Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x86) Version: 16-05-2015 02
- Ran by Emmet at 2015-05-16 18:59:04
- Running from C:\Users\Emmet.JAMES\Downloads
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-3502313737-4056295871-2978746472-500 - Administrator - Disabled)
- Emmet (S-1-5-21-3502313737-4056295871-2978746472-1011 - Administrator - Enabled) => C:\Users\Emmet.JAMES
- Emmet Coyle (S-1-5-21-3502313737-4056295871-2978746472-1003 - Administrator - Enabled) => C:\Users\Emmet Coyle
- Guest (S-1-5-21-3502313737-4056295871-2978746472-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-3502313737-4056295871-2978746472-1002 - Limited - Enabled)
- megannígiollachóill (S-1-5-21-3502313737-4056295871-2978746472-1010 - Administrator - Enabled) => C:\Users\megannígiollachóill
- user (S-1-5-21-3502313737-4056295871-2978746472-1000 - Administrator - Enabled) => C:\Users\user
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.6.0.6090 - Adobe Systems Incorporated)
- Adobe Download Assistant (HKLM\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.5 - Adobe Systems Incorporated)
- Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
- Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
- Advanced Sound Editor (HKLM\...\{CC7BA35C-324E-45F8-B29D-6F4AAA527490}) (Version: 0.95.12.0 - Turtle Beach)
- Advanced Uninstaller PRO - Version 11 (HKLM\...\AU11_is1) (Version: 11.64.0.319 - Innovative Solutions)
- Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
- Audacity 2.0.3 (HKLM\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
- Bandicam (HKLM\...\Bandicam) (Version: 1.9.2.454 - Bandisoft.com)
- Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - Bandisoft.com)
- Blipshot one click screenshots (HKLM\...\{51417852-174C-88D4-34A0-D0FE7858BE47}) (Version: - "")
- Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
- Bruteforce Save Data (HKLM\...\Bruteforce Save Data) (Version: - )
- Cain & Abel 4.9.56 (HKLM\...\Cain & Abel 4.9.56) (Version: - )
- Castle Crashers (HKLM\...\Castle Crashers_is1) (Version: - )
- CCleaner (HKLM\...\CCleaner) (Version: 4.01 - Piriform)
- ControlConsole API version 2.60 (HKLM\...\{E6C0F5ED-B5EA-451D-8CB1-57902AA188DE}_is1) (Version: 2.60 - Enstone)
- Fraps (remove only) (HKLM\...\Fraps) (Version: - )
- Garry's Mod (HKLM\...\Steam App 4000) (Version: - Garry)
- GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
- Google Chrome (HKLM\...\Google Chrome) (Version: 42.0.2311.152 - Google Inc.)
- Google Drive (HKLM\...\{35574F09-89F9-4B16-B69B-64F3E25901B8}) (Version: 1.21.9226.6034 - Google, Inc.)
- Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
- Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden
- Instagram Bot (HKU\S-1-5-21-3502313737-4056295871-2978746472-1011\...\3d6770cba9696bf8) (Version: 1.0.0.13 - Microsoft)
- Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2869 - Intel Corporation)
- Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
- Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
- iTunes (HKLM\...\{B8032A6B-C4D0-4744-B75F-9DDCB56B5C6F}) (Version: 12.1.0.71 - Apple Inc.)
- Java 7 Update 21 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.210 - Oracle)
- Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
- Java SE Development Kit 8 Update 25 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180250}) (Version: 8.0.250.18 - Oracle Corporation)
- jEdit 5.1.0 (HKLM\...\jEdit_is1) (Version: 5.1.0 - Contributors)
- Kingsoft Antivirus 2012 (HKLM\...\Kingsoft Internet Security) (Version: 2012.5.7 - Kingsoft Internet Security)
- Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
- Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
- Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20125.0 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual F# 2.0 Runtime (HKLM\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation)
- MinimUmPrice (HKLM\...\{CA1838EF-A497-194E-3850-37A62CEE398B}) (Version: - "") <==== ATTENTION
- MixMeister Fusion Demo (HKLM\...\{DA55E50A-8DE2-4AE2-AA81-E701E3EE23FD}) (Version: 7.0.3.0 - MixMeister Technology)
- Modio (HKLM\...\{3DA224A5-666B-4941-8998-2F19C6D126A5}_is1) (Version: - GameTuts)
- MSI Afterburner 4.1.0 (HKLM\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD)
- MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
- MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
- MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
- NoMore Ads (HKLM\...\{37476589-E48E-439E-A706-56189E2ED4C4}_is1) (Version: - NoMore Ads) <==== ATTENTION
- NoNoizEBrrowSe (HKLM\...\{BDB38365-BCF2-1BF7-0020-507553315EA5}) (Version: - )
- Notepad++ (HKLM\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
- OpenAL (HKLM\...\OpenAL) (Version: - )
- oPryzeLP MC360 Mod Tool (HKLM\...\oPryzeLP MC360 Mod Tool) (Version: - )
- Optimizer Pro v3.2 (HKLM\...\Optimizer Pro_is1) (Version: - ) <==== ATTENTION
- Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41417}) (Version: 3.61.0 - dotPDN LLC)
- Portforward Static IP Address 1.0.47 (HKLM\...\Portforward Static IP Address) (Version: 1.0.47 - Portforward.com)
- puush (HKLM\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
- Razer Game Booster (HKLM\...\{88F0F4FF-B514-4E32-9C17-CAF96D60EAFC}) (Version: 3.5.6.0 - Razer USA Ltd.)
- ReactorStable (HKLM\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{963d6c71}) (Version: - Software Publisher) <==== ATTENTION
- RegistryNuke 2012 version 2.0.0.90 (HKLM\...\{D9DF8D5A-2160-402B-819F-A5A964215528}_is1) (Version: 2.0.0.90 - RegistryNuke, Inc.)
- ReguilarDealis (HKLM\...\{76DEE3DC-2B8B-E212-2126-D31D9E73DFE4}) (Version: - "") <==== ATTENTION
- Reload Icons Cache 1.00 (HKLM\...\Reload Icons Cache 1.00) (Version: 1.00 - Mr Blade Design's)
- Roxio Game Capture HD PRO (HKLM\...\{2DD84AB2-8BF4-49FA-9D62-E3F93D4F56FB}) (Version: 1.0 - Roxio)
- SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
- Sandboxie 4.16 (32-bit) (HKLM\...\Sandboxie) (Version: 4.16 - Sandboxie Holdings, LLC)
- Search Protect (HKLM\...\SearchProtect) (Version: 2.23.10.51 - Client Connect LTD) <==== ATTENTION
- Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
- Skype™ 6.22 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.105 - Skype Technologies S.A.)
- SlimPDF Reader 1.0 (HKLM\...\{7E1FEE27-F869-4D4B-8AA3-64C7FD99BD7C}_is1) (Version: 1.0 - Investintech.com Inc.)
- Sony Vegas Pro Pre-Cracked By Exµs 11.0 (HKLM\...\Sony Vegas Pro Pre-Cracked By Exµs) (Version: 11.0 - TheMrExus)
- SopCast 3.8.3 (HKLM\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
- SRWare Iron version SRWare Iron 40.2150.0 (HKLM\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 40.2150.0 - SRWare)
- Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
- System Requirements Lab for Intel (HKLM\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
- TakeTheCoupuon (HKLM\...\{53B21E29-3967-C332-57EB-C02631658584}) (Version: - "") <==== ATTENTION
- Vegas Pro 11.0 (HKLM\...\{6AEFCA01-8DF1-11E1-A17B-F04DA23A5C58}) (Version: 11.0.682 - Sony)
- VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
- Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.6.0.0 - Azureus Software, Inc.)
- Windows Driver Package - Datel Design & Development (dsiarhwprog) USBIOControlledDevices (05/21/2012 2.40.0.0) (HKLM\...\66D0EA0FEC96AC8BA6F5D30012E2C0BE83D4A67B) (Version: 05/21/2012 2.40.0.0 - Datel Design & Development)
- Windows Driver Package - Datel Design & Development USBIOControlledDevices (05/21/2012 2.40.0.0) (HKLM\...\7BD98A593B77F7A2CC2A9538524495FE39D5962E) (Version: 05/21/2012 2.40.0.0 - Datel Design & Development)
- WinPcap 4.1.3 (HKLM\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
- WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
- ==================== Custom CLSID (selected items): ==========================
- (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
- CustomCLSID: HKU\S-1-5-21-3502313737-4056295871-2978746472-1011_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\EMMET~1.JAM\AppData\Local\Temp\7640\temp\2540.exe No File
- ==================== Restore Points =========================
- 06-05-2015 20:25:55 After installing Advanced Uninstaller PRO
- 15-05-2015 19:08:55 Scheduled Checkpoint
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-14 03:04 - 2013-03-14 21:31 - 00000960 ____A C:\Windows\system32\Drivers\etc\hosts
- 127.0.0.1 65.52.240.48
- 127.0.0.1 activation.cloud.techsmith.com
- 127.0.0.1 65.52.240.48
- 127.0.0.1 activation.cloud.techsmith.com
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
- Task: {0B58F64D-7C0C-4BAA-B42D-2978BECE0460} - System32\Tasks\UninstallMonitor => C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe [2015-04-17] (Innovative Solutions)
- Task: {10AD83E7-7F47-40D0-B455-45F6FCBEAD44} - System32\Tasks\Health-Check => C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
- Task: {1901E5E7-3842-47D7-BB87-616A4127C275} - System32\Tasks\{B13ED04E-946F-4794-801E-1BC37033CE3D} => Chrome.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.3.0.105&LastError=12007
- Task: {1B5BAD5F-F132-4196-A865-196E7AEFB5F0} - System32\Tasks\Health-Check-deep => C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
- Task: {2AD13548-379B-4FA1-BEC6-059A065EDBD8} - System32\Tasks\{31EE07DA-4072-43F3-8424-E96AA549315E} => pcalua.exe -a "C:\Users\user\Desktop\PKM FILES JAMES LEAVE THIS\Event (GEN IV)\X-Ray Mod Installer.exe" -d "C:\Users\user\Desktop\PKM FILES JAMES LEAVE THIS\Event (GEN IV)"
- Task: {365AC92E-DEBD-4292-839D-F60DA12E2DFA} - \8daf7542-f2e4-49f8-9837-211194d24e57-6 No Task File <==== ATTENTION
- Task: {376226D0-7A9C-4750-8512-5D60EED10F0D} - System32\Tasks\summer_games_updating_service => C:\Program Files\summer games\summer_games_updating_service.exe [2015-04-09] () <==== ATTENTION
- Task: {38612927-7597-4949-9CC1-7B3C1614D8FC} - System32\Tasks\EPUpdater => C:\Users\user\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe <==== ATTENTION
- Task: {3CD2EE6D-FCB3-4FAD-B3DF-8369B63EAECB} - \8daf7542-f2e4-49f8-9837-211194d24e57-1-6 No Task File <==== ATTENTION
- Task: {4C29E3D0-58F7-468D-812B-174182F7D137} - System32\Tasks\Health-Check-auto => C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
- Task: {528E916A-C3A2-453E-8BE7-5C9CA0014A79} - System32\Tasks\{0AD5E95D-6BC5-459E-8D1F-D64D24FD281E} => pcalua.exe -a "C:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
- Task: {5E1CA4E5-9BF2-4E35-B8B6-25258CC36734} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
- Task: {60F6EF50-32B8-4145-B776-8AA50784B0F3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-06-11] (Google Inc.)
- Task: {638730BF-7640-4DDC-9F99-A1806EDEB74D} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3502313737-4056295871-2978746472-1000
- Task: {651F4D80-F071-4F38-9350-E086F7D345B9} - System32\Tasks\{05DF251B-8332-4EB3-A8D0-3148D2C43526} => pcalua.exe -a "C:\Users\user\Desktop\PKM FILES JAMES LEAVE THIS\Event (GEN IV)\MCMA2_Installer.exe" -d "C:\Users\user\Desktop\PKM FILES JAMES LEAVE THIS\Event (GEN IV)"
- Task: {6556ABA8-C94E-4D41-B95A-27EB3E401AF9} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files\Razer\Razer Game Booster\AutoUpdate.exe [2012-11-13] ()
- Task: {689A7E49-F5D2-46EF-BABF-F683F96BA69F} - System32\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-5_user => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-5.exe <==== ATTENTION
- Task: {735DB729-C2F2-4E2C-BA99-E6BC898811ED} - System32\Tasks\DefaultCheck => c:\Users\All Users\dtdata\R002.exe [2014-11-18] () <==== ATTENTION
- Task: {76AD9E4C-7B1D-4B67-93BD-A12A02A107A8} - System32\Tasks\{A3D1C7AC-B1D4-4DAD-B957-9DD068D7EB57} => pcalua.exe -a "C:\Users\Emmet Coyle\Desktop\nircmd.exe" -d "C:\Users\Emmet Coyle\Desktop"
- Task: {7823B908-0450-4FAC-892C-A0E92F11F459} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-25] (Adobe Systems Incorporated)
- Task: {7A2C4470-C05E-4E2E-B939-7C979F6A4710} - System32\Tasks\{951DA7CD-56D2-4952-A820-78C35FB27CBB} => pcalua.exe -a "C:\Program Files\ActiveDeals\ActiveDeals.exe" -c /s /n /i:"ExecuteCommands;UninstallCommands" ""
- Task: {7CE41E3B-8C1C-4588-B4E9-004139CB42AF} - System32\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-1-7 => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-1-7.exe <==== ATTENTION
- Task: {7F318CF0-94CE-45AC-9773-35199B2FBA6C} - System32\Tasks\DiyPvYsaw53vqdHeYjuWT9 => C:\Users\user\AppData\Roaming\DiyPvYsaw53vqdHeYjuWT9.exe <==== ATTENTION
- Task: {80B47DEE-2B14-454E-8442-60C1C0F6B25E} - System32\Tasks\{E54B80CE-3B0D-4662-BB74-2F4C293F9A70} => Chrome.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.22.81.105&LastError=12002
- Task: {875334B3-6692-4A0E-B19D-67670A22D5E9} - System32\Tasks\GoforFilesUpdate => C:\Program Files\GoforFiles\GFFUpdater.exe <==== ATTENTION
- Task: {92266D31-EA08-4115-9449-735E376224E8} - System32\Tasks\avabvyxvdy => C:\Users\Emmet.JAMES\AppData\Local\avabvyxvdy\avabvyxvdy.exe <==== ATTENTION
- Task: {92A93FAB-AA8D-4711-8CED-189DE1AE9095} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd)
- Task: {9C750966-8786-4D97-B9B5-81E750DBF6B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-06-11] (Google Inc.)
- Task: {AAC37842-33AE-4F3B-B477-69630CB21510} - System32\Tasks\{A374DB19-4D6A-41E6-9022-16498389AAE9} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/en/abandoninstall?source=lightinstaller&page=tsInstall
- Task: {AE2FECBE-0625-44F1-8B13-4ACEAA2BB945} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
- Task: {B01FF73C-372F-413D-AA40-3C1239929939} - System32\Tasks\summer_games_notification_service => C:\Program Files\summer games\summer_games_notification_service.exe <==== ATTENTION
- Task: {C6199517-0300-4A2B-A1B7-D7FFD20C61A9} - System32\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-5 => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-5.exe <==== ATTENTION
- Task: {CE362487-962E-4045-ABB2-7F5EB840E9E7} - System32\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-7 => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-7.exe <==== ATTENTION
- Task: {D305C415-BC5E-4021-9366-9852642703A4} - System32\Tasks\DefaultReg => c:\Users\All Users\dtdata\R001.exe [2014-11-18] () <==== ATTENTION
- Task: {D954D9B7-8F80-4BF1-946B-DFEC59E6F45A} - System32\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-10_user => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-10.exe <==== ATTENTION
- Task: {E435D15B-8B1A-4569-8C90-16A5F703FE76} - System32\Tasks\{53AFE72A-98E0-4572-A330-A7DF4FEBD555} => pcalua.exe -a D:\Setup.now.exe -d D:\
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\Windows\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-1-6.job => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-1-6.exe <==== ATTENTION
- Task: C:\Windows\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-1-7.job => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-1-7.exe <==== ATTENTION
- Task: C:\Windows\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-10_user.job => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-10.exe <==== ATTENTION
- Task: C:\Windows\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-5.job => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-5.exe <==== ATTENTION
- Task: C:\Windows\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-5_user.job => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-5.exe <==== ATTENTION
- Task: C:\Windows\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-6.job => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-6.exe <==== ATTENTION
- Task: C:\Windows\Tasks\8daf7542-f2e4-49f8-9837-211194d24e57-7.job => C:\Program Files\CinemaP-1.8cV13.02\8daf7542-f2e4-49f8-9837-211194d24e57-7.exe <==== ATTENTION
- Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\Windows\Tasks\DiyPvYsaw53vqdHeYjuWT9.job => C:\Users\user\AppData\Roaming\DiyPvYsaw53vqdHeYjuWT9.exe <==== ATTENTION
- Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
- Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\Health-Check-auto.job => C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
- Task: C:\Windows\Tasks\Health-Check-deep.job => C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
- Task: C:\Windows\Tasks\Health-Check.job => C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
- Task: C:\Windows\Tasks\summer_games_notification_service.job => C:\Program Files\summer games\summer_games_notification_service.exeè/url='http:/cdn.selectbestopt.com/notf_sys/index.html' /crregname='summer games' /appid='73143' /srcid='2913' /bic='60fec619f7c623707fd193ad8112e7b3' /verifier='e8d073c530c81934e105b829b889dea0' /installerversion='1.50.3.10' /statsdomain='http:/stats.buildomserv.com/data.gif?' /errorsdomain='http:/stats.buildomserv.com/data.gif?' /monetizationdomain='http:/logs.buildomserv.com/monetization.gif <==== ATTENTION
- Task: C:\Windows\Tasks\summer_games_updating_service.job => C:\Program Files\summer games\summer_games_updating_service.exe /campid=2913 /verid=1 /url=http:/cdn.buildomserv.com/txt/@CAMPID@/@VER@/file.txt /appid=73143 /taskname=summer_games_updating_service /funurl=http:/stats.buildomserv.com <==== ATTENTION
- Task: C:\Windows\Tasks\UninstallMonitor.job => C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-05-06 20:25 - 2014-03-07 10:23 - 00565827 _____ () C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\sqlite3.dll
- 2015-02-14 01:21 - 2015-01-27 18:54 - 01402368 _____ () C:\Program Files\SRWare Iron\libglesv2.dll
- 2015-02-14 01:21 - 2015-01-27 18:55 - 00212480 _____ () C:\Program Files\SRWare Iron\libegl.dll
- 2015-02-14 01:21 - 2015-02-03 12:43 - 09464320 _____ () C:\Program Files\SRWare Iron\pdf.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
- AlternateDataStreams: C:\ProgramData\TEMP:373E1720
- AlternateDataStreams: C:\ProgramData\TEMP:B7461410
- ==================== Safe Mode (Whitelisted) ===================
- (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== EXE Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, the associated entry will be removed from the registry.)
- IE trusted site: HKU\S-1-5-21-3502313737-4056295871-2978746472-1011\...\hola.org -> hxxp://hola.org
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-3502313737-4056295871-2978746472-1011\Control Panel\Desktop\\Wallpaper -> C:\Users\Emmet.JAMES\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
- DNS Servers: 192.168.43.1
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- MSCONFIG\startupfolder: C:^Users^Emmet.JAMES^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SweGen 3.0.lnk => C:\Windows\pss\SweGen 3.0.lnk.Startup
- MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
- MSCONFIG\startupreg: MicroUpdate => C:\Users\Emmet.JAMES\Documents\MSDCSC\msdcsc.exe
- MSCONFIG\startupreg: Olympus DSS => C:\ProgramData\AppleDev0\riaiccape.exe
- MSCONFIG\startupreg: puush => C:\Program Files\puush\puush.exe
- MSCONFIG\startupreg: Startup => C:\Users\user\AppData\Roaming\Mining\mineamillion.exe
- MSCONFIG\startupreg: Steam => "C:\Program Files\Steam\Steam.exe" -silent
- MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
- FirewallRules: [{FC6F1898-F451-4BB5-A6E8-C43D7F777DCA}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
- FirewallRules: [TCP Query User{40FD7AAB-3D1B-44CC-AB82-C508A9FB2087}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
- FirewallRules: [UDP Query User{863394D0-3CEA-4CB5-A1EC-570E631DF2AD}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
- FirewallRules: [{A73B1F09-837A-4493-B114-6556CA20BC6A}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
- FirewallRules: [TCP Query User{32CBB55C-F93C-499A-B5B5-7CCAACFBBFD1}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
- FirewallRules: [UDP Query User{987014EC-F9E2-449A-A1D3-AE667A94578F}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
- FirewallRules: [TCP Query User{07D82739-1338-463D-AC44-DF130F5D7E8D}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
- FirewallRules: [UDP Query User{955CF062-5976-4565-8CB5-4B0CDF210DDC}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
- FirewallRules: [TCP Query User{3196E4D8-3C8B-4AD9-BBBF-238C3E4B4575}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe
- FirewallRules: [UDP Query User{4892E618-5914-41C5-9414-867AB5B45289}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe
- FirewallRules: [{68E3591D-23AB-4A5F-A720-D2070C7A524E}] => (Allow) C:\Program Files\Steam\Steam.exe
- FirewallRules: [{AACB77B2-D2FC-463D-9DCB-86541BB150F5}] => (Allow) C:\Program Files\Steam\Steam.exe
- FirewallRules: [TCP Query User{9976CBD3-9194-4150-9590-797AACB72B98}C:\program files\steam\steamapps\majesticbanjo\garrysmod\hl2.exe] => (Block) C:\program files\steam\steamapps\majesticbanjo\garrysmod\hl2.exe
- FirewallRules: [UDP Query User{4D0DBDD5-B4B4-4F00-B097-1FB01E8E70DB}C:\program files\steam\steamapps\majesticbanjo\garrysmod\hl2.exe] => (Block) C:\program files\steam\steamapps\majesticbanjo\garrysmod\hl2.exe
- FirewallRules: [TelnetServer-TlntSvr-TCP-In] => (Allow) %systemroot%\system32\tlntsvr.exe
- FirewallRules: [TelnetServer-Tlntadmn-RPC-In] => (Allow) %systemroot%\system32\tlntsvr.exe
- FirewallRules: [TCP Query User{1366FD96-56F8-4FEB-B935-CBC607DD14F5}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe
- FirewallRules: [UDP Query User{75CBB90A-AF59-4BA6-A442-0B9241F99244}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe
- FirewallRules: [TCP Query User{DF866ABD-CE96-4B26-93D5-4BA89E78388C}C:\program files\cain\cain.exe] => (Allow) C:\program files\cain\cain.exe
- FirewallRules: [UDP Query User{618203CC-E42E-4D88-A145-70E4EAC1005B}C:\program files\cain\cain.exe] => (Allow) C:\program files\cain\cain.exe
- StandardProfile\AuthorizedApplications: [C:\Windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe] => Enabled:Windows Messanger
- StandardProfile\AuthorizedApplications: [C:\Users\user\AppData\Roaming\apple\Aprilspread.exe] => Enabled:Windows Messanger
- StandardProfile\AuthorizedApplications: [\win39.exe] => Enabled:Windows Messanger
- StandardProfile\AuthorizedApplications: [C:\Users\user\AppData\Local\Temp\bjrjslvsxlh.exe] => Enabled:Windows Messanger
- StandardProfile\AuthorizedApplications: [C:\Users\user\AppData\Local\Temp\duzbcavytqv.exe] => Enabled:Windows Messanger
- StandardProfile\AuthorizedApplications: [C:\Windows\system32\msiexec.exe] => Generic Host Process
- StandardProfile\AuthorizedApplications: [C:\Windows\system32\svchost.exe] => Generic Host Process
- StandardProfile\AuthorizedApplications: [C:\Users\user\AppData\Local\Temp\cpntzbwqjtf.exe] => Enabled:Windows Messanger
- ==================== Faulty Device Manager Devices =============
- Name: Teredo Tunneling Pseudo-Interface
- Description: Microsoft Teredo Tunneling Adapter
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: Microsoft
- Service: tunnel
- Problem: : This device cannot start. (Code10)
- Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
- On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (05/16/2015 04:05:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 7659
- Error: (05/16/2015 04:05:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 7659
- Error: (05/16/2015 04:05:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: Continuously busy for more than a second
- Error: (05/16/2015 04:04:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 6614
- Error: (05/16/2015 04:04:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 6614
- Error: (05/16/2015 04:04:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: Continuously busy for more than a second
- Error: (05/16/2015 04:04:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 5584
- Error: (05/16/2015 04:04:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 5584
- Error: (05/16/2015 04:04:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: Continuously busy for more than a second
- Error: (05/16/2015 04:04:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 4555
- System errors:
- =============
- Error: (05/16/2015 06:44:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The globalUpdate Update Service (globalUpdate) service failed to start due to the following error:
- %%2
- Error: (05/16/2015 06:41:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Search Protect Service service failed to start due to the following error:
- %%2
- Error: (05/16/2015 06:41:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: A timeout was reached (30000 milliseconds) while waiting for the ReactorStable service to connect.
- Error: (05/16/2015 06:41:14 PM) (Source: EventLog) (EventID: 6008) (User: )
- Description: The previous system shutdown at 18:38:16 on 16/05/2015 was unexpected.
- Error: (05/16/2015 06:13:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The globalUpdate Update Service (globalUpdate) service failed to start due to the following error:
- %%2
- Error: (05/16/2015 06:12:42 PM) (Source: ipnathlp) (EventID: 31004) (User: )
- Description: 0
- Error: (05/16/2015 06:12:39 PM) (Source: NetBT) (EventID: 4321) (User: )
- Description: The name "EMMETSLAPTOP :0" could not be registered on the interface with IP address 192.168.43.80.
- The computer with the IP address 169.254.165.157 did not allow the name to be claimed by
- this computer.
- Error: (05/16/2015 06:12:39 PM) (Source: NetBT) (EventID: 4321) (User: )
- Description: The name "EMMETSLAPTOP :20" could not be registered on the interface with IP address 192.168.43.80.
- The computer with the IP address 169.254.165.157 did not allow the name to be claimed by
- this computer.
- Error: (05/16/2015 06:12:39 PM) (Source: Server) (EventID: 2505) (User: )
- Description: The server could not bind to the transport \Device\NetBT_Tcpip_{D2CF847F-7EFE-4C87-903E-97C864524A06} because another computer on the network has the same name. The server could not start.
- Error: (05/16/2015 06:10:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Search Protect Service service failed to start due to the following error:
- %%2
- Microsoft Office Sessions:
- =========================
- Error: (05/16/2015 04:05:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 7659
- Error: (05/16/2015 04:05:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 7659
- Error: (05/16/2015 04:05:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: Continuously busy for more than a second
- Error: (05/16/2015 04:04:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 6614
- Error: (05/16/2015 04:04:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 6614
- Error: (05/16/2015 04:04:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: Continuously busy for more than a second
- Error: (05/16/2015 04:04:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 5584
- Error: (05/16/2015 04:04:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 5584
- Error: (05/16/2015 04:04:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: Continuously busy for more than a second
- Error: (05/16/2015 04:04:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 4555
- ==================== Memory info ===========================
- Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
- Percentage of memory in use: 37%
- Total physical RAM: 3001.97 MB
- Available physical RAM: 1877.19 MB
- Total Pagefile: 6872.25 MB
- Available Pagefile: 5520.42 MB
- Total Virtual: 2047.88 MB
- Available Virtual: 1889.47 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:111.69 GB) (Free:40.43 GB) NTFS
- Drive f: (DV) (Removable) (Total:3.68 GB) (Free:3.01 GB) FAT32
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 97646C29)
- Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
- ========================================================
- Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)
- Partition: GPT Partition Type.
- ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement