Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Very Slow Browsing Speed [Solved]

Started by Hari Prahlad , Oct 18 2015 09:06 PM
Slow browsing speed hanging web pages

  • This topic is locked This topic is locked

#1
Hari Prahlad
Posted 18 October 2015 - 09:06 PM

Hari Prahlad

    Member

  • Member
  • PipPipPip
  • 301 posts

Hi,

Pages take ages to load.  I have Kaspersky as Anti-virus and use Disk Cleanup once a fortnight.  I suspect there may be some kind of infection in the laptop.  The neighbors kids use it to play online games sometimes.

I am cutting and pasting the FRST and Addition logs for your kind examination.

I would be thankful if you could let me know what the problem is and how it can be rectified.  I also have a sneaking suspicion that the laptop itself has outlived its utility and needs to be replaced.

Thank you for your time and patience.

Regards

Hari Prahlad

PS.  Things are considerably faster when I use the mobile web address, for instance, https://mobile.faceb...ebook.com/&_rdrloads much faster than https://web.facebook.com/

 

 


------------------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:18-10-2015
Ran by windows (administrator) on WINDOWS-PC (19-10-2015 08:19:40)
Running from C:\Users\windows\Desktop
Loaded Profiles: windows (Available Profiles: windows & Jini)
Platform: Microsoft Windows 7 Home Basic  Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
() C:\Program Files\Reliance Netconnect+\bin\MonServiceUDisk.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Nico Mak Computing) C:\Program Files\WinZip\FAH\FAHWindow32.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WzPreloader.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\wmi32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [DelaypluginInstall] => C:\ProgramData\iSkysoft\Video Converter Ultimate\DelayPluginI.exe
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-15] (Apple Inc.)
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\Run: [Web Companion] => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\Run: [GoogleChromeAutoLaunch_720B07AF0D1AF3C74F1DF19D0570BB96] => C:\Program Files\Google\Chrome\Application\chrome.exe [811848 2015-10-09] (Google Inc.)
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\MountPoints2: G - G:\Setup.exe /Auto
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\MountPoints2: {95f334ce-5f4a-11e4-ad13-0c6076e4c1d1} - G:\Setup.exe /Auto
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [293888 2010-11-21] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-10-29]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FAH.lnk [2015-07-04]
ShortcutTarget: FAH.lnk -> C:\Program Files\WinZip\FAH\FAHConsole.exe (Nico Mak Computing)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2015-07-04]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (WinZip Computing, S.L.)
Startup: C:\Users\windows\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2014-11-08]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Winsock: Catalog9 01 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 02 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 03 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 04 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 16 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 113.193.12.14 113.193.1.14
Tcpip\..\Interfaces\{87FFC355-397F-4EBA-A7BF-9FEFAD83AD19}: [DhcpNameServer] 113.193.12.14 113.193.1.14
Tcpip\..\Interfaces\{C919CC4A-4518-431F-ADF0-F73265B40962}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://in.search.yahoo.com/search?fr=vmn&type=vmn__webcompa__1_0__ya__ch_WCYID10099_swoc_campaign_150804__yaie&p={searchTerms}
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-28] (Kaspersky Lab ZAO)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: iSkysoft Video Converter Ultimate 5.1.0 -> {AEAF002F-E6D8-4A21-ABD3-2B309B79A6CE} -> C:\PROGRA~2\iSkysoft\VIDEOC~1\WSBROW~1.DLL => No File
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
Handler: WSISVCUchrome - {78A543EB-3A61-4ED3 -  No File
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\6tfvkh2r.default-1445153836675
FF Homepage: hxxps://www.google.co.in/?gfe_rd=cr&ei=X3SjVYT8AujI8Af9grvABw&gws_rd=ssl
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_207.dll [2015-10-14] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation)
FF Plugin: @kaspersky.com/content_blocker -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] ()
FF Plugin: @kaspersky.com/online_banking -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] ()
FF Plugin: @kaspersky.com/virtual_keyboard -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF user.js: detected! => C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\6tfvkh2r.default-1445153836675\user.js [2015-10-18]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Dangerous Websites Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-27] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-27] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-27] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-27] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-27] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\iSkysoft\Video Converter Ultimate\[email protected] => not found
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-10-16]

Chrome:
=======
CHR Profile: C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Slides) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-16]
CHR Extension: (Google Docs) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-16]
CHR Extension: (Google Drive) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-16]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-04-21]
CHR Extension: (YouTube) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-16]
CHR Extension: (Google Search) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-16]
CHR Extension: (Kaspersky Protection) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-04-16]
CHR Extension: (Google Sheets) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-16]
CHR Extension: (Google Docs Offline) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04]
CHR Extension: (Facebook - Delete All Messages) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hgiidlnejdlfoacoeleopkljhbckmlko [2015-04-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-16]
CHR Extension: (Sidekick by HubSpot) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\oiiaigjnkhngdbnoookogelabohpglmd [2015-07-07]
CHR Extension: (Gmail) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-16]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho

Opera:
=======
OPR Extension: (WOT) - C:\Users\windows\AppData\Roaming\Opera Software\Opera Stable\Extensions\eeokceolphhfjdfcibaiiopmekmcbedp [2015-05-29]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP15.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-06-02] (Foxit Software Inc.)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-05-06] (Freemake) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
R2 UDisk Monitor; C:\Program Files\Reliance Netconnect+\bin\MonServiceUDisk.exe [512000 2011-10-31] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [508632 2014-10-29] (Broadcom Corporation.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135264 2014-02-20] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112136 2014-10-28] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [34400 2014-04-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [644808 2014-10-28] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [24672 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [14432 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [45024 2014-03-25] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145888 2014-03-26] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2014-08-15] (Apple, Inc.) [File not signed]
R3 ztemtusbser; C:\Windows\System32\DRIVERS\CT_ZTEMT_U_USBSER.sys [105472 2011-10-27] (ZTEMT Incorporated)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-19 08:19 - 2015-10-19 08:20 - 00017895 _____ C:\Users\windows\Desktop\FRST.txt
2015-10-19 08:09 - 2015-10-19 08:08 - 01700864 _____ (Farbar) C:\Users\windows\Desktop\FRST.exe
2015-10-18 13:07 - 2015-10-18 13:07 - 00000000 ____D C:\Users\windows\Desktop\Old Firefox Data
2015-10-16 09:21 - 2015-10-17 06:33 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-16 08:52 - 2015-10-19 08:17 - 00000616 _____ C:\Windows\setupact.log
2015-10-16 08:52 - 2015-10-16 08:52 - 00000000 _____ C:\Windows\setuperr.log
2015-10-15 14:03 - 2015-09-18 23:17 - 00023384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-15 14:03 - 2015-09-18 23:14 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-15 14:03 - 2015-09-18 23:14 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-15 14:03 - 2015-09-18 23:14 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-15 14:03 - 2015-09-18 23:14 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-15 14:03 - 2015-09-18 23:14 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-15 14:03 - 2015-09-18 23:05 - 00999936 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-14 06:36 - 2015-10-14 06:36 - 08776392 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2015-10-14 06:31 - 2015-09-29 08:35 - 03990976 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-10-14 06:31 - 2015-09-29 08:35 - 03936192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 06:31 - 2015-09-29 08:32 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-14 06:31 - 2015-09-29 08:28 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-14 06:31 - 2015-09-29 08:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-10-14 06:31 - 2015-09-29 08:28 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-14 06:31 - 2015-09-29 08:28 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-14 06:31 - 2015-09-29 08:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-14 06:31 - 2015-09-29 08:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-14 06:31 - 2015-09-29 08:23 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-10-14 06:31 - 2015-09-29 08:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-10-14 06:31 - 2015-09-29 08:19 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-10-14 06:31 - 2015-09-29 08:19 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-10-14 06:31 - 2015-09-29 07:13 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-14 06:31 - 2015-09-29 07:13 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-10-14 06:31 - 2015-09-29 07:13 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-10-14 06:31 - 2015-09-15 23:12 - 00139096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-10-14 06:31 - 2015-09-15 23:12 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-14 06:31 - 2015-09-15 23:06 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-14 06:31 - 2015-09-15 23:05 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-14 06:31 - 2015-08-06 23:14 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 06:31 - 2015-08-06 23:14 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 06:30 - 2015-10-01 23:20 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 06:30 - 2015-10-01 23:20 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-14 06:30 - 2015-10-01 23:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-14 06:30 - 2015-10-01 23:20 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-14 06:30 - 2015-10-01 23:20 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 06:30 - 2015-10-01 22:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-14 06:30 - 2015-09-25 23:29 - 02955776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-14 06:30 - 2015-09-25 23:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-10-14 06:30 - 2015-09-25 23:28 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-14 06:30 - 2015-09-25 23:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-10-14 06:30 - 2015-09-25 23:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-10-14 06:29 - 2015-09-19 00:28 - 00345688 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-10-14 06:29 - 2015-09-16 09:28 - 20357632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 06:29 - 2015-09-16 09:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-14 06:29 - 2015-09-16 09:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 06:29 - 2015-09-16 09:03 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 06:29 - 2015-09-16 09:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-10-14 06:29 - 2015-09-16 09:02 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-14 06:29 - 2015-09-16 09:02 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-10-14 06:29 - 2015-09-16 09:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-10-14 06:29 - 2015-09-16 08:58 - 02279936 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-14 06:29 - 2015-09-16 08:56 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-14 06:29 - 2015-09-16 08:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-10-14 06:29 - 2015-09-16 08:54 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-14 06:29 - 2015-09-16 08:53 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-14 06:29 - 2015-09-16 08:53 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-10-14 06:29 - 2015-09-16 08:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 06:29 - 2015-09-16 08:52 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-10-14 06:29 - 2015-09-16 08:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 06:29 - 2015-09-16 08:45 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-14 06:29 - 2015-09-16 08:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 06:29 - 2015-09-16 08:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-10-14 06:29 - 2015-09-16 08:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-14 06:29 - 2015-09-16 08:35 - 04527616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 06:29 - 2015-09-16 08:35 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-14 06:29 - 2015-09-16 08:34 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-10-14 06:29 - 2015-09-16 08:28 - 12853760 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 06:29 - 2015-09-16 08:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-10-14 06:29 - 2015-09-16 08:26 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-14 06:29 - 2015-09-16 08:26 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-10-14 06:29 - 2015-09-16 08:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-14 06:29 - 2015-09-16 08:25 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-10-14 06:29 - 2015-09-16 08:07 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-14 06:29 - 2015-09-16 08:04 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-14 06:29 - 2015-09-16 08:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-10-09 08:50 - 2015-10-09 08:54 - 102162936 _____ C:\Users\windows\Downloads\One _ Navarasam - Thaikkudam Bridge - Official HD Music Video - Kappa TV.mp4
2015-10-08 09:40 - 2015-10-08 09:40 - 00109785 _____ C:\Users\windows\Desktop\Tamilnadu_PEC_details.xlsx
2015-10-08 09:22 - 2015-10-08 09:39 - 00109784 _____ C:\Users\windows\Downloads\Tamilnadu_PEC_details.xlsx
2015-10-08 09:22 - 2015-10-08 09:22 - 00111359 _____ C:\Users\windows\Downloads\00PEC_report.xlsx
2015-10-07 11:48 - 2015-09-25 09:24 - 739834351 _____ C:\Users\windows\Desktop\Pope Francis addresses Joint Session of Congress – FULL SPEECH (C-SPAN).mp4
2015-10-06 10:18 - 2015-10-06 10:18 - 08182018 _____ C:\Users\windows\Downloads\Cyber Sipahi.mp4
2015-09-29 11:47 - 2015-09-29 11:47 - 00984015 _____ C:\Users\windows\Downloads\Outlook.com.zip
2015-09-25 08:40 - 2015-09-25 09:24 - 739834351 _____ C:\Users\windows\Downloads\Pope Francis addresses Joint Session of Congress – FULL SPEECH (C-SPAN).mp4
2015-09-24 08:37 - 2015-09-24 15:34 - 00000000 ____D C:\Users\windows\Desktop\Ganpat
2015-09-23 11:56 - 2015-09-23 11:56 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-09-23 11:56 - 2015-09-23 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-09-23 11:55 - 2015-09-23 11:56 - 00000000 ____D C:\Program Files\iTunes
2015-09-23 11:55 - 2015-09-23 11:55 - 00000000 ____D C:\Program Files\iPod
2015-09-23 11:52 - 2015-09-23 11:52 - 00000000 ____D C:\Program Files\Bonjour
2015-09-23 11:52 - 2015-09-23 11:52 - 00000000 ____D C:\Program Files\Apple Software Update
2015-09-23 11:46 - 2015-09-23 11:46 - 00001815 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2015-09-23 11:46 - 2015-09-23 11:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-09-23 11:46 - 2015-09-23 11:46 - 00000000 ____D C:\Program Files\QuickTime
2015-09-20 07:52 - 2015-09-24 20:44 - 08558071 _____ C:\Users\windows\Documents\BREAST IMAGING MMM.pptx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-19 08:19 - 2015-07-02 09:57 - 00000000 ____D C:\FRST
2015-10-19 08:18 - 2014-10-29 09:32 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-19 08:18 - 2014-10-27 20:28 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-10-19 08:17 - 2009-07-14 10:23 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-19 08:16 - 2014-10-27 19:35 - 01463100 _____ C:\Windows\WindowsUpdate.log
2015-10-19 08:00 - 2014-10-29 09:32 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-19 07:56 - 2009-07-14 10:04 - 00020640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-19 07:56 - 2009-07-14 10:04 - 00020640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-19 07:36 - 2015-07-21 11:14 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-19 07:09 - 2014-10-29 08:53 - 00000000 ____D C:\Plugins
2015-10-19 06:04 - 2010-11-21 02:31 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-19 06:02 - 2015-05-27 10:38 - 00000000 ____D C:\Program Files\Opera
2015-10-18 13:11 - 2015-08-19 15:15 - 00000000 ____D C:\Users\windows\Desktop\Stuff
2015-10-18 11:31 - 2009-07-14 08:07 - 00000000 ____D C:\Windows\rescache
2015-10-17 06:42 - 2015-09-13 06:38 - 00000000 ____D C:\Users\windows\Desktop\Jan
2015-10-17 06:33 - 2010-11-21 03:18 - 00045084 _____ C:\Windows\PFRO.log
2015-10-17 06:27 - 2015-07-03 11:57 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-16 09:04 - 2014-10-29 09:34 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-15 15:30 - 2015-04-15 16:58 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-15 15:30 - 2015-04-15 16:58 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-14 12:53 - 2014-10-27 19:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 09:40 - 2014-10-29 17:25 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 09:32 - 2014-10-29 17:25 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-14 06:36 - 2015-07-21 11:14 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-14 06:36 - 2015-07-21 11:14 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-10-12 16:21 - 2014-12-28 16:24 - 00032768 _____ C:\Windows\system32\persistent_q.db-shm
2015-10-12 08:28 - 2009-07-14 10:23 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-10-12 08:21 - 2015-04-04 15:13 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-08 08:51 - 2009-07-14 08:07 - 00000000 ____D C:\Windows\system32\NDF
2015-10-06 15:16 - 2015-03-24 14:36 - 00000000 ____D C:\Users\windows\AppData\Local\CrashDumps
2015-10-05 08:31 - 2015-08-19 06:21 - 00000000 ____D C:\Users\windows\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
2015-10-03 13:50 - 2015-08-09 06:24 - 00000000 ____D C:\Users\windows\Documents\Pictures(3)
2015-10-03 13:27 - 2015-07-09 08:25 - 00006656 _____ C:\Users\windows\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-10-03 11:42 - 2015-05-21 10:55 - 00000000 ____D C:\Users\windows\Desktop\Jini
2015-09-29 11:49 - 2015-07-04 10:11 - 00000000 ____D C:\Users\windows\AppData\Local\WinZip
2015-09-23 17:13 - 2014-10-29 09:32 - 00000000 ____D C:\Users\windows\AppData\Local\Google
2015-09-23 11:55 - 2015-02-09 15:50 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-09-23 11:52 - 2014-10-29 09:18 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk

==================== Files in the root of some directories =======

2015-07-09 08:25 - 2015-10-03 13:27 - 0006656 _____ () C:\Users\windows\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-02 08:35 - 2014-12-02 08:35 - 0000000 _____ () C:\Users\windows\AppData\Local\{BC934A45-2FC6-4A35-B063-1B60694CCDA9}
2015-08-17 08:43 - 2015-08-17 08:43 - 0000016 _____ () C:\ProgramData\mntemp

Some files in TEMP:
====================
C:\Users\windows\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\windows\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-12 08:20

==================== End of FRST.txt ============================

--------------------------------------------

Additional scan result of Farbar Recovery Scan Tool (x86) Version:18-10-2015
Ran by windows (2015-10-19 08:21:14)
Running from C:\Users\windows\Desktop
Microsoft Windows 7 Home Basic  Service Pack 1 (X86) (2014-10-27 14:06:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2511622759-3551197285-1972888053-500 - Administrator - Disabled)
Guest (S-1-5-21-2511622759-3551197285-1972888053-501 - Limited - Disabled)
Jini (S-1-5-21-2511622759-3551197285-1972888053-1001 - Limited - Enabled) => C:\Users\Jini
windows (S-1-5-21-2511622759-3551197285-1972888053-1000 - Administrator - Enabled) => C:\Users\windows

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.207 - Adobe Systems Incorporated)
Any Video Converter 5.8.3 (HKLM\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-bit) (HKLM\...\{3540ADD5-822B-47FB-B1C2-CD7B2C8E9FEC}) (Version: 4.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{A75CA58D-DB9C-4D14-9428-E0C7B0F623DC}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
Capture Screenshot lite version 14 (HKLM\...\{BE2B6229-7D74-414B-8636-7B8F60C4525C}_is1) (Version: 14 - GutmannSoft)
Foxit Cloud (HKLM\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.5.116.602 - Foxit Software Inc.)
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 6.2.1.618 - Foxit Corporation)
Freemake Video Converter version 4.1.6 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.71 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
iTunes (HKLM\...\{9E9CFD9F-64D6-498F-8584-E5CD08BA60BE}) (Version: 12.3.0.44 - Apple Inc.)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Kaspersky Internet Security (HKLM\...\InstallWIX_{653C1B5A-3287-47B1-8613-0745D4E771C4}) (Version: 15.0.0.463 - Kaspersky Lab)
Kaspersky Internet Security (Version: 15.0.0.463 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Mozilla Firefox 41.0.2 (x86 en-US) (HKLM\...\Mozilla Firefox 41.0.2 (x86 en-US)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
Nero 7 Premium (HKLM\...\{2D7D9D86-923A-41A8-919F-437332AB1033}) (Version: 7.02.2760 - Nero AG)
Opera Stable 32.0.1948.69 (HKLM\...\Opera 32.0.1948.69) (Version: 32.0.1948.69 - Opera Software)
QuickTime 7 (HKLM\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Reliance Netconnect+ (HKLM\...\ZTEWireless-101_is1) (Version:  - )
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5800 - Broadcom Corporation)
WinZip 19.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EC}) (Version: 19.5.11532 - WinZip Computing, S.L. )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader.dll ()

==================== Restore Points =========================

14-10-2015 09:28:18 Windows Update
14-10-2015 12:52:17 Windows Update
15-10-2015 15:29:46 Windows Update
19-10-2015 06:06:00 Windows Backup
19-10-2015 07:00:23 Windows Backup

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 07:34 - 2009-06-11 03:09 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {054EAA76-BDD4-4196-A396-BAC11A022CDE} - System32\Tasks\{9AFD77DE-F7D7-4F94-832A-F8D8D66F0BEB} => pcalua.exe -a C:\Users\windows\Downloads\startuplite-setup-1.07.exe -d C:\Users\windows\Downloads
Task: {1583D5FE-2E46-4522-8E9A-3A5851A3DCE7} - System32\Tasks\RunAsStdUser Task for VeohWebPlayer => C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
Task: {2F72597E-B8E9-4387-9FBC-020616C48E45} - System32\Tasks\{1C783C58-D146-48E7-8D5A-F9019F84A5E2} => pcalua.exe -a C:\Users\windows\Downloads\chromeinstall-8u25.exe -d C:\Users\windows\Downloads
Task: {3CEE40ED-D459-496B-AC6F-7293B102702A} - System32\Tasks\Opera scheduled Autoupdate 1432703364 => C:\Program Files\Opera\launcher.exe [2015-09-25] (Opera Software)
Task: {59881423-BE32-4EEC-AD65-F0947EBEAAF0} - System32\Tasks\{1E685CAE-7D2F-47B8-B9E9-CDC3798E55D1} => pcalua.exe -a D:\backup\Downloads\irfanview_plugins_437_setup.exe -d D:\backup\Downloads
Task: {6422BC80-217E-4B05-BBFA-106659984625} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-14] (Adobe Systems Incorporated)
Task: {77EE8791-64A4-4E74-A411-3FC1FAE5C13B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {E4A97C6B-FAF5-4B99-8A81-72AC70A69657} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {E51C069E-50B5-4546-A0B4-AED489B4FFFE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {F42C0942-099A-46AD-89C9-2FCDBD8D675E} - System32\Tasks\{DA474F9C-001F-4EC4-98BC-976B0907E490} => pcalua.exe -a C:\Users\windows\Downloads\Apps\startuplite-setup-1.07.exe -d C:\Users\windows\Downloads\Apps
Task: {F99463E3-E5A0-4A30-AAA5-08BF367BFD5C} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2015-09-18] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-01-20 22:35 - 2015-01-20 22:35 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 01040144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-06 15:00 - 2014-03-06 15:00 - 01269952 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\kpcengine.2.3.dll
2015-06-20 16:15 - 2011-10-31 15:37 - 00512000 _____ () C:\Program Files\Reliance Netconnect+\bin\MonServiceUDisk.exe
2014-04-20 01:42 - 2014-04-20 01:42 - 00468672 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]\npcontentblocker.dll
2014-04-20 01:42 - 2014-04-20 01:42 - 00347328 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]\nponlinebanking.dll
2014-04-20 01:42 - 2014-10-28 17:40 - 00642344 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]\npvkplugin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\webcompanion.com -> hxxp://webcompanion.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\windows\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
DNS Servers: 113.193.12.14 - 113.193.1.14
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: iSkysoft Helper Compact.exe => C:\Program Files\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1F026DF3-3A2B-4E92-ACD8-901981A37B61}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{3A0B0DE3-CC13-4085-92C8-32459E442DE2}] => (Allow) C:\Program Files\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{259815B3-54D5-4D0D-BDA7-D40C9BCA3321}] => (Allow) C:\Program Files\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{B9C28D0A-A0E5-41FB-B598-2C2FB6B471CB}] => (Allow) C:\Program Files\Veoh Networks\VeohWebPlayer\VeohWebPlayer.exe
FirewallRules: [{156251BE-A2B9-4D93-967A-904CEDC17836}] => (Allow) C:\Program Files\Veoh Networks\VeohWebPlayer\VeohWebPlayer.exe
FirewallRules: [{93FA239B-AFF4-4B60-A657-DDB868D8E8B8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3B49C943-7507-42D1-8F1B-7C88218A2B49}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{69BDE45F-BBD4-4893-B7EE-68F43F16FC1B}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FF6E3989-72BF-4DA0-942B-9D7D2CF89531}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3B2F4832-74A8-4850-8705-8E3690B96B9E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DCE358C9-8CC0-4308-BD19-D0F40047D5BE}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{0CEDDCCF-9EF3-4EC6-9FED-E3800289D281}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: BAPIDRV
Description: BAPIDRV
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: BAPIDRV
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Atheros AR5007EG Wireless Network Adapter
Description: Atheros AR5007EG Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/19/2015 08:19:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/19/2015 08:18:00 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (10/19/2015 07:41:20 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (10/19/2015 06:41:20 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (10/19/2015 06:12:43 AM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: The backup was not successful. The error is: There is not enough space on this drive to save the backup. Free up space by deleting older backups and unnecessary data or change your backup settings. (0x81000005).

Error: (10/19/2015 05:57:16 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/19/2015 05:56:01 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (10/18/2015 01:57:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2028

Error: (10/18/2015 01:57:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2028

Error: (10/18/2015 01:57:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (10/19/2015 06:41:20 AM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (10/19/2015 05:58:37 AM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (10/18/2015 01:37:49 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (10/18/2015 11:48:25 AM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (10/18/2015 10:48:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/18/2015 10:48:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/18/2015 10:48:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/18/2015 10:48:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/18/2015 10:48:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/18/2015 10:48:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


CodeIntegrity:
===================================
  Date: 2015-08-04 09:18:03.288
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-04 09:18:03.127
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.057
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Pentium® Dual-Core CPU T4400 @ 2.20GHz
Percentage of memory in use: 55%
Total physical RAM: 2008.61 MB
Available physical RAM: 893.35 MB
Total Virtual: 4017.23 MB
Available Virtual: 2769.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:99.66 GB) (Free:33.49 GB) NTFS
Drive d: () (Fixed) (Total:200 GB) (Free:137.86 GB) NTFS
Drive e: () (Fixed) (Total:165.76 GB) (Free:83.27 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4D476B20)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=99.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=165.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


Edited by Hari Prahlad, 18 October 2015 - 09:17 PM.

  • 0

Advertisements

#2
Essexboy
Posted 22 October 2015 - 07:46 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi sorry for the delay could you run this quick fix and then run a fresh FRST scan for me please and describe your current problems


CAUTION : This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:
 

CreateRestorePoint:
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\Run: [Web Companion] => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
Winsock: Catalog9 01 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 02 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 03 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 04 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 16 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Handler: WSISVCUchrome - {78A543EB-3A61-4ED3 - No File
FF user.js: detected! => C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\6tfvkh2r.default-1445153836675\user.js [2015-10-18]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
2014-12-02 08:35 - 2014-12-02 08:35 - 0000000 _____ () C:\Users\windows\AppData\Local\{BC934A45-2FC6-4A35-B063-1B60694CCDA9}
2015-08-17 08:43 - 2015-08-17 08:43 - 0000016 _____ () C:\ProgramData\mntemp
IE trusted site: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\webcompanion.com -> hxxp://webcompanion.com
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
RemoveProxy:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset c:\resetlog.txt
CMD: ipconfig /release
CMD: ipconfig /renew
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
EmptyTemp:
CMD: bitsadmin /reset /allusers


Save this as fixlist.txt, in the same location as FRST.exe
FRSTfix.JPG
Run FRST and press Fix
On completion a log will be generated please post that
  • 0

#3
Hari Prahlad
Posted 22 October 2015 - 09:40 PM

Hari Prahlad

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 301 posts

Thank you.  Will do as instructed.

 

PS.  FRST.exe downloaded earlier could not be run because an error message popped up saying the file had been updated.  Downloading the .exe file again and running fix.


Edited by Hari Prahlad, 22 October 2015 - 09:46 PM.

  • 0

#4
Hari Prahlad
Posted 22 October 2015 - 09:58 PM

Hari Prahlad

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 301 posts

This is the Fix Log:--

 

 

Fix result of Farbar Recovery Scan Tool (x86) Version:22-10-2015
Ran by windows (2015-10-23 09:20:05) Run:1
Running from C:\Users\windows\Desktop
Loaded Profiles: windows (Available Profiles: windows & Jini)
Boot Mode: Normal

==============================================

fixlist content:
*****************
CreateRestorePoint:
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\Run: [Web Companion] => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
Winsock: Catalog9 01 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 02 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 03 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 04 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Winsock: Catalog9 16 C:\Windows\system32\LavasoftTcpService.dll [342016 2015-08-04] (Lavasoft Limited)
Handler: WSISVCUchrome - {78A543EB-3A61-4ED3 - No File
FF user.js: detected! => C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\6tfvkh2r.default-1445153836675\user.js [2015-10-18]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
2014-12-02 08:35 - 2014-12-02 08:35 - 0000000 _____ () C:\Users\windows\AppData\Local\{BC934A45-2FC6-4A35-B063-1B60694CCDA9}
2015-08-17 08:43 - 2015-08-17 08:43 - 0000016 _____ () C:\ProgramData\mntemp
IE trusted site: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\webcompanion.com -> hxxp://webcompanion.com
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
RemoveProxy:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset c:\resetlog.txt
CMD: ipconfig /release
CMD: ipconfig /renew
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
EmptyTemp:
CMD: bitsadmin /reset /allusers
*****************

Restore point was successfully created.
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Web Companion => value removed successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001" => key removed successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002" => key removed successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003" => key removed successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004" => key removed successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000016" => key removed successfully.
"HKCR\PROTOCOLS\Handler\WSISVCUchrome" => key removed successfully.
C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\6tfvkh2r.default-1445153836675\user.js => moved successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho" => key removed successfully.
C:\Users\windows\AppData\Local\{BC934A45-2FC6-4A35-B063-1B60694CCDA9} => moved successfully
C:\ProgramData\mntemp => moved successfully
"HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com" => key removed successfully.

========= reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f =========

The operation completed successfully.



========= End of Reg: =========


========= reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f =========

The operation completed successfully.



========= End of Reg: =========


========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.


========= End of RemoveProxy: =========


=========  netsh advfirewall reset =========

Initialization Function InitHelperDll in NSHHTTP.DLL failed to start with error code 10107
Ok.


========= End of CMD: =========


=========  netsh advfirewall set allprofiles state ON =========

Initialization Function InitHelperDll in NSHHTTP.DLL failed to start with error code 10107
Ok.


========= End of CMD: =========


=========  ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========


=========  netsh winsock reset catalog =========

Initialization Function InitHelperDll in NSHHTTP.DLL failed to start with error code 10107

Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.


========= End of CMD: =========


=========  netsh int ip reset c:\resetlog.txt =========

Reseting Global, OK!
Reseting Interface, OK!
Reseting Unicast Address, OK!
Reseting Subinterface, OK!
Restart the computer to complete this action.


========= End of CMD: =========


=========  ipconfig /release =========


Windows IP Configuration

No operation can be performed on Bluetooth Network Connection while it has its media disconnected.

PPP adapter Reliance Netconnect+:

   Connection-specific DNS Suffix  . :
   IPv4 Address. . . . . . . . . . . : 115.241.82.6
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . : 0.0.0.0

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Ethernet adapter Tikona:

   Connection-specific DNS Suffix  . :
   Link-local IPv6 Address . . . . . : fe80::b485:62b1:f369:11a7%11
   Default Gateway . . . . . . . . . :

Tunnel adapter isatap.{A46CB22E-64A7-4B52-B76E-0B96535B0CB1}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.{87FFC355-397F-4EBA-A7BF-9FEFAD83AD19}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.{DC80B858-896D-4957-A275-FBADAB7BF508}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter 6TO4 Adapter:

   Connection-specific DNS Suffix  . :
   IPv6 Address. . . . . . . . . . . : 2002:73f1:5206::73f1:5206
   Default Gateway . . . . . . . . . :

========= End of CMD: =========


=========  ipconfig /renew =========


Windows IP Configuration

No operation can be performed on Bluetooth Network Connection while it has its media disconnected.

PPP adapter Reliance Netconnect+:

   Connection-specific DNS Suffix  . :
   IPv4 Address. . . . . . . . . . . : 115.241.82.6
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . : 0.0.0.0

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Ethernet adapter Tikona:

   Connection-specific DNS Suffix  . :
   Link-local IPv6 Address . . . . . : fe80::b485:62b1:f369:11a7%11
   IPv4 Address. . . . . . . . . . . : 10.22.103.21
   Subnet Mask . . . . . . . . . . . : 255.255.224.0
   Default Gateway . . . . . . . . . : 10.22.96.1

Tunnel adapter isatap.{A46CB22E-64A7-4B52-B76E-0B96535B0CB1}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter isatap.{DC80B858-896D-4957-A275-FBADAB7BF508}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Tunnel adapter 6TO4 Adapter:

   Connection-specific DNS Suffix  . :
   IPv6 Address. . . . . . . . . . . : 2002:73f1:5206::73f1:5206
   Default Gateway . . . . . . . . . :

========= End of CMD: =========


=========  netsh int ipv4 reset =========

Reseting Interface, OK!
Restart the computer to complete this action.


========= End of CMD: =========


=========  netsh int ipv6 reset =========

Reseting Interface, OK!
Reseting Subinterface, OK!
Restart the computer to complete this action.


========= End of CMD: =========


=========  bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
© Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {9ECADF3E-3953-4056-93BE-59612FC3B761}.
Unable to cancel {32841A95-7AF6-488C-8007-83AE9FC6BC33}.
Unable to cancel {762E85A2-8F29-4476-B5FF-B72DAE99CC6E}.
Unable to cancel {A73CF28A-7A3A-4A3E-AF75-501F468E21A3}.
{B2B8AA8E-6919-41C8-8724-48ABFEE7829F} canceled.
{752EAD1A-C2FB-498C-8903-984AD97DB9F9} canceled.
2 out of 6 jobs canceled.

========= End of CMD: =========

EmptyTemp: => 598 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 09:22:24 ====


  • 0

#5
Essexboy
Posted 23 October 2015 - 05:21 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Could I now have a fresh FRST scan please and an update on the problems you are experiencing
  • 0

#6
Hari Prahlad
Posted 23 October 2015 - 09:31 PM

Hari Prahlad

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 301 posts

Could I now have a fresh FRST scan please and an update on the problems you are experiencing

Sure.  Will do ASAP.


  • 0

#7
Hari Prahlad
Posted 23 October 2015 - 09:37 PM

Hari Prahlad

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 301 posts

System is definitely faster than it was previously.  Here are the logs:--

 

--------------------------------------------------------------------------------------

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:22-10-2015
Ran by windows (administrator) on WINDOWS-PC (24-10-2015 09:02:21)
Running from C:\Users\windows\Desktop
Loaded Profiles: windows (Available Profiles: windows & Jini)
Platform: Microsoft Windows 7 Home Basic  Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
() C:\Program Files\Reliance Netconnect+\bin\MonServiceUDisk.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WzPreloader.exe
(Nico Mak Computing) C:\Program Files\WinZip\FAH\FAHWindow32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Microsoft Corporation) C:\Windows\Temp\906C4B00-1C25-4528-9EE9-BCCDB66B53A4\DismHost.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
() C:\Program Files\Google\Update\Install\{79A1C28B-CD6F-4C87-AC22-81595D9C9AA4}\46.0.2490.80_46.0.2490.71_chrome_updater.exe
(Google Inc.) C:\Windows\Temp\CR_49E40.tmp\setup.exe
(Farbar) C:\Users\windows\Desktop\FRST(1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [DelaypluginInstall] => C:\ProgramData\iSkysoft\Video Converter Ultimate\DelayPluginI.exe
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-15] (Apple Inc.)
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\MountPoints2: G - G:\Setup.exe /Auto
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\MountPoints2: {95f334ce-5f4a-11e4-ad13-0c6076e4c1d1} - G:\Setup.exe /Auto
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [293888 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files\Common Files\Apple\Internet Services\iCloud.exe [43816 2015-04-26] (Apple Inc.)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-10-29]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FAH.lnk [2015-07-04]
ShortcutTarget: FAH.lnk -> C:\Program Files\WinZip\FAH\FAHConsole.exe (Nico Mak Computing)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2015-07-04]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (WinZip Computing, S.L.)
Startup: C:\Users\windows\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2014-11-08]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 113.193.12.14 113.193.1.14
Tcpip\..\Interfaces\{87FFC355-397F-4EBA-A7BF-9FEFAD83AD19}: [DhcpNameServer] 113.193.12.14 113.193.1.14
Tcpip\..\Interfaces\{C919CC4A-4518-431F-ADF0-F73265B40962}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://in.search.yahoo.com/search?fr=vmn&type=vmn__webcompa__1_0__ya__ch_WCYID10099_swoc_campaign_150804__yaie&p={searchTerms}
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-28] (Kaspersky Lab ZAO)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: iSkysoft Video Converter Ultimate 5.1.0 -> {AEAF002F-E6D8-4A21-ABD3-2B309B79A6CE} -> C:\PROGRA~2\iSkysoft\VIDEOC~1\WSBROW~1.DLL => No File
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\6tfvkh2r.default-1445153836675
FF Homepage: hxxps://www.google.co.in/?gfe_rd=cr&ei=X3SjVYT8AujI8Af9grvABw&gws_rd=ssl
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-19] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation)
FF Plugin: @kaspersky.com/content_blocker -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] ()
FF Plugin: @kaspersky.com/online_banking -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] ()
FF Plugin: @kaspersky.com/virtual_keyboard -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Extension: Ant Video Downloader - C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\6tfvkh2r.default-1445153836675\Extensions\[email protected] [2015-10-20]
FF Extension: ZenMate Security, Privacy & Unblock VPN - C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\6tfvkh2r.default-1445153836675\Extensions\[email protected] [2015-10-19] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Dangerous Websites Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected] [2014-10-28] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\iSkysoft\Video Converter Ultimate\[email protected] => not found
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-14]

Chrome:
=======
CHR Profile: C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Slides) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-16]
CHR Extension: (Google Docs) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-16]
CHR Extension: (Google Drive) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-18]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-08-11]
CHR Extension: (YouTube) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-16]
CHR Extension: (Kaspersky Protection) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-04-16]
CHR Extension: (Google Sheets) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-16]
CHR Extension: (Google Docs Offline) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04]
CHR Extension: (Facebook - Delete All Messages) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hgiidlnejdlfoacoeleopkljhbckmlko [2015-08-27]
CHR Extension: (Chrome Web Store Payments) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Sidekick by HubSpot) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\oiiaigjnkhngdbnoookogelabohpglmd [2015-10-20]
CHR Extension: (Gmail) - C:\Users\windows\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-16]

Opera:
=======
OPR Extension: (WOT) - C:\Users\windows\AppData\Roaming\Opera Software\Opera Stable\Extensions\eeokceolphhfjdfcibaiiopmekmcbedp [2015-05-29]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP15.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-06-02] (Foxit Software Inc.)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-05-06] (Freemake) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
R2 UDisk Monitor; C:\Program Files\Reliance Netconnect+\bin\MonServiceUDisk.exe [512000 2011-10-31] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [508632 2014-10-29] (Broadcom Corporation.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135264 2014-02-20] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112136 2014-10-28] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [34400 2014-04-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [644808 2014-10-28] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [24672 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [14432 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [45024 2014-03-25] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145888 2014-03-26] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2014-08-15] (Apple, Inc.) [File not signed]
S3 ztemtusbser; C:\Windows\System32\DRIVERS\CT_ZTEMT_U_USBSER.sys [105472 2011-10-27] (ZTEMT Incorporated)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-24 09:02 - 2015-10-24 09:02 - 00017021 _____ C:\Users\windows\Desktop\FRST.txt
2015-10-23 10:18 - 2015-10-23 10:23 - 00000000 ____D C:\Users\windows\Desktop\Viru Humor
2015-10-23 09:12 - 2015-10-23 09:19 - 01700352 _____ (Farbar) C:\Users\windows\Desktop\FRST(1).exe
2015-10-23 09:03 - 2015-10-23 09:05 - 00000000 ____D C:\Users\windows\Desktop\FRST-OlderVersion
2015-10-22 11:30 - 2015-10-22 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-10-19 09:58 - 2015-10-19 09:58 - 00000000 ____D C:\Users\Jini\AppData\Roaming\Mozilla
2015-10-19 09:58 - 2015-10-19 09:58 - 00000000 ____D C:\Users\Jini\AppData\Local\Mozilla
2015-10-16 09:21 - 2015-10-17 06:33 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-16 08:52 - 2015-10-24 08:54 - 00001512 _____ C:\Windows\setupact.log
2015-10-16 08:52 - 2015-10-16 08:52 - 00000000 _____ C:\Windows\setuperr.log
2015-10-15 14:03 - 2015-09-18 23:17 - 00023384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-15 14:03 - 2015-09-18 23:14 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-15 14:03 - 2015-09-18 23:14 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-15 14:03 - 2015-09-18 23:14 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-15 14:03 - 2015-09-18 23:14 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-15 14:03 - 2015-09-18 23:14 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-15 14:03 - 2015-09-18 23:05 - 00999936 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-14 06:36 - 2015-10-14 06:36 - 08776392 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2015-10-14 06:31 - 2015-09-29 08:35 - 03990976 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-10-14 06:31 - 2015-09-29 08:35 - 03936192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 06:31 - 2015-09-29 08:32 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-14 06:31 - 2015-09-29 08:29 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-14 06:31 - 2015-09-29 08:28 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-14 06:31 - 2015-09-29 08:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-10-14 06:31 - 2015-09-29 08:28 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-14 06:31 - 2015-09-29 08:28 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-14 06:31 - 2015-09-29 08:28 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-14 06:31 - 2015-09-29 08:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-14 06:31 - 2015-09-29 08:23 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-10-14 06:31 - 2015-09-29 08:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-10-14 06:31 - 2015-09-29 08:19 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-10-14 06:31 - 2015-09-29 08:19 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-10-14 06:31 - 2015-09-29 07:13 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-14 06:31 - 2015-09-29 07:13 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-10-14 06:31 - 2015-09-29 07:13 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-10-14 06:31 - 2015-09-15 23:12 - 00139096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-10-14 06:31 - 2015-09-15 23:12 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-14 06:31 - 2015-09-15 23:06 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-14 06:31 - 2015-09-15 23:06 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-14 06:31 - 2015-09-15 23:05 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-14 06:31 - 2015-08-06 23:14 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 06:31 - 2015-08-06 23:14 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 06:31 - 2015-07-18 18:38 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 06:30 - 2015-10-01 23:20 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 06:30 - 2015-10-01 23:20 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-14 06:30 - 2015-10-01 23:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-14 06:30 - 2015-10-01 23:20 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-14 06:30 - 2015-10-01 23:20 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 06:30 - 2015-10-01 22:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-14 06:30 - 2015-09-25 23:29 - 02955776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-14 06:30 - 2015-09-25 23:29 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-14 06:30 - 2015-09-25 23:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-10-14 06:30 - 2015-09-25 23:28 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-14 06:30 - 2015-09-25 23:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-10-14 06:30 - 2015-09-25 23:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-10-14 06:29 - 2015-09-19 00:28 - 00345688 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-10-14 06:29 - 2015-09-16 09:28 - 20357632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 06:29 - 2015-09-16 09:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-14 06:29 - 2015-09-16 09:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 06:29 - 2015-09-16 09:03 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 06:29 - 2015-09-16 09:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-10-14 06:29 - 2015-09-16 09:02 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-14 06:29 - 2015-09-16 09:02 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-10-14 06:29 - 2015-09-16 09:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-10-14 06:29 - 2015-09-16 08:58 - 02279936 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-14 06:29 - 2015-09-16 08:56 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-14 06:29 - 2015-09-16 08:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-10-14 06:29 - 2015-09-16 08:54 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-14 06:29 - 2015-09-16 08:53 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-14 06:29 - 2015-09-16 08:53 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-10-14 06:29 - 2015-09-16 08:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 06:29 - 2015-09-16 08:52 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-10-14 06:29 - 2015-09-16 08:48 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 06:29 - 2015-09-16 08:45 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-14 06:29 - 2015-09-16 08:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 06:29 - 2015-09-16 08:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-10-14 06:29 - 2015-09-16 08:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-14 06:29 - 2015-09-16 08:35 - 04527616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 06:29 - 2015-09-16 08:35 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-14 06:29 - 2015-09-16 08:34 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-10-14 06:29 - 2015-09-16 08:28 - 12853760 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 06:29 - 2015-09-16 08:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-10-14 06:29 - 2015-09-16 08:26 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-14 06:29 - 2015-09-16 08:26 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-10-14 06:29 - 2015-09-16 08:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-14 06:29 - 2015-09-16 08:25 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-10-14 06:29 - 2015-09-16 08:07 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-14 06:29 - 2015-09-16 08:04 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-14 06:29 - 2015-09-16 08:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-10-09 08:50 - 2015-10-09 08:54 - 102162936 _____ C:\Users\windows\Downloads\One _ Navarasam - Thaikkudam Bridge - Official HD Music Video - Kappa TV.mp4
2015-10-08 09:40 - 2015-10-08 09:40 - 00109785 _____ C:\Users\windows\Desktop\Tamilnadu_PEC_details.xlsx
2015-10-08 09:22 - 2015-10-08 09:39 - 00109784 _____ C:\Users\windows\Downloads\Tamilnadu_PEC_details.xlsx
2015-10-08 09:22 - 2015-10-08 09:22 - 00111359 _____ C:\Users\windows\Downloads\00PEC_report.xlsx
2015-10-06 10:18 - 2015-10-06 10:18 - 08182018 _____ C:\Users\windows\Downloads\Cyber Sipahi.mp4
2015-09-29 11:47 - 2015-09-29 11:47 - 00984015 _____ C:\Users\windows\Downloads\Outlook.com.zip
2015-09-25 08:40 - 2015-09-25 09:24 - 739834351 _____ C:\Users\windows\Downloads\Pope Francis addresses Joint Session of Congress – FULL SPEECH (C-SPAN).mp4
2015-09-24 08:37 - 2015-09-24 15:34 - 00000000 ____D C:\Users\windows\Desktop\Ganpat

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-24 09:02 - 2015-07-02 09:57 - 00000000 ____D C:\FRST
2015-10-24 09:00 - 2014-10-29 09:32 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-24 08:58 - 2014-10-27 19:35 - 01719451 _____ C:\Windows\WindowsUpdate.log
2015-10-24 08:55 - 2014-10-29 09:32 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-24 08:55 - 2014-10-27 20:28 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-10-24 08:54 - 2009-07-14 10:23 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-23 15:21 - 2009-07-14 10:04 - 00020640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-23 15:21 - 2009-07-14 10:04 - 00020640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-23 15:20 - 2015-08-19 15:15 - 00000000 ____D C:\Users\windows\Desktop\Stuff
2015-10-23 14:36 - 2015-07-21 11:14 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-23 09:50 - 2010-11-21 02:31 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-23 09:23 - 2010-11-21 03:18 - 00047148 _____ C:\Windows\PFRO.log
2015-10-23 09:20 - 2015-03-24 14:36 - 00000000 ____D C:\Users\windows\AppData\Local\CrashDumps
2015-10-22 11:30 - 2015-02-09 15:50 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-10-21 09:40 - 2015-05-27 10:38 - 00000000 ____D C:\Program Files\Opera
2015-10-19 13:56 - 2015-07-21 11:14 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-19 13:56 - 2015-07-21 11:14 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-10-19 07:09 - 2014-10-29 08:53 - 00000000 ____D C:\Plugins
2015-10-18 11:31 - 2009-07-14 08:07 - 00000000 ____D C:\Windows\rescache
2015-10-17 06:42 - 2015-09-13 06:38 - 00000000 ____D C:\Users\windows\Desktop\Jan
2015-10-17 06:27 - 2015-07-03 11:57 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-16 09:04 - 2014-10-29 09:34 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-15 15:30 - 2015-04-15 16:58 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-15 15:30 - 2015-04-15 16:58 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-14 12:53 - 2014-10-27 19:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 09:40 - 2014-10-29 17:25 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 09:32 - 2014-10-29 17:25 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-12 16:21 - 2014-12-28 16:24 - 00032768 _____ C:\Windows\system32\persistent_q.db-shm
2015-10-12 08:28 - 2009-07-14 10:23 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-10-12 08:21 - 2015-04-04 15:13 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-08 08:51 - 2009-07-14 08:07 - 00000000 ____D C:\Windows\system32\NDF
2015-10-05 08:31 - 2015-08-19 06:21 - 00000000 ____D C:\Users\windows\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
2015-10-03 13:50 - 2015-08-09 06:24 - 00000000 ____D C:\Users\windows\Documents\Pictures(3)
2015-10-03 13:27 - 2015-07-09 08:25 - 00006656 _____ C:\Users\windows\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-10-03 11:42 - 2015-05-21 10:55 - 00000000 ____D C:\Users\windows\Desktop\Jini
2015-09-29 11:49 - 2015-07-04 10:11 - 00000000 ____D C:\Users\windows\AppData\Local\WinZip
2015-09-24 20:44 - 2015-09-20 07:52 - 08558071 _____ C:\Users\windows\Documents\BREAST IMAGING MMM.pptx

==================== Files in the root of some directories =======

2015-07-09 08:25 - 2015-10-03 13:27 - 0006656 _____ () C:\Users\windows\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-21 08:35

==================== End of FRST.txt ============================

 

--------------------------------------------------------------------------------------------------

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version:22-10-2015
Ran by windows (2015-10-24 09:03:28)
Running from C:\Users\windows\Desktop
Microsoft Windows 7 Home Basic  Service Pack 1 (X86) (2014-10-27 14:06:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2511622759-3551197285-1972888053-500 - Administrator - Disabled)
Guest (S-1-5-21-2511622759-3551197285-1972888053-501 - Limited - Disabled)
Jini (S-1-5-21-2511622759-3551197285-1972888053-1001 - Limited - Enabled) => C:\Users\Jini
windows (S-1-5-21-2511622759-3551197285-1972888053-1000 - Administrator - Enabled) => C:\Users\windows

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Any Video Converter 5.8.3 (HKLM\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-bit) (HKLM\...\{3540ADD5-822B-47FB-B1C2-CD7B2C8E9FEC}) (Version: 4.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{A75CA58D-DB9C-4D14-9428-E0C7B0F623DC}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
Capture Screenshot lite version 14 (HKLM\...\{BE2B6229-7D74-414B-8636-7B8F60C4525C}_is1) (Version: 14 - GutmannSoft)
Foxit Cloud (HKLM\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.5.116.602 - Foxit Software Inc.)
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 6.2.1.618 - Foxit Corporation)
Freemake Video Converter version 4.1.6 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.71 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
iCloud (HKLM\...\{9A07AB4F-6B53-43E9-B7FC-7892E8C26BE3}) (Version: 4.1.1.53 - Apple Inc.)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
iTunes (HKLM\...\{9E9CFD9F-64D6-498F-8584-E5CD08BA60BE}) (Version: 12.3.0.44 - Apple Inc.)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Kaspersky Internet Security (HKLM\...\InstallWIX_{653C1B5A-3287-47B1-8613-0745D4E771C4}) (Version: 15.0.0.463 - Kaspersky Lab)
Kaspersky Internet Security (Version: 15.0.0.463 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Mozilla Firefox 41.0.2 (x86 en-US) (HKLM\...\Mozilla Firefox 41.0.2 (x86 en-US)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
Nero 7 Premium (HKLM\...\{2D7D9D86-923A-41A8-919F-437332AB1033}) (Version: 7.02.2760 - Nero AG)
Opera Stable 32.0.1948.69 (HKLM\...\Opera 32.0.1948.69) (Version: 32.0.1948.69 - Opera Software)
QuickTime 7 (HKLM\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Reliance Netconnect+ (HKLM\...\ZTEWireless-101_is1) (Version:  - )
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5800 - Broadcom Corporation)
WinZip 19.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EC}) (Version: 19.5.11532 - WinZip Computing, S.L. )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader.dll ()

==================== Restore Points =========================

15-10-2015 15:29:46 Windows Update
19-10-2015 06:06:00 Windows Backup
19-10-2015 07:00:23 Windows Backup
20-10-2015 13:24:36 Windows Update
23-10-2015 09:20:12 Restore Point Created by FRST
23-10-2015 13:58:38 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 07:34 - 2009-06-11 03:09 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {054EAA76-BDD4-4196-A396-BAC11A022CDE} - System32\Tasks\{9AFD77DE-F7D7-4F94-832A-F8D8D66F0BEB} => pcalua.exe -a C:\Users\windows\Downloads\startuplite-setup-1.07.exe -d C:\Users\windows\Downloads
Task: {1583D5FE-2E46-4522-8E9A-3A5851A3DCE7} - System32\Tasks\RunAsStdUser Task for VeohWebPlayer => C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
Task: {2F72597E-B8E9-4387-9FBC-020616C48E45} - System32\Tasks\{1C783C58-D146-48E7-8D5A-F9019F84A5E2} => pcalua.exe -a C:\Users\windows\Downloads\chromeinstall-8u25.exe -d C:\Users\windows\Downloads
Task: {3CEE40ED-D459-496B-AC6F-7293B102702A} - System32\Tasks\Opera scheduled Autoupdate 1432703364 => C:\Program Files\Opera\launcher.exe [2015-09-25] (Opera Software)
Task: {59881423-BE32-4EEC-AD65-F0947EBEAAF0} - System32\Tasks\{1E685CAE-7D2F-47B8-B9E9-CDC3798E55D1} => pcalua.exe -a D:\backup\Downloads\irfanview_plugins_437_setup.exe -d D:\backup\Downloads
Task: {6422BC80-217E-4B05-BBFA-106659984625} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-19] (Adobe Systems Incorporated)
Task: {77EE8791-64A4-4E74-A411-3FC1FAE5C13B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {E4A97C6B-FAF5-4B99-8A81-72AC70A69657} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {E51C069E-50B5-4546-A0B4-AED489B4FFFE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {F42C0942-099A-46AD-89C9-2FCDBD8D675E} - System32\Tasks\{DA474F9C-001F-4EC4-98BC-976B0907E490} => pcalua.exe -a C:\Users\windows\Downloads\Apps\startuplite-setup-1.07.exe -d C:\Users\windows\Downloads\Apps

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-01-20 22:35 - 2015-01-20 22:35 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 01040144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-06 15:00 - 2014-03-06 15:00 - 01269952 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\kpcengine.2.3.dll
2015-06-20 16:15 - 2011-10-31 15:37 - 00512000 _____ () C:\Program Files\Reliance Netconnect+\bin\MonServiceUDisk.exe
2014-04-20 01:42 - 2014-04-20 01:42 - 00468672 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]\npcontentblocker.dll
2014-04-20 01:42 - 2014-10-28 17:40 - 00642344 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]\npvkplugin.dll
2014-04-20 01:42 - 2014-04-20 01:42 - 00347328 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\[email protected]\nponlinebanking.dll
2015-10-24 09:01 - 2015-10-22 23:16 - 00939088 _____ () C:\Program Files\Google\Update\Install\{79A1C28B-CD6F-4C87-AC22-81595D9C9AA4}\46.0.2490.80_46.0.2490.71_chrome_updater.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\...\localhost -> localhost


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2511622759-3551197285-1972888053-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\windows\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
DNS Servers: 113.193.12.14 - 113.193.1.14
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: iSkysoft Helper Compact.exe => C:\Program Files\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Faulty Device Manager Devices =============

Name: BAPIDRV
Description: BAPIDRV
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: BAPIDRV
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Atheros AR5007EG Wireless Network Adapter
Description: Atheros AR5007EG Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/24/2015 08:56:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/24/2015 08:55:18 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (10/23/2015 03:14:31 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (10/23/2015 02:14:31 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (10/23/2015 01:14:27 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (10/23/2015 12:30:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/23/2015 12:29:08 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (10/23/2015 10:09:41 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (10/23/2015 09:46:47 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={8F8562AF-2371-460C-B42C-0DA52D001B2A}: The user windows-PC\windows dialed a connection named Reliance Netconnect+ which has failed. The error code returned on failure is 0.

Error: (10/23/2015 09:25:30 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (10/23/2015 03:21:53 PM) (Source: NetBT) (EventID: 4300) (User: )
Description: The driver could not be created.

Error: (10/23/2015 03:21:53 PM) (Source: NetBT) (EventID: 4300) (User: )
Description: The driver could not be created.

Error: (10/23/2015 01:55:08 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (10/23/2015 01:14:27 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (10/23/2015 10:36:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The UPnP Device Host service failed to start due to the following error:
%%1069

Error: (10/23/2015 10:36:19 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: The upnphost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error:
%%50

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (10/23/2015 10:36:19 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1069upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}

Error: (10/23/2015 10:09:41 AM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (10/23/2015 08:54:54 AM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (10/22/2015 09:07:26 AM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}


CodeIntegrity:
===================================
  Date: 2015-08-04 09:18:03.288
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-04 09:18:03.127
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-03-10 09:16:41.057
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX86\klelam.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Pentium® Dual-Core CPU T4400 @ 2.20GHz
Percentage of memory in use: 55%
Total physical RAM: 2008.61 MB
Available physical RAM: 898.42 MB
Total Virtual: 4017.23 MB
Available Virtual: 2624.48 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:99.66 GB) (Free:34.05 GB) NTFS
Drive d: () (Fixed) (Total:200 GB) (Free:137.86 GB) NTFS
Drive e: () (Fixed) (Total:165.76 GB) (Free:85.91 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4D476B20)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=99.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=165.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

 

Thank you so much for your time and expertise.  Please let me know how these problems can be avoided.


  • 0

#8
Essexboy
Posted 24 October 2015 - 03:51 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
The problem appeared to be the Lavasoft winsock I do not know where it comes from but I have seen many instances of this being a problem

Subject to no further problems :)

I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems

Now the best part of the day ----- Your log now appears clean :thumbsup:

A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:

Remove tools

Download and run Delfix
Select the options as shown
delfix.JPG


: Keep Java Updated :

WARNING: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
See this article

I would recommend that you completely uninstall Java unless you need it to run an important software.
In that instance I would recommend that you disable Java in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser and How to unplug Java from the browser)

If you do need to keep Java then download JavaRa
Run the programme and select Remove Java Runtime. Uninstall all versions of Java present
Once done then run it again and select Update Java runtime > Download and install Latest version
javara.JPG


Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:

CryptoPrevent install this programme to lock down and prevent crypto ransome ware

CryptoPrevent.JPG

Malwarebytes

Update and run weekly to keep your system clean

Unchecky

Click on the link above to be taken to Unchecky.com
click the very large Download button.
click Save
Click Open folder
Right click on the Unchecky_setup and choose to Run as Administrator
Once open click the Install button.
Then click on Finish
Unchecky is now installed and will help you keep unwanted check boxes unchecked, this is a fire and forget programme ;)

It is critical to have both a firewall and anti virus to protect your system and to keep them updated.

To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe :wave:
  • 0

#9
Hari Prahlad
Posted 25 October 2015 - 09:51 PM

Hari Prahlad

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 301 posts

Thank you so much for your time and advice. 


  • 0

#10
Essexboy
Posted 26 October 2015 - 08:54 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP