142. I have already done everything that seems possible and available out there to try and clean it up, but it just won't budge. I used IObit, AVG, TweakBit Repair Kit and Tweaking, as well as constantly running Malwarebytes and HitmanPro. I am assuming that the areas where the error is generated simply couldn't be accessed by any of the program for checkup and cleanup. I see that the F file is missing, so I've tried to run the cmd on R, but the same error prevents me from even opening it in the administrator mode. It also stops any system troubleshooting from proceeding, and make the volume display to crash. What's interesting is that when I reboot the computer, the volume display sometimes seems to be working fine for a minute or two, - I think until the rest of the bunch is loading up that seems to be triggering the error, and that's where the problems begin. 

 

Also, this is the latest list of errors I 've got when I ran IObit Disc Doctor:

 

Windows 7
English (United States)
    
C:\ Volume Label: Local Disk,   File System: NTFS
 
Advanced SystemCare Ultimate is verifying files (stage 1 of 3)...
349696 file records processed.
File verification completed.
3025 large file records processed.
0 bad file records processed.
0 EA records processed.
50 reparse records processed.
Advanced SystemCare Ultimate is verifying indexes (stage 2 of 3)...
Index entry 2487.jpg in index $I30 of file 17183 is incorrect.
Index entry 2492.jpg in index $I30 of file 17183 is incorrect.
Index entry 2493.jpg in index $I30 of file 17183 is incorrect.
Index entry 2494.jpg in index $I30 of file 17183 is incorrect.
Index entry 2496.jpg in index $I30 of file 17183 is incorrect.
Index entry 2498.jpg in index $I30 of file 17183 is incorrect.
Index entry 2499.jpg in index $I30 of file 17183 is incorrect.
Index entry 2500.jpg in index $I30 of file 17183 is incorrect.
Index entry 2501.jpg in index $I30 of file 17183 is incorrect.
Index entry 2504.jpg in index $I30 of file 17183 is incorrect.
Index entry 2505.jpg in index $I30 of file 17183 is incorrect.
Index entry the-real-index in index $I30 of file 262166 is incorrect.
Index entry THE-RE~1 in index $I30 of file 262166 is incorrect.
448100 index entries processed.
Index verification completed.
Errors found.  CHKDSK cannot continue in read-only mode.
 
 
In addition, the computer loads up EXTREMELY slow, and sometimes display noting but my mouse arrow past the Windows Welcome message, showing that something is loading up, but all I have is a black screen I can't seem to get out of. Whenever I reboot pressing the button, it seems to reload fine, but again, maddening slow. 
 
I need to get rid of all this c**p, but have no idea how...
 
 
 
 
 
Thank you so much!
Tanya

Edited by tanyae, 15 September 2015 - 09:44 AM.

  • 0

Advertisements


#2
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi there this is not really malware but a result of tweaking tools... They are mainly snake oil and create more problems than they cure

I will look at the system but we may need to do some repairs

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Select additions at the bottom
  • Press Scan button.
    frst.JPG
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please attach both logs generated.

  • 0

#3
tanyae

tanyae

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
(IOBit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCAvSvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Algorithmic Research Ltd.) C:\Program Files\ARX\ARX CryptoKit\utils\ARcltsrv.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe
(Algorithmic Research Ltd.) C:\Program Files\ARX\ARX CryptoKit\utils\ARcltsrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jusched.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\RegServe\RSListener.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
(Dropbox, Inc.) C:\Users\Zaychik\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
(Dropbox, Inc.) C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\StarOffice7\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(NCH Software) C:\Program Files (x86)\NCH Swift Sound\Recordpad\recordpad.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
() C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
() C:\Program Files (x86)\SpeedZooka\SpeedZookaScheduler.exe
(Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Sony Corporation) C:\Program Files (x86)\Sony\SmartWi Connection Utility\SmartWi.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(TweakBit) C:\Program Files (x86)\TweakBit\PCRepairKit\PCRepairKit.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\loggingserver.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2013-11-05] (Realtek Semiconductor)
HKLM\...\Run: [RSAgent] => C:\Program Files (x86)\RegServe\RSAgent.exe [478144 2013-02-19] ()
HKLM-x32\...\Run: [SmartWiHelper] => C:\Program Files (x86)\Sony\SmartWi Connection Utility\SmartWiHelper.exe [79872 2009-08-26] (Sony Electronics Corporation)
HKLM-x32\...\Run: [Recordpad] => C:\Program Files (x86)\NCH Swift Sound\Recordpad\recordpad.exe [913412 2010-04-12] (NCH Software)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3775912 2015-08-24] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft anti-malware\a2guard.exe [4939800 2015-08-19] (Emsisoft Ltd)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2567568 2015-08-16] ()
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1139624 2015-08-20] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\VESWinlogon-x32: VESWinlogon.dll [X]
HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe [2562368 2013-12-02] (IObit)
HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\MountPoints2: {a5e1133c-fbcb-11df-a265-60380e086951} - D:\LaunchU3.exe -a
HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\MountPoints2: {f1cd3c0d-5b84-11e3-82ce-60380e086951} - D:\win\setup.exe -phs
HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\MountPoints2: {f8f77a32-bd98-11e4-957f-60380e086951} - D:\win\setup.exe -phs
HKU\S-1-5-21-2152691726-1295351683-211211905-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\WLXPGSS.SCR [322248 2014-03-31] (Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [KodakHomeCenter] => "C:\Program Files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe"
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk [2014-07-09]
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
BootExecute: autocheck autochk /p \??\C:autocheck autochk * lsdeletebootdelete

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 209.18.47.61 209.18.47.62
Tcpip\..\Interfaces\{47466331-1531-4EA4-BDD7-F124ACDBDF8D}: [DhcpNameServer] 209.18.47.61 209.18.47.62

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2152691726-1295351683-211211905-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2152691726-1295351683-211211905-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2152691726-1295351683-211211905-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2013-12-16] (IObit)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-06-10] (RealDownloader)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-06] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-06] (Oracle Corporation)
BHO-x32: iSkysoft iTube Studio 4.2.0 -> {1A6B6AD0-2735-498F-834C-AFCEA37847C2} -> C:\ProgramData\iSkysoft\iTube Studio\WSBrowserAppMgr.dll [2014-09-19] (Wondershare)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2014-06-10] (RealDownloader)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-01-28] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-02-25] (Adblock)
BHO-x32: Advanced SystemCare Browser Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2013-11-25] (IObit)
BHO-x32: iSkysoft Video Converter Ultimate -> {C7C3BC26-4F2B-4997-A3CB-163337FE975B} -> C:\Program Files (x86)\iSkysoft\Video Converter\SVRIEPlugin.dll [2014-03-18] (iSkysoft Software Co., Ltd.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-01-28] (Oracle Corporation)
Toolbar: HKLM-x32 - The Weather Channel Toolbar - {2E5E800E-6AC0-411E-940A-369530A35E43} - C:\Windows\SysWow64\TwcToolbarIe7.dll [2009-06-23] ()
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.8.0.179\AVG SafeGuard toolbar_toolbar.dll [2015-08-16] (AVG Secure Search)
DPF: HKLM {9BE31822-FDAD-461B-AD51-BE1D1C159921} hxxp://iptv-kartina.tv/files/bin/VLC%20TV%20Player.cab
DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.8.0\ViProtocol.dll [2015-08-16] (AVG Secure Search)
Handler: WSISAllmytubechrome - No CLSID Value

FireFox:
========
FF ProfilePath: C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default
FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=800236&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-02-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-02-06] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ [2015-07-28] ()
FF Plugin: @Musicnotes.com/Musicnotes Viewer -> C:\Program Files\Musicnotes\npmusicn64.dll [2011-12-01] (Musicnotes, Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @alibaba.com/nptrademanager;version=1.0 -> C:\Program Files (x86)\TradeManager\nptrademanager.dll [No File]
FF Plugin-x32: @alibaba.com/npwangwang;version=1.0 -> C:\Program Files (x86)\TradeManager\npwangwang.dll [No File]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2011-06-10] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.8.0\\npsitesafety.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-01-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-01-28] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ [2010-03-24] ()
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @Musicnotes.com/Musicnotes Viewer -> C:\Program Files (x86)\Musicnotes\npmusicn.dll [2011-12-01] (Musicnotes, Inc.)
FF Plugin-x32: @real.com/nppl3260;version=17.0.11.0 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [2014-07-09] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2014-06-10] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2014-06-10] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2014-06-10] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=17.0.11.0 -> c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [2014-07-09] (RealPlayer Cloud)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 -> C:\Program Files (x86)\Musicnotes\npsibelius.dll [2010-04-08] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2152691726-1295351683-211211905-1001: @alibaba.com/npAliSSOLogin;version=1.0 -> C:\Program Files (x86)\TradeManager\npAliSSOLogin.dll No File
FF Plugin HKU\S-1-5-21-2152691726-1295351683-211211905-1001: @citrixonline.com/appdetectorplugin -> C:\Users\Zaychik\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2013-09-12] (Citrix Online)
FF Plugin HKU\S-1-5-21-2152691726-1295351683-211211905-1001: CouponNetwork.com/CMDUniversalCouponPrintActivator -> C:\Users\Zaychik\AppData\Roaming\CATALI~1\NPBCSK~1.DLL [2013-06-07] (Catalina Marketing Corporation)
FF user.js: detected! => C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\user.js [2014-06-10]
FF Extension: Ads Removal - C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\Extensions\[email protected] [2014-02-25]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\Extensions\[email protected] [2013-12-16]
FF Extension: AD Block - C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\Extensions\[email protected] [2014-03-01]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-07-09]
FF HKLM-x32\...\Firefox\Extensions: [{845257EF-A892-484e-8EB0-47F563D75939}] - C:\Program Files (x86)\iSkysoft\Video Converter\SVRFirefoxExt
FF Extension: iSkysoft Video Converter Ultimate - C:\Program Files (x86)\iSkysoft\Video Converter\SVRFirefoxExt [2013-06-13]
FF HKLM-x32\...\Firefox\Extensions: [{1DD9AC48-0855-4AE7-9934-159B4377FFA2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\iSkysoft\iTube Studio\[email protected]
FF Extension: iSkysoft iTube Studio - C:\ProgramData\iSkysoft\iTube Studio\[email protected] [2015-01-10]
FF HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\Firefox\Extensions: [{845257EF-A892-484e-8EB0-47F563D75939}] - C:\Program Files (x86)\iSkysoft\Video Converter\SVRFirefoxExt
FF Extension: No Name - C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\extensions\[email protected] [not found]
FF Extension: No Name - C:\Program Files (x86)\IObit Apps Toolbar\FF [not found]

Chrome:
=======
CHR HomePage: Default -> hxxp://mail.yahoo.com/
CHR StartupUrls: Default -> "hxxps://us-mg4.mail.yahoo.com/"
CHR Profile: C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-22]
CHR Extension: (Google Docs) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-22]
CHR Extension: (Google Drive) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-22]
CHR Extension: (YouTube) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-22]
CHR Extension: (Google Search) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-22]
CHR Extension: (Google Sheets) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-22]
CHR Extension: (Google Docs Offline) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-07]
CHR Extension: (iSkysoft Video Converter Ultimate) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlfeafapmnniobpffacckpddijdjgpmj [2014-04-05]
CHR Extension: (RealPlayer Downloader) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-01-25]
CHR Extension: (Cisco WebEx Extension) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2015-06-17]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-22]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Gmail) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-22]
CHR Extension: (AVG PrivacyFix) - C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmejhjjecaldkllonlokhkglbdbkdcni [2015-09-09]
CHR HKU\S-1-5-21-2152691726-1295351683-211211905-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efceifepimncccpgehonijdpjigknafn] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [efceifepimncccpgehonijdpjigknafn] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [hlfeafapmnniobpffacckpddijdjgpmj] - C:\Program Files (x86)\iSkysoft\Video Converter\SVRChromePlugin.crx [2013-06-13]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2014-06-10]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [5531008 2015-08-19] (Emsisoft Ltd)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2010-04-01] (Adobe Systems) [File not signed]
R2 AdobeActiveFileMonitor12.0; C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe [181152 2013-09-25] (Adobe Systems Incorporated)
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCService.exe [886592 2013-12-16] (IObit)
R2 ARcltsrv; C:\Program Files\ARX\ARX CryptoKit\utils\ARcltsrv.exe [116608 2012-12-10] (Algorithmic Research Ltd.)
R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe [647488 2013-12-10] (IOBit)
R2 avgfws; C:\Program Files (x86)\AVG\AVG2015\avgfws.exe [1560592 2015-08-24] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3637160 2015-08-24] (AVG Technologies CZ, s.r.o.)
S2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1059240 2015-08-20] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [335656 2015-08-24] (AVG Technologies CZ, s.r.o.)
S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [713736 2015-04-23] (Garmin Ltd. or its subsidiaries)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-06-19] (SurfRight B.V.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [24888 2015-07-26] (Hewlett-Packard Company)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-09] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [289256 2015-07-31] (McAfee, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-06-10] ()
R2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-07-09] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-06-10] () [File not signed]
S3 Roxio UPnP Renderer 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [313840 2009-06-26] (Sonic Solutions)
S2 Roxio Upnp Server 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [362992 2009-06-26] (Sonic Solutions)
S3 SampleCollector; C:\Program Files\Sony\VAIO Care\collsvc.exe [167424 2009-09-16] (Intel Corporation) [File not signed]
S3 SOHDBSvr; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [70952 2009-07-27] (Sony Corporation)
S3 SOHPlMgr; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [91432 2009-07-27] (Sony Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [69632 2009-07-23] (Sony Corporation) [File not signed]
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [642920 2009-07-22] (Sony Corporation)
S3 Vcsw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [313264 2009-07-23] (Sony Corporation)
R2 vToolbarUpdater18.8.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\ToolbarUpdater.exe [1861520 2015-08-16] (AVG Secure Search)
S3 VzCdbSvc; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [206336 2009-07-23] (Sony Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 HPSLPSVC; C:\Users\Zaychik\AppData\Local\Temp\7zS7CA8\hpslpsvc64.dll [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2011-05-05] ()
R3 AVerAVF2; C:\Windows\System32\DRIVERS\AVerAVF2.sys [1019776 2009-08-07] (AVerMedia TECHNOLOGIES, Inc.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [77760 2015-07-09] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\SysWOW64\DRIVERS\avgfwd6a.sys [0 2014-09-08] () <==== ATTENTION (zero byte File/Folder)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [313264 2015-08-19] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [297904 2015-08-19] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [259040 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [250800 2015-08-04] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [300464 2015-08-04] (AVG Technologies CZ, s.r.o.)
R2 bdfsfltr; C:\Windows\system32\Drivers\bdfsfltr.sys [431176 2011-03-24] (BitDefender)
S3 btwaudio; no ImagePath
S3 btwl2cap; no ImagePath
S3 btwrchid; no ImagePath
S3 dfg; C:\Windows\SysWOW64\drivers\dfg.sys [23552 2015-08-10] (defrag Development Team) [File not signed]
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 epp64; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\epp64.sys [138504 2015-08-08] (Emsisoft GmbH)
S4 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-08] (REALiX™)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36568 2013-09-30] (IObit)
S0 Lbd; no ImagePath
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2011-05-05] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-15] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 NW1950; C:\Windows\System32\DRIVERS\NW1950.sys [25064 2009-08-16] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2013-07-19] (Corel Corporation)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
S3 savt; C:\Windows\System32\DRIVERS\savt.sys [4218368 2009-06-30] (Sony Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-07-23] (TuneUp Software)
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2010-01-21] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27648 2010-01-21] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33280 2010-01-21] (LG Electronics Inc.)
S3 VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [198400 2009-03-11] (Vimicro Corporation) [File not signed]
S3 vvftUVC; C:\Windows\System32\drivers\vvftUVC.sys [303616 2008-07-01] (Vimicro Corporation) [File not signed]
R3 WsAudio_Device; C:\Windows\System32\drivers\VirtualAudio.sys [31080 2013-03-25] (Wondershare)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-15 13:27 - 2015-09-15 13:30 - 00033836 _____ C:\Users\Zaychik\Downloads\FRST.txt
2015-09-15 13:27 - 2015-09-15 13:28 - 00000000 ____D C:\FRST
2015-09-15 13:26 - 2015-09-15 13:26 - 02191360 _____ (Farbar) C:\Users\Zaychik\Downloads\FRST64.exe
2015-09-15 13:26 - 2015-09-15 13:26 - 02191360 _____ (Farbar) C:\Users\Zaychik\Downloads\FRST64 (1).exe
2015-09-15 11:12 - 2015-09-15 11:12 - 00001140 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2015-09-15 11:12 - 2015-09-15 11:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2015-09-15 09:58 - 2015-09-15 09:58 - 00003374 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2152691726-1295351683-211211905-1001
2015-09-15 09:58 - 2015-09-15 09:58 - 00003244 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2152691726-1295351683-211211905-1001
2015-09-15 09:35 - 2015-09-15 09:35 - 00000000 _____ C:\asc_rdflag
2015-09-15 01:57 - 2015-09-15 01:57 - 00003222 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2152691726-1295351683-211211905-1001
2015-09-15 01:55 - 2015-09-15 01:55 - 00003352 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2152691726-1295351683-211211905-1001
2015-09-14 16:01 - 2015-09-14 16:01 - 00000000 ____D C:\Users\Public\Recorded TV
2015-09-14 16:00 - 2015-09-15 09:47 - 00000336 _____ C:\Windows\setupact.log
2015-09-14 16:00 - 2015-09-14 16:00 - 00000000 _____ C:\Windows\setuperr.log
2015-09-14 11:43 - 2015-09-14 11:43 - 00000207 _____ C:\Windows\tweaking.com-regbackup-ZAYCHIK-VAIO-Windows-7-Home-Premium-(64-bit).dat
2015-09-14 11:43 - 2015-09-14 11:43 - 00000000 ____D C:\RegBackup
2015-09-14 09:56 - 2015-09-15 09:46 - 00023744 _____ C:\Windows\PFRO.log
2015-09-14 09:41 - 2015-09-14 09:41 - 12391288 _____ (ZookaWare) C:\Users\Zaychik\Downloads\speedzookasetup (1).exe
2015-09-14 09:39 - 2015-09-15 02:21 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedZooka
2015-09-14 09:39 - 2015-09-14 09:39 - 12391288 _____ (ZookaWare) C:\Users\Zaychik\Downloads\speedzookasetup.exe
2015-09-14 09:36 - 2015-09-15 02:21 - 00000000 ____D C:\Program Files (x86)\SpeedZooka
2015-09-14 01:54 - 2015-09-15 09:30 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegServe
2015-09-14 01:54 - 2015-09-14 01:54 - 00000953 _____ C:\Users\Zaychik\Desktop\RegServe.lnk
2015-09-14 01:53 - 2015-09-14 01:54 - 00000000 ____D C:\Program Files (x86)\RegServe
2015-09-14 01:52 - 2015-09-14 01:52 - 01153504 _____ (Xionix Inc.) C:\Users\Zaychik\Downloads\regserve-setup.exe
2015-09-14 01:52 - 2015-09-14 01:52 - 01153504 _____ (Xionix Inc.) C:\Users\Zaychik\Downloads\regserve-setup (1).exe
2015-09-13 23:16 - 2015-09-13 23:16 - 00001134 _____ C:\Users\Zaychik\Desktop\TweakBit PCRepairKit.lnk
2015-09-13 23:16 - 2015-09-13 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit
2015-09-13 23:16 - 2015-09-13 23:16 - 00000000 ____D C:\Program Files (x86)\TweakBit
2015-09-13 23:14 - 2015-09-13 23:14 - 00347816 _____ (Microsoft Corporation) C:\Users\Zaychik\Downloads\MicrosoftFixit.AudioPlayback.RNP.13536546773937705.1.2.Run.exe
2015-09-13 23:13 - 2015-09-13 23:13 - 00347816 _____ (Microsoft Corporation) C:\Users\Zaychik\Downloads\MicrosoftFixit.AudioPlayback.RNP.13536546773937705.1.1.Run.exe
2015-09-12 00:49 - 2015-09-12 00:50 - 147385504 _____ (Microsoft Corporation) C:\Users\Zaychik\Downloads\msert.exe
2015-09-11 19:44 - 2015-09-11 19:44 - 00003666 _____ C:\Windows\System32\Tasks\Tweaking.com - Windows Repair Tray Icon
2015-09-11 19:44 - 2015-09-11 19:44 - 00002119 _____ C:\Users\Zaychik\Desktop\Tweaking.com - Windows Repair.lnk
2015-09-11 19:43 - 2015-09-11 19:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2015-09-11 19:43 - 2015-09-11 19:43 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2015-09-11 19:42 - 2015-09-11 19:43 - 20391688 _____ (Tweaking.com) C:\Users\Zaychik\Downloads\tweaking.com_windows_repair_aio_setup.exe
2015-09-10 02:21 - 2015-09-10 02:21 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-09-09 14:07 - 2015-09-09 14:07 - 00002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015.lnk
2015-09-09 14:07 - 2015-09-09 14:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015
2015-09-09 14:07 - 2015-08-04 14:25 - 00041688 _____ (AVG Technologies) C:\Windows\system32\TURegOpt.exe
2015-09-09 14:07 - 2015-08-04 14:25 - 00030424 _____ (AVG Technologies) C:\Windows\system32\authuitu.dll
2015-09-09 14:07 - 2015-08-04 14:25 - 00025816 _____ (AVG Technologies) C:\Windows\SysWOW64\authuitu.dll
2015-09-09 14:05 - 2015-09-09 14:05 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\AVG
2015-09-09 13:27 - 2015-09-09 13:27 - 00000936 _____ C:\Users\Public\Desktop\AVG.lnk
2015-09-09 13:27 - 2015-09-09 13:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2015-09-09 13:23 - 2015-09-09 14:08 - 00000000 ____D C:\ProgramData\Avg
2015-09-09 13:20 - 2015-09-14 09:22 - 00000000 ____D C:\Users\Zaychik\AppData\Local\AvgSetupLog
2015-09-09 13:13 - 2015-09-09 13:13 - 16902632 _____ (AVG Technologies) C:\Users\Zaychik\Downloads\avg_gsr_stb_all_ltst_95.exe
2015-09-09 13:00 - 2015-09-09 13:00 - 00003504 _____ C:\Windows\System32\Tasks\ReclaimerUpdateXML_Zaychik
2015-09-09 12:58 - 2015-09-09 12:58 - 00003628 _____ C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Zaychik
2015-09-09 12:57 - 2015-09-09 12:57 - 00003226 _____ C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Zaychik
2015-09-09 12:50 - 2015-09-15 10:02 - 00003510 _____ C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Zaychik
2015-09-08 20:20 - 2015-08-05 12:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-08 20:20 - 2015-08-05 12:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-08 20:20 - 2015-08-05 12:56 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-09-08 20:20 - 2015-08-05 12:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-08 20:20 - 2015-07-14 22:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-08 20:20 - 2015-07-14 21:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-09-08 20:19 - 2015-08-17 20:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-08 20:19 - 2015-08-17 20:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-08 20:19 - 2015-08-15 01:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-08 20:19 - 2015-08-15 01:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-08 20:19 - 2015-08-15 01:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-09-08 20:19 - 2015-08-15 01:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-08 20:19 - 2015-08-15 01:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-09-08 20:19 - 2015-08-15 01:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-08 20:19 - 2015-08-15 01:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-08 20:19 - 2015-08-15 01:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-08 20:19 - 2015-08-15 01:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-09-08 20:19 - 2015-08-15 01:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-08 20:19 - 2015-08-15 01:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-08 20:19 - 2015-08-15 01:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-08 20:19 - 2015-08-15 01:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-08 20:19 - 2015-08-15 01:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-08 20:19 - 2015-08-15 01:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-09-08 20:19 - 2015-08-15 01:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-08 20:19 - 2015-08-15 01:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-09-08 20:19 - 2015-08-15 01:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-08 20:19 - 2015-08-15 00:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-08 20:19 - 2015-08-15 00:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-08 20:19 - 2015-08-15 00:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-08 20:19 - 2015-08-15 00:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-08 20:19 - 2015-08-15 00:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-08 20:19 - 2015-08-15 00:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-08 20:19 - 2015-08-15 00:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-08 20:19 - 2015-08-15 00:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-09-08 20:19 - 2015-08-15 00:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-09-08 20:19 - 2015-08-15 00:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-08 20:19 - 2015-08-15 00:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-09-08 20:19 - 2015-08-15 00:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-09-08 20:19 - 2015-08-15 00:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-08 20:19 - 2015-08-15 00:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-09-08 20:19 - 2015-08-15 00:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-09-08 20:19 - 2015-08-15 00:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-09-08 20:19 - 2015-08-15 00:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-08 20:19 - 2015-08-15 00:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-09-08 20:19 - 2015-08-15 00:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-09-08 20:19 - 2015-08-15 00:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-08 20:19 - 2015-08-15 00:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-08 20:19 - 2015-08-15 00:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-08 20:19 - 2015-08-15 00:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-08 20:19 - 2015-08-15 00:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-09-08 20:19 - 2015-08-15 00:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-08 20:19 - 2015-08-15 00:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-08 20:19 - 2015-08-15 00:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-09-08 20:19 - 2015-08-15 00:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-09-08 20:19 - 2015-08-15 00:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-09-08 20:19 - 2015-08-15 00:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-08 20:19 - 2015-08-15 00:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-08 20:19 - 2015-08-15 00:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-08 20:19 - 2015-08-15 00:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-08 20:19 - 2015-08-15 00:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-08 20:19 - 2015-08-15 00:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-09-08 20:19 - 2015-08-14 23:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-08 20:19 - 2015-08-14 23:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-08 20:19 - 2015-08-14 23:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-08 20:19 - 2015-08-14 23:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-08 20:19 - 2015-08-14 23:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-08 20:19 - 2015-07-22 19:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-08 20:19 - 2015-07-22 19:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-08 20:19 - 2015-07-22 19:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-08 20:19 - 2015-07-22 19:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-09-08 20:19 - 2015-07-22 19:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-08 20:19 - 2015-07-22 19:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-08 20:19 - 2015-07-22 19:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-08 20:19 - 2015-07-22 12:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-09-08 20:19 - 2015-07-22 12:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-09-08 20:19 - 2015-07-22 12:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-08 20:19 - 2015-07-22 12:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-08 20:19 - 2015-07-22 12:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-09-08 20:19 - 2015-07-22 11:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-08 20:19 - 2015-07-09 12:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-08 20:19 - 2015-07-09 12:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-08 20:19 - 2015-07-09 12:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-09-08 20:19 - 2015-07-09 12:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-09-08 20:18 - 2015-08-27 13:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-08 20:18 - 2015-08-27 13:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-08 20:18 - 2015-08-27 13:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-08 20:18 - 2015-08-27 13:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-08 20:18 - 2015-08-27 12:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-08 20:18 - 2015-08-27 12:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-08 20:18 - 2015-08-27 12:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-09-08 20:18 - 2015-08-27 12:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-09-08 20:18 - 2015-07-22 19:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-09-08 20:18 - 2015-07-22 19:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-09-08 20:18 - 2015-07-22 19:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-09-08 20:18 - 2015-07-22 19:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-09-08 20:18 - 2015-07-22 19:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-09-08 20:18 - 2015-07-22 19:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-09-08 20:18 - 2015-07-22 19:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-09-08 20:18 - 2015-07-22 19:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-09-08 20:18 - 2015-07-22 19:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-09-08 20:18 - 2015-07-22 19:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-09-08 20:18 - 2015-07-22 19:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-09-08 20:18 - 2015-07-22 19:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-09-08 20:18 - 2015-07-22 18:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-09-08 20:18 - 2015-07-22 18:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 18:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-09-08 20:18 - 2015-07-22 12:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-09-08 20:18 - 2015-07-22 12:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-09-08 20:18 - 2015-07-22 12:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-09-08 20:18 - 2015-07-22 12:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-08 20:18 - 2015-07-22 12:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-09-08 20:18 - 2015-07-22 12:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-09-08 20:18 - 2015-07-22 12:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-09-08 20:18 - 2015-07-22 12:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-09-08 20:18 - 2015-07-22 12:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-09-08 20:18 - 2015-07-22 12:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 12:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 11:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-09-08 20:18 - 2015-07-22 11:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-09-08 20:18 - 2015-07-22 11:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-09-08 20:18 - 2015-07-22 11:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-09-08 20:18 - 2015-07-22 11:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-09-08 20:18 - 2015-07-22 11:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 11:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 11:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-08 20:18 - 2015-07-22 11:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-08 20:18 - 2015-06-25 05:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-08 20:18 - 2015-06-25 05:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-08 20:18 - 2015-06-25 05:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-08 20:18 - 2015-06-25 04:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-08 20:17 - 2015-08-04 13:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-08 20:17 - 2015-08-04 13:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-08 20:17 - 2015-08-04 12:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-09-08 20:17 - 2015-08-04 12:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-08 20:17 - 2015-08-04 12:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-08 20:17 - 2015-08-04 12:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-09-08 20:17 - 2015-08-04 12:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-09-08 20:17 - 2015-08-04 12:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-08 20:17 - 2015-08-04 11:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-09-08 20:16 - 2015-09-01 22:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-08 20:16 - 2015-09-01 22:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-08 20:16 - 2015-09-01 22:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-08 20:16 - 2015-09-01 22:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-08 20:16 - 2015-09-01 21:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-09-08 20:16 - 2015-09-01 21:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-08 20:16 - 2015-09-01 21:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-09-08 20:16 - 2015-09-01 21:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-09-08 20:16 - 2015-09-01 20:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-08 20:16 - 2015-09-01 20:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-08 20:16 - 2015-09-01 20:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-08 20:04 - 2015-08-26 13:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-08 20:04 - 2015-08-26 13:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-08 20:04 - 2015-08-26 13:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-08 20:04 - 2015-08-26 13:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-08 20:04 - 2015-08-26 13:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-08 20:04 - 2015-08-26 13:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-09-08 20:04 - 2015-08-26 13:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-09-08 20:04 - 2015-08-26 13:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-08 20:04 - 2015-08-26 13:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-09-08 20:04 - 2015-08-26 13:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-08 20:04 - 2015-08-26 13:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-09-08 20:04 - 2015-08-26 12:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-08 20:04 - 2015-08-26 12:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-08 20:04 - 2015-08-26 12:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-08 20:04 - 2015-08-26 12:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-09-08 20:04 - 2015-08-26 12:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-08 18:27 - 2015-09-13 23:16 - 00000000 ____D C:\Windows\System32\Tasks\TweakBit
2015-09-08 18:13 - 2015-09-10 10:33 - 00000000 ____D C:\ProgramData\TweakBit
2015-09-08 18:11 - 2015-09-08 18:11 - 00422032 _____ (TweakBit) C:\Users\Zaychik\Downloads\0xc0000142-repairkit-setup.exe
2015-09-08 04:04 - 2015-09-08 04:04 - 00000000 ____D C:\ProgramData\VIPRE
2015-09-08 03:03 - 2015-09-08 03:03 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\MyTurboPC.com
2015-09-08 03:01 - 2015-09-14 16:30 - 00000000 ____D C:\ProgramData\MyTurboPC.com
2015-09-08 03:00 - 2015-09-08 03:01 - 06431232 _____ (MyTurboPC.com) C:\Users\Zaychik\Downloads\Myturbopc_BF96DCA4-E355-4A9E-BF7A-2ADEAA942159_.exe
2015-09-08 02:36 - 2015-09-08 02:36 - 00593693 _____ C:\Users\Zaychik\Downloads\Autoruns.zip
2015-09-08 02:15 - 2015-09-08 02:15 - 02474912 _____ C:\Users\Zaychik\Downloads\hppiw.exe
2015-09-08 02:08 - 2015-09-08 02:08 - 07067824 _____ C:\Users\Zaychik\Downloads\HPPSdr.exe
2015-09-08 01:21 - 2015-09-08 17:57 - 00000000 ____D C:\Program Files\TotalSystemCare
2015-09-08 01:20 - 2015-09-08 01:20 - 07836040 _____ (Safebytes) C:\Users\Zaychik\Downloads\TotalSystemCare_Installer.exe
2015-09-08 00:41 - 2015-09-08 00:42 - 00347816 _____ (Microsoft Corporation) C:\Users\Zaychik\Downloads\MicrosoftFixit.Printing.Run.exe
2015-09-08 00:16 - 2015-09-08 00:16 - 00003188 _____ C:\Windows\System32\Tasks\Driver Booster Update
2015-09-08 00:15 - 2015-09-08 00:16 - 00002104 _____ C:\Users\Public\Desktop\Driver Booster 2.lnk
2015-09-08 00:15 - 2015-09-08 00:15 - 00026528 _____ (REALiX™) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2015-09-08 00:15 - 2015-09-08 00:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-09-08 00:13 - 2015-09-08 00:13 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2015-09-08 00:02 - 2015-09-08 00:02 - 00000000 ____D C:\Users\Zaychik\AppData\Local\Hewlett-Packard
2015-09-07 23:10 - 2015-09-07 23:10 - 03774136 _____ (Oleg N. Scherbakov) C:\Users\Zaychik\Downloads\HPSupportSolutionsFramework-12.0.30.81 (1).exe
2015-09-07 23:05 - 2015-09-07 23:05 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2015-09-07 22:58 - 2015-09-07 22:58 - 03774136 _____ (Oleg N. Scherbakov) C:\Users\Zaychik\Downloads\HPSupportSolutionsFramework-12.0.30.81.exe
2015-09-07 16:29 - 2015-09-07 16:29 - 00000000 ____D C:\Users\Zaychik\Documents\HpReg_Backup
2015-09-04 16:31 - 2015-09-04 16:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2015-09-04 16:31 - 2015-09-04 16:31 - 00000000 ____D C:\Program Files\McAfee Security Scan
2015-09-04 16:30 - 2015-09-04 16:30 - 00000117 ____H C:\Users\Zaychik\Downloads\.~lock.1-1_stem_changing_verb_chart.doc#
2015-08-31 22:06 - 2015-08-31 22:07 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-28 08:42 - 2015-09-09 14:04 - 00000000 ____D C:\Users\Zaychik\AppData\Local\Avg
2015-08-20 11:13 - 2015-08-20 11:13 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\AVG2015
2015-08-20 11:10 - 2015-08-28 08:45 - 00000925 _____ C:\Users\Public\Desktop\AVG 2015.lnk
2015-08-20 11:03 - 2015-08-20 11:11 - 00000000 ____D C:\ProgramData\AVG2015
2015-08-20 10:53 - 2015-09-14 17:39 - 00000000 ____D C:\Users\Zaychik\AppData\Local\Avg2015
2015-08-19 11:53 - 2015-08-19 11:53 - 00297904 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsha.sys
2015-08-19 11:52 - 2015-08-19 11:52 - 00313264 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2015-08-18 16:40 - 2015-08-18 16:40 - 00003558 _____ C:\Windows\System32\Tasks\HP AR Program Upload - 10fc517cc56c424894844a498bbd8dd5a3ecd0fc4c634ea39d96276d9b5c04d4

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-15 13:27 - 2010-06-15 21:47 - 00000000 ____D C:\Users\Zaychik\AppData\Local\CrashDumps
2015-09-15 13:25 - 2011-07-11 18:51 - 00000000 ____D C:\ProgramData\MFAData
2015-09-15 13:10 - 2015-01-05 22:31 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2015-09-15 12:52 - 2014-04-09 06:36 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-15 12:46 - 2014-06-10 17:37 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-15 12:43 - 2015-06-19 18:31 - 00000926 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2152691726-1295351683-211211905-1001UA.job
2015-09-15 12:32 - 2012-03-28 23:37 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-15 11:22 - 2015-01-05 22:01 - 00003888 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-09-15 11:16 - 2013-11-15 22:34 - 00000000 ____D C:\Users\Zaychik\Documents\My Web CEO Projects
2015-09-15 11:12 - 2010-04-01 20:00 - 00000000 ____D C:\ProgramData\IObit
2015-09-15 11:12 - 2010-04-01 18:08 - 00000000 ____D C:\Program Files (x86)\IObit
2015-09-15 10:05 - 2009-07-13 23:45 - 00018928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-15 10:05 - 2009-07-13 23:45 - 00018928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-15 09:58 - 2009-07-14 00:13 - 00784840 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-15 09:57 - 2011-06-22 10:03 - 00000000 ___RD C:\Users\Zaychik\Dropbox
2015-09-15 09:57 - 2011-06-22 10:00 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\Dropbox
2015-09-15 09:56 - 2010-01-09 08:32 - 01597084 _____ C:\Windows\WindowsUpdate.log
2015-09-15 09:50 - 2010-04-03 22:27 - 00000000 ____D C:\Program Files (x86)\StarOffice7
2015-09-15 09:48 - 2014-04-09 06:36 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-15 09:47 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-15 09:35 - 2014-02-17 19:35 - 60133376 _____ C:\Windows\system32\config\components.iodefrag.bak
2015-09-15 09:35 - 2014-02-17 19:35 - 104873984 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2015-09-15 09:35 - 2014-02-17 19:35 - 00778240 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2015-09-15 09:35 - 2014-02-17 19:35 - 00061440 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2015-09-15 09:35 - 2014-02-17 19:35 - 00024576 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2015-09-15 09:35 - 2010-04-01 01:21 - 00000000 ____D C:\Users\Zaychik
2015-09-15 02:06 - 2010-04-01 13:47 - 00000000 ____D C:\Program Files\Hewlett-Packard
2015-09-15 02:06 - 2010-04-01 13:46 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-09-15 01:59 - 2010-04-01 13:31 - 00000000 ____D C:\Users\Zaychik\AppData\Local\Google
2015-09-15 01:54 - 2010-11-07 23:05 - 00570400 _____ C:\Users\Zaychik\AppData\Local\GDIPFONTCACHEV1.DAT
2015-09-15 00:11 - 2009-07-13 23:45 - 01529056 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-15 00:05 - 2013-12-16 08:31 - 00000000 ____D C:\ProgramData\ProductData
2015-09-14 23:57 - 2009-07-13 21:34 - 00000474 _____ C:\Windows\win.ini
2015-09-14 23:54 - 2011-01-25 16:26 - 00784840 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-09-14 18:08 - 2015-07-10 08:39 - 00000000 ____D C:\$Windows.~BT
2015-09-14 17:44 - 2015-06-19 18:31 - 00000874 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2152691726-1295351683-211211905-1001Core.job
2015-09-14 16:49 - 2011-09-29 20:02 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\SoftGrid Client
2015-09-14 16:32 - 2011-10-28 22:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-09-14 16:24 - 2011-10-28 22:45 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\HpUpdate
2015-09-14 15:54 - 2009-07-13 21:34 - 00000855 _____ C:\Windows\system32\Drivers\etc\hosts_bak_194
2015-09-11 19:55 - 2014-08-22 14:03 - 00000437 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2015-09-11 15:16 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Web
2015-09-11 15:15 - 2009-07-13 23:45 - 00000000 ____D C:\Windows\Setup
2015-09-10 16:33 - 2014-06-28 23:38 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\Audacity
2015-09-09 15:32 - 2011-09-26 22:31 - 00000000 ____D C:\Users\Zaychik\Calibre Library
2015-09-09 15:32 - 2011-09-21 23:41 - 00000000 ____D C:\Users\Zaychik\BOOKS
2015-09-09 15:30 - 2014-05-31 21:22 - 00000000 ____D C:\Users\Zaychik\Documents\Craigslist
2015-09-09 14:33 - 2014-08-30 03:17 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\avidemux
2015-09-09 14:33 - 2012-06-06 19:12 - 00000000 ____D C:\Users\Zaychik\AppData\Local\Microsoft Help
2015-09-09 14:33 - 2012-05-08 00:22 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\Skype
2015-09-09 14:32 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sysprep
2015-09-09 14:04 - 2011-07-11 19:03 - 00000000 ____D C:\Program Files (x86)\AVG
2015-09-09 13:35 - 2014-04-25 07:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-09-09 04:51 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2015-09-09 03:44 - 2009-07-14 02:45 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 03:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-09 03:25 - 2013-08-03 01:11 - 00000000 ____D C:\Windows\system32\MRT
2015-09-08 19:46 - 2010-04-01 19:33 - 00000023 _____ C:\test.xml
2015-09-08 17:51 - 2011-10-28 22:39 - 00000000 ____D C:\Program Files (x86)\HP
2015-09-08 03:46 - 2012-07-12 22:31 - 00000000 ____D C:\Program Files\HP
2015-09-08 03:46 - 2011-10-28 22:36 - 00000000 ____D C:\ProgramData\HP
2015-09-08 03:31 - 2015-02-02 05:58 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\VideoEditor
2015-09-08 03:31 - 2014-05-12 10:57 - 00000000 ____D C:\Program Files (x86)\AVG SafeGuard toolbar
2015-09-08 03:31 - 2014-03-01 22:17 - 00000000 ____D C:\Program Files (x86)\TradeManager
2015-09-08 03:31 - 2014-01-02 20:43 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\IBP
2015-09-08 03:31 - 2013-06-13 00:04 - 00000000 ____D C:\ProgramData\iSkysoft Video Converter
2015-09-08 03:31 - 2012-11-15 22:31 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\Musicnotes
2015-09-08 03:31 - 2011-05-29 23:31 - 00000000 ____D C:\Users\Zaychik\AppData\Local\Windows Live Writer
2015-09-08 03:31 - 2010-07-21 21:22 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-08 03:31 - 2010-04-01 13:32 - 00000000 ____D C:\Users\Zaychik\AppData\Roaming\Adobe
2015-09-08 03:31 - 2009-12-07 09:18 - 00000000 ____D C:\ProgramData\Norton
2015-09-08 02:12 - 2013-11-21 22:07 - 00001964 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2015-09-08 00:16 - 2014-05-20 14:31 - 00002886 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Zaychik)
2015-09-07 23:15 - 2011-10-28 22:48 - 00000000 ____D C:\Users\Zaychik\AppData\Local\HP
2015-09-04 16:31 - 2013-11-20 00:26 - 00001934 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2015-09-04 16:31 - 2009-07-13 21:34 - 00000856 _____ C:\Windows\system32\Drivers\etc\hosts_bak_207
2015-09-01 19:55 - 2014-04-09 06:36 - 00002143 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-29 21:47 - 2014-04-09 06:36 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-29 21:47 - 2014-04-09 06:36 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-28 08:44 - 2011-07-11 19:49 - 00000000 ___HD C:\$AVG
2015-08-26 18:37 - 2015-07-15 04:18 - 134753440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-20 11:25 - 2009-07-14 00:08 - 00032558 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-20 11:23 - 2014-05-10 21:51 - 00000000 ____D C:\ProgramData\AVG2014
2015-08-20 11:11 - 2015-06-25 09:11 - 00000000 ____D C:\Program Files\Common Files\AV

==================== Files in the root of some directories =======

2015-09-08 03:03 - 2015-09-14 16:27 - 0000115 _____ () C:\Users\Zaychik\AppData\Roaming\LogFile.txt
2010-04-03 22:29 - 2010-04-05 21:39 - 0000102 _____ () C:\Users\Zaychik\AppData\Roaming\sversion.ini
2014-01-30 22:33 - 2014-01-31 00:33 - 0000153 _____ () C:\Users\Zaychik\AppData\Roaming\WB.CFG
2014-01-31 00:33 - 2014-01-31 00:33 - 0000005 _____ () C:\Users\Zaychik\AppData\Roaming\WBPU-TTL.DAT
2010-10-07 18:29 - 2015-03-22 20:05 - 0006332 _____ () C:\Users\Zaychik\AppData\Roaming\wklnhst.dat
2013-09-29 20:44 - 2015-03-30 02:23 - 0016384 _____ () C:\Users\Zaychik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-16 17:21 - 2015-06-16 17:21 - 0000600 _____ () C:\Users\Zaychik\AppData\Local\PUTTY.RND
2014-01-26 23:00 - 2014-01-26 23:00 - 0007605 _____ () C:\Users\Zaychik\AppData\Local\Resmon.ResmonCfg
2011-09-22 14:20 - 2011-09-22 14:20 - 0000028 _____ () C:\Users\Zaychik\AppData\Local\settings.ini
2011-01-04 17:53 - 2011-01-04 21:54 - 0001940 _____ () C:\Users\Zaychik\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
2013-11-21 21:45 - 2013-11-21 21:45 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-11-16 21:14 - 2013-11-16 21:14 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Zaychik\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpn5rdgp.dll


Some zero byte size files/folders:
==========================
C:\Windows\SysWOW64\Drivers\AVGFWD6A.SYS

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


ATTENTION: ==> Could not access BCD.


LastRegBack: 2015-09-15 12:11

==================== End of FRST.txt ============================

Edited by tanyae, 15 September 2015 - 01:06 PM.

  • 0

#4
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Could you also post the additions.txt please. The only decent programme that you have installed is windows all in one, I will use that to do some repairs

First we will run an adware cleaning programme as some of those programmes need to go

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan.
  • After the scan is complete click on "Clean"
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[Cx].txt as well.
THEN

Please download Junkware Removal Tool to your desktop.
  • Right-mouse click JRT.exe and select "Run as Administrator" the tool will open and start scanning your system
  • please be patient as this can take a while to complete depending on your system's specifications
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • post the contents of JRT.txt into your next message.

  • 0

#5
tanyae

tanyae

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts

Windows 7 Home Premium Service Pack 1 (X64) (2010-04-01 06:21:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2152691726-1295351683-211211905-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2152691726-1295351683-211211905-1004 - Limited - Enabled)
Guest (S-1-5-21-2152691726-1295351683-211211905-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2152691726-1295351683-211211905-1002 - Limited - Enabled)
Zaychik (S-1-5-21-2152691726-1295351683-211211905-1001 - Administrator - Enabled) => C:\Users\Zaychik

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Advanced SystemCare Ultimate (Enabled - Up to date) {1C304DC4-1D72-5DB9-B33A-43B638ECFD30}
AV: Emsisoft Anti-Malware (Enabled - Up to date) {2F44E1F9-850B-1C7A-0E56-EB2E0A3E20C9}
AV: AVG Internet Security 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {9425001D-A331-13F4-34E6-D05C71B96A74}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
AS: IObit Malware Fighter (Disabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
FW: AVG Internet Security 2015 (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.9 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Premiere Elements 12 (HKLM\...\PremElem120) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 12 (Version: 12.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Advanced SystemCare Ultimate 7 (HKLM-x32\...\Advanced SystemCare Ultimate_is1) (Version: 7.0.1 - IObit)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Manager for VAIO (HKLM-x32\...\Application Manager for VAIO) (Version: - )
ARX CoSign Client (HKLM\...\{BF6E8F6C-CC0D-4E7D-9CBC-0D9A4AF7C5AE}) (Version: 6.20 - Algorithmic Research Ltd.)
ARX CryptoKit (HKLM\...\{F75D2B1D-5309-41DF-BC96-DFC3C3568C1D}) (Version: 4.8.0 - Algorithmic Research Ltd.)
ARX Office Signatures (HKLM\...\{C86292E2-356C-4931-AAB2-FE256AFEFDA6}) (Version: 6.20 - Algorithmic Research Ltd.)
ARX OmniSign Printer (HKLM\...\{79553C69-FA7B-4EEB-B77A-78B4F9A5A193}) (Version: 6.20 - Algorithmic Research Ltd.)
ARX Signature API (HKLM\...\{983F432E-2AC4-4D3B-8EE9-0F930BD40352}) (Version: 6.20 - Algorithmic Research Ltd.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AVG (HKLM\...\AvgZen) (Version: 1.3.1.13616 - AVG Technologies)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6140 - AVG Technologies)
AVG 2015 (Version: 15.0.4431 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.6140 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (en-US) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.8.0.179 - AVG Technologies)
AVG Zen (Version: 1.3.3 - AVG Technologies) Hidden
Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
C4USelfUpdater (x32 Version: 1.00.0000 - Your Company Name) Hidden
calibre (HKLM-x32\...\{AB259D81-DE6B-4554-B4A8-DB13D321FBF2}) (Version: 0.9.18 - Kovid Goyal)
CanoScan Toolbox Ver4.9 (HKLM-x32\...\{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}) (Version: - )
CardRecovery 6.10 (HKLM-x32\...\{88D68A69-D247-466B-90DD-575F6BE16230}_is1) (Version: - WinRecovery Software)
Catalina Savings Printer (HKLM-x32\...\{37331C16-3E97-4A20-80D8-BFB43AB0E2FB}) (Version: 1.0.0 - Catalina Marketing Corp) <==== ATTENTION
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Citrix Online Launcher (HKLM-x32\...\{B025BA0B-64A6-46DE-9D64-32965C83CCA9}) (Version: 1.0.179 - Citrix)
Click to Disc (x32 Version: 1.2.70.06160 - Sony Corporation) Hidden
Click to Disc Editor (x32 Version: 2.0.02 - Sony Corporation) Hidden
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Icon für Amazon (HKLM\...\DesktopIconAmazon) (Version: 1.0.1 (de) - CHIP.de)
DJ2540FWUpdateAlert (x32 Version: 1.00.0000 - HP) Hidden
Driver Booster 2.4 (HKLM-x32\...\Driver Booster_is1) (Version: 2.4 - IObit)
Dropbox (HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
DWGSee DWG Viewer (HKLM-x32\...\{B40DED06-B52E-4970-8689-578D162638ED}) (Version: - )
EaseUS Data Recovery Wizard 8.6 (HKLM\...\EaseUS Data Recovery Wizard 8.6_is1) (Version: - EaseUS)
Elements 12 Organizer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Elevated Installer (x32 Version: 4.0.19.0 - Garmin Ltd or its subsidiaries) Hidden
Empire: Total War (HKLM-x32\...\Steam App 10500) (Version: - The Creative Assembly)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft Ltd.)
Ezvid (HKLM-x32\...\{F96D619D-99D6-4C9C-A393-0CD22DE1CA66}_is1) (Version: 0981 - Ezvid, inc.)
FileZilla Client 3.7.3 (HKLM-x32\...\FileZilla Client) (Version: 3.7.3 - Tim Kosse)
FMW 1 (Version: 1.4.1 - AVG Technologies) Hidden
Free Audio CD to MP3 Converter version 1.3.12.1228 (HKLM-x32\...\Free Audio CD to MP3 Converter_is1) (Version: 1.3.12.1228 - DVDVideoSoft Ltd.)
Free DWG Viewer 7.0 (HKLM-x32\...\{B8B4D43C-EAA0-4EEC-B93E-D4D012316286}) (Version: 7.0.1 - IGC)
FTP Commander Pro 8.03 (HKLM-x32\...\FTP Commander Pro_is1) (Version: - )
Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.0 - IObit)
Garmin Express (HKLM-x32\...\{3ee9d193-ab0b-47f1-a31c-cce4678679ce}) (Version: 4.0.19.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.0.19.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.0.19.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.15) (Version: 9.15 - Artifex Software Inc.)
Handy Recovery 5.5 (HKLM-x32\...\{4196D960-68B0-4BEB-B312-3C1B4654068D}) (Version: 5.5 - SoftLogica)
Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.245 - SurfRight B.V.)
HP Deskjet 1000 J110 series Basic Device Software (HKLM\...\{883B114D-BD3E-498F-9DAD-5E4A8E1C43BA}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Deskjet 1000 J110 series Help (HKLM-x32\...\{DDDFCC77-7F9C-45E9-B38E-721BA599BA0C}) (Version: 140.0.65.65 - Hewlett Packard)
HP Deskjet 1000 J110 series Product Improvement Study (HKLM\...\{1A570BFA-D775-47EE-8071-06E9559C14F5}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Deskjet 2540 series Help (HKLM-x32\...\{4539575D-C09D-4E71-B207-0F2D6BD74DA2}) (Version: 30.0.0 - Hewlett Packard)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Product Detection (HKLM-x32\...\{A436F67F-687E-4736-BD2B-537121A804CF}) (Version: 11.14.0001 - HP)
HP Support Solutions Framework (HKLM-x32\...\{F6A11738-3EE4-4573-AEA5-6CD5D491C167}) (Version: 12.0.30.81 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
IBP 12.0.4 (HKLM-x32\...\IBP12_is1) (Version: 12.0.4 - Axandra GmbH)
Intel® Management Engine Interface (HKLM\...\HECI) (Version: - Intel Corporation)
Intel® Network Connections Drivers (HKLM\...\PROSet) (Version: 18.7 - Intel)
IObit Apps Toolbar v8.2 (HKLM-x32\...\{45F267AE-311F-43E2-BDAA-00D059B93BF9}) (Version: 8.2 - Spigot, Inc.) <==== ATTENTION
IObit Malware Fighter (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 2.2 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.0.5.1172 - IObit)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
iSkysoft iTube Studio(Build 4.2.2.0) (HKLM-x32\...\iSkysoft iTube Studio_is1) (Version: 4.2.2.0 - iSkysoft Software)
iSkysoft Video Converter(Build 5.0.0.0) (HKLM-x32\...\iSkysoft Video Converter_is1) (Version: 5.0.0.0 - iSkysoft Software)
iSkysoft Video Editor(Build 4.7.1) (HKLM-x32\...\iSkysoft Video Editor_is1) (Version: - iSkysoft Software)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java™ 6 Update 15 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416015FF}) (Version: 6.0.150 - Sun Microsystems, Inc.)
Java™ 6 Update 18 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216018F0}) (Version: 6.0.180 - Sun Microsystems, Inc.)
Java™ 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022F0}) (Version: 6.0.220 - Oracle)
Java™ 6 Update 24 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024F0}) (Version: 6.0.240 - Oracle)
Java™ SE Development Kit 6 Update 15 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160150}) (Version: 1.6.0.150 - Sun Microsystems, Inc.)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
jZip (HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\jZip) (Version: 2.0.0.133848 - Bandoo Media Inc) <==== ATTENTION
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
ManageMyMobile (HKLM-x32\...\ManageMyMobile_is1) (Version: 1.0 - IObit)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.163.2 - McAfee, Inc.)
Media Gallery (x32 Version: 1.0.0.07210 - Sony Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2010 - English (HKLM-x32\...\{90140011-0061-0409-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Touch Pack for Windows 7 (HKLM-x32\...\{8FF90DB8-6DED-44A3-B182-244FEC09012F}) (Version: 1.0.40517.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual J# .NET Redistributable Package 1.1 (HKLM-x32\...\{1A655D51-1423-48A3-B748-8F5A0BE294C8}) (Version: 1.1.4322 - Microsoft)
Microsoft Works (HKLM-x32\...\{67E03279-F703-408F-B4BF-46B5FC8D70CD}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Music Transfer (x32 Version: 1.3.01.13160 - Sony Corporation) Hidden
Musicnotes Player V1.32.2 and Viewer V1.19.0 (HKLM-x32\...\Musicnotes Player_is1) (Version: 1.32.2 - Musicnotes Inc.)
Musicnotes Software Suite 1.5.1 (HKLM-x32\...\Musicnotes Combined Installer_is1) (Version: 1.5.1 - Musicnotes Inc.)
Napoleon: Total War (HKLM-x32\...\Steam App 34030) (Version: - The Creative Assembly)
NCH Tone Generator (HKLM-x32\...\ToneGen) (Version: 3.12 - NCH Software)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
Online Sheet Music Viewer 8.3.4.0 (HKLM-x32\...\Online Sheet Music Viewer_is1) (Version: 8.3.4.0 - Online Sheet Music, Inc.)
OpenOffice.org 3.3 (HKLM-x32\...\{3E171899-0175-47CC-84C4-562ACDD4C021}) (Version: 3.3.9567 - OpenOffice.org)
PatchBeam (HKLM-x32\...\PatchBeam) (Version: 1.20 - ConeXware, Inc.)
PowerArchiver 2013 (HKLM-x32\...\PowerArchiver 2013 14.02.05) (Version: 14.02.05 - ConeXware, Inc.)
PowerArchiver 2013 (x32 Version: 14.02.05 - ConeXware, Inc.) Hidden
PRE12 STI 64Installer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PreReq (x32 Version: 6.2.2.60 - Eastman Kodak Company) Hidden
Primo (x32 Version: 1.00.0000 - Your Company Name) Hidden
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RealDownloader (x32 Version: 17.0.11 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.10 - RealNetworks)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
RecordPad Sound Recorder (HKLM-x32\...\Recordpad) (Version: - NCH Software)
Regi (Version: 1.00.0000 - InterVideo Inc.) Hidden
RegServe (HKLM\...\RegServe) (Version: 7.1.4.0 - Xionix Inc.)
Roxio Easy Media Creator 10 LJ (HKLM-x32\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)
Runtime (x32 Version: 1.00.0000 - Your Company Name) Hidden
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team)
Serif PagePlus Starter Edition (HKLM-x32\...\{C675C60B-0CB7-4108-B8CA-C3EC0706DEF0}) (Version: 2.0.2.009 - Serif (Europe) Ltd)
Setting Utility Series (x32 Version: 5.0.0.07300 - Sony Corporation) Hidden
Sibelius Scorch (Firefox, Opera, Netscape only) (HKLM-x32\...\{10ABE49D-343A-463E-9753-C4C5A05ECEF9}) (Version: 6.2.0 - Sibelius Software)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.0 - IObit)
SmartWi Connection Utility (HKLM-x32\...\{9B5F85CA-90D4-4AFC-BB37-32477FD0D2B9}) (Version: 4.8.4.20090826.2116 - Sony)
Sony Home Network Library (x32 Version: 2.0.0.07280 - Sony Corporation) Hidden
Sony Picture Utility (x32 Version: 4.2.12.16210 - Sony Corporation) Hidden
SpeedZooka (HKLM-x32\...\SpeedZooka) (Version: 4.55.14 - ZookaWare)
StarOffice 7 (HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\StarOffice 7) (Version: 7 - Sun Microsystems, Inc.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)
Total War: ROME II (HKLM-x32\...\Steam App 214950) (Version: - Creative Assembly)
Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version: - The Creative Assembly)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.5.0 - Tweaking.com)
UmmyVideoDownloader (HKLM-x32\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: 1.2.1.1 - )
UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
VAIO Care (HKLM-x32\...\{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}) (Version: 5.1.0.13200 - Sony Corporation)
VAIO Care (x32 Version: 5.1.0.13200 - Sony Corporation) Hidden
VAIO Content Metadata Intelligent Analyzing Manager (x32 Version: 3.5.0.06261 - Sony Corporation) Hidden
VAIO Content Metadata Intelligent Network Service Manager (x32 Version: 3.5.0.06260 - Sony Corporation) Hidden
VAIO Content Metadata Manager Settings (x32 Version: 3.5.0.06261 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (x32 Version: 3.5.0.06180 - Sony Corporation) Hidden
VAIO Content Monitoring Settings (x32 Version: 2.4.0.06120 - Sony Corporation) Hidden
VAIO Control Center (x32 Version: 4.0.0.06120 - Sony Corporation) Hidden
VAIO Data Restore Tool (x32 Version: 1.1.01.06290 - Sony Corporation) Hidden
VAIO DVD Menu Data Basic (x32 Version: 1.0.00.08130 - Sony Corporation) Hidden
VAIO Entertainment Platform (x32 Version: 3.5.0.07230 - Sony Corporation) Hidden
VAIO Event Service (x32 Version: 5.0.0.08180 - Sony Corporation) Hidden
VAIO Help and Support (x32 Version: 9.00.0804.L - Sony Corporation) Hidden
VAIO Media plus (x32 Version: 2.0.0.07280 - Sony Corporation) Hidden
VAIO Media plus Opening Movie (x32 Version: 2.0.0.07030 - Sony Corporation) Hidden
VAIO Movie Story (x32 Version: 1.5.00.06191 - Sony Corporation) Hidden
VAIO Movie Story Template Data (x32 Version: 1.5.00.06010 - Sony Corporation) Hidden
VAIO OOBE and Startup Assistant (x32 Version: 1.00.0811.ENUS - Sony Corporation) Hidden
VAIO Original Function Settings (HKLM-x32\...\{9CAB7412-1612-41E2-8182-8F92814D93CD}) (Version: 2.0.1.10290 - Sony Corporation)
VAIO Original Function Settings (x32 Version: 2.0.1.10290 - Sony Corporation) Hidden
VAIO Personalization Manager (x32 Version: 2.0.0.06220 - Sony Corporation) Hidden
VAIO Power Management (x32 Version: 4.0.0.08240 - Sony Corporation) Hidden
VAIO Sample Contents (x32 Version: 1.0.0.06290 - Sony Corporation) Hidden
VAIO Survey (x32 Version: 6.00.0722 - Sony Corporation) Hidden
VAIO Transfer Support (x32 Version: 1.0.0.07290 - Sony Corporation) Hidden
VAIO Update 4 (x32 Version: 4.2.0.07300 - Sony Corporation) Hidden
VAIO Wallpaper Contents (x32 Version: 2.0.0.06010 - Sony Corporation) Hidden
VD64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 3.61 - NCH Software)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VSDC Free Video Editor version 2.3.1.339 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 2.3.1.339 - Flash-Integro LLC)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: - NCH Software)
Web CEO 11.0 (HKLM-x32\...\WebCEO70_is1) (Version: 11.0 - Web CEO Ltd.)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinDVD BD for VAIO (HKLM-x32\...\InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}) (Version: 8.0.20.79 - InterVideo Inc.)
WinDVD BD for VAIO (x32 Version: 8.0.20.79 - InterVideo Inc.) Hidden
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
YouSendIt Express (HKLM-x32\...\InstallShield_{8C8224B7-AA9B-4807-97CD-55899BAC83FE}) (Version: 2.11.2 - YouSendIt)
YouSendIt Express (x32 Version: 2.11.2 - YouSendIt) Hidden
Zip Opener Packages (HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\Zip Opener Packages) (Version: - ) <==== ATTENTION

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\ooofilt_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2152691726-1295351683-211211905-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Restore Points =========================

12-09-2015 03:00:14 Windows Update
13-09-2015 03:00:13 Windows Update
14-09-2015 03:00:27 Windows Update
14-09-2015 09:19:30 MyTurboPC Backup
14-09-2015 20:04:02 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2015-09-14 23:57 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {078A7B96-EB38-4162-8B27-BC903BABAF84} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2152691726-1295351683-211211905-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {118B1891-C5F8-4817-A14B-A5659F58FBBB} - System32\Tasks\ASC7U_SkipUac_Zaychik => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASC.exe [2013-12-16] (IObit)
Task: {13C77D1E-D418-463A-B91C-3A01C65D95B0} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2015-07-06] (IObit)
Task: {167D4B98-8C29-424D-8DF0-2FAEBA9A51B9} - System32\Tasks\{125D65ED-2D43-4201-89CD-97EB4E7676C6} => pcalua.exe -a C:\Users\Zaychik\Downloads\jxpiinstall.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {1703233E-9F7D-4513-B622-44DF0981B3B2} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2152691726-1295351683-211211905-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {17BF034B-674C-4F28-A132-28B2EDDCEBE9} - System32\Tasks\HP AR Program Upload - 23052412de704911b8fc62842429a74782ce498861d84261ab09ddae8496c68c => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {18AF8867-88A4-435C-85C2-A1EF8288628C} - System32\Tasks\Sony\Java Update => C:\Program Files\Java\jre6\bin\jusched.exe [2009-12-07] (Sun Microsystems, Inc.)
Task: {1D871F14-9B53-409D-A7FF-B1B60CBF1C7D} - System32\Tasks\VAIO Care Service => C:\Program Files\Sony\VAIO Care\VAIOCareService.exe [2009-12-04] (Sony Corporation)
Task: {1F3F6C13-250D-4DB6-9ABF-07B16EDB4E16} - System32\Tasks\TweakBit\FixMyPC\Start FixMyPC оn logon => C:\Program Files (x86)\TweakBit\FixMyPC\FixMyPC.exe <==== ATTENTION
Task: {225BCF6E-8E78-473F-AEEC-7799465525F1} - System32\Tasks\HP AR Program Upload - 3a3513fec3c342c481fe5491a299f85e98fbaccbe6ca425db93378035c2af1d9 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {26C5BAC6-5073-44C8-8A15-1AA4FE95FC86} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\Monitor.exe [2013-11-29] (IObit)
Task: {27677AAB-F15B-4483-817D-847B84B0EBEA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-06-24] (Hewlett-Packard)
Task: {2B592D26-B648-43E9-90CC-D1243916DA62} - System32\Tasks\RNUpgradeHelperLogonPrompt_Zaychik => C:\Users\Zaychik\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\rnupgagent.exe [2015-09-08] (RealNetworks, Inc.)
Task: {2DE3C201-CFD2-49F2-B559-945CE8F05840} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {33D271E1-7BF9-4702-A008-4032E047DD72} - System32\Tasks\Sony\VAIO Mini Program => C:\Program Files\Sony\First Experience\Miniprogram.exe
Task: {37582AC8-B7E3-4717-9D8C-14FCE00763C0} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2152691726-1295351683-211211905-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {3F495CA1-7547-45C0-A09A-24CB7643EB21} - System32\Tasks\Sony\Main => C:\Windows\Sonysys\Taskfile\bootupdate.exe [2009-08-20] ( )
Task: {40BC3701-456E-4A55-83F7-2A585F35E48E} - System32\Tasks\TweakBit\PCRepairKit\Start PCRepairKit оn logon => C:\Program Files (x86)\TweakBit\PCRepairKit\PCRepairKit.exe [2015-08-05] (TweakBit) <==== ATTENTION
Task: {4364A3D3-5C50-458B-B54F-B0032593C562} - System32\Tasks\HP AR Program Upload - bb577babee6e4ef0af9fdffaa034c5efb08cc190e70044b69efd9c8915c9f5fd => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {471065DD-083D-4607-81A0-B4381E7B9ADF} - System32\Tasks\{A5AA2E9B-21D7-4AD2-8CDC-D961A2E7F11F} => pcalua.exe -a "C:\Program Files (x86)\NCH Swift Sound\ToolBox\uninst.exe"
Task: {4977DDB6-91CC-4858-A155-9CCBE091680A} - System32\Tasks\{122ACEE4-7D6D-4CF8-B089-A1D58B2A94BF} => pcalua.exe -a G:\setup.exe -d G:\
Task: {5BF173A4-3327-4AB4-8C79-A186E1152765} - System32\Tasks\HP AR Program Upload - 10fc517cc56c424894844a498bbd8dd5a3ecd0fc4c634ea39d96276d9b5c04d4 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {686C5103-C831-4F70-B565-90D0365D5845} - System32\Tasks\{1C3B8998-AF89-44FF-B535-29D14EFDC2CB} => pcalua.exe -a C:\PROGRA~2\THEWEA~2\UNWISE.EXE -c C:\PROGRA~2\THEWEA~2\twcINSTALL.LOG
Task: {6AA4B381-4C75-4020-BEA7-D26CD19BEED7} - System32\Tasks\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe [2009-12-04] (Sony Corporation)
Task: {6C5218DC-B4D1-46E2-A8D5-2D157977D989} - System32\Tasks\Driver Booster SkipUAC (Zaychik) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-07-06] (IObit)
Task: {6CE1A883-74F1-48BB-B395-ACF4FAA703F9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6FFA8441-6C77-4135-A901-A30074D6731C} - System32\Tasks\HPCustParticipation HP Deskjet 1000 J110 series => C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\HPCustPartic.exe
Task: {74549F7B-EB18-4974-A8FF-3FEFDB346852} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {7B462A01-827D-4524-994E-F3CEC6AB5D3D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {7CEE37F7-D32D-4748-B5E6-B9C245984676} - System32\Tasks\HP AR Program Upload - 5dbf819123a44843b7956e347de45128cdd95ed2b27749bb9604a727f1c703c7 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {8132ACE3-4BDF-4742-A3D3-B3129BD0675C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {827BE499-7971-49A9-A81F-CB7947569CEC} - \RealPlayer Cloud (32-bit) -> No File <==== ATTENTION
Task: {83017A4D-E995-41AC-BC6A-9FCE388A59C3} - System32\Tasks\HP AR Program Upload - b98982025ff94c3c91fb4a0a66a16d265e868afd04cf4b3eb3b7f02dcac21b40 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {83DC6CE2-8BFB-4773-A808-F6EC5B50BDC1} - System32\Tasks\Sony\VAIO Survey => C:\Program Files (x86)\Sony\VAIO Survey\VAIO Sat Survey.exe [2008-07-25] ()
Task: {92866B20-CFF2-4D9F-A41C-194227AF477E} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe
Task: {9373E6FA-FE2C-45CA-8020-4B7BC3229DCD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {A2C9B413-423F-47FF-B2ED-6FE28C04E0DD} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {A2D3C496-9CC7-440A-94F7-A0D54D0AE3E0} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2152691726-1295351683-211211905-1001Core => C:\Users\Zaychik\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19] (Dropbox, Inc.)
Task: {A7A7BA43-6A0D-46FA-AB1C-3F8CE3783722} - System32\Tasks\RNUpgradeHelperResumePrompt_Zaychik => C:\Users\Zaychik\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\rnupgagent.exe [2015-09-08] (RealNetworks, Inc.)
Task: {AE0343EA-9C5E-4B6C-8C21-2433823383CB} - System32\Tasks\ReclaimerUpdateFiles_Zaychik => C:\Users\Zaychik\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\rnupgagent.exe [2015-09-08] (RealNetworks, Inc.)
Task: {AF0BBF2D-79AE-4454-8217-33BD4A213F25} - System32\Tasks\{0884E7A2-4264-44A0-8B7C-512FAC05202C} => pcalua.exe -a "C:\Users\Zaychik\Downloads\Broken Crescent ver 2.02.exe" -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {B5810AA9-8C4A-4BA9-9DC9-5A88BE0AAAB8} - System32\Tasks\ReclaimerUpdateXML_Zaychik => C:\Users\Zaychik\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\rnupgagent.exe [2015-09-08] (RealNetworks, Inc.)
Task: {B696459B-3D0A-42E1-8FBB-738D44771445} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B9607688-FFD4-40D8-B309-277E16383DEA} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2015-03-11] (Tweaking.com)
Task: {BA3311FA-161E-4D17-9396-FF6B40DD1C56} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2152691726-1295351683-211211905-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {C0617934-9DC3-4630-89C7-9743C2D8BF05} - System32\Tasks\SONY\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe [2009-07-31] (Sony Corporation)
Task: {C097CA75-FAA5-45C0-9B59-561BFDC9C8E6} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2152691726-1295351683-211211905-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2014-06-10] (RealNetworks, Inc.)
Task: {C7FA34C5-F74D-4397-96A6-A5FDDD1DA6E9} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-13] (Microsoft Corporation)
Task: {CD9D36B8-7C52-486F-9999-CE0B08803C95} - System32\Tasks\HP AR Program Upload - 206a23f9dc4e4309a9f9620b0ee664aa25168e612bc54efc9e6d1b344b990b6b => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {CEC5379B-F708-4133-B643-23738B356B42} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-01-09] (IObit)
Task: {D22DDDA8-0554-4F89-9EC0-A89DE6431283} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2152691726-1295351683-211211905-1001UA => C:\Users\Zaychik\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19] (Dropbox, Inc.)
Task: {D55987ED-C82A-473F-92E7-24A27234CA48} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2152691726-1295351683-211211905-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {D5EE940C-6636-4EEB-AF2C-1F2C6E479F25} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2152691726-1295351683-211211905-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {D93E2A9B-3DFA-49E6-B958-AF4BF6D5620E} - System32\Tasks\HP AR Program Upload - e4fab44ecb1844eca9a8626414505a857a97324b3afe4df883d694e7e3f06dfb => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {D948590A-9D8E-4165-8149-EB160A9ED851} - System32\Tasks\HP AR Program Upload - 4ae596a2978349b9bc675a456db3a5b697f412b5ba714cb08df45707450138e7 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {E1FA2E90-BA24-497C-9C2C-B37502347F8E} - System32\Tasks\HP AR Program Upload - fbc5e86e4e2f45a3a8e503706e62833289fe5bc1978d45dfb021f7bd09b9f3ec => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {E596AFF1-73E0-40F9-A288-C2B12719D761} - System32\Tasks\{71EF2B2B-FBB6-48F9-9B05-ACBFE116AB3E} => pcalua.exe -a "C:\Users\Zaychik\Downloads\powarc140203int (1).exe" -d C:\Users\Zaychik\Downloads
Task: {F146C02C-9686-4C58-AD6E-1C99A534E2B4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {F527C6A4-A826-4BD0-B089-2ED844FAE8F4} - \BackgroundContainer Startup Task -> No File <==== ATTENTION
Task: {F9A6284B-95CF-4467-8904-B514FEA25780} - System32\Tasks\NCH Swift Sound\wavepadShakeIcon => C:\Program Files (x86)\NCH Swift Sound\WavePad\WavePad.exe [2010-04-17] (NCH Software)
Task: {FB6AB386-8F87-492D-B878-C6E89F2CE098} - System32\Tasks\HP AR Program Upload - 036fbb383c384f69ae829ed12606330f8a2c611fe4b84ee9bfa13206375d4efc => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {FD6BC6A2-28E1-48E6-840C-8FEAA5FA4A2A} - System32\Tasks\HP AR Program Upload - d9b453ad388d40b69304e5bb2cec206c5df10df533ef4ca2a534c2e35b0f17f0 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe
Task: {FE22A26E-7691-4594-A0EF-85102D7586A1} - System32\Tasks\HP AR Program Upload - d187e36455064e36b67ab8a9225d338ed9fc607f5a2845829ac67de84a663c20 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2152691726-1295351683-211211905-1001Core.job => C:\Users\Zaychik\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2152691726-1295351683-211211905-1001UA.job => C:\Users\Zaychik\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2010-01-02 09:42 - 2010-01-02 09:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2010-10-02 20:16 - 2010-03-15 10:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2014-01-06 16:22 - 2014-01-06 16:22 - 02379776 _____ () C:\Program Files (x86)\PowerArchiver\PASHLEXT64.DLL
2014-04-12 17:40 - 2013-08-23 12:36 - 00721263 _____ () C:\Windows\SysWOW64\ISCM64.dll
2010-04-02 19:58 - 2009-11-07 06:04 - 00238080 _____ () C:\Program Files\Sony\VAIO Care\ManagedVAIORecovery.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00075264 _____ () C:\Program Files\Sony\VAIO Care\VAIORecovery.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00069632 _____ () C:\Program Files\Sony\VAIO Care\Logging.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00028672 _____ () C:\Program Files\Sony\VAIO Care\VAIOCommon.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00206336 _____ () C:\Program Files\Sony\VAIO Care\OsServices.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00043008 _____ () C:\Program Files\Sony\VAIO Care\PluginFactory.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00043520 _____ () C:\Program Files\Sony\VAIO Care\XMLTools.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00059392 _____ () C:\Program Files\Sony\VAIO Care\VAIOInstallAppsDrivers.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00156160 _____ () C:\Program Files\Sony\VAIO Care\InstallDB.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00137216 _____ () C:\Program Files\Sony\VAIO Care\InstallationTools.dll
2010-04-02 19:58 - 2009-09-29 22:50 - 00024576 _____ () C:\Program Files\Sony\VAIO Care\VAIOUtility.dll
2013-02-19 06:19 - 2013-02-19 06:19 - 00164288 _____ () C:\Program Files (x86)\RegServe\RSListener.exe
2015-03-06 02:34 - 2015-08-16 19:24 - 02567568 _____ () C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
2015-08-12 09:35 - 2015-08-12 09:35 - 00395704 _____ () C:\Program Files (x86)\SpeedZooka\SpeedZookaScheduler.exe
2014-06-10 16:50 - 2014-06-10 16:50 - 00039568 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2014-06-10 21:03 - 2014-06-10 21:03 - 00023552 _____ () C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
2015-08-04 14:26 - 2015-08-04 14:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-08-16 19:29 - 2015-08-16 19:24 - 00168336 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\loggingserver.exe
2013-12-16 08:31 - 2013-01-15 18:47 - 00517440 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\sqlite3.dll
2013-12-16 08:31 - 2013-11-14 16:02 - 00218944 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\Antivirus\bdfltlib.dll
2014-02-12 19:58 - 2014-02-12 19:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 19:58 - 2014-02-12 19:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-16 08:31 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\madExcept_.bpl
2013-12-16 08:31 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\madBasic_.bpl
2013-12-16 08:31 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\madDisAsm_.bpl
2013-12-16 08:31 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\webres.dll
2013-02-07 09:10 - 2013-02-07 09:10 - 01912160 _____ () C:\Program Files\ARX\ARX CoSign Client\CoSign.dll
2013-02-07 09:10 - 2013-02-07 09:10 - 00865632 _____ () C:\Program Files\ARX\ARX CoSign Client\proxylogon.dll
2015-09-15 09:53 - 2015-09-15 09:53 - 00071168 _____ () c:\users\zaychik\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpn5rdgp.dll
2015-08-09 15:45 - 2015-08-05 00:26 - 00012800 _____ () C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-08-09 15:45 - 2015-08-05 00:26 - 00779776 _____ () C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-08-09 15:45 - 2015-08-05 00:26 - 00056320 _____ () C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-08-09 15:45 - 2015-08-05 00:26 - 00012288 _____ () C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2003-06-01 06:00 - 2003-06-01 06:00 - 08470528 _____ () C:\Program Files (x86)\StarOffice7\program\icudt22l.dll
2011-01-17 15:19 - 2011-05-18 11:31 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2015-08-16 19:29 - 2015-08-16 19:24 - 00528272 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.8.0\log4cplusU.dll
2015-09-09 13:23 - 2015-09-09 13:21 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
2009-12-07 08:18 - 2009-08-26 20:11 - 00007680 _____ () C:\Program Files (x86)\Sony\SmartWi Connection Utility\DebugMsg.dll
2009-12-07 08:18 - 2009-08-26 20:11 - 00120320 _____ () C:\Program Files (x86)\Sony\SmartWi Connection Utility\SonyCommonLib.dll
2009-12-07 08:18 - 2009-08-26 20:11 - 00018944 _____ () C:\Program Files (x86)\Sony\SmartWi Connection Utility\DictionaryLookup.dll
2009-12-07 08:18 - 2009-08-26 20:11 - 00009728 _____ () C:\Program Files (x86)\Sony\SmartWi Connection Utility\Resources.dll
2009-12-07 08:18 - 2009-08-26 20:11 - 00081408 _____ () C:\Program Files (x86)\Sony\SmartWi Connection Utility\DevicePanel.dll
2009-12-07 08:18 - 2009-08-26 20:11 - 00011264 _____ () C:\Program Files (x86)\Sony\SmartWi Connection Utility\MessageXML.dll
2009-12-07 08:18 - 2009-08-26 20:11 - 00015360 _____ () C:\Program Files (x86)\Sony\SmartWi Connection Utility\SharedInterfaces.dll
2014-07-09 09:31 - 2014-07-09 09:31 - 00861784 _____ () c:\program files (x86)\real\realplayer\RPDS\Plugins\cldplin.dll
2013-08-07 14:25 - 2013-08-07 14:25 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2015-09-01 19:54 - 2015-08-27 19:17 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libglesv2.dll
2015-09-01 19:54 - 2015-08-27 19:17 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libegl.dll
2015-09-01 19:54 - 2015-08-27 19:17 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Zaychik\Downloads\__attachment_message__1421421894140 (1).eml:OECustomProperty
AlternateDataStreams: C:\Users\Zaychik\Downloads\__attachment_message__1421421894140.eml:OECustomProperty
AlternateDataStreams: C:\Users\Zaychik\Downloads\__attachment_message__1421421894281.eml:OECustomProperty

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sndappv2 => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\alipay.com -> hxxps://alipay.com
IE trusted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\alipay.com -> hxxp://alipay.com
IE trusted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\alisoft.com -> hxxps://alisoft.com
IE trusted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\alisoft.com -> hxxp://alisoft.com
IE trusted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\taobao.com -> hxxps://taobao.com
IE trusted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\taobao.com -> hxxp://taobao.com

IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2152691726-1295351683-211211905-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4792 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2152691726-1295351683-211211905-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Zaychik\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 209.18.47.61 - 209.18.47.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: DelaypluginInstall => c:\programdata\iskysoft\itube studio\delayplugini.exe
MSCONFIG\startupreg: Dropbox Update => "c:\users\zaychik\appdata\local\dropbox\update\dropboxupdate.exe" /c
MSCONFIG\startupreg: GarminExpressTrayApp => c:\program files (x86)\garmin\express tray\expresstray.exe
MSCONFIG\startupreg: RSListener => c:\program files (x86)\regserve\rslistener.exe
MSCONFIG\startupreg: SpeedZooka Scheduler => c:\program files (x86)\speedzooka\speedzookascheduler.exe
MSCONFIG\startupreg: VAIOSurvey => c:\program files (x86)\sony\vaio survey\vaio sat survey.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9D17D60E-001A-48FD-8330-B240B7D7940E}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{65F163B3-C7E7-4D68-B876-56791A825CF9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7D440AB4-1779-4294-9D14-D94988F3A0E3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{E846679A-DA33-4BF4-A1ED-A024A0F28F63}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [UDP Query User{735D7FB6-F076-4DAF-A3A7-5555C1D9EA00}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [{7E891426-F0A9-4103-A82F-E5705C1195AC}] => (Allow) LPort=5353
FirewallRules: [{760C97E8-93E7-4089-AD9E-ACBA098427DE}] => (Allow) LPort=9322
FirewallRules: [{CB2C3F16-4CF6-469A-BE93-5BB639D64E01}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\titan quest demo\Titan Quest Demo.exe
FirewallRules: [{25EB8280-ECCF-4B74-8F8D-B76737B95623}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\titan quest demo\Titan Quest Demo.exe
FirewallRules: [{EBB08524-8FCC-4674-A23F-7A6F95F61DA0}] => (Allow) C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{CCE0CD48-774A-4562-AD58-660D6892F7CA}] => (Allow) C:\Users\Zaychik\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{C43ACF4D-7857-4377-BA23-33EABEA4B4E6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DB377205-4882-4539-93C5-1A77B0CFC344}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{04F31890-6D84-4767-A382-ED09931A928E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{84481027-1E3F-4BF7-A742-2EA7D48AE686}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0C486131-73C2-42F9-B348-2F8D61B10F34}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{7875FD2C-41FB-4172-8D20-BF801C61FDCF}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [TCP Query User{B0771556-F72A-474B-A666-45FF45179723}C:\users\zaychik\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\zaychik\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{3B4E1E78-50CE-4150-AAD4-0D567B7D9697}C:\users\zaychik\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\zaychik\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{4A1B1CE1-B13F-43C0-B4F0-3C1A688BE70E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{B99F002F-7F22-46EA-AC6D-72A3633218D8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{3F1DC9D0-4EAC-4093-968A-0E1B75EAB92E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{5E752CAC-CE32-4852-858D-3DE889746DE9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{5ECF38AD-EF86-418C-AEA9-CBCD31ABCDBE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\napoleon total war\Napoleon.exe
FirewallRules: [{3C875C31-2E08-420D-8F29-8A02C9216680}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\napoleon total war\Napoleon.exe
FirewallRules: [{B0BD2365-A927-45B9-AFC3-E5C7E778792E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\empire total war\Empire.exe
FirewallRules: [{D8283881-5F4B-4AB9-A24C-FAB34869D6CF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\empire total war\Empire.exe
FirewallRules: [TCP Query User{215CAE19-1E2D-4522-9AED-AF3A762A8B73}C:\program files (x86)\real\realplayer\realplay.exe] => (Allow) C:\program files (x86)\real\realplayer\realplay.exe
FirewallRules: [UDP Query User{FE38CC34-BD6E-4784-A884-9550D818ED5C}C:\program files (x86)\real\realplayer\realplay.exe] => (Allow) C:\program files (x86)\real\realplayer\realplay.exe
FirewallRules: [TCP Query User{90ADD468-631A-43C3-BFEE-6E289A6805FC}C:\program files (x86)\calibre2\calibre.exe] => (Allow) C:\program files (x86)\calibre2\calibre.exe
FirewallRules: [UDP Query User{EB3FC491-7524-48D7-8095-D0FB63DCAECA}C:\program files (x86)\calibre2\calibre.exe] => (Allow) C:\program files (x86)\calibre2\calibre.exe
FirewallRules: [TCP Query User{99F5CA65-6D5B-460D-90BA-D0FB1134C38A}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{8FFF9D3C-4501-4205-AFAC-F8DD725D2DE1}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{B2CB5219-32A9-46A6-8A26-8F703F643035}C:\program files (x86)\iskysoft\video converter\urlreqservice.exe] => (Allow) C:\program files (x86)\iskysoft\video converter\urlreqservice.exe
FirewallRules: [UDP Query User{904A6FF5-44FD-490A-B56C-28A4166D8789}C:\program files (x86)\iskysoft\video converter\urlreqservice.exe] => (Allow) C:\program files (x86)\iskysoft\video converter\urlreqservice.exe
FirewallRules: [TCP Query User{C631CBA9-6052-4BCB-B078-F3E44CFFAAEE}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{9B5D28AE-3D4D-4DB6-8634-32E2C994A870}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{5086ADC0-1E00-413C-8758-C8F907A1553B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\Shogun2.exe
FirewallRules: [{1138343A-2684-44E3-B19D-EBDBE3ABB8B6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\Shogun2.exe
FirewallRules: [{787B6C4D-4BE7-437D-93F1-56594C03263B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\data\encyclopedia\how_to_play.html
FirewallRules: [{1E31C17E-F820-45C2-95AA-D90DBFD00944}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\data\encyclopedia\how_to_play.html
FirewallRules: [{FEAAE77E-BE93-483C-A23F-21464E5A1314}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{10A5D370-3396-4B41-AC9F-D4D137DA680E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{605D470F-6699-499F-841C-22E5DDF44961}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{8507A40B-179C-4937-9A37-40ACA4E24974}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{5B03FE5A-4425-4559-AB91-C8FCB46492C9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{9BB180DB-DEB5-46F4-B35C-4D672F2283F4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{38289A00-C69C-4BB5-9271-03F3A448ACB2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{6C7C3A16-85E5-4B42-AB84-4C918A8FE2D6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{57253F8C-AE53-4EAF-9F9B-938EC656754F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{08084FE2-47ED-4A76-92B8-8DCB938AA2EB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{F2B37634-5876-45EE-9A4D-BDED3E36CB12}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{8F23365A-506E-4286-95D4-313879047402}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{7B0FB978-100D-4D5C-91CD-EC6A8BB4058F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{B455BA38-73E2-465F-85E2-93FA66A1F1EB}] => (Allow) C:\Users\Zaychik\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{6AC29786-334E-4A52-93C5-D2C34BBDF076}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9138803D-D246-49C1-BE2A-1B8DCF80FDBD}] => (Allow) LPort=2869
FirewallRules: [{4135DC13-E81C-4146-BC1C-0963959A220A}] => (Allow) LPort=1900
FirewallRules: [{C63D59BC-BAA1-4840-B9A2-46B1A784E781}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{5992091E-6E0E-443D-9EE4-AF43DFD1E0AB}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{5582CA02-2890-4787-8AA9-611C1D7BD60E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{7C801189-F20D-443E-86DF-71C38A31E1C8}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{BA582F09-90EC-408D-B846-6CBAD2A1A7EC}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{5AE52E27-4EBA-4CAD-B7B7-DDEA28FB675E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{9E2B59C8-4809-47EC-A133-78C7EF79618D}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{363FA8C5-F970-4EE3-9CBA-7F05E8E14A18}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{6A3F7849-7FE6-4F74-AA66-83285BE6C7B7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{2D18FAF5-6E05-416E-A41F-E0E717218D4B}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{8B2D8379-0168-4B76-AC51-F9A7C856BA97}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{AFB7DBBE-06EC-4A9C-8440-1249CBCC07BF}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{F0AA3738-A2FD-4950-BD62-D33D77181E61}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{5001D3AB-0CB6-4CCB-8222-8806184AEF79}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{DF7D9B2C-CF8C-41CD-9481-DB5678421794}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{595BF13D-4BAE-4110-ADA8-440F41BFFF9F}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{F9CBF770-F634-4463-A388-E1F53ACE16E0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Bluetooth Remote Control
Description: Bluetooth Remote Control
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Broadcom
Service: btwrchid
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid: {4d36e979-e325-11ce-bfc1-08002be10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth L2CAP Interface
Description: Bluetooth L2CAP Interface
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwl2cap
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/15/2015 01:44:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: conhost.exe, version: 6.1.7601.18939, time stamp: 0x55afca68
Faulting module name: GDI32.dll, version: 6.1.7601.18898, time stamp: 0x5581b1b4
Exception code: 0xc0000005
Fault offset: 0x0000000000001ff0
Faulting process id: 0x2288
Faulting application start time: 0xconhost.exe0
Faulting application path: conhost.exe1
Faulting module path: conhost.exe2
Report Id: conhost.exe3

Error: (09/15/2015 01:31:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: conhost.exe, version: 6.1.7601.18939, time stamp: 0x55afca68
Faulting module name: GDI32.dll, version: 6.1.7601.18898, time stamp: 0x5581b1b4
Exception code: 0xc0000005
Fault offset: 0x0000000000001ff0
Faulting process id: 0x48c4
Faulting application start time: 0xconhost.exe0
Faulting application path: conhost.exe1
Faulting module path: conhost.exe2
Report Id: conhost.exe3

Error: (09/15/2015 01:27:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: conhost.exe, version: 6.1.7601.18939, time stamp: 0x55afca68
Faulting module name: GDI32.dll, version: 6.1.7601.18898, time stamp: 0x5581b1b4
Exception code: 0xc0000005
Fault offset: 0x0000000000001ff0
Faulting process id: 0x442c
Faulting application start time: 0xconhost.exe0
Faulting application path: conhost.exe1
Faulting module path: conhost.exe2
Report Id: conhost.exe3

Error: (09/15/2015 01:23:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SndVol.exe, version: 6.1.7601.17514, time stamp: 0x4ce7aced
Faulting module name: GDI32.dll, version: 6.1.7601.18898, time stamp: 0x5581b1b4
Exception code: 0xc000041d
Fault offset: 0x000000000000289a
Faulting process id: 0x43a4
Faulting application start time: 0xSndVol.exe0
Faulting application path: SndVol.exe1
Faulting module path: SndVol.exe2
Report Id: SndVol.exe3

Error: (09/15/2015 01:23:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SndVol.exe, version: 6.1.7601.17514, time stamp: 0x4ce7aced
Faulting module name: GDI32.dll, version: 6.1.7601.18898, time stamp: 0x5581b1b4
Exception code: 0xc0000005
Fault offset: 0x000000000000289a
Faulting process id: 0x43a4
Faulting application start time: 0xSndVol.exe0
Faulting application path: SndVol.exe1
Faulting module path: SndVol.exe2
Report Id: SndVol.exe3

Error: (09/15/2015 12:18:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: conhost.exe, version: 6.1.7601.18939, time stamp: 0x55afca68
Faulting module name: GDI32.dll, version: 6.1.7601.18898, time stamp: 0x5581b1b4
Exception code: 0xc0000005
Fault offset: 0x0000000000001ff0
Faulting process id: 0x4bc0
Faulting application start time: 0xconhost.exe0
Faulting application path: conhost.exe1
Faulting module path: conhost.exe2
Report Id: conhost.exe3

Error: (09/15/2015 11:24:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SndVol.exe, version: 6.1.7601.17514, time stamp: 0x4ce7aced
Faulting module name: GDI32.dll, version: 6.1.7601.18898, time stamp: 0x5581b1b4
Exception code: 0xc000041d
Fault offset: 0x000000000000289a
Faulting process id: 0x4bc4
Faulting application start time: 0xSndVol.exe0
Faulting application path: SndVol.exe1
Faulting module path: SndVol.exe2
Report Id: SndVol.exe3

Error: (09/15/2015 11:24:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SndVol.exe, version: 6.1.7601.17514, time stamp: 0x4ce7aced
Faulting module name: GDI32.dll, version: 6.1.7601.18898, time stamp: 0x5581b1b4
Exception code: 0xc0000005
Fault offset: 0x000000000000289a
Faulting process id: 0x4bc4
Faulting application start time: 0xSndVol.exe0
Faulting application path: SndVol.exe1
Faulting module path: SndVol.exe2
Report Id: SndVol.exe3

Error: (09/15/2015 11:23:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mmc.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc808
Faulting module name: ntdll.dll, version: 6.1.7601.18939, time stamp: 0x55b02e88
Exception code: 0xc000041d
Fault offset: 0x000000000004ac04
Faulting process id: 0x4804
Faulting application start time: 0xmmc.exe0
Faulting application path: mmc.exe1
Faulting module path: mmc.exe2
Report Id: mmc.exe3

Error: (09/15/2015 11:22:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mmc.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc808
Faulting module name: ntdll.dll, version: 6.1.7601.18939, time stamp: 0x55b02e88
Exception code: 0xc0000005
Fault offset: 0x000000000004ac04
Faulting process id: 0x4804
Faulting application start time: 0xmmc.exe0
Faulting application path: mmc.exe1
Faulting module path: mmc.exe2
Report Id: mmc.exe3


System errors:
=============
Error: (09/15/2015 01:48:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/15/2015 01:38:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/15/2015 01:28:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/15/2015 01:18:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/15/2015 01:08:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/15/2015 12:58:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/15/2015 12:48:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/15/2015 12:45:27 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk3\DR3.

Error: (09/15/2015 12:38:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/15/2015 12:28:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)


==================== Memory info ===========================

Processor: Intel® Core™2 Quad CPU Q8400 @ 2.66GHz
Percentage of memory in use: 41%
Total physical RAM: 6079.18 MB
Available physical RAM: 3585.39 MB
Total Virtual: 12156.56 MB
Available Virtual: 7634.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:455 GB) (Free:170.33 GB) NTFS
Drive i: (FreeAgent Drive) (Fixed) (Total:465.76 GB) (Free:30 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: E681D3CC)
Partition 1: (Not Active) - (Size=10.7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=455 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 465.8 GB) (Disk ID: A4B57300)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Edited by tanyae, 15 September 2015 - 01:28 PM.

  • 0

#6
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Once you have run the two adware cleaners you will need to decide which antivirus you wish to keep

If you could let me know which one from the following list I will locate the removal tools for the rest for you

AV: Advanced SystemCare Ultimate (Enabled - Up to date) {1C304DC4-1D72-5DB9-B33A-43B638ECFD30}
AV: Emsisoft Anti-Malware (Enabled - Up to date) {2F44E1F9-850B-1C7A-0E56-EB2E0A3E20C9}
AV: AVG Internet Security 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
McAfee Security Scan Plus
  • 0

#7
tanyae

tanyae

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
# AdwCleaner v5.007 - Logfile created 15/09/2015 at 14:35:35
# Updated 08/09/2015 by Xplode
# Database : 2015-09-10.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : vToolbarUpdater18.8.0

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\TotalSystemCare
[-] Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
[-] Folder Deleted : C:\Program Files (x86)\AVG Security Toolbar
[-] Folder Deleted : C:\Program Files (x86)\IObit Toolbar
[-] Folder Deleted : C:\Program Files (x86)\AVG\AVG10\Toolbar
[-] Folder Deleted : C:\Program Files (x86)\FreeApps
[-] Folder Deleted : C:\Program Files (x86)\TweakBit
[-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
[-] Folder Deleted : C:\ProgramData\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar
[-] Folder Deleted : C:\ProgramData\myturbopc.com
[-] Folder Deleted : C:\ProgramData\TweakBit
[-] Folder Deleted : C:\ProgramData\Avg_Update_0215tb
[-] Folder Deleted : C:\ProgramData\Avg_Update_0814tb
[-] Folder Deleted : C:\ProgramData\Avg_Update_1114tb
[-] Folder Deleted : C:\ProgramData\Avg_Update_1214tb
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit
[-] Folder Deleted : C:\Users\Zaychik\AppData\Local\AVG SafeGuard toolbar
[-] Folder Deleted : C:\Users\Zaychik\AppData\Local\WhiteListing
[-] Folder Deleted : C:\Users\Zaychik\AppData\LocalLow\AVG SafeGuard toolbar
[-] Folder Deleted : C:\Users\Zaychik\AppData\Roaming\DesktopIconForAmazon
[-] Folder Deleted : C:\Users\Zaychik\AppData\Roaming\catalina – print savings
[-] Folder Deleted : C:\Users\Zaychik\AppData\Roaming\myturbopc.com
[-] Folder Deleted : C:\Users\Zaychik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\catalina – print savings
[-] Folder Deleted : C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\Extensions\[email protected]
[-] Folder Deleted : C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\Extensions\[email protected]
[-] Folder Deleted : C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\Extensions\ascsurfingpro[email protected]
[-] Folder Deleted : C:\Users\Zaychik\Documents\Updater
[-] Folder Deleted : C:\Windows\Sysnative\Tasks\TweakBit

***** [ Files ] *****

[-] File Deleted : C:\END
[-] File Deleted : C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fopdddcinljmpmioaklghcalngfhbaen
[-] File Deleted : C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gkcefkcdkepgkpbgncjchhbjgoanleod
[-] File Deleted : C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\glmfgahfleepmdfffonfckpmkondpdkg
[-] File Deleted : C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kdidombaedgpfiiedeimiebkmbilgmlc_0.localstorage
[-] File Deleted : C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage
[-] File Deleted : C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal
[-] File Deleted : C:\Users\Zaychik\AppData\Roaming\Mozilla\Firefox\Profiles\7yc5d699.default\user.js

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
[-] Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
[-] Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\jZip.file
[-] Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
[-] Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppPath\jZip.exe
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKU\.DEFAULT\Software\AVG SafeGuard toolbar
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Secure Search
[-] Key Deleted : HKU\.DEFAULT\Software\Avg Secure Update
[-] Key Deleted : HKCU\Software\APN PIP
[-] Key Deleted : HKCU\Software\AVG SafeGuard toolbar
[-] Key Deleted : HKCU\Software\jZip
[-] Key Deleted : HKCU\Software\OCS
[-] Key Deleted : HKCU\Software\IObit Apps
[-] Key Deleted : HKCU\Software\MyTurboPC.com
[-] Key Deleted : HKCU\Software\Avg Secure Update
[-] Key Deleted : HKCU\Software\AppDataLow\Software\IObit Apps
[-] Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar
[-] Key Deleted : HKLM\SOFTWARE\AVG Security Toolbar
[-] Key Deleted : HKLM\SOFTWARE\jZip
[-] Key Deleted : HKLM\SOFTWARE\WinMaximizer
[-] Key Deleted : HKLM\SOFTWARE\IObit Apps
[-] Key Deleted : HKLM\SOFTWARE\MyTurboPC.com
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\jZip
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Zip Opener Packages
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37331C16-3E97-4A20-80D8-BFB43AB0E2FB}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{45F267AE-311F-43E2-BDAA-00D059B93BF9}
[!] Key Not Deleted : [x64] HKCU\Software\APN PIP
[!] Key Not Deleted : [x64] HKCU\Software\AVG SafeGuard toolbar
[!] Key Not Deleted : [x64] HKCU\Software\jZip
[!] Key Not Deleted : [x64] HKCU\Software\OCS
[!] Key Not Deleted : [x64] HKCU\Software\IObit Apps
[!] Key Not Deleted : [x64] HKCU\Software\MyTurboPC.com
[!] Key Not Deleted : [x64] HKCU\Software\Avg Secure Update
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DesktopIconAmazon
[!] Key Not Deleted : HKU\S-1-5-21-2152691726-1295351683-211211905-1001\Software\AppDataLow\Software\IObit Apps
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044

***** [ Web browsers ] *****

[-] [C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bopakagnckmlgajfccecajhnimjiiedh
[-] [C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dhhjmlmdpcpiojiffodbldlkgcnaeogp
[-] [C:\Users\Zaychik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : glmfgahfleepmdfffonfckpmkondpdkg

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [12158 bytes] ##########
  • 0

#8
tanyae

tanyae

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
Junkware Removal tool is unable to start (run as administrator), the error message is displayed again...
  • 0

#9
tanyae

tanyae

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
And, I will go with AVG Internet Security 2015. Thank you!
  • 0

#10
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Ok download the emisoft removal tool to your desktop from here http://tmp.emsisoft....w/emsiclean.exe
Uninstall Emsisoft Anti-Malware via control panel
After the reboot then run emsiclean.exe

Uninstall Advanced SystemCare Ultimate 7 via control panel


Download the McAfee removal tool from here http://us.mcafee.com...s/mcpr/mcpr.aspto your desktop
Uninstall McAfee Security Scan Plus via control panel
After the reboot then run mcpr.exe

Now let me know what problem you are experiencing and we will then try to resolve them
  • 0

Advertisements


#11
tanyae

tanyae

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
All done
  • 0

#12
tanyae

tanyae

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
Do I have to do anything else now? Thank you again.
  • 0

#13
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
How is the system behaving at the moment are you still getting the error
  • 0

#14
tanyae

tanyae

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
No, the error is gone now, and the system acts normal again. The operation speed got much better, too. So do you think that error was related to the clash between the various antivirus / protection software? That'd probably make sense, considering the way it acted.

What would you recommend as a best combination of adware & malware removal, internet security and antivirus software for a new Windows 10 PC? I don't want to create another problem using incompatible programs, but I want to be fully protected, of course. Also, would you recommend using Kaspersky device or anything else of the sort as an additional measure (was recommended to me by Best Buy)?

Thank you!!!

Edited by tanyae, 16 September 2015 - 09:55 AM.

  • 0

#15
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Yes it was a clash of programmes, you can think of multiple antivirus programmes behaving like a pack of dogs over a single bone.. They all want it and woe betide anything that gets in the way :)

For a windows 10 PC then all you really need is a free AV like Avast or AVG. Use the windows firewall and Malwarebytes free for antimalware

Please steer clear of any and all tuneup/registry cleaning/booster style programmes as all they will do is more harm than good.

On my windows 10 I use Avast (the only scan I run is the screensaver one), Malwarebytes (I only ever scan if I remember, not often)

If you have any questions at all then please ask :)

Subject to no further problems :)

I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems

Now the best part of the day ----- Your log now appears clean :thumbsup:

A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:

Remove tools

Download and run Delfix
Select the options as shown
delfix.JPG


: Keep Java Updated :

WARNING: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
See this article

I would recommend that you completely uninstall Java unless you need it to run an important software.
In that instance I would recommend that you disable Java in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser and How to unplug Java from the browser)

If you do need to keep Java then download JavaRa
Run the programme and select Remove Java Runtime. Uninstall all versions of Java present
Once done then run it again and select Update Java runtime > Download and install Latest version
javara.JPG


Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:

CryptoPrevent install this programme to lock down and prevent crypto ransome ware

CryptoPrevent.JPG

Malwarebytes

Update and run weekly to keep your system clean

Unchecky

Click on the link above to be taken to Unchecky.com
click the very large Download button.
click Save
Click Open folder
Right click on the Unchecky_setup and choose to Run as Administrator
Once open click the Install button.
Then click on Finish
Unchecky is now installed and will help you keep unwanted check boxes unchecked, this is a fire and forget programme ;)

It is critical to have both a firewall and anti virus to protect your system and to keep them updated.

To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe :wave:
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP