Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-11-2015
- Ran by PapaCraw (2015-11-29 16:39:49)
- Running from C:\Users\PapaCraw\Downloads
- Windows 8 Pro (X64) (2014-11-16 09:21:06)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- admin (S-1-5-21-1322733642-1108219750-3070097398-1004 - Administrator - Enabled) => C:\Users\admin
- Administrator (S-1-5-21-1322733642-1108219750-3070097398-500 - Administrator - Disabled)
- Guest (S-1-5-21-1322733642-1108219750-3070097398-501 - Limited - Disabled) => C:\Users\Guest
- HomeGroupUser$ (S-1-5-21-1322733642-1108219750-3070097398-1003 - Limited - Enabled)
- PapaCraw (S-1-5-21-1322733642-1108219750-3070097398-1001 - Administrator - Enabled) => C:\Users\PapaCraw
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Symantec Endpoint Protection (Disabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
- AV: ESET NOD32 Antivirus 9.0.318.0 (Enabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
- AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Symantec Endpoint Protection (Disabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
- AS: ESET NOD32 Antivirus 9.0.318.0 (Enabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
- FW: Symantec Endpoint Protection (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
- Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
- Apple Application Support (32-bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
- Apple Application Support (64-bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
- Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
- Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
- ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS)
- ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS)
- ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.14 - ASUS)
- ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.02.0001 - ASUS)
- ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
- ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0036 - ASUS)
- Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.1.0.4 - Electronic Arts)
- Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
- Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
- Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
- CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
- ESET NOD32 Antivirus (HKLM\...\{60853F5E-E6F5-4A34-BBCD-C09D49BB5E64}) (Version: 9.0.318.0 - ESET, spol. s r.o.)
- ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
- Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
- HP ENVY 5530 series Basic Device Software (HKLM\...\{FE11AA0F-756F-4879-97A0-B1705E2DCABE}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
- HP ENVY 5530 series Help (HKLM-x32\...\{97EAE055-1BE8-4775-8101-453E9715EC3F}) (Version: 30.0.0 - Hewlett Packard)
- HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
- HP Support Solutions Framework (HKLM-x32\...\{E35601C0-BA8E-4F32-919A-C7EF4CA81F67}) (Version: 11.51.0048 - Hewlett-Packard Company)
- InstallRoot (HKLM\...\{A765EB7C-8360-49B8-804D-E2FB6D613C1D}) (Version: 4.1 - DoD PKE)
- Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
- Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
- Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3574 - Intel Corporation)
- Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1414.3) (HKLM\...\{302600C1-6BDF-4FD1-1403-148929CC1385}) (Version: 17.0.1403.0442 - Intel Corporation)
- Intel® PROSet/Wireless Software (HKLM-x32\...\{b9007812-6a61-4dfc-8a0c-4c726c7dc43f}) (Version: 17.0.1 - Intel Corporation)
- Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
- iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
- Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version: - Big Huge Games)
- Kodi (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\Kodi) (Version: - XBMC-Foundation)
- League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
- League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
- Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
- Mass Effect™ (HKLM-x32\...\{44A570EE-FD93-4086-8997-2C38DFDE0019}) (Version: 1.2.20608.0 - Electronic Arts)
- Mass Effect™ 2 (HKLM-x32\...\{E19B628D-A9BC-4519-B1D4-4C8C09074F7F}) (Version: 1.2.1604.0 - Electronic Arts)
- Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts)
- Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
- Microsoft ASP.Net Web Frameworks 5.0 Security Update (KB2992080) (HKLM-x32\...\{3EC4A844-24F2-46DA-AEFB-FC3080C1BDB9}) (Version: 5.0.20821 - Microsoft Corporation)
- Microsoft ASP.Net Web Frameworks 5.1 Security Update (KB2994397) (HKLM-x32\...\{94F716A3-CBBA-4005-9516-1C4267DDB824}) (Version: 5.1.20821 - Microsoft Corporation)
- Microsoft Baseline Security Analyzer 2.3 (HKLM\...\{C058FC5D-565F-4360-A562-0527A3D993DC}) (Version: 2.3.2211 - Microsoft Corporation)
- Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4771.1004 - Microsoft Corporation)
- Microsoft OneDrive (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Web Platform Installer 5.0 (HKLM\...\{4D84C195-86F0-4B34-8FDE-4A17EB41306A}) (Version: 5.0.50430.0 - Microsoft Corporation)
- NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.3.1.46 - NETGEAR Inc.)
- Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.7 - Notepad++ Team)
- NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
- NVIDIA Graphics Driver 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
- NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
- Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
- Office 15 Click-to-Run Licensing Component (Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
- Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
- Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
- PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
- Popcorn Time (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\Popcorn Time) (Version: - Popcorn Official)
- Popcorn Time Community 0.3.8-6 (HKLM-x32\...\Popcorn Time Community 0.3.8-6) (Version: 0.3.8-6 - Popcorn Time Community)
- PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
- Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.21243 - Realtek Semiconductor Corp.)
- Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.33.529.2014 - Realtek)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7283 - Realtek Semiconductor Corp.)
- SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
- SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
- Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
- SONAR X3 Producer Trial (x64) (HKLM-x32\...\SONARX3ProducerTrial_x64_is1) (Version: 20.0 - Cakewalk Music Software)
- Spotify (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- Stremio (HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\Stremio) (Version: 3.4.0 - Smart Code Ltd.)
- Symantec Endpoint Protection (HKLM\...\{A5DCF955-5D4A-471D-8CB3-DCFDF5C5DEE7}) (Version: 12.1.5337.5000 - Symantec Corporation)
- TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
- Tixati (HKLM-x32\...\tixati) (Version: - )
- Total Tester Security+ Practice Exam, 2nd Edition v6.2 (HKLM-x32\...\{D9EFAEC8-268C-46B0-9D47-E425D650E6DA}) (Version: 12.6.2 - Total Seminars, LLC)
- Total Tester Security+ Study Guide, 2nd Edition v6.2 (HKLM-x32\...\{A2B4E7B2-4C6C-4813-A68D-EA475E12500A}) (Version: 12.6.2 - Total Seminars, LLC)
- VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
- Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
- Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
- VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 10.0.1 - VMware, Inc)
- VMware Workstation (Version: 10.0.1 - VMware, Inc.) Hidden
- WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.15.438 - ASUS Cloud Corporation)
- WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
- Windows Driver Package - ASUS (ATP) Mouse (03/17/2014 1.0.0.207) (HKLM\...\AA2CC56D4BBEE037DC99871F5F6551133D2A0CC3) (Version: 03/17/2014 1.0.0.207 - ASUS)
- WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
- WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ==================== Restore Points =========================
- 16-11-2015 19:22:33 Windows Update
- 25-11-2015 18:19:17 Scheduled Checkpoint
- 27-11-2015 20:50:17 Removed Microsoft Silverlight
- 29-11-2015 16:09:00 JRT Pre-Junkware Removal
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2013-08-22 05:25 - 2013-08-22 05:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {044D2C1F-F256-4E38-AA9E-255D103B059F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-22] (Google Inc.)
- Task: {0F82BBC4-D167-4FB3-816C-1FCCD1487CF2} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
- Task: {12C650F9-0E77-42A8-B8C7-3C70E73F1B91} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
- Task: {29C80829-029F-4A92-845A-97D0175C508A} - System32\Tasks\{55522518-D77C-4F0D-985F-868567C85590} => pcalua.exe -a C:\Users\PapaCraw\Downloads\ffdshow-20041012.exe -d C:\Users\PapaCraw\Downloads
- Task: {2A39160E-041A-4FF6-AC52-35E6BF0867D8} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
- Task: {30718720-E374-40EF-B6CB-D9C5772B08B7} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-06-03] (ASUS)
- Task: {319E6129-F692-4967-B14F-AD570C166E80} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
- Task: {3D6DCCE8-2BF8-4504-AE2A-FCE5C09B39F9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
- Task: {5A55A705-F973-4CBC-9D7C-D1C1E7E34957} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1322733642-1108219750-3070097398-1001 => C:\Users\PapaCraw\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2015-01-31] (Microsoft Corporation)
- Task: {7AC56F2A-1388-43EC-9383-6A0B1E0E6081} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
- Task: {83DF24B3-D604-473C-91BF-61049DB94FCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.)
- Task: {885572FC-C2AE-45DF-BF1D-6D2E7ABB72F8} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-06-30] (Realtek Semiconductor)
- Task: {9313C82D-AB87-4862-804E-2F56272AF2B1} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-1322733642-1108219750-3070097398-1001
- Task: {952A38B3-2764-4DCE-8700-4F902D20B0C3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-22] (Google Inc.)
- Task: {9717747E-F5A2-4C62-9715-2DF59C9E9F87} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] ()
- Task: {A009187F-1BED-4BF9-B88B-EE8C55CCACC6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
- Task: {ABC09F29-3D23-49CF-9CD2-1F7B42903ACB} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-03-27] (ASUSTek Computer Inc.)
- Task: {ACB1DEEB-D558-4E25-AB17-D42F2B6C08CA} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
- Task: {F5D12B01-7592-4F0F-99F3-E0621C0B5C59} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-06-30] (Realtek Semiconductor)
- Task: {FAC0B12E-2873-48E7-A6D5-20A7EC9243DF} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-03-31] (AsusTek)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2014-09-15 20:08 - 2015-01-09 15:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2015-05-15 15:26 - 2015-05-15 15:26 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
- 2015-10-13 05:45 - 2015-10-13 05:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
- 2015-09-15 19:32 - 2015-09-01 08:04 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
- 2015-04-08 18:46 - 2015-10-13 04:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
- 2014-09-15 20:21 - 2013-05-15 13:39 - 00463872 _____ () C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
- 2014-11-06 07:28 - 2014-11-06 07:28 - 00105216 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
- 2015-02-13 12:53 - 2015-02-13 12:53 - 00077432 _____ () C:\Program Files\DoD-PKE\InstallRoot\IrTampLib_SWIG_sc.dll
- 2015-02-13 12:45 - 2015-02-13 12:45 - 03716728 _____ () C:\Program Files\DoD-PKE\InstallRoot\IrTampLib_SWIG_vc.DLL
- 2015-04-24 19:40 - 2015-04-24 19:40 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
- 2013-10-18 11:10 - 2013-10-18 11:10 - 14405200 _____ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
- 2014-06-03 19:01 - 2014-06-03 19:01 - 00117248 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
- 2014-06-03 19:01 - 2014-06-03 19:01 - 00037936 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
- 2014-06-03 19:01 - 2014-06-03 19:01 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll
- 2014-06-03 19:01 - 2014-06-03 19:01 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll
- 2015-04-05 19:23 - 2015-03-27 19:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
- 2013-09-28 17:13 - 2013-09-28 17:13 - 00544817 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libgcc_s_dw2-1.dll
- 2013-09-28 17:13 - 2013-09-28 17:13 - 00989805 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libstdc++-6.dll
- 2013-09-28 17:14 - 2013-09-28 17:14 - 03369922 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icuin51.dll
- 2013-09-28 17:14 - 2013-09-28 17:14 - 01978690 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icuuc51.dll
- 2013-09-28 17:14 - 2013-09-28 17:14 - 22378434 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icudt51.dll
- 2013-09-28 17:14 - 2013-09-28 17:14 - 01233408 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\platforms\qwindows.dll
- 2014-11-17 01:46 - 2014-11-17 01:46 - 00639488 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\Genie.dll
- 2014-11-10 01:55 - 2014-11-10 01:55 - 01686016 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SvtNetworkTool.dll
- 2014-11-04 23:36 - 2014-11-04 23:36 - 00192512 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Airprint.dll
- 2014-11-04 23:37 - 2014-11-04 23:37 - 00632832 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Internet.dll
- 2014-11-14 02:53 - 2014-11-14 02:53 - 06499840 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Map.dll
- 2014-06-29 17:55 - 2014-06-29 17:55 - 00068608 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QRCode.dll
- 2014-06-29 18:05 - 2014-06-29 18:05 - 01183232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\qwt.dll
- 2014-11-07 01:13 - 2014-11-07 01:13 - 02475520 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_MyMedia.dll
- 2012-10-15 12:27 - 2012-10-15 12:27 - 00111616 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libvlc.dll
- 2012-10-15 12:28 - 2012-10-15 12:28 - 02286592 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libvlccore.dll
- 2014-11-16 23:00 - 2014-11-16 23:00 - 01056768 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_NetworkProblem.dll
- 2014-09-11 00:39 - 2014-09-11 00:39 - 00144896 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DragonNetTool.dll
- 2014-11-04 23:51 - 2014-11-04 23:51 - 01191424 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_ParentalControl.dll
- 2014-11-16 22:21 - 2014-11-16 22:21 - 10374656 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Resource.dll
- 2014-11-16 22:18 - 2014-11-16 22:18 - 02496512 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_RouterConfiguration.dll
- 2014-11-06 01:39 - 2014-11-06 01:39 - 00200192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Statistics.dll
- 2014-11-04 23:58 - 2014-11-04 23:58 - 00889344 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Ui.dll
- 2014-11-05 00:00 - 2014-11-05 00:00 - 00435712 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Wireless.dll
- 2013-09-28 17:13 - 2013-09-28 17:13 - 00051200 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qgif.dll
- 2013-09-28 17:13 - 2013-09-28 17:13 - 00052224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qico.dll
- 2013-09-28 17:13 - 2013-09-28 17:13 - 00261120 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qjpeg.dll
- 2013-09-28 17:13 - 2013-09-28 17:13 - 00046080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qsvg.dll
- 2014-06-29 17:55 - 2014-06-29 17:55 - 00081408 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnosePlugin.dll
- 2014-11-03 00:23 - 2014-11-03 00:23 - 00143360 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnoseDll.dll
- 2014-06-18 18:22 - 2014-06-18 18:22 - 02177405 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\drivers\libntgr_api.dll
- 2014-09-03 22:00 - 2014-09-03 22:00 - 00072192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SVTUtils.dll
- 2014-09-03 22:00 - 2014-09-03 22:00 - 00074240 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NetcardApi.dll
- 2014-09-03 22:00 - 2014-09-03 22:00 - 00136704 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\airprintdll.dll
- 2012-10-15 12:28 - 2012-10-15 12:28 - 00219648 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\access\libdshow_plugin.dll
- 2012-10-15 12:28 - 2012-10-15 12:28 - 00049664 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\audio_output\libaout_directx_plugin.dll
- 2012-10-15 12:28 - 2012-10-15 12:28 - 00051200 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\audio_output\libwaveout_plugin.dll
- 2012-10-15 12:28 - 2012-10-15 12:28 - 00070144 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\video_output\libdirectx_plugin.dll
- 2013-09-28 17:13 - 2013-09-28 17:13 - 00040960 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\printsupport\windowsprintersupport.dll
- 2014-11-04 23:59 - 2014-11-04 23:59 - 00642048 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_Update.dll
- 2014-11-05 00:01 - 2014-11-05 00:01 - 00458752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_WirelessExport.dll
- 2014-06-29 18:33 - 2014-06-29 18:33 - 00046080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupApiPlugin.dll
- 2014-09-03 22:00 - 2014-09-03 22:00 - 00066560 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupDll.dll
- 2015-09-15 19:32 - 2015-09-01 04:25 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\Office15\1033\GrooveIntlResource.dll
- 2013-10-18 11:46 - 2013-10-18 11:46 - 01260624 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
- 2015-04-08 18:47 - 2015-04-08 18:50 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
- 2015-04-08 18:46 - 2015-04-08 18:46 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll
- 2014-09-15 20:04 - 2013-09-03 15:52 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ccSettings_{5A2B9522-769B-49C3-9B8E-C708A1FEF279}.sys => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SepMasterService => ""="Service"
- ==================== EXE Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PapaCraw\Desktop\My attempt at photograghy\DSCN0362a.JPG
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1004\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg
- DNS Servers: 192.168.1.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- HKLM\...\StartupApproved\Run: => "BTMTrayAgent"
- HKLM\...\StartupApproved\Run: => "iTunesHelper"
- HKLM\...\StartupApproved\Run32: => "AVG_UI"
- HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
- HKLM\...\StartupApproved\Run32: => "DivXMediaServer"
- HKLM\...\StartupApproved\Run32: => "vmware-tray.exe"
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Spotify"
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Spotify Web Helper"
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Steam"
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Itibiti.exe"
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "EADM"
- HKU\S-1-5-21-1322733642-1108219750-3070097398-1001\...\StartupApproved\Run: => "Skype"
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [TCP Query User{D34C9E40-BB6F-42C7-B402-9F04A7994B94}C:\users\papacraw\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\papacraw\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{4D2E3A23-8728-4EB1-A006-0B3E53323CB5}C:\users\papacraw\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\papacraw\appdata\roaming\spotify\spotify.exe
- FirewallRules: [TCP Query User{3FB80005-886B-4F69-A81A-9B06D8A40145}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
- FirewallRules: [UDP Query User{76C05CD6-16DC-4E5B-BCEF-D50AB556A284}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
- FirewallRules: [TCP Query User{A30FE5C0-0136-4309-A70D-D106FD77E6B8}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
- FirewallRules: [UDP Query User{268C724E-A89C-456A-BCEA-6BB50ED947AB}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
- FirewallRules: [TCP Query User{22B88869-D052-4E3C-8F49-5D6E14854874}C:\users\papacraw\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\papacraw\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{56B5C967-4873-47AD-9177-DD39F773C924}C:\users\papacraw\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\papacraw\appdata\roaming\spotify\spotify.exe
- FirewallRules: [TCP Query User{BA383095-C35D-4B49-80FC-8018260446AF}D:\kodi\kodi.exe] => (Block) D:\kodi\kodi.exe
- FirewallRules: [UDP Query User{EFE853B6-FF4C-4A67-A9AC-C41C003E81F8}D:\kodi\kodi.exe] => (Block) D:\kodi\kodi.exe
- FirewallRules: [{AB43ED1E-A939-4195-B87D-0E2DD77280D4}] => (Allow) D:\Steam\Steam.exe
- FirewallRules: [{2777DD9B-6D1E-4CBD-9FB4-4380CC948009}] => (Allow) D:\Steam\Steam.exe
- FirewallRules: [{D1C0054F-42BC-4620-8462-4A7E3DA70EAA}] => (Allow) D:\Steam\bin\steamwebhelper.exe
- FirewallRules: [{61C70406-4367-4A4A-B81A-F243C69B5E01}] => (Allow) D:\Steam\bin\steamwebhelper.exe
- FirewallRules: [{BA7BA05F-7537-47AC-ADB5-C9EF63537F76}] => (Allow) D:\Steam\steamapps\common\KOAReckoning\Reckoning.exe
- FirewallRules: [{60CE2838-3A21-489E-AB3F-8860466A8C54}] => (Allow) D:\Steam\steamapps\common\KOAReckoning\Reckoning.exe
- FirewallRules: [{E53E3DF4-48A8-4CBB-AD46-48C902081DE0}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe
- FirewallRules: [{6380112C-71C4-4D60-B84C-154290486817}] => (Allow) LPort=5357
- FirewallRules: [{53C8843D-07D1-4B1A-B34A-C9CC323C15E8}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
- FirewallRules: [{55E37C9E-A5B3-402D-8C0C-3D3E9AF4AFD3}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
- FirewallRules: [{85E4EFDC-0940-4FA5-8AFC-5A11B5E1B132}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
- FirewallRules: [{5D2758D0-A8D9-4EE9-99CB-012D71ABCB24}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
- FirewallRules: [{B61B5A5B-F8B3-4A0F-A84D-AE1A0A5C3BCF}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
- FirewallRules: [{0A603426-F692-4DC9-8B29-C7A9B5481023}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
- FirewallRules: [{8468EC89-7D40-4C2A-BA3F-35059C6D570A}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
- FirewallRules: [{0A325095-EAAD-455E-8BBA-C13E3CE30AEB}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\Smc.exe
- FirewallRules: [{B3047997-25E8-46D4-BE88-8C98905D2786}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\Smc.exe
- FirewallRules: [{6AA0E04A-8380-4997-83F6-C07ADB4B14D8}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin64\snac64.exe
- FirewallRules: [{079A80AC-C4A5-4CAC-95BD-5898ECD45413}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin64\snac64.exe
- FirewallRules: [{A2F28B0A-0DD6-4F04-A6B6-F47CFBB166F6}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
- FirewallRules: [{3FC52939-2401-44B8-8FC1-88767B46B521}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
- FirewallRules: [{153801E6-A7AF-43F8-87AA-5C70807E550F}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
- FirewallRules: [{C4A22888-FDC2-47AD-AAF6-03D9930C4DD2}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
- FirewallRules: [{F4804AFE-A862-4D29-AAE5-3BD2CFB93908}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- FirewallRules: [{19447052-CAD9-4491-AEBB-6D44F64764DF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- FirewallRules: [{8E43C11E-6547-41ED-B598-21124772CD1E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
- FirewallRules: [{59242223-9620-4E22-831A-6E9463764E0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
- FirewallRules: [{8BBE6AAE-1C6E-4785-A427-52ACD3272782}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{EF38B48A-8CD4-4F74-994A-737AC21C0664}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{469B49D4-0C1A-41C2-8D7E-8DC7E28BEA91}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
- FirewallRules: [{ECDAAA56-1F16-4C55-A923-586DF274D157}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
- FirewallRules: [{3E40060D-8EE7-47D0-988E-FEC6FB1ECB6B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
- FirewallRules: [{6254F254-B92A-4E52-8538-DBFA380ED1B2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
- FirewallRules: [{B645867D-E2FC-40C6-A281-8846A39A4665}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
- FirewallRules: [{DC68CCA5-3247-42BD-9963-5FF9B96709D6}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect\Binaries\MassEffect.exe
- FirewallRules: [{B6A27371-952C-4C22-978B-A985407612A3}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect\Binaries\MassEffect.exe
- FirewallRules: [{12D2FEF3-ACC8-41FB-B617-BD125B6F708C}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect 2\Binaries\MassEffect2.exe
- FirewallRules: [{725AF1F6-76AA-4469-A2E1-9AD7EDD9656B}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect 2\Binaries\MassEffect2.exe
- FirewallRules: [{519F3695-9A23-45BD-BE47-15EA39774072}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
- FirewallRules: [{8878D715-D48D-4CC9-AFC0-777FE71AB15F}] => (Allow) D:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
- FirewallRules: [{B5945F6A-8214-4D5D-AE6C-1D4A517851EE}] => (Allow) D:\Program Files (x86)\Origin Games\BFH\bfh.exe
- FirewallRules: [{DDE85CE4-DBFD-4764-A1E0-5E03DB970572}] => (Allow) D:\Program Files (x86)\Origin Games\BFH\bfh.exe
- FirewallRules: [{6C5EB040-8763-423E-89B3-B1534D9269F5}] => (Allow) D:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
- FirewallRules: [{E8F4EAFC-CF95-450E-8DEE-26A6A450465A}] => (Allow) D:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
- FirewallRules: [{C04CA64F-D4C3-41BF-8461-46C3F769BE7F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{08E70DC2-FE6D-48BC-9F58-35472D503A21}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{4E057CC1-D64D-47D5-ADFB-41BD9BB7B20E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{038C48CF-7552-4585-9CF0-850066CEBF37}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{C0432B55-5C75-4571-93B3-B562618F6606}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{74F934E7-0D31-458D-9285-269BEA80E413}] => (Allow) D:\iTunes.exe
- FirewallRules: [{E8A93C4B-10D3-4FDD-9D12-2589D34E3FEB}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
- FirewallRules: [{85CCD20D-F72A-4022-994D-EE387CD4DB28}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
- FirewallRules: [{E67EE299-C8D5-4241-8D4E-0058339EC9DF}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
- FirewallRules: [{2EE4C04A-8ED0-45D6-BD4C-050306DA019B}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
- FirewallRules: [{8E8F1055-974D-4C46-8CFB-6A302CF5D101}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{63CEA76D-0F7E-4345-A66D-5E2821B577FF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{D492508E-092A-4E4F-B655-14A8BF68CD28}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{61DDF306-8AAB-466D-922B-F6F3CD69D395}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- ==================== Faulty Device Manager Devices =============
- Name: VMware Virtual Ethernet Adapter for VMnet1
- Description: VMware Virtual Ethernet Adapter for VMnet1
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: VMware, Inc.
- Service: VMnetAdapter
- Problem: : This device is disabled. (Code 22)
- Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
- Name: VMware Virtual Ethernet Adapter for VMnet8
- Description: VMware Virtual Ethernet Adapter for VMnet8
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: VMware, Inc.
- Service: VMnetAdapter
- Problem: : This device is disabled. (Code 22)
- Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (11/29/2015 04:28:23 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 14 105.1.168.192.in-addr.arpa. PTR Richie.local.
- Error: (11/29/2015 04:28:23 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: mDNSCoreReceiveResponse: Received from 192.168.1.105:5353 16 105.1.168.192.in-addr.arpa. PTR Richie-2.local.
- Error: (11/29/2015 04:25:03 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
- Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ8B5C.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
- Error: (11/29/2015 04:24:28 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
- Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ8B5B.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
- Error: (11/29/2015 04:23:59 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
- Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ2108.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
- Error: (11/29/2015 04:23:40 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
- Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ2107.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
- Error: (11/29/2015 04:23:20 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
- Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQB684.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
- Error: (11/29/2015 04:22:55 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
- Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQB673.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
- Error: (11/29/2015 04:22:21 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
- Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ401A.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
- Error: (11/29/2015 04:21:53 PM) (Source: Symantec AntiVirus) (EventID: 51) (User: )
- Description: Security Risk Found!Trojan.Gen in File: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\SRTSP\Quarantine\APQ4019.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
- System errors:
- =============
- Error: (11/29/2015 04:27:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The UAC File Virtualization service failed to start due to the following error:
- %%1275
- Error: (11/29/2015 04:10:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The NVIDIA Streamer Service service terminated unexpectedly. It has done this 1 time(s).
- Error: (11/29/2015 04:09:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).
- Error: (11/29/2015 04:06:59 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
- Description: A fatal error occurred when attempting to access the SSL server credential private key. The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10001.
- Error: (11/28/2015 10:11:35 PM) (Source: BugCheck) (EventID: 1001) (User: )
- Description: 0x0000009f (0x0000000000000003, 0xffffe00075e128c0, 0xffffd0017b5f8960, 0xffffe00087bcc600)C:\Windows\MEMORY.DMP112815-50500-01
- Error: (11/28/2015 10:10:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The UAC File Virtualization service failed to start due to the following error:
- %%1275
- Error: (11/28/2015 10:10:58 PM) (Source: EventLog) (EventID: 6008) (User: )
- Description: The previous system shutdown at 2:58:24 PM on 11/28/2015 was unexpected.
- Error: (11/27/2015 10:38:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The UAC File Virtualization service failed to start due to the following error:
- %%1275
- Error: (11/27/2015 10:36:29 PM) (Source: DCOM) (EventID: 10010) (User: RICHIE)
- Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}
- Error: (11/27/2015 10:36:29 PM) (Source: DCOM) (EventID: 10010) (User: RICHIE)
- Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz
- Percentage of memory in use: 17%
- Total physical RAM: 16267 MB
- Available physical RAM: 13375.04 MB
- Total Virtual: 33675 MB
- Available Virtual: 30697.11 MB
- ==================== Drives ================================
- Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:231.99 GB) NTFS ==>[system with boot components (obtained from drive)]
- Drive d: (Data) (Fixed) (Total:537.8 GB) (Free:414.46 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (Size: 931.5 GB) (Disk ID: E6955B1D)
- Partition: GPT.
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement