Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-10-2014
- Ran by Brandon at 2014-10-26 20:51:25
- Running from C:\Users\Brandon\Desktop
- Boot Mode: Normal
- ==========================================================
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
- AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
- FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
- ==================== Installed Programs ======================
- (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe Acrobat 8 Professional (HKLM-x32\...\Adobe Acrobat 8 Professional) (Version: 8.0.0 - Adobe Systems)
- Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
- Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
- Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
- Apple Application Support (HKLM-x32\...\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}) (Version: 2.2.2 - Apple Inc.)
- Apple Mobile Device Support (HKLM\...\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}) (Version: 6.0.0.59 - Apple Inc.)
- Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
- Ask Toolbar Updater (HKCU\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.5.36191 - Ask.com) <==== ATTENTION
- Avery Template (HKLM-x32\...\{A760067A-C07E-1033-0000-A764AC000012}) (Version: 2.0.0.0 - Avery)
- BeFrugal.com Toolbar (HKLM-x32\...\BeFrugal.com Toolbar_is1) (Version: - )
- Brother MFL-Pro Suite MFC-7440N (HKLM-x32\...\{46E1B1F2-A279-4356-9B17-029F9CC72EAE}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
- Brother MFL-Pro Suite MFC-7860DW (HKLM-x32\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.0.0.0 - Brother Industries, Ltd.)
- Brother P-touch Address Book 1.1 (HKLM-x32\...\InstallShield_{B2023017-DEE4-44F7-8A71-CA6084BF534C}) (Version: 1.1.0.0 - Brother Industries, Ltd.)
- Brother P-touch Address Book 1.1 (x32 Version: 1.1.0.0 - Brother Industries, Ltd.) Hidden
- Brother P-touch Editor 5.0 (HKLM-x32\...\InstallShield_{DF9A6075-9308-4572-8932-A4316243C4D9}) (Version: 5.0.0.0 - Brother Industries, Ltd.)
- Brother P-touch Editor 5.0 (x32 Version: 5.0.0.0 - Brother Industries, Ltd.) Hidden
- Brother P-touch Software (x32 Version: 1.0.006 - Brother Industries, Ltd. ) Hidden
- Brother QL-570 User's Guide (HKLM-x32\...\InstallShield_{DEDDF868-E272-47E9-A8EA-E5CC7B179077}) (Version: 1.0.001 - Brother Industries, Ltd.)
- Brother QL-570 User's Guide (x32 Version: 1.0.001 - Brother Industries, Ltd.) Hidden
- Carbonite (HKLM-x32\...\Carbonite Backup) (Version: 5.5.5 build 4151 (Jun-27-2014) - Carbonite)
- Cisco Connect (HKLM-x32\...\Cisco Connect) (Version: 1.4.12068.0 - Cisco Consumer Products LLC)
- D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
- Dropbox (HKCU\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
- DSmobile 600 (HKLM\...\{1BDEB6E2-6706-4132-A5D3-99190C6BECD8}) (Version: 1.3.4 - Brother Industries, Ltd.)
- DSmobileSCAN II (HKLM-x32\...\{05227385-5073-46ED-9035-B1910E2613CC}) (Version: 2.0.26 - Brother Industries, Ltd.)
- FPL16Pro_Lite (remove only) (HKLM-x32\...\FPL16Pro_Lite) (Version: - )
- Google Chrome (HKCU\...\Google Chrome) (Version: 38.0.2125.104 - Google Inc.)
- Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
- Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
- Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
- GoPro Studio 2.0.1 (HKLM-x32\...\GoPro Studio) (Version: 2.0.1 - WoodmanLabs Inc. d.b.a. GoPro)
- iCloud (HKLM\...\{4BC310C4-B898-46E2-B5FB-B85A30AA7142}) (Version: 2.0.2.187 - Apple Inc.)
- iCMS (HKLM-x32\...\{6BF6FA12-4DA0-4BBD-A91C-81B1A1DDCE74}) (Version: 1.0.4 - iCMS)
- Image Resizer Powertoy Clone for Windows (64 bit) (HKLM\...\{80A620C1-B22C-4781-A351-B14B8A37BFE3}) (Version: 2.1 - Brice Lambson)
- iTunes (HKLM\...\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}) (Version: 10.7.0.21 - Apple Inc.)
- Java 7 Update 11 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417011FF}) (Version: 7.0.110 - Oracle)
- Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.650 - Oracle)
- Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
- Java SE Development Kit 7 Update 11 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170110}) (Version: 1.7.0.110 - Oracle)
- Java(TM) 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
- Jawbone Updater (HKLM-x32\...\Jawbone Updater) (Version: 0.1 - Jawbone)
- Juniper Networks Host Checker (HKCU\...\Neoteris_Host_Checker) (Version: 7.4.0.23727 - Juniper Networks)
- Juniper Networks Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks)
- Juniper Networks, Inc. Setup Client (HKCU\...\Juniper_Setup_Client) (Version: 7.4.1.32327 - Juniper Networks, Inc.)
- Juniper Networks, Inc. Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
- Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
- McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 13.6.1248 - McAfee, Inc.)
- McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.143 - McAfee, Inc.)
- Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
- Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
- Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
- Microsoft Forefront UAG endpoint components v4.0.0 (HKLM-x32\...\Microsoft Forefront UAG endpoint components 3.1.0) (Version: - Microsoft Corporation)
- Microsoft IntelliPoint 8.1 (HKLM\...\Microsoft IntelliPoint 8.1) (Version: 8.15.406.0 - Microsoft)
- Microsoft IntelliType Pro 8.1 (HKLM\...\Microsoft IntelliType Pro 8.1) (Version: 8.15.406.0 - Microsoft)
- Microsoft Office 2007 Primary Interop Assemblies (HKLM-x32\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
- Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
- Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
- Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
- Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
- Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
- Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
- Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual Studio 2005 Tools for Office Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
- Mozilla Firefox 33.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 33.0 (x86 en-US)) (Version: 33.0 - Mozilla)
- Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
- MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
- MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
- MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
- MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
- MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
- MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
- MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
- MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
- MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
- Nuance PaperPort 12 (HKLM-x32\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.)
- Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
- NVIDIA 3D Vision Driver 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
- NVIDIA Control Panel 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden
- NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.11.9745 - NVIDIA Corporation)
- NVIDIA Graphics Driver 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
- NVIDIA Install Application (Version: 2.1002.108.688 - NVIDIA Corporation) Hidden
- NVIDIA Performance Drivers (HKLM\...\{4C0A8D65-4286-4B58-87FE-18AD24289285}) (Version: 2.0.0.18 - NVIDIA Corporation)
- NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
- NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1106 - NVIDIA Corporation) Hidden
- NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
- NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
- Panini 4.0 Universal Installer (HKLM-x32\...\{68FF4E69-53DC-485C-ADD9-E56FF9A406F8}) (Version: 4.00.300 - Panini)
- PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 1.00.0001 - Nuance Communications, Inc.)
- Photobucket Backup (HKLM-x32\...\{98813202-6C6E-4ABE-A128-6E8FB3368BE0}) (Version: 1.0.7.2104 - Photobucket)
- Presto! PageManager 9.02 SE (HKLM-x32\...\{894194F9-B4B9-4F1C-AFB5-5A5998DAFA3C}) (Version: 9.02.02 - Newsoft Technology Corporation)
- PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
- QuickBooks (x32 Version: 22.0.4015.2206 - Intuit Inc.) Hidden
- QuickBooks Pro 2012 (HKLM-x32\...\{22057D8D-7CC8-46FF-AD8C-9BD24F9014F3}) (Version: 22.0.4015.2206 - Intuit Inc.)
- Quicken 2006 (HKLM-x32\...\{2818095F-FB6C-42C8-827E-0A406CC9AFF5}) (Version: 15.1.1.29 - Intuit)
- QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
- Safari (HKLM-x32\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
- Scanner Controller Web Client (HKLM-x32\...\{A597C45E-1662-4FC6-B1FF-BAC277888C9C}) (Version: 1.7.252 - ProfitStars)
- Scansoft PDF Professional (x32 Version: - ) Hidden
- Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.3.39 - Safer-Networking Ltd.)
- Stamps.com (HKLM-x32\...\Stamps.com) (Version: - Stamps.com, Inc.)
- Stamps.com (x32 Version: 10.1.1.2456 - Stamps.com, Inc.) Hidden
- SupportSoft Assisted Service (HKLM-x32\...\{5A3F6A80-7913-475E-8B96-477A952CFA43}) (Version: 15 - SupportSoft)
- Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
- VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
- WebClient (HKLM-x32\...\WebClient) (Version: - )
- WeCan 5 (HKCU\...\33f51fe1670f1875) (Version: 5.0.3.0 - Whelen - WeCan 5)
- Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012 - GoPro)
- Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
- Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
- Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
- Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
- Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
- Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
- Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
- Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
- Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
- Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
- Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
- Yahoo! Detect (HKLM-x32\...\YTdetect) (Version: - )
- ==================== Custom CLSID (selected items): ==========================
- (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{052DB226-BE3B-44D4-B932-9C8049B2110B}\InprocServer32 -> C:\Users\Brandon\AppData\Local\Microsoft\Windows Sidebar\Gadgets\VolumeGadget.gadget\dlls\VolumeControl64.dll (Indev)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Brandon\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Brandon\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32 -> rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 247 more characters). <==== Poweliks?
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Brandon\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Brandon\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
- CustomCLSID: HKU\S-1-5-21-2046384403-2357638149-873898192-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Brandon\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File
- ==================== Restore Points =========================
- 27-10-2014 01:32:19 End of disinfection
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2009-07-13 21:34 - 2011-08-26 02:02 - 00436960 ____N C:\Windows\system32\Drivers\etc\hosts
- 127.0.0.1 www.007guard.com
- 127.0.0.1 007guard.com
- 127.0.0.1 008i.com
- 127.0.0.1 www.008k.com
- 127.0.0.1 008k.com
- 127.0.0.1 www.00hq.com
- 127.0.0.1 00hq.com
- 127.0.0.1 010402.com
- 127.0.0.1 www.032439.com
- 127.0.0.1 032439.com
- 127.0.0.1 www.0scan.com
- 127.0.0.1 0scan.com
- 127.0.0.1 1000gratisproben.com
- 127.0.0.1 www.1000gratisproben.com
- 127.0.0.1 1001namen.com
- 127.0.0.1 www.1001namen.com
- 127.0.0.1 100888290cs.com
- 127.0.0.1 www.100888290cs.com
- 127.0.0.1 www.100sexlinks.com
- 127.0.0.1 100sexlinks.com
- 127.0.0.1 10sek.com
- 127.0.0.1 www.10sek.com
- 127.0.0.1 www.1-2005-search.com
- 127.0.0.1 1-2005-search.com
- 127.0.0.1 123fporn.info
- 127.0.0.1 www.123fporn.info
- 127.0.0.1 123haustiereundmehr.com
- 127.0.0.1 www.123haustiereundmehr.com
- 127.0.0.1 123moviedownload.com
- There are 1000 more lines.
- ==================== Scheduled Tasks (whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
- Task: {0F093188-F2F7-4A2A-B581-7B91C0E4CAFC} - System32\Tasks\BeFrugal.com Toolbar => C:\Program Files (x86)\Common Files\BeFrugal.com\Toolbar\BeFrugal Helper.exe [2012-05-10] (Capital Intellect, Inc.)
- Task: {0FDE7062-A578-4038-831E-F6A45C68933D} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe <==== ATTENTION
- Task: {34225824-2E68-4EE4-8636-86316A2E214F} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-04-13] (Microsoft Corporation)
- Task: {3701D4D5-DB7E-4854-9A14-8A8EDEC4FA5E} - System32\Tasks\scvhost => \\.\globalroot\Device\HarddiskVolume2\Windows\scvhost.exe
- Task: {3CFA0540-BD30-48D4-917C-F551E5F2CA3F} - System32\Tasks\{F753DDFC-F311-BBB0-D742-35C4EF8DD97E} => C:\Windows\system32\uescg.dll [2014-10-26] ()
- Task: {485B46AA-8BE4-4DB3-AE51-92313CD92B8D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-23] (Adobe Systems Incorporated)
- Task: {4FC5700B-C535-4F59-8CE0-44F91C7CCC02} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2046384403-2357638149-873898192-1000Core => C:\Users\Brandon\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
- Task: {5A292361-99BD-430D-9D37-0FFA3D9D4FD5} - System32\Tasks\{5F6010C8-60E5-41f3-BF5B-C3AF5DBE12D4} => C:\ProgramData\Carbonite\Carbonite Backup\CarboniteUpgrade.exe
- Task: {6AF31A77-D810-437A-8E74-2B84B71F711D} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => c:\Program Files\Microsoft IntelliType Pro\IType.exe [2011-04-13] (Microsoft Corporation)
- Task: {6B3FF2F0-A23E-4B29-8AEF-3C95BB08ED66} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
- Task: {6F2E16F9-F498-4744-80D8-A67F0D41B632} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2046384403-2357638149-873898192-1000UA => C:\Users\Brandon\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)
- Task: {95B789D4-D6A8-499E-8F96-2BB32BA4CC61} - System32\Tasks\thpm1537528073495612640 => \\.\globalroot\Device\HarddiskVolume2\Users\Brandon\AppData\Local\Temp\thpm1537528073495612640.tmp <==== ATTENTION
- Task: {A0DB7461-9B63-4E02-8055-12A52F9EC4DB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
- Task: {A57CCBE1-4171-4820-AAF9-C99F5C70759F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.)
- Task: {A87C5F88-A803-490B-8068-AD8B322381FA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.)
- Task: {B4E4C07B-8FCE-4152-94D2-F19AD0CBB866} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\SymErr.exe
- Task: {DAEE6F64-9503-4305-8F93-65B8CE88791F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
- Task: {E6EA9F8C-7677-4011-8253-8A49A762ADD0} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION
- Task: {E8F5F1ED-97F0-4FC8-8010-CFC7F51E7BA2} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
- Task: {EECF8C67-5CC6-4919-A237-23BBFBE70F77} - System32\Tasks\WSE_Astromenda => C:\Users\Brandon\AppData\Roaming\WSE_Astromenda\UpdateProc\UpdateTask.exe [2014-08-19] ()
- Task: {FC980C9B-482E-4A19-863D-BB91DB60F0EA} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\SymErr.exe
- Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\Windows\Tasks\BeFrugal.com Toolbar.job => C:\Program Files (x86)\Common Files\BeFrugal.com\Toolbar\BeFrugal Helper.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2046384403-2357638149-873898192-1000Core.job => C:\Users\Brandon\AppData\Local\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2046384403-2357638149-873898192-1000UA.job => C:\Users\Brandon\AppData\Local\Google\Update\GoogleUpdate.exe
- Task: C:\Windows\Tasks\WSE_Astromenda.job => C:\Users\Brandon\AppData\Roaming\WSE_AS~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
- ==================== Loaded Modules (whitelisted) =============
- 2013-05-10 00:29 - 2013-01-18 10:00 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2009-05-14 10:01 - 2009-05-14 10:01 - 04901888 _____ () C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
- 2009-12-06 16:53 - 2005-04-22 14:36 - 00143360 ____N () C:\Windows\system32\BrSNMP64.dll
- 2013-11-08 08:48 - 2013-11-08 08:48 - 00269128 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2009\boost_regex-vc90-mt-p-1_33.dll
- 2013-11-08 08:48 - 2013-11-08 08:48 - 00021320 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2009\QBCompressor.dll
- 2011-08-19 21:30 - 2011-08-19 21:30 - 00059904 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2009\zlib1.dll
- 2013-11-08 08:48 - 2013-11-08 08:48 - 00380744 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2009\BackupLib.dll
- 2013-11-08 08:48 - 2013-11-08 08:48 - 00138568 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2009\QBMAPILibrary.dll
- 2013-11-08 08:48 - 2013-11-08 08:48 - 00176968 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2009\boost_serialization-vc90-mt-p-1_33.dll
- 2013-11-08 08:48 - 2013-11-08 08:48 - 00042824 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2009\mbpopup.dll
- 2014-10-26 20:40 - 2014-10-26 20:40 - 00043008 _____ () c:\users\brandon\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzwmb5b.dll
- 2013-08-23 14:01 - 2013-08-23 14:01 - 25100288 _____ () C:\Users\Brandon\AppData\Roaming\Dropbox\bin\libcef.dll
- 2009-12-06 16:53 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
- 2011-06-24 22:56 - 2011-06-24 22:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
- 2011-06-24 22:56 - 2011-06-24 22:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
- 2014-05-20 03:24 - 2014-04-25 14:11 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
- 2014-05-20 03:24 - 2014-04-25 14:11 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
- 2014-05-20 03:24 - 2014-04-25 14:11 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
- 2014-05-20 03:24 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
- 2014-05-20 03:24 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
- 2012-12-26 05:12 - 2008-11-17 15:56 - 00102400 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\nsSign.dll
- 2012-12-26 05:12 - 2010-05-07 12:46 - 00057344 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PerformOcr.dll
- 2012-12-26 05:12 - 2011-09-01 12:27 - 00057344 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMISM.dll
- 2012-12-26 05:12 - 2011-07-07 12:00 - 00147456 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMCommon.dll
- 2012-12-26 05:12 - 2008-08-25 18:19 - 00069632 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PHooKDlg.dll
- 2012-12-26 05:12 - 2007-03-30 11:24 - 00104528 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\Qem.dll
- 2012-12-26 05:12 - 2011-11-21 10:22 - 00081920 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\NetFun2k.dll
- 2012-12-26 05:12 - 2011-08-11 17:00 - 00146432 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\ScanModule.dll
- 2012-12-26 05:12 - 2009-09-09 15:44 - 00151552 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMANO.dll
- 2012-12-26 05:12 - 2007-03-30 10:49 - 00104528 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\ComClass.dll
- 2012-12-26 05:12 - 2010-04-14 17:38 - 00352256 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMTree.dll
- 2012-12-26 05:12 - 2010-05-17 11:52 - 00135168 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMSet.dll
- 2012-12-26 05:12 - 2010-05-21 10:39 - 00614400 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMDB_N.dll
- 2012-12-26 05:12 - 2009-08-06 11:22 - 00421888 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\FT.dll
- 2012-12-26 05:12 - 2010-03-17 12:49 - 00061440 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMINSO.dll
- 2012-12-26 05:12 - 2008-12-12 17:52 - 00106496 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMProp.dll
- 2012-12-26 05:12 - 2007-08-31 18:51 - 00040960 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMVoice.dll
- 2012-12-26 05:12 - 2010-03-31 11:25 - 00073728 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\OutlookVBA.dll
- 2012-12-26 05:12 - 2009-11-27 18:38 - 00331776 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMAppBar.dll
- 2012-12-26 05:12 - 2011-09-06 15:27 - 04567040 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMView.dll
- 2012-12-26 05:12 - 2011-07-07 12:01 - 00098304 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMSave.dll
- 2012-12-26 05:12 - 2011-07-08 14:19 - 00053248 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMOffice.dll
- 2012-12-26 05:12 - 2007-03-30 11:01 - 00038992 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\NsOEMKey.dll
- 2012-12-26 05:12 - 2010-03-02 16:10 - 00430080 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMPageVW.dll
- 2012-12-26 05:12 - 2010-03-02 16:09 - 00102400 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMDocVW.dll
- 2012-12-26 05:12 - 2009-06-26 10:03 - 00086016 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMApSet.dll
- 2012-12-26 05:12 - 2010-06-10 18:42 - 01036288 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\SlideBarDLL.dll
- 2012-12-26 05:12 - 2009-12-04 18:20 - 00323584 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMAnoSet.dll
- 2012-12-26 05:12 - 2009-11-09 19:35 - 00184320 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMImgVW.dll
- 2012-12-26 05:12 - 2008-08-25 17:16 - 00040960 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMIEVW.dll
- 2012-12-26 05:12 - 2010-05-17 11:53 - 00040960 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMPDFView.dll
- 2012-12-26 05:12 - 2010-04-27 16:20 - 00065536 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMStatus.dll
- 2012-12-26 05:12 - 2011-07-07 12:03 - 00258048 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMScnSet.dll
- 2012-12-26 05:12 - 2007-03-30 10:57 - 00034896 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\Import.dll
- 2012-12-26 05:12 - 2010-05-21 10:42 - 00086016 _____ () C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMImageSplitter.dll
- 2014-10-15 02:30 - 2014-10-09 21:03 - 01042760 _____ () C:\Users\Brandon\AppData\Local\Google\Chrome\Application\38.0.2125.104\libglesv2.dll
- 2014-10-15 02:30 - 2014-10-09 21:03 - 00211272 _____ () C:\Users\Brandon\AppData\Local\Google\Chrome\Application\38.0.2125.104\libegl.dll
- 2014-10-15 02:30 - 2014-10-09 21:04 - 08910664 _____ () C:\Users\Brandon\AppData\Local\Google\Chrome\Application\38.0.2125.104\pdf.dll
- 2014-10-15 02:30 - 2014-10-09 21:03 - 01681224 _____ () C:\Users\Brandon\AppData\Local\Google\Chrome\Application\38.0.2125.104\ffmpegsumo.dll
- 2014-10-15 02:30 - 2014-10-09 21:04 - 14902600 _____ () C:\Users\Brandon\AppData\Local\Google\Chrome\Application\38.0.2125.104\PepperFlash\pepflashplayer.dll
- ==================== Alternate Data Streams (whitelisted) =========
- (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
- AlternateDataStreams: C:\ProgramData\TEMP:054203E4
- AlternateDataStreams: C:\Users\Brandon\Downloads\Fwd_ FW_ WHAT A ROADSIDE BOMB LOOKS LIKE..,.WHEN YOU'RE LUCKY!!!!! (1).eml:OECustomProperty
- AlternateDataStreams: C:\Users\Brandon\Downloads\Fwd_ FW_ WHAT A ROADSIDE BOMB LOOKS LIKE..,.WHEN YOU'RE LUCKY!!!!!.eml:OECustomProperty
- AlternateDataStreams: C:\Users\Brandon\Documents\KJ's Mercy Bill- Collections.jpeg:3or4kl4x13tuuug3Byamue2s4b
- AlternateDataStreams: C:\Users\Brandon\Documents\KJ's Mercy Bill- Collections.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
- ==================== Safe Mode (whitelisted) ===================
- (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
- ==================== EXE Association (whitelisted) =============
- (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
- ==================== MSCONFIG/TASK MANAGER disabled items =========
- (Currently there is no automatic fix for this section.)
- MSCONFIG\startupreg: aqjyuqmf => C:\Users\Brandon\AppData\Local\Temp\hdmqbdlqt\tqmgxtcusbs.exe
- MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
- ========================= Accounts: ==========================
- Administrator (S-1-5-21-2046384403-2357638149-873898192-500 - Administrator - Disabled)
- Brandon (S-1-5-21-2046384403-2357638149-873898192-1000 - Administrator - Enabled) => C:\Users\Brandon
- Guest (S-1-5-21-2046384403-2357638149-873898192-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-2046384403-2357638149-873898192-1002 - Limited - Enabled)
- Kammie Jo (S-1-5-21-2046384403-2357638149-873898192-1005 - Limited - Enabled) => C:\Users\Kammie Jo
- Morgandy (S-1-5-21-2046384403-2357638149-873898192-1004 - Limited - Enabled) => C:\Users\Morgandy
- UpdatusUser (S-1-5-21-2046384403-2357638149-873898192-1007 - Limited - Enabled) => C:\Users\UpdatusUser
- Victoria (S-1-5-21-2046384403-2357638149-873898192-1006 - Limited - Enabled)
- ==================== Faulty Device Manager Devices =============
- Name: Teredo Tunneling Pseudo-Interface
- Description: Microsoft Teredo Tunneling Adapter
- Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
- Manufacturer: Microsoft
- Service: tunnel
- Problem: : This device cannot start. (Code10)
- Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
- On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (10/26/2014 08:41:12 PM) (Source: QuickBooks) (EventID: 4) (User: )
- Description: An unexpected error has occured in "QuickBooks":
- Returning NULL QBWinInstance Handle
- Error: (10/26/2014 08:41:12 PM) (Source: QuickBooks) (EventID: 4) (User: )
- Description: An unexpected error has occured in "QuickBooks":
- Returning NULL QBWinInstance Handle
- Error: (10/26/2014 08:41:12 PM) (Source: QuickBooks) (EventID: 4) (User: )
- Description: An unexpected error has occured in "QuickBooks":
- Returning NULL QBWinInstance Handle
- Error: (10/26/2014 08:40:20 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
- Description: TWN BrtTWN: [2014/10/26 20:40:20.672]: [00002508]: Initialize TwdsMain Class failed!
- Error: (10/26/2014 08:40:20 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
- Description: TWN BrtTWN: [2014/10/26 20:40:20.672]: [00002508]: ##### Fatal ERROR!! Create STI-device failed! #####
- Error: (10/26/2014 08:38:26 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
- Description: TWN BrtTWN: [2014/10/26 20:38:26.545]: [00002508]: Initialize TwdsMain Class failed!
- Error: (10/26/2014 08:38:26 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
- Description: TWN BrtTWN: [2014/10/26 20:38:26.545]: [00002508]: ##### Fatal ERROR!! Create STI-device failed! #####
- Error: (10/26/2014 08:38:05 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
- Description: TWN BrtTWN: [2014/10/26 20:38:05.641]: [00002508]: Initialize TwdsMain Class failed!
- Error: (10/26/2014 08:38:05 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
- Description: TWN BrtTWN: [2014/10/26 20:38:05.641]: [00002508]: ##### Fatal ERROR!! Create STI-device failed! #####
- Error: (10/26/2014 08:35:56 PM) (Source: uagqecsvc) (EventID: 16) (User: )
- Description: The Microsoft Forefront UAG Quarantine Enforcement Client component cannot retrieve the status of the Network Access Protection (NAP) Agent service.
- System error 1115: A system shutdown is in progress. (0x45b).
- When the Microsoft Forefront UAG Quarantine Enforcement Client component starts, it attempts to query settings for the NAP agent service.
- System errors:
- =============
- Error: (10/26/2014 08:40:06 PM) (Source: DCOM) (EventID: 10010) (User: )
- Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
- Error: (10/26/2014 08:38:16 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: The Spybot-S&D 2 Security Center Service service depends on the Security Center service which failed to start because of the following error:
- %%1058
- Error: (10/26/2014 08:38:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: A timeout was reached (30000 milliseconds) while waiting for the Optimizer Pro Crash Monitor service to connect.
- Error: (10/26/2014 08:21:11 PM) (Source: DCOM) (EventID: 10010) (User: )
- Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
- Error: (10/25/2014 04:30:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: The Spybot-S&D 2 Security Center Service service depends on the Security Center service which failed to start because of the following error:
- %%1058
- Error: (10/25/2014 04:30:27 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: A timeout was reached (30000 milliseconds) while waiting for the Optimizer Pro Crash Monitor service to connect.
- Error: (10/25/2014 04:27:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the CarboniteService service.
- Error: (10/25/2014 04:25:39 PM) (Source: DCOM) (EventID: 10010) (User: )
- Description: {76DEF3AC-2910-4234-9EE2-C81B2D45833A}
- Error: (10/25/2014 05:00:59 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
- Description: The following fatal alert was received: 40.
- Error: (10/25/2014 05:00:59 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
- Description: The following fatal alert was received: 70.
- Microsoft Office Sessions:
- =========================
- Error: (08/26/2013 06:14:53 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
- Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 5 seconds with 0 seconds of active time. This session ended with a crash.
- Error: (09/14/2011 09:06:56 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
- Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.
- Error: (08/12/2011 04:40:00 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
- Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 57682 seconds with 60 seconds of active time. This session ended with a crash.
- Error: (07/13/2011 02:23:17 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
- Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 21360 seconds with 240 seconds of active time. This session ended with a crash.
- ==================== Memory info ===========================
- Processor: AMD Phenom(tm) 9950 Quad-Core Processor
- Percentage of memory in use: 37%
- Total physical RAM: 8191.11 MB
- Available physical RAM: 5142.39 MB
- Total Pagefile: 16382.23 MB
- Available Pagefile: 12995.13 MB
- Total Virtual: 8192 MB
- Available Virtual: 8191.83 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:1862.92 GB) (Free:1632.56 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: E3DAD3DF)
- Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)
- ==================== End Of Log ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement