Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2015 01
- Ran by Marius at 2015-05-06 14:19:49
- Running from C:\Users\Marius\Desktop
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-2827223565-3312671657-2323579203-500 - Administrator - Disabled)
- Guest (S-1-5-21-2827223565-3312671657-2323579203-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-2827223565-3312671657-2323579203-1002 - Limited - Enabled)
- Marius (S-1-5-21-2827223565-3312671657-2323579203-1000 - Administrator - Enabled) => C:\Users\Marius
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
- Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
- Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
- Apple Application Support (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
- Apple Application Support (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
- Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
- Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
- Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
- ATI Catalyst Install Manager (HKLM\...\{1D27E8CF-7546-F200-4CA3-CD2F39909F5A}) (Version: 3.0.808.0 - ATI Technologies, Inc.)
- Avira (HKLM-x32\...\{d8490d5d-0f24-4000-b2e4-4b500a9a704d}) (Version: 1.1.35.25717 - Avira Operations GmbH & Co. KG)
- Avira (x32 Version: 1.1.35.25717 - Avira Operations GmbH & Co. KG) Hidden
- Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
- ccc-core-static (x32 Version: 2011.0216.726.13233 - ATI) Hidden
- Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.1.0 - Conexant)
- D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
- Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
- HP Deskjet 3050A J611 series Basic Device Software (HKLM\...\{FB555BCF-9202-4886-9203-88C9A210D727}) (Version: 25.0.571.0 - Hewlett-Packard Co.)
- HP Deskjet 3050A J611 series Help (HKLM-x32\...\{97DDCAB8-B770-4089-A10F-67568069D78A}) (Version: 140.0.2.2 - Hewlett Packard)
- HP Deskjet 3050A J611 series Product Improvement Study (HKLM\...\{710D4D91-1924-4A6B-8659-9CDE02DC7207}) (Version: 25.0.571.0 - Hewlett-Packard Co.)
- HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.5192 - HP Photo Creations)
- HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
- HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
- iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
- iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
- Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
- Java(TM) 6 Update 20 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)
- Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
- Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
- Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
- Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
- Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
- Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
- Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
- osu! (HKLM-x32\...\{5fa12be0-ce9e-459d-939d-f450ef95fc75}) (Version: latest - ppy Pty Ltd)
- PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
- Pro PC Cleaner (HKLM-x32\...\{C3060724-6AC7-4BEF-B516-4F6B1D90887D}) (Version: 2.5.5 - Pro PC Cleaner)
- Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30124 - Realtek Semiconductor Corp.)
- Realtek WLAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173001290E16}) (Version: 2.00.0016 - REALTEK Semiconductor Corp.)
- Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
- TOSHIBA Assist (HKLM-x32\...\{C2A276E3-154E-44DC-AAF1-FFDD7FD30E35}) (Version: 4.01.00 - TOSHIBA CORPORATION)
- TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{229C190B-7690-40B7-8680-42530179F3E9}) (Version: 2.0.16.64 - TOSHIBA Corporation)
- TOSHIBA ConfigFree (HKLM-x32\...\{80F696E0-AB85-433E-99E3-8CC6D98CF167}) (Version: 8.0.35 - TOSHIBA CORPORATION)
- TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.4 for x64 - TOSHIBA Corporation)
- TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.3.64 - TOSHIBA Corporation)
- TOSHIBA Hardware Setup (HKLM-x32\...\{8E9CEA3B-EBD1-439C-A01D-830CB39613C6}) (Version: 2.00.14 - TOSHIBA Corporation)
- TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.6 - TOSHIBA Corporation)
- TOSHIBA Media Controller (HKLM-x32\...\{983CD6FE-8320-4B80-A8F6-0D0366E0AA22}) (Version: 1.0.80.8.64 - TOSHIBA CORPORATION)
- TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.5 for x64 - TOSHIBA Corporation)
- TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C}) (Version: 1.7.16.64 - TOSHIBA Corporation)
- TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.1.45 - TOSHIBA)
- TOSHIBA Speech System Applications (HKLM-x32\...\{EE033C1F-443E-41EC-A0E2-559B539A4E4D}) (Version: 1.00.2518 - )
- TOSHIBA Speech System SR Engine(U.S.) Version1.0 (HKLM-x32\...\{008D69EB-70FF-46AB-9C75-924620DF191A}) (Version: - )
- TOSHIBA Speech System TTS Engine(U.S.) Version1.0 (HKLM-x32\...\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}) (Version: - )
- TOSHIBA Supervisor Password (HKLM-x32\...\{073B89C3-BA88-41B5-965F-B35A88EAE838}) (Version: 2.00.07 - TOSHIBA Corporation)
- TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.3.22.64 - TOSHIBA Corporation)
- TOSHIBA Web Camera Application (HKLM-x32\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.1.1 - TOSHIBA Corporation)
- TOSHIBA Wireless LAN Indicator (HKLM-x32\...\{CA5CF466-CAE3-4D99-8BB4-C80F4AC55028}) (Version: 1.0.2 - TOSHIBA CORPORATION)
- Websteroids (x32 Version: 2.6.63 - Creative Island Media, LLC) Hidden <==== ATTENTION
- Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
- Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
- WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
- Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
- ==================== Custom CLSID (selected items): ==========================
- (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
- ==================== Restore Points =========================
- 03-04-2015 21:45:40 Windows Update
- 07-04-2015 20:57:43 Removed Bonjour
- 15-04-2015 23:32:59 Windows Update
- 26-04-2015 22:08:56 Device Driver Package Install: COMODO Network Service
- 27-04-2015 00:36:49 Removed GeekBuddy.
- 27-04-2015 00:43:50 Removed COMODO Antivirus
- 27-04-2015 01:00:32 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
- 30-04-2015 23:18:36 Windows Update
- 03-05-2015 12:26:07 Uniblue DriverScanner installation
- 05-05-2015 18:45:34 Removed Apple Application Support (64-bit)
- 05-05-2015 21:47:30 Windows Update
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-13 20:34 - 2009-06-10 15:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
- ==================== Scheduled Tasks (whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
- Task: {02C012EF-219F-4CE1-A080-9EBC2DFC34EA} - System32\Tasks\a250569a-98c2-4048-95cc-84eb2edcd0f9-5_user => C:\Program Files (x86)\System NotifierV10.03\a250569a-98c2-4048-95cc-84eb2edcd0f9-5.exe <==== ATTENTION
- Task: {08152DC8-610F-4861-9A27-3D0EDE06135E} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2010-06-03] (TOSHIBA CORPORATION)
- Task: {095D9D0E-576D-4870-B70E-DF8D7C3935AC} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe <==== ATTENTION
- Task: {0A1AE133-B12C-4531-8C92-654B10D048C4} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
- Task: {0BB67EC2-6C0E-4A6E-AAD0-2B3D5111D652} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [2011-02-15] ()
- Task: {131FD26F-8494-4BE9-B926-5149F9E6BB49} - System32\Tasks\SMWUpd => C:\Program Files\Common Files\Goobzo\GBUpdate\updater.exe <==== ATTENTION
- Task: {14BDCAAC-E147-4D86-84B1-5C70C25DC090} - System32\Tasks\ProPCCleaner_Popup => C:\Program Files (x86)\Pro PC Cleaner\Splash.exe [2014-07-14] () <==== ATTENTION
- Task: {1CF14623-8D93-4258-881E-4826C43158CE} - System32\Tasks\avabvyxvdy => C:\Users\Marius\AppData\Local\avabvyxvdy\avabvyxvdy.exe <==== ATTENTION
- Task: {2B268BBF-B844-4636-80A4-FA42BB521F30} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe <==== ATTENTION
- Task: {300E7866-31DF-476C-9395-35E58F29AE67} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2015-04-26] (Apple Inc.)
- Task: {33309A6A-8A5C-43C4-B0A4-730A299102E8} - System32\Tasks\ProPCCleaner_Start => C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe [2014-07-14] (Pro PC Cleaner) <==== ATTENTION
- Task: {3631713A-6F7B-4358-900D-883BDDDB0EBA} - System32\Tasks\avabvxvadx => C:\Users\Marius\AppData\Local\avabvxvadx\avabvxvadx.exe [2015-04-19] () <==== ATTENTION
- Task: {382300CA-3792-4381-A94D-FA8A57CE5470} - System32\Tasks\a250569a-98c2-4048-95cc-84eb2edcd0f9-5 => C:\Program Files (x86)\System NotifierV10.03\a250569a-98c2-4048-95cc-84eb2edcd0f9-5.exe <==== ATTENTION
- Task: {466AC41A-4F39-408B-9C75-712425B8956D} - System32\Tasks\GoogleUpdateTaskUserM_1_7_22_478699874-4155726479-3780505679-3006UA__323435363138363533362d3437415a556c2a3223346c41 => Wscript.exe //B "C:\ProgramData\PastaLeadsAgent\startprocess.js" pastaleadss.exe /invoke /f:check_services /l:0
- Task: {48464764-1BC2-4524-A97E-1B9C6A12758D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
- Task: {4A2E6A93-5027-41F9-86BD-538ACFDD2519} - System32\Tasks\QJNFZ => C:\Users\Marius\AppData\Roaming\QJNFZ.exe [2015-04-27] (System NotifierV10.03) <==== ATTENTION
- Task: {4B7D94D8-9BFE-42A1-A179-51D443328D01} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
- Task: {54DB222F-1AA6-4F02-924B-615EFDCFBEBF} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
- Task: {690D3135-5C05-43C1-9DA4-67106DFC772C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: {7EF6678B-1DB4-4291-95CA-42CA47644045} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: {842C544B-0099-485D-ABAA-5F0E3C681AF6} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
- Task: {84D41DD0-9518-47FA-8E4B-052606F8DEEA} - System32\Tasks\Bidaily Synchronize Task => C:\ProgramData\{c0c6049b-348f-9f0c-c0c6-6049b348126c}\priceless_p_soft_partner.exe [2014-05-04] () <==== ATTENTION
- Task: {89D2DDAF-EABC-42FE-9A2F-DAE85DACCBE3} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION
- Task: {ADAED5F6-47C6-45E6-899D-A54A16B31F4D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
- Task: {B997C3F0-6517-461A-A9EA-6A6CE3147C7F} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08] (Hewlett-Packard Co.)
- Task: {BA5F908A-461F-4CD7-A596-5A182771CAB4} - System32\Tasks\a250569a-98c2-4048-95cc-84eb2edcd0f9-10_user => C:\Program Files (x86)\System NotifierV10.03\a250569a-98c2-4048-95cc-84eb2edcd0f9-10.exe <==== ATTENTION
- Task: {BDE1BD95-4A59-497B-9FC3-8E8212A27B3F} - System32\Tasks\SMW_UpdateTask_Time_323435363138363533362d3437415a556c2a3223346c41 => Wscript.exe //B "C:\ProgramData\SearchModule\smhe.js" smu.exe /invoke /f:check_services /l:0 <==== ATTENTION
- Task: {C0BFF139-4002-4B6C-AC03-EC128EEB4A65} - System32\Tasks\d73553dc-f069-47b3-8808-35e7c4b13dc7-4 => C:\Program Files (x86)\MPlayerplus_01\d73553dc-f069-47b3-8808-35e7c4b13dc7-4.exe <==== ATTENTION
- Task: {C0D46389-C372-44BE-9F83-21BA49AA5B89} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
- Task: {DF37AE53-AEFC-4038-97F0-5C132BF0B9BE} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe <==== ATTENTION
- Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\windows\Tasks\Bidaily Synchronize Task.job => C:\ProgramData\{c0c6049b-348f-9f0c-c0c6-6049b348126c}\priceless_p_soft_partner.exe <==== ATTENTION
- Task: C:\windows\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION
- Task: C:\windows\Tasks\d73553dc-f069-47b3-8808-35e7c4b13dc7-4.job => C:\Program Files (x86)\MPlayerplus_01\d73553dc-f069-47b3-8808-35e7c4b13dc7-4.exe‘/GCgsrv /vFtIvfgP='MPlayerplus_01' /XaIqUE C:\Program Files (x86)\MPlayerplus_01\54246.xpi' /Cujzv=54246 /SMffwRByC='001359' /VIkzE='verticals-ads,shopping' /wvxJFwnyP='0' /TUXyiHsi=7B22016E662C4F7DAA191AC255E16A01IE /eWSgLsG=5656a497d97804996411f4b06795db80 /QTigsrF=1_34_05_12 /OyYXelKgV=1.34.5.12 /UHYWX=1400512219 /SSniurgV=http:/stats.clientstaticserv.com /jjjyY=http:/errors.clientstaticserv.com /wpLNVqInB=300 /ePFUqKO=a9719e64-232b-4695-ae9c-a89cd7f2aa84@ca1279df-bc0d-44a8-97ef-19301c922b68.com /vXvdQMBu=0.94 /hFNthUg=aa9719e64232b4695ae9ca89cd7f2aa84ca1279dfbc0d44a897ef19301c922b68com54246 /lmitfwDP=https:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/54246.rdf /uufiSxZQ='MPlayerplus_01' /TqGidaQA='MediaPlayerEnhance Extension' /NKgnPOg='Freeven' /mXFhdid=ff /JtxILom /qhtdPo /xgFcmuEG /cSEnmKQQ='http:/update.clientstaticserv.com/ff_agent_updates/{CAMP_ID}/update.jso <==== ATTENTION
- Task: C:\windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe
- Task: C:\windows\Tasks\HYJQUCPDKM1.job => C:\ProgramData\LolyKey\LolyKey.exe
- Task: C:\windows\Tasks\QJNFZ.job => C:\Users\Marius\AppData\Roaming\QJNFZ.exe <==== ATTENTION
- Task: C:\windows\Tasks\RPC.job => C:\Program Files (x86)\Reg Pro Cleaner\Regprocleaner.exe
- ==================== Loaded Modules (whitelisted) ==============
- 2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
- 2015-02-13 04:20 - 2015-02-13 04:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
- 2015-05-05 19:33 - 2015-05-05 19:33 - 00417792 _____ () c:\windows\lnx.exe
- 2015-05-05 19:34 - 2015-05-05 19:34 - 00317952 _____ () C:\Users\Marius\AppData\Roaming\003F0CDE-1430876041-E011-A025-00266CD20EB8\nswD013.tmpfs
- 2015-05-05 19:33 - 2015-05-05 19:33 - 00408576 _____ () c:\windows\mlnx.exe
- 2011-06-08 15:57 - 2011-06-08 15:57 - 02812776 _____ () C:\windows\system32\HPScanTRDrv_DJ3050A_J611.dll
- 2015-05-05 19:34 - 2015-05-05 19:34 - 00222720 _____ () C:\Users\Marius\AppData\Roaming\003F0CDE-1430876041-E011-A025-00266CD20EB8\jnsc147.tmp
- 2010-04-07 18:07 - 2010-04-07 18:07 - 09468728 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
- 2009-11-03 15:26 - 2009-11-03 15:26 - 00053560 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll
- 2010-03-03 16:15 - 2010-03-03 16:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll
- 2010-03-03 16:15 - 2010-03-03 16:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll
- 2011-03-02 21:16 - 2009-06-22 17:40 - 00022328 _____ () C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
- 2009-03-12 21:08 - 2009-03-12 21:08 - 00048640 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll
- 2009-07-25 19:38 - 2009-07-25 19:38 - 00017800 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
- 2014-05-04 21:10 - 2014-05-04 21:10 - 00301568 _____ () C:\ProgramData\{c0c6049b-348f-9f0c-c0c6-6049b348126c}\priceless_p_soft_partner.exe
- 2011-02-16 09:25 - 2011-02-16 09:25 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
- 2010-10-19 16:15 - 2010-10-19 16:15 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
- 2010-02-05 19:44 - 2010-02-05 19:44 - 00079192 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
- 2015-02-13 04:20 - 2015-02-13 04:20 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
- ==================== Alternate Data Streams (whitelisted) =========
- (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
- ==================== Safe Mode (whitelisted) ===================
- (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== EXE Association (whitelisted) ===============
- (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, the associated entry will be removed from the registry.)
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-2827223565-3312671657-2323579203-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marius\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
- DNS Servers: 172.16.1.254 - 142.165.200.5
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- ==================== FirewallRules (whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
- FirewallRules: [{AF123DA9-028D-46A5-8E08-FDF5536EA514}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
- FirewallRules: [{392BC412-66B1-4895-860E-680E950279A3}] => (Allow) LPort=2869
- FirewallRules: [{C8ECE3DF-55F4-4751-8F5C-582CF76782D4}] => (Allow) LPort=1900
- FirewallRules: [{CD8956EA-032D-486B-B7E6-E86FC9DCF32D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
- FirewallRules: [{C9037998-24B8-477E-B6BB-21073E7FA352}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
- FirewallRules: [{165BE1D9-CF5A-476E-9560-58B3B9FBFB53}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\DeviceSetup.exe
- FirewallRules: [{F27888CB-D8D6-4FE0-AB5C-4AFBD1408DD4}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
- FirewallRules: [{ABCDFEF8-2559-4DAC-A080-7320B137083F}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
- FirewallRules: [{746C4FCF-071D-4287-AE45-A0216905F9E0}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
- FirewallRules: [TCP Query User{E118C8F6-F8EB-463B-B270-428A22B4DBE3}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
- FirewallRules: [UDP Query User{E533393C-8147-495F-BC74-7DD95CA6B7E6}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
- FirewallRules: [{ED4D3D43-F746-4818-8298-F46FA1F24CC5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{B77225F7-7DCA-4CCF-9600-57112F4D42BC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{A8BEF60E-5233-490B-9ADD-DBA974449FA8}] => (Allow) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
- FirewallRules: [{91FA3FC7-1B19-4249-A556-F7C262E1A9E7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{46717557-C14A-453D-B3EC-12D954D52514}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{D1654D4C-5CAB-4681-8A2B-5918F3839176}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{E5A85381-2CCD-490B-9B84-00E9A3027377}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{04007021-4F01-4A2A-9A33-2EB06334BB14}] => (Allow) C:\Program Files\iTunes\iTunes.exe
- FirewallRules: [{C1D7D2F6-8340-4FAD-B6D0-6AFE45A9193C}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe
- FirewallRules: [{B3D72E3E-BE87-4F50-BDE6-5CBDA7E572CE}] => (Allow) C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe
- ==================== Faulty Device Manager Devices =============
- Name: innfd_1_10_0_13
- Description: innfd_1_10_0_13
- Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
- Manufacturer:
- Service: innfd_1_10_0_13
- Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
- Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
- Devices stay in this state if they have been prepared for removal.
- After you remove the device, this error disappears.Remove the device, and this error should be resolved.
- Name: Teredo Tunneling Pseudo-Interface
- Description: Microsoft Teredo Tunneling Adapter
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: Microsoft
- Service: tunnel
- Problem: : This device cannot start. (Code10)
- Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
- On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (05/06/2015 02:12:41 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: iiwjljrnpc64.exe, version: 0.0.0.0, time stamp: 0x551bf9ee
- Faulting module name: ntdll.dll, version: 6.1.7601.18798, time stamp: 0x5507b864
- Exception code: 0xc0000005
- Fault offset: 0x000000000005175f
- Faulting process id: 0x624
- Faulting application start time: 0xiiwjljrnpc64.exe0
- Faulting application path: iiwjljrnpc64.exe1
- Faulting module path: iiwjljrnpc64.exe2
- Report Id: iiwjljrnpc64.exe3
- Error: (05/06/2015 02:10:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 10:03:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 09:40:11 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: iiwjljrnpc64.exe, version: 0.0.0.0, time stamp: 0x551bf9ee
- Faulting module name: ntdll.dll, version: 6.1.7601.18798, time stamp: 0x5507b864
- Exception code: 0xc0000005
- Fault offset: 0x000000000005175f
- Faulting process id: 0x61c
- Faulting application start time: 0xiiwjljrnpc64.exe0
- Faulting application path: iiwjljrnpc64.exe1
- Faulting module path: iiwjljrnpc64.exe2
- Report Id: iiwjljrnpc64.exe3
- Error: (05/05/2015 09:37:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 08:45:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 08:39:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 08:37:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 08:04:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 07:54:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- System errors:
- =============
- Error: (05/06/2015 02:12:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The CoupoonService64 service terminated unexpectedly. It has done this 1 time(s).
- Error: (05/06/2015 02:10:09 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
- Description: The following boot-start or system-start driver(s) failed to load:
- innfd_1_10_0_13
- Error: (05/06/2015 02:10:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: A timeout was reached (30000 milliseconds) while waiting for the Avira Service Host service to connect.
- Error: (05/06/2015 02:09:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The UpdateCheck service failed to start due to the following error:
- %%2
- Error: (05/06/2015 02:09:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The BrsHelper service failed to start due to the following error:
- %%2
- Error: (05/05/2015 10:09:27 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: The Server service terminated with the following error:
- %%1062
- Error: (05/05/2015 10:09:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Diagnostic Service Host service failed to start due to the following error:
- %%1069
- Error: (05/05/2015 10:09:24 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
- Description: The WdiServiceHost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error:
- %%1352
- To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
- Error: (05/05/2015 10:09:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Diagnostic Service Host service failed to start due to the following error:
- %%1069
- Error: (05/05/2015 10:09:24 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
- Description: The WdiServiceHost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error:
- %%1352
- To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
- Microsoft Office Sessions:
- =========================
- Error: (05/06/2015 02:12:41 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: iiwjljrnpc64.exe0.0.0.0551bf9eentdll.dll6.1.7601.187985507b864c0000005000000000005175f62401d088388c027cd9C:\Program Files (x86)\coupoon\iiwjljrnpc64.exeC:\windows\SYSTEM32\ntdll.dll3eff14c0-f42c-11e4-8b01-00266cd20eb8
- Error: (05/06/2015 02:10:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 10:03:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 09:40:11 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: iiwjljrnpc64.exe0.0.0.0551bf9eentdll.dll6.1.7601.187985507b864c0000005000000000005175f61c01d087addbbd7fe7C:\Program Files (x86)\coupoon\iiwjljrnpc64.exeC:\windows\SYSTEM32\ntdll.dll98768808-f3a1-11e4-b708-00266cd20eb8
- Error: (05/05/2015 09:37:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 08:45:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 08:39:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 08:37:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 08:04:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- Error: (05/05/2015 07:54:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
- Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
- ==================== Memory info ===========================
- Processor: AMD E-240 Processor
- Percentage of memory in use: 44%
- Total physical RAM: 2662.87 MB
- Available physical RAM: 1490.68 MB
- Total Pagefile: 5323.93 MB
- Available Pagefile: 3698.69 MB
- Total Virtual: 8192 MB
- Available Virtual: 8191.86 MB
- ==================== Drives ================================
- Drive c: (S3A8666D005) (Fixed) (Total:270.72 GB) (Free:215.8 GB) NTFS ==>[System with boot components (obtained from reading drive)]
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: AD30EA02)
- Partition 1: (Active) - (Size=1.5 GB) - (Type=27)
- Partition 2: (Not Active) - (Size=270.7 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=16.6 GB) - (Type=17)
- Partition 4: (Not Active) - (Size=9.3 GB) - (Type=17)
- ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement