API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Nov 29th, 2015
313
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 45.38 KB | None | 0 0
raw download clone embed print report
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-11-2015
  2. Ran by PapaCraw (2015-11-29 16:39:49)
  3. Running from C:\Users\PapaCraw\Downloads
  4. Windows 8 Pro (X64) (2014-11-16 09:21:06)
  5. Boot Mode: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Accounts: =============================
  10.  
  11. admin (S-1-5-21-1322733642-1108219750-3070097398-1004 - Administrator - Enabled) => C:\Users\admin
  12. Administrator (S-1-5-21-1322733642-1108219750-3070097398-500 - Administrator - Disabled)
  13. Guest (S-1-5-21-1322733642-1108219750-3070097398-501 - Limited - Disabled) => C:\Users\Guest
  14. HomeGroupUser$ (S-1-5-21-1322733642-1108219750-3070097398-1003 - Limited - Enabled)
  15. PapaCraw (S-1-5-21-1322733642-1108219750-3070097398-1001 - Administrator - Enabled) => C:\Users\PapaCraw
  16.  
  17. ==================== Security Center ========================
  18.  
  19. (If an entry is included in the fixlist, it will be removed.)
  20.  
  21. AV: Symantec Endpoint Protection (Disabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
  22. AV: ESET NOD32 Antivirus 9.0.318.0 (Enabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
  23. AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  24. AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  25. AS: Symantec Endpoint Protection (Disabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
  26. AS: ESET NOD32 Antivirus 9.0.318.0 (Enabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
  27. FW: Symantec Endpoint Protection (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
  28.  
  29. ==================== Installed Programs ======================
  30.  
  31. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  32.  
  33. Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
  34. Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
  35. Apple Application Support (32-bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
  36. Apple Application Support (64-bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
  37. Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
  38. Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
  39. ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS)
  40. ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS)
  41. ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.14 - ASUS)
  42. ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.02.0001 - ASUS)
  43. ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
  44. ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0036 - ASUS)
  45. Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.1.0.4 - Electronic Arts)
  46. Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
  47. Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
  48. Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
  49. CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
  50. ESET NOD32 Antivirus (HKLM\...\{60853F5E-E6F5-4A34-BBCD-C09D49BB5E64}) (Version: 9.0.318.0 - ESET, spol. s r.o.)
  51. ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
  52. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
  53. Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
  54. Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
  55. HP ENVY 5530 series Basic Device Software (HKLM\...\{FE11AA0F-756F-4879-97A0-B1705E2DCABE}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
  56. HP ENVY 5530 series Help (HKLM-x32\...\{97EAE055-1BE8-4775-8101-453E9715EC3F}) (Version: 30.0.0 - Hewlett Packard)
  57. HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
  58. HP Support Solutions Framework (HKLM-x32\...\{E35601C0-BA8E-4F32-919A-C7EF4CA81F67}) (Version: 11.51.0048 - Hewlett-Packard Company)
  59. InstallRoot (HKLM\...\{A765EB7C-8360-49B8-804D-E2FB6D613C1D}) (Version: 4.1 - DoD PKE)
  60. Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
  61. Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
  62. Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3574 - Intel Corporation)
  63. Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1414.3) (HKLM\...\{302600C1-6BDF-4FD1-1403-148929CC1385}) (Version: 17.0.1403.0442 - Intel Corporation)
  64. Intel® PROSet/Wireless Software (HKLM-x32\...\{b9007812-6a61-4dfc-8a0c-4c726c7dc43f}) (Version: 17.0.1 - Intel Corporation)
  65. Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
  66. iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
  67. Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version: - Big Huge Games)
  68. Kodi (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\Kodi) (Version: - XBMC-Foundation)
  69. League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
  70. League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
  71. Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
  72. Mass Effect™ (HKLM-x32\...\{44A570EE-FD93-4086-8997-2C38DFDE0019}) (Version: 1.2.20608.0 - Electronic Arts)
  73. Mass Effect™ 2 (HKLM-x32\...\{E19B628D-A9BC-4519-B1D4-4C8C09074F7F}) (Version: 1.2.1604.0 - Electronic Arts)
  74. Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts)
  75. Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
  76. Microsoft ASP.Net Web Frameworks 5.0 Security Update (KB2992080) (HKLM-x32\...\{3EC4A844-24F2-46DA-AEFB-FC3080C1BDB9}) (Version: 5.0.20821 - Microsoft Corporation)
  77. Microsoft ASP.Net Web Frameworks 5.1 Security Update (KB2994397) (HKLM-x32\...\{94F716A3-CBBA-4005-9516-1C4267DDB824}) (Version: 5.1.20821 - Microsoft Corporation)
  78. Microsoft Baseline Security Analyzer 2.3 (HKLM\...\{C058FC5D-565F-4360-A562-0527A3D993DC}) (Version: 2.3.2211 - Microsoft Corporation)
  79. Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4771.1004 - Microsoft Corporation)
  80. Microsoft OneDrive (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
  81. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
  82. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
  83. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
  84. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
  85. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
  86. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
  87. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  88. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
  89. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  90. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
  91. Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  92. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  93. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
  94. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
  95. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
  96. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  97. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  98. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  99. Microsoft Web Platform Installer 5.0 (HKLM\...\{4D84C195-86F0-4B34-8FDE-4A17EB41306A}) (Version: 5.0.50430.0 - Microsoft Corporation)
  100. NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.3.1.46 - NETGEAR Inc.)
  101. Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.7 - Notepad++ Team)
  102. NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
  103. NVIDIA Graphics Driver 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
  104. NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
  105. Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
  106. Office 15 Click-to-Run Licensing Component (Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
  107. Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
  108. Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
  109. PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
  110. Popcorn Time (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\Popcorn Time) (Version: - Popcorn Official)
  111. Popcorn Time Community 0.3.8-6 (HKLM-x32\...\Popcorn Time Community 0.3.8-6) (Version: 0.3.8-6 - Popcorn Time Community)
  112. PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
  113. Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.21243 - Realtek Semiconductor Corp.)
  114. Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.33.529.2014 - Realtek)
  115. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7283 - Realtek Semiconductor Corp.)
  116. SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
  117. SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
  118. Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
  119. SONAR X3 Producer Trial (x64) (HKLM-x32\...\SONARX3ProducerTrial_x64_is1) (Version: 20.0 - Cakewalk Music Software)
  120. Spotify (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
  121. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  122. Stremio (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\Stremio) (Version: 3.4.0 - Smart Code Ltd.)
  123. Symantec Endpoint Protection (HKLM\...\{A5DCF955-5D4A-471D-8CB3-DCFDF5C5DEE7}) (Version: 12.1.5337.5000 - Symantec Corporation)
  124. TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
  125. Tixati (HKLM-x32\...\tixati) (Version: - )
  126. Total Tester Security+ Practice Exam, 2nd Edition v6.2 (HKLM-x32\...\{D9EFAEC8-268C-46B0-9D47-E425D650E6DA}) (Version: 12.6.2 - Total Seminars, LLC)
  127. Total Tester Security+ Study Guide, 2nd Edition v6.2 (HKLM-x32\...\{A2B4E7B2-4C6C-4813-A68D-EA475E12500A}) (Version: 12.6.2 - Total Seminars, LLC)
  128. VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
  129. Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
  130. Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
  131. VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 10.0.1 - VMware, Inc)
  132. VMware Workstation (Version: 10.0.1 - VMware, Inc.) Hidden
  133. WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.15.438 - ASUS Cloud Corporation)
  134. WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
  135. Windows Driver Package - ASUS (ATP) Mouse (03/17/2014 1.0.0.207) (HKLM\...\AA2CC56D4BBEE037DC99871F5F6551133D2A0CC3) (Version: 03/17/2014 1.0.0.207 - ASUS)
  136. WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
  137. WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
  138.  
  139. ==================== Custom CLSID (Whitelisted): ==========================
  140.  
  141. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  142.  
  143.  
  144. ==================== Restore Points =========================
  145.  
  146. 16-11-2015 19:22:33 Windows Update
  147. 25-11-2015 18:19:17 Scheduled Checkpoint
  148. 27-11-2015 20:50:17 Removed Microsoft Silverlight
  149. 29-11-2015 16:09:00 JRT Pre-Junkware Removal
  150.  
  151. ==================== Hosts content: ===============================
  152.  
  153. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  154.  
  155. 2013-08-22 05:25 - 2013-08-22 05:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
  156.  
  157.  
  158. ==================== Scheduled Tasks (Whitelisted) =============
  159.  
  160. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  161.  
  162. Task: {044D2C1F-F256-4E38-AA9E-255D103B059F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-22] (Google Inc.)
  163. Task: {0F82BBC4-D167-4FB3-816C-1FCCD1487CF2} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
  164. Task: {12C650F9-0E77-42A8-B8C7-3C70E73F1B91} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
  165. Task: {29C80829-029F-4A92-845A-97D0175C508A} - System32\Tasks\{55522518-D77C-4F0D-985F-868567C85590} => pcalua.exe -a C:\Users\PapaCraw\Downloads\ffdshow-20041012.exe -d C:\Users\PapaCraw\Downloads
  166. Task: {2A39160E-041A-4FF6-AC52-35E6BF0867D8} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
  167. Task: {30718720-E374-40EF-B6CB-D9C5772B08B7} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-06-03] (ASUS)
  168. Task: {319E6129-F692-4967-B14F-AD570C166E80} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
  169. Task: {3D6DCCE8-2BF8-4504-AE2A-FCE5C09B39F9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
  170. Task: {5A55A705-F973-4CBC-9D7C-D1C1E7E34957} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1322733642-1108219750-3070097398-1001 => C:\Users\PapaCraw\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2015-01-31] (Microsoft Corporation)
  171. Task: {7AC56F2A-1388-43EC-9383-6A0B1E0E6081} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
  172. Task: {83DF24B3-D604-473C-91BF-61049DB94FCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.)
  173. Task: {885572FC-C2AE-45DF-BF1D-6D2E7ABB72F8} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-06-30] (Realtek Semiconductor)
  174. Task: {9313C82D-AB87-4862-804E-2F56272AF2B1} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-1322733642-1108219750-3070097398-1001
  175. Task: {952A38B3-2764-4DCE-8700-4F902D20B0C3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-22] (Google Inc.)
  176. Task: {9717747E-F5A2-4C62-9715-2DF59C9E9F87} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] ()
  177. Task: {A009187F-1BED-4BF9-B88B-EE8C55CCACC6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
  178. Task: {ABC09F29-3D23-49CF-9CD2-1F7B42903ACB} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-03-27] (ASUSTek Computer Inc.)
  179. Task: {ACB1DEEB-D558-4E25-AB17-D42F2B6C08CA} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
  180. Task: {F5D12B01-7592-4F0F-99F3-E0621C0B5C59} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-06-30] (Realtek Semiconductor)
  181. Task: {FAC0B12E-2873-48E7-A6D5-20A7EC9243DF} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-03-31] (AsusTek)
  182.  
  183. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  184.  
  185. Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  186. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  187. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  188.  
  189. ==================== Shortcuts =============================
  190.  
  191. (The entries could be listed to be restored or removed.)
  192.  
  193. ==================== Loaded Modules (Whitelisted) ==============
  194.  
  195. 2014-09-15 20:08 - 2015-01-09 15:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
  196. 2015-05-15 15:26 - 2015-05-15 15:26 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
  197. 2015-10-13 05:45 - 2015-10-13 05:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
  198. 2015-09-15 19:32 - 2015-09-01 08:04 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
  199. 2015-04-08 18:46 - 2015-10-13 04:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
  200. 2014-09-15 20:21 - 2013-05-15 13:39 - 00463872 _____ () C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
  201. 2014-11-06 07:28 - 2014-11-06 07:28 - 00105216 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
  202. 2015-02-13 12:53 - 2015-02-13 12:53 - 00077432 _____ () C:\Program Files\DoD-PKE\InstallRoot\IrTampLib_SWIG_sc.dll
  203. 2015-02-13 12:45 - 2015-02-13 12:45 - 03716728 _____ () C:\Program Files\DoD-PKE\InstallRoot\IrTampLib_SWIG_vc.DLL
  204. 2015-04-24 19:40 - 2015-04-24 19:40 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
  205. 2013-10-18 11:10 - 2013-10-18 11:10 - 14405200 _____ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
  206. 2014-06-03 19:01 - 2014-06-03 19:01 - 00117248 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
  207. 2014-06-03 19:01 - 2014-06-03 19:01 - 00037936 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
  208. 2014-06-03 19:01 - 2014-06-03 19:01 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll
  209. 2014-06-03 19:01 - 2014-06-03 19:01 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll
  210. 2015-04-05 19:23 - 2015-03-27 19:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
  211. 2013-09-28 17:13 - 2013-09-28 17:13 - 00544817 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libgcc_s_dw2-1.dll
  212. 2013-09-28 17:13 - 2013-09-28 17:13 - 00989805 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libstdc++-6.dll
  213. 2013-09-28 17:14 - 2013-09-28 17:14 - 03369922 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icuin51.dll
  214. 2013-09-28 17:14 - 2013-09-28 17:14 - 01978690 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icuuc51.dll
  215. 2013-09-28 17:14 - 2013-09-28 17:14 - 22378434 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icudt51.dll
  216. 2013-09-28 17:14 - 2013-09-28 17:14 - 01233408 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\platforms\qwindows.dll
  217. 2014-11-17 01:46 - 2014-11-17 01:46 - 00639488 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\Genie.dll
  218. 2014-11-10 01:55 - 2014-11-10 01:55 - 01686016 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SvtNetworkTool.dll
  219. 2014-11-04 23:36 - 2014-11-04 23:36 - 00192512 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Airprint.dll
  220. 2014-11-04 23:37 - 2014-11-04 23:37 - 00632832 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Internet.dll
  221. 2014-11-14 02:53 - 2014-11-14 02:53 - 06499840 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Map.dll
  222. 2014-06-29 17:55 - 2014-06-29 17:55 - 00068608 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QRCode.dll
  223. 2014-06-29 18:05 - 2014-06-29 18:05 - 01183232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\qwt.dll
  224. 2014-11-07 01:13 - 2014-11-07 01:13 - 02475520 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_MyMedia.dll
  225. 2012-10-15 12:27 - 2012-10-15 12:27 - 00111616 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libvlc.dll
  226. 2012-10-15 12:28 - 2012-10-15 12:28 - 02286592 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libvlccore.dll
  227. 2014-11-16 23:00 - 2014-11-16 23:00 - 01056768 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_NetworkProblem.dll
  228. 2014-09-11 00:39 - 2014-09-11 00:39 - 00144896 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DragonNetTool.dll
  229. 2014-11-04 23:51 - 2014-11-04 23:51 - 01191424 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_ParentalControl.dll
  230. 2014-11-16 22:21 - 2014-11-16 22:21 - 10374656 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Resource.dll
  231. 2014-11-16 22:18 - 2014-11-16 22:18 - 02496512 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_RouterConfiguration.dll
  232. 2014-11-06 01:39 - 2014-11-06 01:39 - 00200192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Statistics.dll
  233. 2014-11-04 23:58 - 2014-11-04 23:58 - 00889344 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Ui.dll
  234. 2014-11-05 00:00 - 2014-11-05 00:00 - 00435712 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Wireless.dll
  235. 2013-09-28 17:13 - 2013-09-28 17:13 - 00051200 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qgif.dll
  236. 2013-09-28 17:13 - 2013-09-28 17:13 - 00052224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qico.dll
  237. 2013-09-28 17:13 - 2013-09-28 17:13 - 00261120 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qjpeg.dll
  238. 2013-09-28 17:13 - 2013-09-28 17:13 - 00046080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qsvg.dll
  239. 2014-06-29 17:55 - 2014-06-29 17:55 - 00081408 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnosePlugin.dll
  240. 2014-11-03 00:23 - 2014-11-03 00:23 - 00143360 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnoseDll.dll
  241. 2014-06-18 18:22 - 2014-06-18 18:22 - 02177405 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\drivers\libntgr_api.dll
  242. 2014-09-03 22:00 - 2014-09-03 22:00 - 00072192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SVTUtils.dll
  243. 2014-09-03 22:00 - 2014-09-03 22:00 - 00074240 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NetcardApi.dll
  244. 2014-09-03 22:00 - 2014-09-03 22:00 - 00136704 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\airprintdll.dll
  245. 2012-10-15 12:28 - 2012-10-15 12:28 - 00219648 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\access\libdshow_plugin.dll
  246. 2012-10-15 12:28 - 2012-10-15 12:28 - 00049664 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\audio_output\libaout_directx_plugin.dll
  247. 2012-10-15 12:28 - 2012-10-15 12:28 - 00051200 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\audio_output\libwaveout_plugin.dll
  248. 2012-10-15 12:28 - 2012-10-15 12:28 - 00070144 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\video_output\libdirectx_plugin.dll
  249. 2013-09-28 17:13 - 2013-09-28 17:13 - 00040960 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\printsupport\windowsprintersupport.dll
  250. 2014-11-04 23:59 - 2014-11-04 23:59 - 00642048 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_Update.dll
  251. 2014-11-05 00:01 - 2014-11-05 00:01 - 00458752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_WirelessExport.dll
  252. 2014-06-29 18:33 - 2014-06-29 18:33 - 00046080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupApiPlugin.dll
  253. 2014-09-03 22:00 - 2014-09-03 22:00 - 00066560 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupDll.dll
  254. 2015-09-15 19:32 - 2015-09-01 04:25 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\Office15\1033\GrooveIntlResource.dll
  255. 2013-10-18 11:46 - 2013-10-18 11:46 - 01260624 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
  256. 2015-04-08 18:47 - 2015-04-08 18:50 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
  257. 2015-04-08 18:46 - 2015-04-08 18:46 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll
  258. 2014-09-15 20:04 - 2013-09-03 15:52 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
  259.  
  260. ==================== Alternate Data Streams (Whitelisted) =========
  261.  
  262. (If an entry is included in the fixlist, only the ADS will be removed.)
  263.  
  264.  
  265. ==================== Safe Mode (Whitelisted) ===================
  266.  
  267. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  268.  
  269. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
  270. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ccSettings_{5A2B9522-769B-49C3-9B8E-C708A1FEF279}.sys => ""="Driver"
  271. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
  272. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SepMasterService => ""="Service"
  273.  
  274. ==================== EXE Association (Whitelisted) ===============
  275.  
  276. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  277.  
  278.  
  279. ==================== Internet Explorer trusted/restricted ===============
  280.  
  281. (If an entry is included in the fixlist, it will be removed from the registry.)
  282.  
  283.  
  284. ==================== Other Areas ============================
  285.  
  286. (Currently there is no automatic fix for this section.)
  287.  
  288. HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PapaCraw\Desktop\My attempt at photograghy\DSCN0362a.JPG
  289. HKU\S-1-5-21-1322733642-1108219750-3070097398-1004\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
  290. DNS Servers: 192.168.1.1
  291. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
  292. Windows Firewall is enabled.
  293.  
  294. ==================== MSCONFIG/TASK MANAGER disabled items ==
  295.  
  296. (Currently there is no automatic fix for this section.)
  297.  
  298. HKLM\...\StartupApproved\Run: => "BTMTrayAgent"
  299. HKLM\...\StartupApproved\Run: => "iTunesHelper"
  300. HKLM\...\StartupApproved\Run32: => "AVG_UI"
  301. HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
  302. HKLM\...\StartupApproved\Run32: => "DivXMediaServer"
  303. HKLM\...\StartupApproved\Run32: => "vmware-tray.exe"
  304. HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"
  305. HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Spotify"
  306. HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Spotify Web Helper"
  307. HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Steam"
  308. HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Itibiti.exe"
  309. HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "EADM"
  310. HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Skype"
  311.  
  312. ==================== FirewallRules (Whitelisted) ===============
  313.  
  314. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  315.  
  316. FirewallRules: [TCP Query User{D34C9E40-BB6F-42C7-B402-9F04A7994B94}C:\users\papacraw\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\papacraw\appdata\roaming\spotify\spotify.exe
  317. FirewallRules: [UDP Query User{4D2E3A23-8728-4EB1-A006-0B3E53323CB5}C:\users\papacraw\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\papacraw\appdata\roaming\spotify\spotify.exe
  318. FirewallRules: [TCP Query User{3FB80005-886B-4F69-A81A-9B06D8A40145}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
  319. FirewallRules: [UDP Query User{76C05CD6-16DC-4E5B-BCEF-D50AB556A284}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
  320. FirewallRules: [TCP Query User{A30FE5C0-0136-4309-A70D-D106FD77E6B8}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
  321. FirewallRules: [UDP Query User{268C724E-A89C-456A-BCEA-6BB50ED947AB}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
  322. FirewallRules: [TCP Query User{22B88869-D052-4E3C-8F49-5D6E14854874}C:\users\papacraw\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\papacraw\appdata\roaming\spotify\spotify.exe
  323. FirewallRules: [UDP Query User{56B5C967-4873-47AD-9177-DD39F773C924}C:\users\papacraw\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\papacraw\appdata\roaming\spotify\spotify.exe
  324. FirewallRules: [TCP Query User{BA383095-C35D-4B49-80FC-8018260446AF}D:\kodi\kodi.exe] => (Block) D:\kodi\kodi.exe
  325. FirewallRules: [UDP Query User{EFE853B6-FF4C-4A67-A9AC-C41C003E81F8}D:\kodi\kodi.exe] => (Block) D:\kodi\kodi.exe
  326. FirewallRules: [{AB43ED1E-A939-4195-B87D-0E2DD77280D4}] => (Allow) D:\Steam\Steam.exe
  327. FirewallRules: [{2777DD9B-6D1E-4CBD-9FB4-4380CC948009}] => (Allow) D:\Steam\Steam.exe
  328. FirewallRules: [{D1C0054F-42BC-4620-8462-4A7E3DA70EAA}] => (Allow) D:\Steam\bin\steamwebhelper.exe
  329. FirewallRules: [{61C70406-4367-4A4A-B81A-F243C69B5E01}] => (Allow) D:\Steam\bin\steamwebhelper.exe
  330. FirewallRules: [{BA7BA05F-7537-47AC-ADB5-C9EF63537F76}] => (Allow) D:\Steam\steamapps\common\KOAReckoning\Reckoning.exe
  331. FirewallRules: [{60CE2838-3A21-489E-AB3F-8860466A8C54}] => (Allow) D:\Steam\steamapps\common\KOAReckoning\Reckoning.exe
  332. FirewallRules: [{E53E3DF4-48A8-4CBB-AD46-48C902081DE0}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe
  333. FirewallRules: [{6380112C-71C4-4D60-B84C-154290486817}] => (Allow) LPort=5357
  334. FirewallRules: [{53C8843D-07D1-4B1A-B34A-C9CC323C15E8}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
  335. FirewallRules: [{55E37C9E-A5B3-402D-8C0C-3D3E9AF4AFD3}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
  336. FirewallRules: [{85E4EFDC-0940-4FA5-8AFC-5A11B5E1B132}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
  337. FirewallRules: [{5D2758D0-A8D9-4EE9-99CB-012D71ABCB24}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
  338. FirewallRules: [{B61B5A5B-F8B3-4A0F-A84D-AE1A0A5C3BCF}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
  339. FirewallRules: [{0A603426-F692-4DC9-8B29-C7A9B5481023}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
  340. FirewallRules: [{8468EC89-7D40-4C2A-BA3F-35059C6D570A}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
  341. FirewallRules: [{0A325095-EAAD-455E-8BBA-C13E3CE30AEB}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\Smc.exe
  342. FirewallRules: [{B3047997-25E8-46D4-BE88-8C98905D2786}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\Smc.exe
  343. FirewallRules: [{6AA0E04A-8380-4997-83F6-C07ADB4B14D8}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin64\snac64.exe
  344. FirewallRules: [{079A80AC-C4A5-4CAC-95BD-5898ECD45413}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin64\snac64.exe
  345. FirewallRules: [{A2F28B0A-0DD6-4F04-A6B6-F47CFBB166F6}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
  346. FirewallRules: [{3FC52939-2401-44B8-8FC1-88767B46B521}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
  347. FirewallRules: [{153801E6-A7AF-43F8-87AA-5C70807E550F}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
  348. FirewallRules: [{C4A22888-FDC2-47AD-AAF6-03D9930C4DD2}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
  349. FirewallRules: [{F4804AFE-A862-4D29-AAE5-3BD2CFB93908}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  350. FirewallRules: [{19447052-CAD9-4491-AEBB-6D44F64764DF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  351. FirewallRules: [{8E43C11E-6547-41ED-B598-21124772CD1E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
  352. FirewallRules: [{59242223-9620-4E22-831A-6E9463764E0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
  353. FirewallRules: [{8BBE6AAE-1C6E-4785-A427-52ACD3272782}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
  354. FirewallRules: [{EF38B48A-8CD4-4F74-994A-737AC21C0664}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
  355. FirewallRules: [{469B49D4-0C1A-41C2-8D7E-8DC7E28BEA91}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
  356. FirewallRules: [{ECDAAA56-1F16-4C55-A923-586DF274D157}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
  357. FirewallRules: [{3E40060D-8EE7-47D0-988E-FEC6FB1ECB6B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
  358. FirewallRules: [{6254F254-B92A-4E52-8538-DBFA380ED1B2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
  359. FirewallRules: [{B645867D-E2FC-40C6-A281-8846A39A4665}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
  360. FirewallRules: [{DC68CCA5-3247-42BD-9963-5FF9B96709D6}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect\Binaries\MassEffect.exe
  361. FirewallRules: [{B6A27371-952C-4C22-978B-A985407612A3}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect\Binaries\MassEffect.exe
  362. FirewallRules: [{12D2FEF3-ACC8-41FB-B617-BD125B6F708C}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect 2\Binaries\MassEffect2.exe
  363. FirewallRules: [{725AF1F6-76AA-4469-A2E1-9AD7EDD9656B}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect 2\Binaries\MassEffect2.exe
  364. FirewallRules: [{519F3695-9A23-45BD-BE47-15EA39774072}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
  365. FirewallRules: [{8878D715-D48D-4CC9-AFC0-777FE71AB15F}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
  366. FirewallRules: [{B5945F6A-8214-4D5D-AE6C-1D4A517851EE}] => (Allow) D:\Program Files (x86)\Origin Games\BFH\bfh.exe
  367. FirewallRules: [{DDE85CE4-DBFD-4764-A1E0-5E03DB970572}] => (Allow) D:\Program Files (x86)\Origin Games\BFH\bfh.exe
  368. FirewallRules: [{6C5EB040-8763-423E-89B3-B1534D9269F5}] => (Allow) D:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
  369. FirewallRules: [{E8F4EAFC-CF95-450E-8DEE-26A6A450465A}] => (Allow) D:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
  370. FirewallRules: [{C04CA64F-D4C3-41BF-8461-46C3F769BE7F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  371. FirewallRules: [{08E70DC2-FE6D-48BC-9F58-35472D503A21}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  372. FirewallRules: [{4E057CC1-D64D-47D5-ADFB-41BD9BB7B20E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  373. FirewallRules: [{038C48CF-7552-4585-9CF0-850066CEBF37}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  374. FirewallRules: [{C0432B55-5C75-4571-93B3-B562618F6606}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  375. FirewallRules: [{74F934E7-0D31-458D-9285-269BEA80E413}] => (Allow) D:\iTunes.exe
  376. FirewallRules: [{E8A93C4B-10D3-4FDD-9D12-2589D34E3FEB}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
  377. FirewallRules: [{85CCD20D-F72A-4022-994D-EE387CD4DB28}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
  378. FirewallRules: [{E67EE299-C8D5-4241-8D4E-0058339EC9DF}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
  379. FirewallRules: [{2EE4C04A-8ED0-45D6-BD4C-050306DA019B}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
  380. FirewallRules: [{8E8F1055-974D-4C46-8CFB-6A302CF5D101}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  381. FirewallRules: [{63CEA76D-0F7E-4345-A66D-5E2821B577FF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  382. FirewallRules: [{D492508E-092A-4E4F-B655-14A8BF68CD28}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  383. FirewallRules: [{61DDF306-8AAB-466D-922B-F6F3CD69D395}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  384.  
  385. ==================== Faulty Device Manager Devices =============
  386.  
  387. Name: VMware Virtual Ethernet Adapter for VMnet1
  388. Description: VMware Virtual Ethernet Adapter for VMnet1
  389. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  390. Manufacturer: VMware, Inc.
  391. Service: VMnetAdapter
  392. Problem: : This device is disabled. (Code 22)
  393. Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
  394.  
  395. Name: VMware Virtual Ethernet Adapter for VMnet8
  396. Description: VMware Virtual Ethernet Adapter for VMnet8
  397. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  398. Manufacturer: VMware, Inc.
  399. Service: VMnetAdapter
  400. Problem: : This device is disabled. (Code 22)
  401. Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
  402.  
  403.  
  404. ==================== Event log errors: =========================
  405.  
  406. Application errors:
  407. ==================
  408. Error: (11/29/2015 04:28:23 PM) (Source: Bonjour Service) (EventID: 100) (User: )
  409. Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 14 105.1.168.192.in-addr.arpa. PTR Richie.local.
  410.  
  411. Error: (11/29/2015 04:28:23 PM) (Source: Bonjour Service) (EventID: 100) (User: )
  412. Description: mDNSCoreReceiveResponse: Received from 192.168.1.105:5353 16 105.1.168.192.in-addr.arpa. PTR Richie-2.local.
  413.  
  414. Error: (11/29/2015 04:25:03 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
  415. Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ8B5C.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
  416.  
  417. Error: (11/29/2015 04:24:28 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
  418. Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ8B5B.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
  419.  
  420. Error: (11/29/2015 04:23:59 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
  421. Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ2108.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
  422.  
  423. Error: (11/29/2015 04:23:40 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
  424. Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ2107.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
  425.  
  426. Error: (11/29/2015 04:23:20 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
  427. Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQB684.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
  428.  
  429. Error: (11/29/2015 04:22:55 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
  430. Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQB673.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
  431.  
  432. Error: (11/29/2015 04:22:21 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
  433. Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ401A.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
  434.  
  435. Error: (11/29/2015 04:21:53 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
  436. Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ4019.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
  437.  
  438.  
  439. System errors:
  440. =============
  441. Error: (11/29/2015 04:27:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  442. Description: The UAC File Virtualization service failed to start due to the following error:
  443. %%1275
  444.  
  445. Error: (11/29/2015 04:10:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
  446. Description: The NVIDIA Streamer Service service terminated unexpectedly. It has done this 1 time(s).
  447.  
  448. Error: (11/29/2015 04:09:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
  449. Description: The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).
  450.  
  451. Error: (11/29/2015 04:06:59 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
  452. Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.
  453.  
  454. Error: (11/28/2015 10:11:35 PM) (Source: BugCheck) (EventID: 1001) (User: )
  455. Description: 0x0000009f (0x0000000000000003, 0xffffe00075e128c0, 0xffffd0017b5f8960, 0xffffe00087bcc600)C:\Windows\MEMORY.DMP112815-50500-01
  456.  
  457. Error: (11/28/2015 10:10:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  458. Description: The UAC File Virtualization service failed to start due to the following error:
  459. %%1275
  460.  
  461. Error: (11/28/2015 10:10:58 PM) (Source: EventLog) (EventID: 6008) (User: )
  462. Description: The previous system shutdown at 2:58:24 PM on ‎11/‎28/‎2015 was unexpected.
  463.  
  464. Error: (11/27/2015 10:38:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  465. Description: The UAC File Virtualization service failed to start due to the following error:
  466. %%1275
  467.  
  468. Error: (11/27/2015 10:36:29 PM) (Source: DCOM) (EventID: 10010) (User: RICHIE)
  469. Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}
  470.  
  471. Error: (11/27/2015 10:36:29 PM) (Source: DCOM) (EventID: 10010) (User: RICHIE)
  472. Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}
  473.  
  474.  
  475. ==================== Memory info ===========================
  476.  
  477. Processor: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz
  478. Percentage of memory in use: 17%
  479. Total physical RAM: 16267 MB
  480. Available physical RAM: 13375.04 MB
  481. Total Virtual: 33675 MB
  482. Available Virtual: 30697.11 MB
  483.  
  484. ==================== Drives ================================
  485.  
  486. Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:231.99 GB) NTFS ==>[system with boot components (obtained from drive)]
  487. Drive d: (Data) (Fixed) (Total:537.8 GB) (Free:414.46 GB) NTFS
  488.  
  489. ==================== MBR & Partition Table ==================
  490.  
  491. ========================================================
  492. Disk: 0 (Size: 931.5 GB) (Disk ID: E6955B1D)
  493.  
  494. Partition: GPT.
  495.  
  496. ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!