fixlist.txt

1. start
2. CreateRestorePoint:
3. CloseProcesses:
4. HKU\S-1-5-21-730845294-2619493735-3611509550-1000\...\Run: [Google Update] => C:\Users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-18] (Google Inc.)
5. HKU\S-1-5-21-730845294-2619493735-3611509550-1003\...\Run: [Google Update] => C:\Users\curious george\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-08-14] (Google Inc.)
6. ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
7. ProxyServer: [.DEFAULT] => http=127.0.0.1:58355;https=127.0.0.1:58355
8. SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
9. SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
10. SearchScopes: HKU\S-1-5-21-730845294-2619493735-3611509550-1000 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
11. Toolbar: HKU\S-1-5-21-730845294-2619493735-3611509550-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
12. Toolbar: HKU\S-1-5-21-730845294-2619493735-3611509550-1003 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
13. Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 24.48.19.13 24.202.72.13
14. Tcpip\..\Interfaces\{10D94DAA-30A0-436C-817A-0FE3F2BEB008}: [DhcpNameServer] 24.200.241.37 24.201.245.77 24.200.243.189
15. Tcpip\..\Interfaces\{3063B746-BB17-45F3-B75A-8A7CCF2CBDFD}: [DhcpNameServer] 192.168.0.1 24.48.19.13 24.202.72.13
16. U3 axmodk8v; C:\Windows\System32\Drivers\axmodk8v.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
17. 2015-08-03 07:16 - 2015-08-03 07:16 - 0000064 _____ () C:\Users\Admin\AppData\Local\a9b96ce259e0bf093e4be8832cb2d408
18. 2014-10-25 16:37 - 2014-10-26 13:08 - 0007602 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
19. 2012-04-21 00:07 - 2012-04-21 00:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
20. 2012-04-21 00:00 - 2012-04-21 00:01 - 0000113 _____ () C:\ProgramData\{34FBC7C4-CD31-4D93-A428-0E524EAC4586}.log
21. 2012-04-21 00:04 - 2012-04-21 00:05 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
22. 2012-04-21 00:01 - 2012-04-21 00:04 - 0000106 _____ () C:\ProgramData\{80E158EA-7181-40FE-A701-301CE6BE64AB}.log
23. 2012-04-21 00:05 - 2012-04-21 00:07 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
24. C:\Users\Admin\AppData\Local\Temp\avgnt.exe
25. C:\Users\Admin\AppData\Local\Temp\dllnt_dump.dll
26. C:\Users\Admin\AppData\Local\Temp\failover.exe
27. C:\Users\Admin\AppData\Local\Temp\Opera_NI_stable.exe
28. C:\Users\Admin\AppData\Local\Temp\sqlite-3.7.15-x86-sqlitejdbc.dll
29. C:\Users\curious george\AppData\Local\Temp\avgnt.exe
30. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Admin\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
31. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Admin\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
32. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Admin\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
33. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Admin\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
34. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Admin\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
35. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1003_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\curious george\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
36. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1003_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\curious george\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
37. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1003_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\curious george\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
38. CustomCLSID: HKU\S-1-5-21-730845294-2619493735-3611509550-1003_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\curious george\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
39. Task: {983D9402-18F0-4B09-9442-50B033EEE671} - System32\Tasks\{BC4A2225-2A34-4A59-AECC-8F273EDC01A0} => c:\program files (x86)\opera\launcher.exe
40. Task: {A0DA4C3F-2922-408F-A105-3055DE4395BA} - System32\Tasks\EcoMode => C:\Program Files (x86)\Samsung\Eco Mode\SmartEco.exe [2011-06-06] (Samsung Electronics)
41. Task: {A3F2DEE7-117F-4AEB-B0E3-6545F6D30B52} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-27] (Google Inc.)
42. Task: {A9CC0A9E-A2F6-460C-B9B7-619348EFBC2E} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Samsung Control Center\SmartSetting.exe [2011-06-04] (Samsung Electronics Co., Ltd.)
43. Task: {AE4FAF77-CE84-488E-81E6-646632FE019C} - System32\Tasks\SUPBackground => C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe [2011-01-11] (Samsung Electronics)
44. Task: {AED149E8-5CB8-4D90-B39D-191B7ACC8968} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-730845294-2619493735-3611509550-1003UA => C:\Users\curious george\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-14] (Google Inc.)
45. Task: {B88AB2A0-7475-494F-9AA3-E8FBF863F82D} - System32\Tasks\{19E773A2-24BD-4794-8055-1A2B96A2C71F} => pcalua.exe -a C:\Users\Admin\Downloads\multibit-0.5.15-windows-setup.exe -d C:\Users\Admin\Downloads
46. Task: {C3F5E6A9-266D-4304-BCFD-5BBD2461BF20} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Samsung Control Center\MovieColorEnhancer.exe [2011-02-16] (Samsung Electronics Co., Ltd.)
47. Task: {CD90F9CD-0054-474E-8289-17F52636F103} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2011-03-29] (SEC)
48. Task: {D0FD66D0-35AE-46FD-8CD5-7EC1F145E8FD} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-08-17] (CyberLink)
49. Task: {DD654577-CEBD-487C-AB77-EE74508A4A8E} - \DealPlyUpdate No Task File <==== ATTENTION
50. Task: {E0EC93DE-646F-471F-AEFC-EB4C7BE4E81A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-27] (Google Inc.)
51. Task: {E44367D4-72AF-4C82-9C12-533A699F713A} - System32\Tasks\WifiManager => C:\Program Files (x86)\Samsung\Samsung Control Center\WifiManager.exe [2011-06-15] (Samsung Electronics Co., Ltd.)
52. Task: {F354BCC0-5213-4967-9537-495024A9E196} - System32\Tasks\SvcDelay => C:\Windows\temp\SvcDelay.exe
53. Task: {088235E7-0EF0-4AB6-BE14-4CBDE737398B} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe [2011-04-17] (SAMSUNG Electronics)
54. Task: {097EDD15-C347-472C-8129-B9FCEA06716C} - System32\Tasks\{AADAE771-558B-4A37-A5B3-21F5A49449FB} => pcalua.exe -a C:\Users\Admin\Downloads\multibit-0.5.15-windows-setup.exe -d C:\Users\Admin\Downloads
55. Task: {09C3E055-BA6C-4D44-A433-F2BDFA49393F} - System32\Tasks\{5C10D141-BEB0-4F32-A427-879335FAC226} => pcalua.exe -a C:\Users\Admin\APPDATA\LOCAL\TEMP\install\install.exe -d C:\USERS\ADMIN\APPDATA\LOCAL\TEMP\install
56. Task: {12A000D2-BEFE-44E2-BFA9-852332D269B1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-730845294-2619493735-3611509550-1000UA => C:\Users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.)
57. Task: {4A8D58BE-3977-4CB2-B565-3BE261DCF8E8} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Samsung Control Center\EBM\EasyBatteryMgr4.exe [2011-05-09] (SAMSUNG Electronics co., LTD.)
58. Task: {4F0D529A-D75A-46F7-9535-CCE592B8F405} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
59. Task: {537B9D3E-13DE-4A2C-B6E5-7D8B7CD3FB8A} - System32\Tasks\{52C03FEE-7191-4D65-8371-A14776A040C2} => pcalua.exe -a D:\games\BROOD\install.exe -d D:\games\BROOD
60. Task: {6340D49E-A372-44AF-B28B-9F2478EFEA50} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Samsung Control Center\dmhkcore.exe [2011-06-15] (Samsung Electronics Co., Ltd.)
61. Task: {68740D12-E2C0-46F9-8DAB-A02FD0D7F99E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-730845294-2619493735-3611509550-1000Core => C:\Users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.)
62. Task: {70FD664F-C8E6-4242-AE5B-FB1B7292BE4A} - System32\Tasks\SCCSpeedBoot => C:\Program Files (x86)\Samsung\Samsung Control Center\SCCSpeedBoot.exe [2011-05-18] (Samsung Electronics Co., Ltd.)
63. Task: {813116FB-E9ED-4849-B160-626851A000D6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-730845294-2619493735-3611509550-1003Core => C:\Users\curious george\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-14] (Google Inc.)
64. CMD: netsh advfirewall reset
65. CMD: netsh advfirewall set allprofiles state On
66. RemoveProxy:
67. Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
68. Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
69. CMD: ipconfig /flushdns
70. CMD: netsh winsock reset catalog
71. CMD: bitsadmin /reset /allusers
72. hosts:
73. Emptytemp:
74. reboot:
75. end