API tools faq
paste
Advertisement
Guest User

ad

a guest
Jan 10th, 2016
105
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 40.94 KB | None | 0 0
raw download clone embed print report
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version:09-01-2015
  2. Ran by mushf_000 (2016-01-10 17:52:17)
  3. Running from C:\Users\mushf_000\Desktop
  4. Windows 8.1 (X64) (2015-07-28 12:50:00)
  5. Boot Mode: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Accounts: =============================
  10.  
  11. Administrator (S-1-5-21-1636230488-600830020-427635520-500 - Administrator - Disabled) => C:\Users\Administrator
  12. Guest (S-1-5-21-1636230488-600830020-427635520-501 - Limited - Disabled)
  13. HomeGroupUser$ (S-1-5-21-1636230488-600830020-427635520-1003 - Limited - Enabled)
  14. Mush (S-1-5-21-1636230488-600830020-427635520-1001 - Administrator - Enabled) => C:\Users\Mush
  15. mushf_000 (S-1-5-21-1636230488-600830020-427635520-1004 - Administrator - Enabled) => C:\Users\mushf_000
  16.  
  17. ==================== Security Center ========================
  18.  
  19. (If an entry is included in the fixlist, it will be removed.)
  20.  
  21. AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  22. AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Out of date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
  23. AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  24. AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Out of date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
  25. FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
  26.  
  27. ==================== Installed Programs ======================
  28.  
  29. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  30.  
  31. 7-Zip 15.12 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1512-000001000000}) (Version: 15.12.00.0 - Igor Pavlov)
  32. Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.4.1.181 - Adobe Systems Incorporated)
  33. Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.1 - Adobe Systems Incorporated)
  34. Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)
  35. BlueStacks App Player (HKLM-x32\...\{EFA0FC40-7D96-4515-9715-7C0C5D872326}) (Version: 2.0.2.5623 - BlueStack Systems, Inc.)
  36. Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
  37. Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
  38. Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
  39. Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
  40. Clownfish for Skype (HKLM-x32\...\Clownfish) (Version: - )
  41. Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
  42. Curse Client (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
  43. CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
  44. CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
  45. CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.9.4928 - CyberLink Corp.)
  46. CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.10.5422 - CyberLink Corp.)
  47. CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
  48. CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
  49. D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
  50. DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
  51. Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
  52. FileZilla Client 3.14.1 (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\FileZilla Client) (Version: 3.14.1 - Tim Kosse)
  53. GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
  54. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
  55. Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
  56. Gyazo 3.1.6 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
  57. Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
  58. HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
  59. HP Documentation (HKLM-x32\...\{F29E3AA8-CF19-4452-92B7-F1FE31CD11C5}) (Version: 1.1.0.0 - Hewlett-Packard)
  60. HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
  61. HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.46 - Hewlett-Packard)
  62. HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
  63. HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.0.30.219 - Hewlett-Packard Company)
  64. HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company)
  65. HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
  66. HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard)
  67. Inst5675 (Version: 8.01.46 - Softex Inc.) Hidden
  68. Inst5676 (Version: 8.01.46 - Softex Inc.) Hidden
  69. Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.24.1790 - Intel Corporation)
  70. Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3368 - Intel Corporation)
  71. Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.9.1000 - Intel Corporation)
  72. join.me (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\JoinMe) (Version: 2.11.0.1717 - LogMeIn, Inc.)
  73. join.me.launcher (x32 Version: 1.0.624.0 - LogMeIn, Inc.) Hidden
  74. KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.8.2.0 - QFX Software Corporation)
  75. League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
  76. League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
  77. Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
  78. Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
  79. McAfee LiveSafe - Internet Security (HKLM-x32\...\MSC) (Version: 14.0.5120 - McAfee, Inc.)
  80. Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
  81. Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
  82. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
  83. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
  84. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
  85. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
  86. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  87. Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  88. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  89. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  90. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  91. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  92. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  93. Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
  94. Mozilla Firefox 43.0.4 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 en-GB)) (Version: 43.0.4 - Mozilla)
  95. Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4 - Mozilla)
  96. Oracle VM VirtualBox 5.0.12 (HKLM\...\{6F93731D-89E1-4A8F-BDA9-D104860DDB02}) (Version: 5.0.12 - Oracle Corporation)
  97. Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
  98. Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.35.716.2014 - Realtek)
  99. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7156 - Realtek Semiconductor Corp.)
  100. REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.38 - REALTEK Semiconductor Corp.)
  101. ROBLOX Player for mushf_000 (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
  102. Skype Quote Creator (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\ad08ab58bc77059a) (Version: 1.0.6.0 - MKing)
  103. Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
  104. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  105. swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
  106. Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.4.0 - Synaptics Incorporated)
  107. TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
  108. TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
  109. Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
  110. WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
  111. WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
  112. Wireshark 2.0.1 (32-bit) (HKLM-x32\...\Wireshark) (Version: 2.0.1 - The Wireshark developer community, hxxps://www.wireshark.org)
  113.  
  114. ==================== Custom CLSID (Whitelisted): ==========================
  115.  
  116. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  117.  
  118. CustomCLSID: HKU\S-1-5-21-1636230488-600830020-427635520-1004_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\mushf_000\AppData\Local\Roblox\Versions\version-f7131a583a8d4ea7\RobloxProxy64.dll (ROBLOX Corporation)
  119. CustomCLSID: HKU\S-1-5-21-1636230488-600830020-427635520-1004_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
  120.  
  121. ==================== Scheduled Tasks (Whitelisted) =============
  122.  
  123. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  124.  
  125. Task: {0E2BFC19-9A3D-42A0-A855-425A7710F819} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2015-07-02] (Hewlett-Packard)
  126. Task: {0E4F5C68-B2DC-478B-923B-F712C9361B2F} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
  127. Task: {0F26EBC7-9629-419B-A6CF-33B1EE464501} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
  128. Task: {12E561FE-18C6-4780-90D2-CB1B4D30B7C2} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-13] (Synaptics Incorporated)
  129. Task: {1495C8B1-422E-4395-B5E8-453EDEEA4FE4} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
  130. Task: {1B15B63C-1E9C-4E08-85E2-169A7B2540E6} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [2015-09-01] (McAfee, Inc.)
  131. Task: {1BC11405-0121-468C-9F37-A5AA1F5C6C5F} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.)
  132. Task: {21ACD7AD-B1AA-4DC2-BF54-2BA34E6BCCE7} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
  133. Task: {2D5A6C32-15C0-40EE-BB08-772ABB08FBAA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
  134. Task: {2E41ADEB-3015-4264-A86C-D82190C9E830} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
  135. Task: {2F2F43B4-C9C6-4173-AB93-3CDC432B825A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
  136. Task: {3C9A7E10-A664-42F9-9575-95054D3F4BEE} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2015-07-02] (Hewlett-Packard)
  137. Task: {3CD3FC6B-FA6C-43F4-BF88-116849140B0E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
  138. Task: {5BF6B749-C0EB-4142-ACF6-499C69A81134} - System32\Tasks\HPCeeScheduleFormushf_000 => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
  139. Task: {69AAE5A5-246F-4113-9FF0-15BC4A2EF681} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
  140. Task: {6E2779CB-B445-4747-9A9C-66773A95D86A} - System32\Tasks\{B640AB39-6739-475A-AEBA-041936304F8B} => pcalua.exe -a C:\Users\mushf_000\AppData\Local\Roblox\Versions\version-f7131a583a8d4ea7\RobloxPlayerLauncher.exe -c -uninstall
  141. Task: {8E98DBFA-92F2-463B-A427-3059DC062228} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2015-07-02] (Hewlett-Packard)
  142. Task: {9687502C-D363-4615-A67B-3D7F1820C49A} - System32\Tasks\update-S-1-5-21-1636230488-600830020-427635520-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
  143. Task: {B5FBF4FF-A6F9-4F56-B7EE-FA67B0C0FCA1} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
  144. Task: {B9386AC3-C963-403C-8EAB-01A0A7DCE226} - System32\Tasks\update-S-1-5-21-1636230488-600830020-427635520-1004 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
  145. Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
  146. Task: {BB7C1359-AF19-402C-99C9-3C09105C8278} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-06] (Google Inc.)
  147. Task: {D1787104-249D-4B3B-8D26-38944DBE6C0A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-06] (Google Inc.)
  148. Task: {D25E9429-1686-4F04-BF2C-49B78BDD06B4} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2015-11-03] (McAfee, Inc.)
  149. Task: {DDE26964-5747-4E30-B143-865A5D6F7E50} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
  150. Task: {F0DA5190-46C6-43A5-A5A4-8321FC86C36D} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
  151. Task: {F116E506-9E9F-449C-BCF6-5F237C7CC5BD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-15] (AVAST Software)
  152.  
  153. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  154.  
  155. Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  156. Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  157. Task: C:\WINDOWS\Tasks\HPCeeScheduleFormushf_000.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
  158. Task: C:\WINDOWS\Tasks\update-S-1-5-21-1636230488-600830020-427635520-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
  159. Task: C:\WINDOWS\Tasks\update-S-1-5-21-1636230488-600830020-427635520-1004.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
  160. Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
  161.  
  162. ==================== Shortcuts =============================
  163.  
  164. (The entries could be listed to be restored or removed.)
  165.  
  166. ==================== Loaded Modules (Whitelisted) ==============
  167.  
  168. 2015-11-14 04:23 - 2015-11-14 04:23 - 00553120 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
  169. 2014-05-01 14:13 - 2014-05-01 14:13 - 00470016 _____ () C:\Users\mushf_000\AppData\Local\MEGAsync\ShellExtX64.dll
  170. 2015-10-16 10:02 - 2015-10-16 10:02 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
  171. 2015-09-19 14:21 - 2015-09-19 14:21 - 00016384 _____ () C:\Users\mushf_000\AppData\Local\Apps\2.0\NP0D00DJ.L8M\9GDC4Z0X.QWM\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.CurseClient.WowDb.dll
  172. 2015-09-19 14:21 - 2015-09-19 14:21 - 00035840 _____ () C:\Users\mushf_000\AppData\Local\Apps\2.0\NP0D00DJ.L8M\9GDC4Z0X.QWM\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.Advertising.dll
  173. 2015-11-14 04:22 - 2015-11-14 04:22 - 31401120 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
  174. 2000-01-01 00:00 - 2015-12-18 12:56 - 02419712 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe
  175. 2014-05-01 14:15 - 2014-05-01 14:15 - 00463360 _____ () C:\Users\mushf_000\AppData\Local\MEGAsync\ShellExtX32.dll
  176. 2015-09-06 15:41 - 2015-11-05 11:26 - 01435240 _____ () C:\Program Files\CyberGhost 5\Geckofx-Core.dll
  177. 2015-07-30 14:09 - 2014-10-29 03:59 - 01029952 _____ () C:\Windows\SYSTEM32\speech\engines\tts\MSTTSEngine.dll
  178. 2015-07-30 14:05 - 2014-10-29 00:46 - 00531456 _____ () C:\Windows\SYSTEM32\speech\engines\tts\MSTTSLoc.DLL
  179. 2015-12-16 15:53 - 2015-12-16 15:53 - 00052224 _____ () C:\Users\mushf_000\AppData\Local\MEGAsync\cares.dll
  180. 2015-11-16 17:43 - 2015-11-16 17:43 - 40523440 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
  181. 2015-12-14 13:50 - 2016-01-03 18:33 - 03287552 _____ () C:\Program Files (x86)\BlueStacks\libGLESv2.dll
  182. 2015-12-05 10:21 - 2015-12-05 10:21 - 00933056 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
  183. 2015-11-16 17:43 - 2015-11-16 17:43 - 01365680 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libglesv2.dll
  184. 2015-11-16 17:43 - 2015-11-16 17:43 - 00219312 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libegl.dll
  185. 2015-11-25 19:35 - 2015-11-25 19:35 - 00124416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
  186. 2015-11-25 19:35 - 2015-11-25 19:35 - 00188416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
  187. 2015-11-25 19:35 - 2015-11-25 19:35 - 00121344 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
  188. 2015-11-25 19:35 - 2015-11-25 19:35 - 00129536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
  189. 2015-11-25 13:22 - 2015-11-25 13:22 - 00158384 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\native\ProxyResolverWin.dll
  190. 2015-11-25 19:35 - 2015-11-25 19:35 - 00081408 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
  191. 2015-10-16 10:02 - 2015-10-16 10:02 - 00039384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
  192. 2016-01-06 19:29 - 2015-12-11 03:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
  193. 2016-01-06 19:29 - 2015-12-11 03:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
  194. 2000-01-01 00:00 - 2000-01-01 00:00 - 00092599 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\libssp-0.dll
  195. 2000-01-01 00:00 - 2000-01-01 00:00 - 00718072 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\libevent-2-0-5.dll
  196. 2000-01-01 00:00 - 2000-01-01 00:00 - 00092599 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\libssp-0.dll
  197. 2000-01-01 00:00 - 2000-01-01 00:00 - 00107520 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\zlib1.dll
  198. 2000-01-01 00:00 - 2000-01-01 00:00 - 00523262 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\libgcc_s_sjlj-1.dll
  199.  
  200. ==================== Alternate Data Streams (Whitelisted) =========
  201.  
  202. (If an entry is included in the fixlist, only the ADS will be removed.)
  203.  
  204.  
  205. ==================== Safe Mode (Whitelisted) ===================
  206.  
  207. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  208.  
  209. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
  210. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
  211. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
  212. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
  213. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
  214. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
  215. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
  216. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
  217. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
  218. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
  219. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
  220. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
  221. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
  222. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
  223. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
  224. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
  225. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
  226. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
  227. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
  228.  
  229. ==================== EXE Association (Whitelisted) ===============
  230.  
  231. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  232.  
  233.  
  234. ==================== Internet Explorer trusted/restricted ===============
  235.  
  236. (If an entry is included in the fixlist, it will be removed from the registry.)
  237.  
  238.  
  239. ==================== Hosts content: ===============================
  240.  
  241. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  242.  
  243. 2013-08-22 13:25 - 2013-08-22 13:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
  244.  
  245.  
  246. ==================== Other Areas ============================
  247.  
  248. (Currently there is no automatic fix for this section.)
  249.  
  250. HKU\S-1-5-21-1636230488-600830020-427635520-1004\Control Panel\Desktop\\Wallpaper ->
  251. DNS Servers: 8.8.8.8 - 8.8.4.4
  252. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
  253. Windows Firewall is enabled.
  254.  
  255. ==================== MSCONFIG/TASK MANAGER disabled items ==
  256.  
  257. (Currently there is no automatic fix for this section.)
  258.  
  259.  
  260. ==================== FirewallRules (Whitelisted) ===============
  261.  
  262. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  263.  
  264. FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
  265. FirewallRules: [{8E98688E-29E9-4835-A115-0AAAE8E6C0E4}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
  266. FirewallRules: [{73662CD1-BF16-4EDE-BBF6-BA8B4710F03F}] => (Allow) LPort=2869
  267. FirewallRules: [{6E074171-9605-4931-AFAA-63C52ACD6FEE}] => (Allow) LPort=1900
  268. FirewallRules: [{BD387CC1-9FDB-4972-A52D-CF829A14F743}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
  269. FirewallRules: [{381EB021-452F-49E8-A066-D37EC8B08ED7}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
  270. FirewallRules: [{0594139F-4C80-4F0A-A948-DE7BB1672AFE}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
  271. FirewallRules: [{983E2A54-1B46-4291-A271-CC7F6F84CBFB}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
  272. FirewallRules: [{3513654B-7B5C-4288-BCC6-D5F42FAD267A}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
  273. FirewallRules: [{81C65CB9-E518-4416-8894-593F2831417F}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
  274. FirewallRules: [{621F4CA6-CB36-4189-B48F-57BD3E2FE45A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  275. FirewallRules: [{B1EED578-0A5D-4680-B2A9-6ECEF6D87F4A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  276. FirewallRules: [{B27ECB3A-8641-4269-89E5-D6B4B52434C3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  277. FirewallRules: [{8DEA1BF2-BFAA-499D-88A4-9F0F5449111A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  278. FirewallRules: [{AD5A0AD8-4A08-43B2-AB4D-9265BF015D49}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
  279. FirewallRules: [{05F22421-0D0B-40D8-909F-03C94E6E617F}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
  280. FirewallRules: [{0122A8BD-D113-4085-BD0B-E1AB361EE35E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
  281. FirewallRules: [{DC80867C-507E-4C40-B3AB-26D71DF999AB}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
  282. FirewallRules: [{D82187A6-6AA7-4297-A739-FA2BA19C0CC9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
  283. FirewallRules: [{F9931A90-ADB8-487E-B899-189DF7BD8347}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
  284. FirewallRules: [{41B95227-94C2-48EE-AD4A-2B6F3703C8AA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
  285. FirewallRules: [{00841E7A-7E00-4C38-8485-6AA038E1A452}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
  286. FirewallRules: [TCP Query User{18C01037-90D4-4902-A3D7-458792EA815F}C:\users\mush\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\mush\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
  287. FirewallRules: [UDP Query User{2BC26619-0B0C-4126-932A-FF2E4F9F6E19}C:\users\mush\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\mush\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
  288. FirewallRules: [TCP Query User{2029F4DB-CA34-49E2-8478-18885BD91627}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
  289. FirewallRules: [UDP Query User{DE5C01EA-ABE0-4029-9153-4C45526D94EC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
  290. FirewallRules: [{2924127D-023C-4EE5-B31D-01346E1A898C}] => (Block) C:\program files (x86)\skype\phone\skype.exe
  291. FirewallRules: [{0B3E8F73-D866-43FF-B377-02186F5E2C5E}] => (Block) C:\program files (x86)\skype\phone\skype.exe
  292. FirewallRules: [{B0AD6E26-DB92-4A7B-80DD-496DD7E79C41}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
  293. FirewallRules: [{2F7D536F-873B-4C88-BB87-F7BA8BAC0264}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
  294. FirewallRules: [{F5FC8985-4BC8-4333-9205-B45B4F0CE091}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
  295. FirewallRules: [{27057697-D811-4A64-9377-3E6F53178DBA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
  296. FirewallRules: [{DE901B30-DB68-4E6C-A492-8D2864BF82A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  297. FirewallRules: [{61958E2C-69FB-4E86-AA20-DB8B2A6102EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  298. FirewallRules: [{64DC17E2-5710-4BD8-AA46-C1D0DF25B46E}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
  299. FirewallRules: [TCP Query User{C7C4F9BB-C756-4012-BC36-0E014382C21B}C:\users\mushf_000\appdata\local\temp\joi5922.tmp\join.me.exe] => (Block) C:\users\mushf_000\appdata\local\temp\joi5922.tmp\join.me.exe
  300. FirewallRules: [UDP Query User{6EC00975-FBA9-4DC8-8EC1-33400FF99FBF}C:\users\mushf_000\appdata\local\temp\joi5922.tmp\join.me.exe] => (Block) C:\users\mushf_000\appdata\local\temp\joi5922.tmp\join.me.exe
  301. FirewallRules: [TCP Query User{F9923530-50BF-42FD-B544-B0A90B9CA162}C:\users\mushf_000\appdata\local\join.me\join.me.exe] => (Allow) C:\users\mushf_000\appdata\local\join.me\join.me.exe
  302. FirewallRules: [UDP Query User{49392E9C-90CE-4C7D-9E1E-8D4185B3C770}C:\users\mushf_000\appdata\local\join.me\join.me.exe] => (Allow) C:\users\mushf_000\appdata\local\join.me\join.me.exe
  303. FirewallRules: [{71349922-C432-48A8-9A6B-5895B8144FA0}] => (Block) C:\users\mushf_000\appdata\local\join.me\join.me.exe
  304. FirewallRules: [{1F6694D3-BF93-46CF-B178-3B74AE1801EC}] => (Block) C:\users\mushf_000\appdata\local\join.me\join.me.exe
  305. FirewallRules: [TCP Query User{639CAAEC-08AE-4360-9667-2A76C30DEBC4}C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe] => (Allow) C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe
  306. FirewallRules: [UDP Query User{F40A59E0-63BA-4779-9B12-C4874ED18026}C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe] => (Allow) C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe
  307. FirewallRules: [{885E8019-0DAD-4881-9BE8-08E12126E574}] => (Block) C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe
  308. FirewallRules: [{8804D6F5-D79E-45E9-B12B-778888C86F6D}] => (Block) C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe
  309. FirewallRules: [TCP Query User{F2F3B53E-D47F-4746-BA1F-DF4DB1E09B2D}C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe] => (Allow) C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe
  310. FirewallRules: [UDP Query User{BED1240E-8B4C-4BB5-A2F8-508DB59E7CA2}C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe] => (Allow) C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe
  311. FirewallRules: [{B3D5190C-D676-41A7-A3F9-1522D6FEA83B}] => (Block) C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe
  312. FirewallRules: [{403709A3-4387-4747-8289-543705297868}] => (Block) C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe
  313. FirewallRules: [{F3D48EE6-5FE7-42F9-B59C-F7F2D3F356C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
  314. FirewallRules: [{6A2B84F3-5E27-410C-9E49-32EC5674AB81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
  315. FirewallRules: [TCP Query User{A2FC0E31-3CED-4DD4-8787-04EFA6E6DDD9}C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
  316. FirewallRules: [UDP Query User{A480E734-7EC6-47B9-A156-EB6C16F6BEEE}C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
  317. FirewallRules: [{7F86AE44-4206-45EC-979F-D627A3C79E4E}] => (Block) C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
  318. FirewallRules: [{0BF5580F-19AD-4D68-B458-0780DB1BB1D5}] => (Block) C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
  319. FirewallRules: [TCP Query User{70008D27-14A5-438F-804A-09D23AF61B91}C:\program files (x86)\google\chrome\application\47.0.2526.106\delegate_execute.exe] => (Block) C:\program files (x86)\google\chrome\application\47.0.2526.106\delegate_execute.exe
  320. FirewallRules: [UDP Query User{40D4A491-58AD-4E4A-8DFD-10805A86BC46}C:\program files (x86)\google\chrome\application\47.0.2526.106\delegate_execute.exe] => (Block) C:\program files (x86)\google\chrome\application\47.0.2526.106\delegate_execute.exe
  321. FirewallRules: [{B8A864DD-5059-405C-A012-10950B063052}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  322. FirewallRules: [{D6739CDB-FA89-4F5B-9E48-C2E14243A7DB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  323. FirewallRules: [{AB0C97C2-4AA0-4C23-9B6A-41BCE81F2E72}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  324. FirewallRules: [{CDCA4EB4-138C-4961-92AA-B3F160C9CC99}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  325. FirewallRules: [{44485412-9C32-4D2E-BA2A-66A5F41046AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  326. FirewallRules: [{9B755E57-7CCD-40C2-8E02-A0EFF811D5B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  327. FirewallRules: [{E6DD9E89-8932-4FC5-BDC3-099067E5C9E7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  328.  
  329. ==================== Restore Points =========================
  330.  
  331. 10-01-2016 16:17:21 Restore Point Created by FRST
  332.  
  333. ==================== Faulty Device Manager Devices =============
  334.  
  335.  
  336. ==================== Event log errors: =========================
  337.  
  338. Application errors:
  339. ==================
  340. Error: (01/10/2016 05:49:47 PM) (Source: Perflib) (EventID: 1008) (User: )
  341. Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8
  342.  
  343. Error: (01/10/2016 05:49:46 PM) (Source: PerfNet) (EventID: 2004) (User: )
  344. Description:
  345.  
  346. Error: (01/10/2016 05:49:46 PM) (Source: Perflib) (EventID: 1008) (User: )
  347. Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8
  348.  
  349. Error: (01/10/2016 05:49:46 PM) (Source: Perflib) (EventID: 1008) (User: )
  350. Description: LsaC:\Windows\System32\Secur32.dll8
  351.  
  352. Error: (01/10/2016 05:49:46 PM) (Source: Perflib) (EventID: 1008) (User: )
  353. Description: ESENTC:\WINDOWS\system32\esentprf.dll8
  354.  
  355. Error: (01/10/2016 05:49:46 PM) (Source: Perflib) (EventID: 1008) (User: )
  356. Description: BITSC:\Windows\System32\bitsperf.dll8
  357.  
  358. Error: (01/10/2016 04:52:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
  359. Description: The program LiveComm.exe version 17.5.9600.20911 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
  360.  
  361. Process ID: b88
  362.  
  363. Start Time: 01d14bc69e4c2d0f
  364.  
  365. Termination Time: 4294967295
  366.  
  367. Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
  368.  
  369. Report Id: 915759c1-b7ba-11e5-827e-3464a9731b16
  370.  
  371. Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
  372.  
  373. Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
  374.  
  375. Error: (01/10/2016 04:48:57 PM) (Source: Perflib) (EventID: 1008) (User: )
  376. Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4
  377.  
  378. Error: (01/10/2016 04:48:57 PM) (Source: Perflib) (EventID: 1023) (User: )
  379. Description: rdyboost4
  380.  
  381. Error: (01/10/2016 04:48:56 PM) (Source: PerfNet) (EventID: 2004) (User: )
  382. Description:
  383.  
  384.  
  385. System errors:
  386. =============
  387. Error: (01/10/2016 05:08:42 PM) (Source: Application Popup) (EventID: 1060) (User: )
  388. Description: \??\C:\Windows\System32\drivers\TrueSight.sys
  389.  
  390. Error: (01/10/2016 04:53:39 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
  391. Description: {DC7EF8E1-824F-4110-AB43-1604DA9B4F40}
  392.  
  393. Error: (01/10/2016 04:53:23 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
  394. Description: The McAfee VirusScan Announcer service did not respond on starting.
  395.  
  396. Error: (01/10/2016 04:51:39 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
  397. Description: {DC7EF8E1-824F-4110-AB43-1604DA9B4F40}
  398.  
  399. Error: (01/10/2016 04:51:07 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
  400. Description: {209500FC-6B45-4693-8871-6296C4843751}
  401.  
  402. Error: (01/10/2016 04:50:42 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
  403. Description: The McAfee Home Network service did not respond on starting.
  404.  
  405. Error: (01/10/2016 04:46:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  406. Description: The WebcamMax, WDM Video Capture service failed to start due to the following error:
  407. %%1058
  408.  
  409. Error: (01/10/2016 04:44:59 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
  410. Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the mfemms service.
  411.  
  412. Error: (01/10/2016 03:42:06 PM) (Source: Application Popup) (EventID: 1060) (User: )
  413. Description: \??\C:\Windows\System32\drivers\TrueSight.sys
  414.  
  415. Error: (01/10/2016 03:38:03 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
  416. Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.
  417.  
  418.  
  419. CodeIntegrity:
  420. ===================================
  421. Date: 2016-01-10 16:36:57.537
  422. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
  423.  
  424. Date: 2016-01-10 16:36:57.092
  425. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
  426.  
  427. Date: 2016-01-10 16:03:02.250
  428. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
  429.  
  430. Date: 2016-01-10 16:02:55.387
  431. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
  432.  
  433. Date: 2016-01-10 16:02:38.172
  434. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
  435.  
  436. Date: 2016-01-10 16:02:37.146
  437. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
  438.  
  439. Date: 2016-01-09 14:38:12.216
  440. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
  441.  
  442. Date: 2016-01-09 14:38:11.512
  443. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
  444.  
  445.  
  446. ==================== Memory info ===========================
  447.  
  448. Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
  449. Percentage of memory in use: 60%
  450. Total physical RAM: 8123.84 MB
  451. Available physical RAM: 3210.27 MB
  452. Total Virtual: 9403.84 MB
  453. Available Virtual: 4945.16 MB
  454.  
  455. ==================== Drives ================================
  456.  
  457. Drive c: (Windows) (Fixed) (Total:911.24 GB) (Free:7.78 GB) NTFS
  458. Drive d: (RECOVERY) (Fixed) (Total:19.26 GB) (Free:1.89 GB) NTFS
  459.  
  460. ==================== MBR & Partition Table ==================
  461.  
  462. ========================================================
  463. Disk: 0 (Size: 931.5 GB) (Disk ID: DA47CBF4)
  464.  
  465. Partition: GPT.
  466.  
  467. ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!