Jump to content

Regenerating Bug

jjoyner1985
 Share

Recommended Posts

jjoyner1985

jjoyner1985

Posted
  • Author
Posted

AVG is out. Avast is in, and Glary is uninstalled. To be honest, I'm a little worried about the Glary thing. It is somehow getting installed on the computers at work, and I was a little suspicious of it when I first saw it on one of those PCs but guessed that one of my co-workers in IT decided to install it.

Link to post
Share on other sites
Naathim

Naathim

Posted
Posted

I am very careful about tools that are advertised with "FIX ALL ERRORS" and "SPEED UP YOUR MACHINE". Without some level of registry and system knowledge users are not able to control what are they doing actually. Below you will find two good readings about this kind of software:
Microsoft support policy for the use of registry cleaning utilities
Miekiemoes (Microsoft MVP) blog

Post me fresh FRST & Addidtion reports. Let's see what has changed and what still has to be done.

Link to post
Share on other sites
jjoyner1985

jjoyner1985

Posted
  • Author
Posted

FRST

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-08-2014
Ran by savas.kyriakidis (administrator) on SAVASKYRIAKI-PC on 27-08-2014 10:57:35
Running from F:\
Platform: Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(SolarWinds) C:\Windows\dwrcs\DWRCST.EXE
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(CyberLink Corp.) C:\Program Files\Dell\MediaDirect\PCMService.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Sony Corporation) C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc.) C:\Program Files\QuickTime\QTTask.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Akamai Technologies, Inc.) C:\Users\savas.kyriakidis\AppData\Local\Akamai\netsession_win.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acsagent.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
() C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Akamai Technologies, Inc.) C:\Users\savas.kyriakidis\AppData\Local\Akamai\netsession_win.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [ECenter] => C:\Dell\E-Center\EULALauncher.exe [17920 2008-02-29] ( )
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4706304 2008-03-06] (Realtek Semiconductor)
HKLM\...\Run: [startCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [90112 2006-11-10] ()
HKLM\...\Run: [dscactivate] => C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [16384 2008-03-11] ( )
HKLM\...\Run: [PCMService] => C:\Program Files\Dell\MediaDirect\PCMService.exe [132392 2008-01-14] (CyberLink Corp.)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2012-02-23] (Apple Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [599328 2010-03-24] (Sony Corporation)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM\...\Run: [acevents] => C:\Program Files\ActivIdentity\ActivClient\acevents.exe [153640 2009-06-03] (ActivIdentity)
HKLM\...\Run: [accrdsub] => C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [400936 2009-06-03] (ActivIdentity)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM\...\Run: [DameWare MRC Agent] => C:\Windows\dwrcs\DWRCST.exe [379752 2012-11-02] (SolarWinds)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-08-27] (AVAST Software)
HKLM\...\RunOnce: [AvgUninstallURL] => cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-lsf?lic=OUxTRlJFRS1WUFVaNy1HMkNNWC1SWFBXQS1QM05aSC05RDIwQy0zN1RT"&"inst=NzctMTIyNzA3NzAwOS1GSSsxLUZMMTArMS1ERFQrMC1UVUcrMy1MU0QrM (the data entry has 100 more characters).
HKLM\...\Policies\Explorer: [useDefaultTile] 0
HKU\S-1-5-21-3726736968-409882640-1958551794-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-3726736968-409882640-1958551794-1000\...\Run: [Akamai NetSession Interface] => C:\Users\savas.kyriakidis\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3726736968-409882640-1958551794-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-10-31] (Apple Inc.)
HKU\S-1-5-21-3726736968-409882640-1958551794-1000\...\Run: [com.apple.dav.bookmarks.daemon] => C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [59720 2013-10-02] (Apple Inc.)
HKU\S-1-5-21-3726736968-409882640-1958551794-1000\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-10-31] (Apple Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ActivClient Agent.lnk
ShortcutTarget: ActivClient Agent.lnk -> C:\Program Files\ActivIdentity\ActivClient\acsagent.exe (ActivIdentity)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Metacafe.lnk
ShortcutTarget: Metacafe.lnk -> C:\$RECYCLE.BIN\S-1-5-21-3726736968-409882640-1958551794-1000\MetacafeAgent.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Smart Wizard.lnk
ShortcutTarget: NETGEAR WNA1100 Smart Wizard.lnk -> C:\Program Files\NETGEAR\WNA1100\WNA1100.exe ()
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Rita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Rita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\savas.kyriakidis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\savas.kyriakidis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
ProxyServer: 192.168.0.101:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xA02BBBD1D537CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://www.winkflash.com/photo/loaders/ImageUploader5.cab
DPF: {82E5DF24-51E8-47CD-864A-F4BD5005AA73} https://www.icloud.com/system/iCloud.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Winsock: Catalog5 01 %SystemRoot%\System32\mswsock.dll [223232] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.10 192.168.0.9
 
FireFox:
========
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-06]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2010-09-02]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-27]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
 
Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-27]
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ac.sharedstore; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [207400 2009-06-03] (ActivIdentity)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-27] (AVAST Software)
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [161048 2008-04-28] (Stardock Corporation)
R2 dwmrcs; C:\Windows\dwrcs\DWRCS.EXE [705384 2012-11-02] (SolarWinds)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2008-10-16] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-10-16] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [634880 2008-10-16] (Hewlett-Packard Co.) [File not signed]
S3 jswpsapi; C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe [960992 2010-03-22] (Atheros Communications, Inc.)
R2 lxbl_device; C:\Windows\system32\lxblcoms.exe [537520 2007-04-20] ( )
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2008-07-18] (Hewlett-Packard) [File not signed]
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2012-03-23] () [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-07-18] (Hewlett-Packard) [File not signed]
R2 WSWNA1100; C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe [266240 2010-08-04] () [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-08-27] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-08-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55112 2014-08-27] (AVAST Software)
S0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-08-27] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-08-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-08-27] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57800 2014-08-27] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-08-27] ()
S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1439744 2010-10-10] (Atheros Communications, Inc.)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [43368 2013-05-23] (ThreatTrack Security)
R2 RtNdPt60; C:\Windows\System32\DRIVERS\RtNdPt60.sys [27648 2008-03-06] (Windows ® Codename Longhorn DDK provider)
R0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21728 2007-01-19] (Windows ® Codename Longhorn DDK provider)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [42496 2011-08-02] (Apple, Inc.) [File not signed]
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-20] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S1 MpKslb9ee2848; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BFB5F758-88DD-40A2-8570-9299F94880E8}\MpKslb9ee2848.sys [X]
S1 MpKslbb89cfa8; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A306A4ED-0116-4B29-AE29-DC65EC41A044}\MpKslbb89cfa8.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 SWDUMon; system32\DRIVERS\SWDUMon.sys [X]
S3 TfNetMon; \??\C:\Windows\system32\drivers\TfNetMon.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-08-27 10:55 - 2014-08-27 10:55 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\AVAST Software
2014-08-27 10:54 - 2014-08-27 10:54 - 00001875 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-27 10:54 - 2014-08-27 10:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-27 10:53 - 2014-08-27 10:54 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00414392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1409151250260
2014-08-27 10:53 - 2014-08-27 10:53 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-27 10:53 - 2014-08-27 10:53 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00057800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00055112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-27 10:53 - 2014-08-27 10:53 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-27 10:51 - 2014-08-27 10:51 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-27 10:41 - 2014-08-27 10:46 - 00599660 _____ () C:\Users\savas.kyriakidis\Downloads\avgremover.log
2014-08-27 10:41 - 2014-08-27 10:41 - 03386520 _____ (AVG Technologies CZ, s.r.o.) C:\Users\savas.kyriakidis\Downloads\avg_remover_stf_x86_2014_4116.exe
2014-08-27 10:14 - 2014-08-27 10:14 - 00000916 _____ () C:\Users\savas.kyriakidis\Desktop\join.me.lnk
2014-08-27 10:14 - 2014-08-27 10:14 - 00000916 _____ () C:\Users\savas.kyriakidis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\join.me.lnk
2014-08-27 10:14 - 2014-08-27 10:14 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\LogMeIn
2014-08-27 10:14 - 2014-08-27 10:14 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\join.me
2014-08-27 10:14 - 2014-08-27 10:14 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-08-27 10:03 - 2014-08-27 10:03 - 00000969 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-08-27 10:03 - 2014-08-27 10:03 - 00000000 ____D () C:\Program Files\TeamViewer
2014-08-26 09:34 - 2014-08-26 09:34 - 00025347 _____ () C:\ComboFix.txt
2014-08-26 09:26 - 2014-08-27 09:30 - 00008108 _____ () C:\Windows\system32\commonpub.log
2014-08-26 09:26 - 2014-08-27 09:30 - 00006006 _____ () C:\Windows\system32\commonpriv.log
2014-08-26 09:26 - 2014-08-27 09:29 - 01024722 _____ () C:\Windows\system32\commonpriv.log.1
2014-08-26 09:26 - 2014-08-26 09:26 - 00000000 _____ () C:\Windows\system32\commonpub.log.lock
2014-08-26 09:26 - 2014-08-26 09:26 - 00000000 _____ () C:\Windows\system32\commonpriv.log.lock
2014-08-25 16:22 - 2014-08-25 16:21 - 00001052 _____ () C:\Users\savas.kyriakidis\Desktop\JRT.txt
2014-08-23 16:54 - 2014-08-27 10:57 - 00000000 ____D () C:\FRST
2014-08-23 16:30 - 2014-08-25 09:35 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-23 16:30 - 2014-08-25 08:26 - 00000901 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-23 16:30 - 2014-08-25 08:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-23 16:30 - 2014-08-25 08:26 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-23 16:30 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-23 16:30 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-23 16:30 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-23 12:25 - 2011-06-26 02:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-08-23 12:25 - 2010-11-07 13:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-08-23 12:25 - 2009-04-20 00:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-08-23 12:25 - 2000-08-30 20:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-08-23 12:25 - 2000-08-30 20:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-08-23 12:25 - 2000-08-30 20:00 - 00098816 _____ () C:\Windows\sed.exe
2014-08-23 12:25 - 2000-08-30 20:00 - 00080412 _____ () C:\Windows\grep.exe
2014-08-23 12:25 - 2000-08-30 20:00 - 00068096 _____ () C:\Windows\zip.exe
2014-08-23 12:12 - 2014-08-23 12:12 - 00007836 _____ () C:\Users\savas.kyriakidis\Desktop\reg.txt
2014-08-23 12:03 - 2014-08-23 12:03 - 00009362 _____ () C:\Users\savas.kyriakidis\Desktop\safer.txt
2014-08-23 11:51 - 2014-08-25 17:03 - 00000000 ____D () C:\AdwCleaner
2014-08-23 11:42 - 2014-08-23 11:42 - 00000000 ____D () C:\Windows\ERUNT
2014-08-22 17:06 - 2013-09-04 14:57 - 00024040 _____ (ThreatTrack Security) C:\Windows\system32\Drivers\gfiutil.sys
2014-08-22 17:06 - 2013-05-23 08:39 - 00043368 _____ (ThreatTrack Security) C:\Windows\system32\Drivers\gfiark.sys
2014-08-22 17:05 - 2014-08-22 21:40 - 00000000 ____D () C:\VIPRERESCUE
2014-08-22 17:05 - 2014-08-22 17:05 - 00000000 ____D () C:\EEK
2014-08-22 16:12 - 2014-08-27 10:46 - 00046834 _____ () C:\Windows\PFRO.log
2014-08-22 15:52 - 2014-08-26 09:34 - 00000000 ____D () C:\Qoobox
2014-08-22 14:32 - 2014-08-22 14:32 - 00000000 ____D () C:\Users\savas.kyriakidis\Documents\ProcAlyzer Dumps
2014-08-22 14:00 - 2014-08-23 16:48 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-08-22 13:41 - 2014-08-22 13:54 - 00000000 ____D () C:\Windows\dwrcs
2014-08-22 13:41 - 2014-08-22 13:41 - 00000000 ____D () C:\ProgramData\DameWare Development
2014-08-22 13:25 - 2014-08-27 10:38 - 00001598 _____ () C:\Windows\setupact.log
2014-08-22 13:25 - 2014-08-22 13:25 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-20 19:17 - 2014-08-20 19:17 - 00319456 _____ (Microsoft Corporation) C:\Windows\DIFxAPI.dll
2014-08-20 18:46 - 2014-08-20 18:46 - 00000666 _____ () C:\Toolbars.dat
2014-08-20 18:12 - 2014-08-19 18:12 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-08-19 23:07 - 2014-08-27 09:44 - 00000000 ____D () C:\ProgramData\GlarySoft
2014-08-17 16:29 - 2014-08-17 16:29 - 04763288 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4745.exe
2014-08-17 15:54 - 2014-08-17 15:54 - 04462440 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4335_welcomecmp.exe
2014-08-16 17:04 - 2014-08-16 17:05 - 04755832 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_free_stb_all_2014_4744_cnet.exe
2014-08-16 12:05 - 2014-08-16 12:05 - 00000000 ____D () C:\ProgramData\SlimWare Utilities Inc
2014-08-16 12:04 - 2014-08-16 12:04 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\Downloaded Installers
2014-08-15 20:57 - 2014-08-16 12:05 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\SlimWare Utilities Inc
2014-08-15 20:56 - 2014-08-16 09:22 - 00000000 ____D () C:\Program Files\DriverUpdate
2014-08-15 20:56 - 2014-08-15 20:56 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-08-15 13:32 - 2014-08-15 13:32 - 06534584 _____ (Systweak Software ) C:\Users\savas.kyriakidis\Downloads\PCDiagnosisProTPSSetup.exe
2014-08-15 13:23 - 2014-08-15 13:23 - 06267504 _____ (TeamViewer GmbH) C:\Users\savas.kyriakidis\Downloads\TeamViewer_Setup_en (3).exe
2014-08-15 13:12 - 2014-08-15 13:13 - 06267504 _____ (TeamViewer GmbH) C:\Users\savas.kyriakidis\Downloads\TeamViewer_Setup_en (2).exe
2014-08-15 13:11 - 2014-08-15 13:11 - 06267504 _____ (TeamViewer GmbH) C:\Users\savas.kyriakidis\Downloads\TeamViewer_Setup_en (1).exe
2014-08-15 13:04 - 2014-08-15 13:21 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\TeamViewer
2014-08-15 13:02 - 2014-08-15 13:02 - 06267504 _____ (TeamViewer GmbH) C:\Users\savas.kyriakidis\Downloads\TeamViewer_Setup_en.exe
2014-08-15 11:17 - 2014-08-15 11:17 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_150803173445318587.exe
2014-08-15 11:17 - 2014-08-15 11:17 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_150803172000784607.exe
2014-08-15 11:12 - 2014-08-15 11:13 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\savas.kyriakidis\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-08-15 11:11 - 2014-08-15 11:12 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\savas.kyriakidis\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-14 19:24 - 2014-08-14 19:24 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
2014-08-14 18:19 - 2014-08-27 09:44 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\GlarySoft
2014-08-14 18:19 - 2014-08-23 11:16 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\DiskDefrag
2014-08-14 18:18 - 2014-08-14 18:18 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (5).exe
2014-08-14 18:18 - 2014-08-14 18:18 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (4).exe
2014-08-14 18:15 - 2014-08-14 18:16 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (3).exe
2014-08-14 18:15 - 2014-08-14 18:15 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (2).exe
2014-08-14 18:14 - 2014-08-14 18:14 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (1).exe
2014-08-14 18:13 - 2014-08-14 18:13 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup.exe
2014-08-14 17:37 - 2014-08-14 17:40 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809374825884190.exe
2014-08-14 17:37 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809372042763201.exe
2014-08-14 17:37 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809371092783465.exe
2014-08-13 21:31 - 2014-08-13 21:31 - 00001666 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-13 21:31 - 2014-08-13 21:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-13 21:28 - 2014-08-13 21:31 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-13 21:28 - 2014-08-13 21:28 - 00000000 ____D () C:\Program Files\iPod
2014-08-13 20:51 - 2014-08-13 20:52 - 00000000 ____D () C:\Program Files\QuickTime
2014-08-13 20:51 - 2014-08-13 20:51 - 00001728 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-08-13 20:51 - 2014-08-13 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-08-12 21:20 - 2014-08-12 21:20 - 00000000 ____D () C:\ProgramData\WindowsSearch
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-08-27 10:57 - 2014-08-23 16:54 - 00000000 ____D () C:\FRST
2014-08-27 10:55 - 2014-08-27 10:55 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\AVAST Software
2014-08-27 10:54 - 2014-08-27 10:54 - 00001875 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-27 10:54 - 2014-08-27 10:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-27 10:54 - 2014-08-27 10:53 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00414392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1409151250260
2014-08-27 10:53 - 2014-08-27 10:53 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-27 10:53 - 2014-08-27 10:53 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00057800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00055112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-27 10:53 - 2014-08-27 10:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-27 10:53 - 2014-08-27 10:53 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-27 10:51 - 2014-08-27 10:51 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-27 10:49 - 2014-07-18 00:39 - 02083143 _____ () C:\Windows\WindowsUpdate.log
2014-08-27 10:46 - 2014-08-27 10:41 - 00599660 _____ () C:\Users\savas.kyriakidis\Downloads\avgremover.log
2014-08-27 10:46 - 2014-08-22 16:12 - 00046834 _____ () C:\Windows\PFRO.log
2014-08-27 10:46 - 2008-08-06 12:35 - 00000276 _____ () C:\Windows\Tasks\RtlNICDiagVistaStart.job
2014-08-27 10:46 - 2006-11-02 09:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-27 10:46 - 2006-11-02 08:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-27 10:46 - 2006-11-02 08:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-27 10:44 - 2011-07-10 19:25 - 00000000 ____D () C:\Program Files\AVG
2014-08-27 10:44 - 2006-11-02 09:01 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-27 10:42 - 2006-11-02 06:33 - 00690960 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-27 10:41 - 2014-08-27 10:41 - 03386520 _____ (AVG Technologies CZ, s.r.o.) C:\Users\savas.kyriakidis\Downloads\avg_remover_stf_x86_2014_4116.exe
2014-08-27 10:38 - 2014-08-22 13:25 - 00001598 _____ () C:\Windows\setupact.log
2014-08-27 10:17 - 2011-12-22 18:52 - 00001356 _____ () C:\Users\savas.kyriakidis\AppData\Local\d3d9caps.dat
2014-08-27 10:14 - 2014-08-27 10:14 - 00000916 _____ () C:\Users\savas.kyriakidis\Desktop\join.me.lnk
2014-08-27 10:14 - 2014-08-27 10:14 - 00000916 _____ () C:\Users\savas.kyriakidis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\join.me.lnk
2014-08-27 10:14 - 2014-08-27 10:14 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\LogMeIn
2014-08-27 10:14 - 2014-08-27 10:14 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\join.me
2014-08-27 10:14 - 2014-08-27 10:14 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-08-27 10:11 - 2011-03-06 00:06 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\Deployment
2014-08-27 10:09 - 2011-03-06 00:06 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\Apps\2.0
2014-08-27 10:03 - 2014-08-27 10:03 - 00000969 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-08-27 10:03 - 2014-08-27 10:03 - 00000000 ____D () C:\Program Files\TeamViewer
2014-08-27 09:44 - 2014-08-19 23:07 - 00000000 ____D () C:\ProgramData\GlarySoft
2014-08-27 09:44 - 2014-08-14 18:19 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\GlarySoft
2014-08-27 09:30 - 2014-08-26 09:26 - 00008108 _____ () C:\Windows\system32\commonpub.log
2014-08-27 09:30 - 2014-08-26 09:26 - 00006006 _____ () C:\Windows\system32\commonpriv.log
2014-08-27 09:29 - 2014-08-26 09:26 - 01024722 _____ () C:\Windows\system32\commonpriv.log.1
2014-08-26 09:34 - 2014-08-26 09:34 - 00025347 _____ () C:\ComboFix.txt
2014-08-26 09:34 - 2014-08-22 15:52 - 00000000 ____D () C:\Qoobox
2014-08-26 09:29 - 2006-11-02 06:23 - 00000215 _____ () C:\Windows\system.ini
2014-08-26 09:26 - 2014-08-26 09:26 - 00000000 _____ () C:\Windows\system32\commonpub.log.lock
2014-08-26 09:26 - 2014-08-26 09:26 - 00000000 _____ () C:\Windows\system32\commonpriv.log.lock
2014-08-26 08:38 - 2006-11-02 06:22 - 43515904 _____ () C:\Windows\system32\config\software.bak
2014-08-26 08:38 - 2006-11-02 06:22 - 35389440 _____ () C:\Windows\system32\config\COMPON~3.bak
2014-08-26 08:38 - 2006-11-02 06:22 - 21757952 _____ () C:\Windows\system32\config\system.bak
2014-08-26 08:38 - 2006-11-02 06:22 - 01048576 _____ () C:\Windows\system32\config\default.bak
2014-08-26 08:38 - 2006-11-02 06:22 - 00262144 _____ () C:\Windows\system32\config\security.bak
2014-08-26 08:38 - 2006-11-02 06:22 - 00262144 _____ () C:\Windows\system32\config\sam.bak
2014-08-26 08:37 - 2011-12-29 11:34 - 00000000 ____D () C:\Windows\ERDNT
2014-08-26 08:25 - 2011-02-13 09:42 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-26 08:23 - 2006-11-02 07:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-25 17:03 - 2014-08-23 11:51 - 00000000 ____D () C:\AdwCleaner
2014-08-25 16:21 - 2014-08-25 16:22 - 00001052 _____ () C:\Users\savas.kyriakidis\Desktop\JRT.txt
2014-08-25 09:54 - 2011-03-06 00:06 - 00047104 _____ () C:\Users\savas.kyriakidis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-08-25 09:35 - 2014-08-23 16:30 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-25 09:16 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system
2014-08-25 08:26 - 2014-08-23 16:30 - 00000901 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-25 08:26 - 2014-08-23 16:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-25 08:26 - 2014-08-23 16:30 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-23 16:48 - 2014-08-22 14:00 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-08-23 16:30 - 2011-03-14 18:46 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-23 14:45 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\schemas
2014-08-23 14:32 - 2011-03-14 18:43 - 00000000 ____D () C:\Windows\pss
2014-08-23 14:22 - 2006-11-02 07:18 - 00000000 ___RD () C:\Users\Public
2014-08-23 14:09 - 2011-03-06 00:06 - 00000000 ____D () C:\Users\savas.kyriakidis
2014-08-23 14:09 - 2011-02-10 21:08 - 00000000 ____D () C:\Users\Rita
2014-08-23 12:12 - 2014-08-23 12:12 - 00007836 _____ () C:\Users\savas.kyriakidis\Desktop\reg.txt
2014-08-23 12:03 - 2014-08-23 12:03 - 00009362 _____ () C:\Users\savas.kyriakidis\Desktop\safer.txt
2014-08-23 11:42 - 2014-08-23 11:42 - 00000000 ____D () C:\Windows\ERUNT
2014-08-23 11:16 - 2014-08-14 18:19 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\DiskDefrag
2014-08-22 21:40 - 2014-08-22 17:05 - 00000000 ____D () C:\VIPRERESCUE
2014-08-22 17:13 - 2012-05-16 21:52 - 00000000 ____D () C:\temp
2014-08-22 17:05 - 2014-08-22 17:05 - 00000000 ____D () C:\EEK
2014-08-22 14:32 - 2014-08-22 14:32 - 00000000 ____D () C:\Users\savas.kyriakidis\Documents\ProcAlyzer Dumps
2014-08-22 14:15 - 2011-12-22 20:05 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-22 13:54 - 2014-08-22 13:41 - 00000000 ____D () C:\Windows\dwrcs
2014-08-22 13:41 - 2014-08-22 13:41 - 00000000 ____D () C:\ProgramData\DameWare Development
2014-08-22 13:25 - 2014-08-22 13:25 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-21 00:06 - 2011-03-06 00:06 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\Google
2014-08-20 23:39 - 2008-08-06 12:41 - 00000000 ____D () C:\Program Files\Google
2014-08-20 20:00 - 2009-06-10 23:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark Z700-P700 Series
2014-08-20 19:17 - 2014-08-20 19:17 - 00319456 _____ (Microsoft Corporation) C:\Windows\DIFxAPI.dll
2014-08-20 18:46 - 2014-08-20 18:46 - 00000666 _____ () C:\Toolbars.dat
2014-08-19 18:12 - 2014-08-20 18:12 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-08-17 16:29 - 2014-08-17 16:29 - 04763288 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4745.exe
2014-08-17 15:54 - 2014-08-17 15:54 - 04462440 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4335_welcomecmp.exe
2014-08-16 17:05 - 2014-08-16 17:04 - 04755832 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_free_stb_all_2014_4744_cnet.exe
2014-08-16 12:05 - 2014-08-16 12:05 - 00000000 ____D () C:\ProgramData\SlimWare Utilities Inc
2014-08-16 12:05 - 2014-08-15 20:57 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\SlimWare Utilities Inc
2014-08-16 12:04 - 2014-08-16 12:04 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\Downloaded Installers
2014-08-16 10:06 - 2012-10-02 18:32 - 00000000 ____D () C:\Program Files\HTC
2014-08-16 09:27 - 2008-08-06 12:49 - 00000000 ____D () C:\Program Files\Citrix
2014-08-16 09:22 - 2014-08-15 20:56 - 00000000 ____D () C:\Program Files\DriverUpdate
2014-08-15 20:56 - 2014-08-15 20:56 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-08-15 20:41 - 2012-10-02 18:45 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\Htc
2014-08-15 19:55 - 2008-08-06 12:37 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-08-15 17:56 - 2006-11-02 08:47 - 00267048 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-15 13:32 - 2014-08-15 13:32 - 06534584 _____ (Systweak Software ) C:\Users\savas.kyriakidis\Downloads\PCDiagnosisProTPSSetup.exe
2014-08-15 13:26 - 2011-06-17 17:39 - 00058896 _____ () C:\Windows\system32\GDIPFONTCACHEV1.DAT
2014-08-15 13:23 - 2014-08-15 13:23 - 06267504 _____ (TeamViewer GmbH) C:\Users\savas.kyriakidis\Downloads\TeamViewer_Setup_en (3).exe
2014-08-15 13:21 - 2014-08-15 13:04 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\TeamViewer
2014-08-15 13:13 - 2014-08-15 13:12 - 06267504 _____ (TeamViewer GmbH) C:\Users\savas.kyriakidis\Downloads\TeamViewer_Setup_en (2).exe
2014-08-15 13:11 - 2014-08-15 13:11 - 06267504 _____ (TeamViewer GmbH) C:\Users\savas.kyriakidis\Downloads\TeamViewer_Setup_en (1).exe
2014-08-15 13:02 - 2014-08-15 13:02 - 06267504 _____ (TeamViewer GmbH) C:\Users\savas.kyriakidis\Downloads\TeamViewer_Setup_en.exe
2014-08-15 13:01 - 2012-01-24 17:09 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\LogMeIn Rescue Applet
2014-08-15 11:17 - 2014-08-15 11:17 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_150803173445318587.exe
2014-08-15 11:17 - 2014-08-15 11:17 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_150803172000784607.exe
2014-08-15 11:13 - 2014-08-15 11:12 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\savas.kyriakidis\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-08-15 11:12 - 2014-08-15 11:11 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\savas.kyriakidis\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-14 19:24 - 2014-08-14 19:24 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
2014-08-14 18:18 - 2014-08-14 18:18 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (5).exe
2014-08-14 18:18 - 2014-08-14 18:18 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (4).exe
2014-08-14 18:16 - 2014-08-14 18:15 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (3).exe
2014-08-14 18:15 - 2014-08-14 18:15 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (2).exe
2014-08-14 18:14 - 2014-08-14 18:14 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (1).exe
2014-08-14 18:13 - 2014-08-14 18:13 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup.exe
2014-08-14 17:40 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809374825884190.exe
2014-08-14 17:37 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809372042763201.exe
2014-08-14 17:37 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809371092783465.exe
2014-08-13 23:07 - 2013-06-10 19:17 - 00002463 _____ () C:\Users\Public\Desktop\Transporter.lnk
2014-08-13 21:31 - 2014-08-13 21:31 - 00001666 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-13 21:31 - 2014-08-13 21:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-13 21:31 - 2014-08-13 21:28 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-13 21:31 - 2011-12-24 11:26 - 00000000 ____D () C:\Program Files\iTunes
2014-08-13 21:28 - 2014-08-13 21:28 - 00000000 ____D () C:\Program Files\iPod
2014-08-13 21:28 - 2008-09-02 12:28 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-13 21:02 - 2008-09-02 12:28 - 00000000 ____D () C:\ProgramData\Apple
2014-08-13 20:52 - 2014-08-13 20:51 - 00000000 ____D () C:\Program Files\QuickTime
2014-08-13 20:51 - 2014-08-13 20:51 - 00001728 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-08-13 20:51 - 2014-08-13 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-08-13 20:41 - 2013-04-22 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-08-13 20:18 - 2008-08-06 12:41 - 00000000 ____D () C:\ProgramData\Google
2014-08-12 21:20 - 2014-08-12 21:20 - 00000000 ____D () C:\ProgramData\WindowsSearch
2014-08-12 17:13 - 2011-08-28 07:57 - 00000000 ____D () C:\Users\savas.kyriakidis\Desktop\ALL Folders
2014-08-12 17:09 - 2011-08-28 08:01 - 00000000 ____D () C:\Users\savas.kyriakidis\Desktop\Desk Top Stuff
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
ATTENTION: ==> Could not access BCD, see Addition.txt for additional information.
 
 
LastRegBack: 2014-08-27 10:57
 
==================== End Of Log ============================
Link to post
Share on other sites
jjoyner1985

jjoyner1985

Posted
  • Author
Posted

Addition

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version:23-08-2014
Ran by savas.kyriakidis at 2014-08-27 10:58:04
Running from F:\
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
 Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
32 Bit HP CIO Components Installer (Version: 3.1.1 - Hewlett-Packard) Hidden
6500_E709_eDocs (Version: 1.00.0000 - Hewlett-Packard) Hidden
6500_E709_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
6500_E709a (Version: 50.0.165.000 - Hewlett-Packard) Hidden
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 2.0.0.0 - Adobe Systems Incorporated)
Acrobat.com (Version: 2.0.0 - Adobe Systems Incorporated) Hidden
ActivClient CAC x86 (HKLM\...\{1BE8806A-84F8-4655-A381-0D5524430944}) (Version: 6.2 - ActivIdentity)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.2.0.2070 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.2.0.2070 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.0.1.152 - Adobe Systems Incorporated)
Adobe Reader X (10.1.2) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.2 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Any Video Converter 3.0.1 (HKLM\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Control Center (HKLM\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.007.0731.2233 - )
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
bpd_scan (Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
Browser Address Error Redirector (HKLM\...\{62230596-37E5-4618-A329-0D21F529A86F}) (Version: 1.00.0000 - Dell)
BufferChm (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Catalyst Control Center Core Implementation (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Chinese Standard (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Chinese Traditional (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization French (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization German (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Hungarian (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Italian (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Japanese (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Korean (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Polish (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Portuguese (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Spanish (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Thai (Version: 2007.0731.2234.38497 - ATI) Hidden
Catalyst Control Center Localization Turkish (Version: 2007.0731.2234.38497 - ATI) Hidden
CCC Help Chinese Standard (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help English (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help French (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help German (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Hungarian (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Italian (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Japanese (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Korean (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Polish (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Portuguese (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Spanish (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Thai (Version: 2007.0731.2233.38497 - ATI) Hidden
CCC Help Turkish (Version: 2007.0731.2233.38497 - ATI) Hidden
ccc-core-static (Version: 2007.0731.2234.38497 - ATI) Hidden
ccc-utility (Version: 2007.0731.2234.38497 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Dell Best of Web (HKLM\...\{C39A4E1F-9AF1-4FE1-A80E-A5B867FABB42}) (Version: 1.00.0000 - Dell)
Dell DataSafe Online (HKLM\...\{4D3C9F4B-4B7D-4E5D-99B9-0123AB0D51ED}) (Version: 1.0.21 - Dell, Inc.)
Dell Dock (HKLM\...\{F6CB42B9-F033-4152-8813-FF11DA8E6A78}) (Version: 1.0.0 - Dell)
Dell Getting Started Guide (HKLM\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell Support Center (HKLM\...\{E3BFEE55-39E2-4BE0-B966-89FE583822C1}) (Version: 2.1.08060 - Dell)
Dell-eBay (HKLM\...\{B935C985-A17F-484B-8470-09E4FC27DC26}) (Version: 1.00.0000 - Dell)
Destination Component (Version: 110.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 120.0.194.000 - Hewlett-Packard) Hidden
DocMgr (Version: 120.0.000.000 - Hewlett-Packard) Hidden
DocProc (Version: 12.0.0.0 - Hewlett-Packard) Hidden
EDocs (HKLM\...\{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}) (Version:  - )
Fax (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Feedback Tool (HKLM\...\{13A5E785-5197-4EAD-8EE3-D660271E49BC}) (Version: 1.2.0 - Microsoft Corporation)
GPBaseService2 (Version: 120.0.194.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 12.0 (HKLM\...\HPExtendedCapabilities) (Version: 12.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 12.0 (HKLM\...\HP Imaging Device Functions) (Version: 12.0 - HP)
HP Officejet 6500 E709 Series (HKLM\...\{FA0F0A01-4631-4161-A6C2-948BF694382E}) (Version: 12.0 - HP)
HP Smart Web Printing (HKLM\...\HP Smart Web Printing) (Version: 4.05 - HP)
HP Solution Center 12.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 12.0 - HP)
HP Update (HKLM\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPProductAssistant (Version: 120.0.194.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 120.0.194.000 - Hewlett-Packard) Hidden
HTC Driver Installer (HKLM\...\{6D6664A9-3342-4948-9B7E-034EFE366F0F}) (Version: 3.0.0.021 - HTC Corporation)
iLumina Gold Starter Edition (HKLM\...\iLuminaStarter) (Version: 2.1 - Tyndale House Publishers, Inc)
iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.)
Java 6 Update 5 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160050}) (Version: 1.6.0.50 - Sun Microsystems, Inc.)
join.me (HKCU\...\JoinMe) (Version: 1.15.0.136 - LogMeIn, Inc.)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MarketResearch (Version: 120.0.226.000 - Hewlett-Packard) Hidden
MediaDirect (HKLM\...\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}) (Version: 4.0 - Dell)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 2 (SP2) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 2 (SP2) (Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) (Version:  - Microsoft) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60831.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
NETGEAR WNA1100 N150 Wireless USB Adapter (HKLM\...\{A2AE9709-283B-4B48-AA34-729C070A62FB}) (Version: 1.0.0.133 - NETGEAR)
Network (Version: 120.0.194.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 12.0 (HKLM\...\HPOCR) (Version: 12.0 - HP)
PMB (HKLM\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.2.00.03250 - Sony Corporation)
ProductContext (Version: 50.0.165.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek Ethernet Network Card Diagnostic tool for Windows Vista (HKLM\...\{1FECF5F8-8E75-432C-9FF7-1C04F1956B54}) (Version: 1.00 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version:  - )
Roxio Creator Audio (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Copy (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Data (Version: 3.7.0 - Roxio) Hidden
Roxio Creator DE (HKLM\...\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}) (Version: 10.1 - Roxio)
Roxio Creator DE (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Tools (Version: 3.7.0 - Roxio) Hidden
Roxio Express Labeler 3 (Version: 3.2.1 - Roxio) Hidden
Roxio Update Manager (Version: 6.0.0 - Roxio) Hidden
SAMSUNG USB Driver for Mobile Phones V5.16.0.0 (HKLM\...\{C0C1D2BC-72FE-4F77-A2F9-CD10D5AA8F93}) (Version: 1.2.2200.0 - SAMSUNG Electronics CO., LTD.)
SamsungSimpleDL_lite (HKLM\...\InstallShield_{B8421085-B02A-4A50-9FAE-D7DF1593E1AD}) (Version: 1.0.025 - Your Company Name)
SamsungSimpleDL_lite (Version: 1.0.025 - Your Company Name) Hidden
Scan (Version: 12.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 12 - HP)
Skins (Version: 2007.0731.2234.38497 - ATI) Hidden
SmartWebPrinting (Version: 120.0.194.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Status (Version: 120.0.194.000 - Hewlett-Packard) Hidden
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.31064 - TeamViewer)
Toolbox (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Transporter (HKLM\...\{A38A6AFE-38BA-4448-B489-6045E0796503}) (Version: 3.1.1 - Winkflash)
TrayApp (Version: 120.0.194.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B7873DF5-9E1C-45EE-8895-D29C6AE01202}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C20964A7-5181-45E5-9E82-72F5D400DEBF}) (Version:  - Microsoft)
Update for Microsoft Office 2007 System (KB2539530) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{567103D1-96CD-4B76-93B9-2681A187DEFF}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 (KB980729) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}) (Version:  - Microsoft)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Walmart MP3 Music Downloads (HKLM\...\Walmart MP3 Music Downloads) (Version: 1.5.0.7 - Walmart.com)
WebReg (Version: 120.0.194.000 - Hewlett-Packard) Hidden
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
04-08-2014 04:00:03 Scheduled Checkpoint
07-08-2014 22:48:19 Scheduled Checkpoint
11-08-2014 02:11:41 Scheduled Checkpoint
11-08-2014 15:01:42 Scheduled Checkpoint
12-08-2014 10:45:08 Scheduled Checkpoint
14-08-2014 02:36:25 Scheduled Checkpoint
14-08-2014 21:59:38 Tuneup Pro Thu, Aug 14, 14  17:59
14-08-2014 23:31:34 Advanced-System Protector
15-08-2014 23:47:04 Removed SofTest
16-08-2014 13:18:06 Removed DriverUpdate
16-08-2014 13:29:10 Removed HTC Sync.
16-08-2014 13:44:46 Removed HTC Sync.
16-08-2014 14:02:17 Removed HTC BMP USB Driver.
16-08-2014 16:47:50 Advanced-System Protector
16-08-2014 21:58:06 Installed AVG 2014
16-08-2014 22:11:41 Removed SlimCleaner Plus
16-08-2014 22:14:50 Removed HTC Driver Installer.
17-08-2014 19:56:09 Installed AVG 2014
17-08-2014 19:59:04 Installed AVG 2014
17-08-2014 20:03:04 Removed AVG 2014
17-08-2014 20:04:51 Installed AVG 2011
17-08-2014 21:08:16 Installed AVG 2014
17-08-2014 21:16:20 Installed AVG 2014
17-08-2014 21:24:43 Removed AVG 2014
17-08-2014 21:26:10 Installed AVG 2011
19-08-2014 21:04:48 Advanced-System Protector
21-08-2014 01:40:12 Advanced-System Protector
23-08-2014 20:47:11 Checkpoint by HitmanPro
26-08-2014 12:19:57 Removed AVG 2011
26-08-2014 12:22:43 Removed AVG 2011
27-08-2014 04:00:00 Scheduled Checkpoint
27-08-2014 13:28:23 Removed AVG 2011
27-08-2014 14:51:04 avast! antivirus system restore point
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2014-08-23 14:19 - 2014-08-26 09:28 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {0821BB22-0238-4066-B790-B68CCD3016F9} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-27] (AVAST Software)
Task: {1899DF80-FF95-4C6F-B87A-DB0FDFCF4313} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - savas.kyriakidis => C:\Program Files\Windows Calendar\wincal.exe [2009-04-11] (Microsoft Corporation)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {1D455FF0-01E6-438C-A9D6-27C72AC03552} - \PC Performer No Task File <==== ATTENTION
Task: {219889BA-90E3-4298-B815-4C452D260575} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\system32\FlashPlayerUpdateService.exe
Task: {2343967C-C69F-44DE-8AA3-E9113A3466E5} - \Security Center Update - 754758581 No Task File <==== ATTENTION
Task: {239D58F4-E8C7-48B2-A92C-0C20674542F1} - System32\Tasks\The Bluetooth service discovery => C:\Windows\system32\Drivers\blds.exe
Task: {29F51FCF-C86F-4A73-A53D-79BCBC7A3C26} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {2BA5B600-850D-4223-A601-8879523AF452} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {30B9F70E-3CAE-49C3-9D96-BE89B7AA59AB} - \Time Trigger Test Task No Task File <==== ATTENTION
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3844EB23-D7D9-42B5-8061-C5A6B5F42FE0} - System32\Tasks\DriverUpdate Daily Scan => C:\Program Files\DriverUpdate\DriverUpdate.exe
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-20] (Microsoft Corporation)
Task: {44E2A9D0-91BC-474D-8776-1068F7A8A6C6} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\system32\FlashPlayerUpdateService.exe
Task: {4512337B-4691-4F43-9FBB-0095C346DDE6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {510F6543-BD19-48A5-9E5E-D5E371879760} - System32\Tasks\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon => C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
Task: {788B04FA-AA4F-4BCC-9AAE-A2881E7E64E6} - \Scheduled Update for Ask Toolbar No Task File <==== ATTENTION
Task: {C22BB22A-70B9-4AEA-B6E6-2234A457F078} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: {DD48E073-3A6C-4D31-8602-D1B57F4180B5} - System32\Tasks\RtlNICDiagVistaStart => C:\Program Files\Realtek\RTNICDiag\RTNICDiag.exe [2008-03-06] (Realtek)
Task: {E14F36AE-800F-4A81-94F3-BFD7740E1952} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [2013-10-31] (Apple Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-20] ()
Task: {FCAFF07B-D3AC-4A0C-A6E2-6C23DFC270C9} - \{B7983C11-5FD9-12B1-4EAA-DE223F2AD5D5} No Task File <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\RtlNICDiagVistaStart.job => C:\Program Files\Realtek\RTNICDiag\RTNICDiag.exe
 
==================== Loaded Modules (whitelisted) =============
 
2008-08-06 15:17 - 2007-08-20 01:08 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2011-10-13 03:28 - 2011-10-13 03:28 - 00223744 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\5d71f5ae06ea0338fa4e266ac77cf988\VistaBridgeLibrary.ni.dll
2014-07-31 12:16 - 2014-07-31 12:16 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-31 12:16 - 2014-07-31 12:16 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-14 01:51 - 2013-09-14 01:51 - 00087952 _____ () C:\Program Files\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 01:50 - 2013-09-14 01:50 - 01242952 _____ () C:\Program Files\Common Files\Apple\Internet Services\libxml2.dll
2012-05-16 21:52 - 2011-01-04 15:34 - 04545024 _____ () C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
2012-05-16 21:52 - 2009-08-28 16:50 - 00282624 _____ () C:\Program Files\NETGEAR\WNA1100\WifiSvcLib.dll
2014-08-27 10:53 - 2014-08-27 10:53 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-27 10:53 - 2014-08-27 10:53 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4
AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
==================== Faulty Device Manager Devices =============
 
Name: Microsoft 6to4 Adapter #2
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet 1022n
Description: HP LaserJet 1022n
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Deskjet 6940 series
Description: Deskjet 6940 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: hp LaserJet 2420
Description: hp LaserJet 2420
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Deskjet 6980 series
Description: Deskjet 6980 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Deskjet 6980 series
Description: Deskjet 6980 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet P2035n
Description: HP LaserJet P2035n
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet CP1025nw
Description: HP LaserJet CP1025nw
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP Color LaserJet CP2025dn
Description: HP Color LaserJet CP2025dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet P2035n
Description: HP LaserJet P2035n
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet 200 color M251nw
Description: HP LaserJet 200 color M251nw
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP Color LaserJet CP2025dn
Description: HP Color LaserJet CP2025dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: hp LaserJet 1300
Description: hp LaserJet 1300
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: hp LaserJet 1300
Description: hp LaserJet 1300
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet CP1525nw
Description: HP LaserJet CP1525nw
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: hp LaserJet 1300
Description: hp LaserJet 1300
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet M1536dnf MFP
Description: HP LaserJet M1536dnf MFP
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet P2055dn
Description: HP LaserJet P2055dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet P2035n
Description: HP LaserJet P2035n
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet Professional P1606dn
Description: HP LaserJet Professional P1606dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: hp color LaserJet 4650
Description: hp color LaserJet 4650
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet 400 M401dne
Description: HP LaserJet 400 M401dne
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet P2055dn
Description: HP LaserJet P2055dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Deskjet 6980 series
Description: Deskjet 6980 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (08/27/2014 10:50:59 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.
 
 
Operation:
   Gathering Writer Data
 
Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {3f5e2f72-1c1d-4100-813d-a6324b86f683}
 
Error: (08/27/2014 10:47:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/27/2014 10:39:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/27/2014 09:32:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/26/2014 02:05:12 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4
 
Error: (08/26/2014 09:27:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/26/2014 08:25:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application iexplore.exe, version 0.0.0.0, time stamp 0x4e06cfe8, faulting module iexplore.exe, version 0.0.0.0, time stamp 0x4e06cfe8, exception code 0x40000015, fault offset 0x0008d1c0,
process id 0x17d4, application start time 0xiexplore.exe0.
 
Error: (08/26/2014 08:02:57 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\SAVAS.KYRIAKIDIS\APPDATA\LOCALLOW\GAMEJOINT\TEMP\SCOPED_DIR_2584_29457\CRX_INSTALL\_LOCALES\ES_419\MESSAGES.JSON> in the hash map cannot be updated.
 
Context:  Application, SystemIndex Catalog
 
 
Details:
A device attached to the system is not functioning.   (0x8007001f)
 
Error: (08/26/2014 08:02:49 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\SAVAS.KYRIAKIDIS\APPDATA\LOCALLOW\GAMEJOINT\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\WEB DATA> in the hash map cannot be updated.
 
Context:  Application, SystemIndex Catalog
 
 
Details:
A device attached to the system is not functioning.   (0x8007001f)
 
Error: (08/26/2014 08:02:26 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\SAVAS.KYRIAKIDIS\APPDATA\LOCALLOW\GAMEJOINT\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\INDEX> in the hash map cannot be updated.
 
Context:  Application, SystemIndex Catalog
 
 
Details:
A device attached to the system is not functioning.   (0x8007001f)
 
 
System errors:
=============
Error: (08/27/2014 10:48:29 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: KtmRm for Distributed Transaction Coordinator2147942438 (0x80070026)
 
Error: (08/27/2014 10:40:41 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: KtmRm for Distributed Transaction Coordinator2147942438 (0x80070026)
 
Error: (08/27/2014 10:39:16 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: AVGIDSDriver
AVGIDSShim
 
Error: (08/27/2014 10:39:16 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: AVGIDSAgentAVGIDSDriver%%31
 
Error: (08/27/2014 10:38:09 AM) (Source: Dhcp) (EventID: 1002) (User: )
Description: The IP address lease 192.168.2.168 for the Network Card with network address 00219B005B31 has been denied by the DHCP server 192.168.37.10 (The DHCP Server sent a DHCPNACK message).
 
Error: (08/27/2014 09:33:44 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: KtmRm for Distributed Transaction Coordinator2147942438 (0x80070026)
 
Error: (08/27/2014 09:32:53 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: AVGIDSDriver
AVGIDSShim
 
Error: (08/27/2014 09:32:53 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: AVGIDSAgentAVGIDSDriver%%31
 
Error: (08/26/2014 09:30:24 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: KtmRm for Distributed Transaction Coordinator2147942438 (0x80070026)
 
Error: (08/26/2014 09:27:53 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: AVGIDSDriver
AVGIDSShim
 
 
Microsoft Office Sessions:
=========================
Error: (08/14/2012 04:50:33 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 228 seconds with 60 seconds of active time.  This session ended with a crash.
 
Error: (12/21/2010 06:24:53 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 61 seconds with 60 seconds of active time.  This session ended with a crash.
 
Error: (10/09/2010 05:15:00 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6541.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 19 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (03/25/2010 00:21:12 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 60 seconds with 0 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-08-27 10:57:56.553
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-27 10:57:56.407
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-27 10:57:56.265
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-27 10:57:56.111
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-27 10:57:55.823
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-27 10:57:55.690
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-27 10:57:55.553
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-27 10:57:55.408
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-26 14:19:44.053
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-08-26 14:19:43.932
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core2 Duo CPU E4600 @ 2.40GHz
Percentage of memory in use: 38%
Total physical RAM: 3069.46 MB
Available physical RAM: 1893.25 MB
Total Pagefile: 6373.2 MB
Available Pagefile: 5221.76 MB
Total Virtual: 2047.88 MB
Available Virtual: 1902.3 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:450.71 GB) (Free:221.32 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:15 GB) (Free:10.55 GB) NTFS
Drive f: (CC) (Removable) (Total:1.92 GB) (Free:1.87 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 10000000)
Partition 1: (Not Active) - (Size=47 MB) - (Type=DE)
Partition 2: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=450.7 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: E79A82AA)
Partition 1: (Active) - (Size=1.9 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
Link to post
Share on other sites
Naathim

Naathim

Posted
Posted

FRST.gif Fix with Farbar Recovery Scan Tool

icon_exclaim.gif This fix was created for this user for use on that particular machine. icon_exclaim.gif

icon_exclaim.gif Running it on another one may cause damage and render the system unstable. icon_exclaim.gif

Press the WindowsKey.png + R on your keyboard at the same time. Type Notepad and click OK.

  • Copy the entire content of the codebox below and paste into the Notepad document:

    startHKLM\...\RunOnce: [AvgUninstallURL] => cmd.exe /c start http://www.avg.com/w...C05RDIwQy0zN1RT"&"inst=NzctMTIyNzA3NzAwOS1GSSsxLUZMMTArMS1ERFQrMC1UVUcrMy1MU0QrM (the data entry has 100 more characters).Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Metacafe.lnkShortcutTarget: Metacafe.lnk -> C:\$RECYCLE.BIN\S-1-5-21-3726736968-409882640-1958551794-1000\MetacafeAgent.exe (No File)Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No FileWinsock: Catalog5 01 %SystemRoot%\System32\mswsock.dll [223232] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)S3 catchme; \??\C:\ComboFix\catchme.sys [X]2014-08-22 14:00 - 2014-08-23 16:48 - 00000000 ____D () C:\ProgramData\HitmanPro2014-08-20 18:46 - 2014-08-20 18:46 - 00000666 _____ () C:\Toolbars.dat2014-08-19 23:07 - 2014-08-27 09:44 - 00000000 ____D () C:\ProgramData\GlarySoft2014-08-17 16:29 - 2014-08-17 16:29 - 04763288 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4745.exe2014-08-17 15:54 - 2014-08-17 15:54 - 04462440 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4335_welcomecmp.exe2014-08-16 17:04 - 2014-08-16 17:05 - 04755832 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_free_stb_all_2014_4744_cnet.exe2014-08-15 13:32 - 2014-08-15 13:32 - 06534584 _____ (Systweak Software ) C:\Users\savas.kyriakidis\Downloads\PCDiagnosisProTPSSetup.exe2014-08-14 18:19 - 2014-08-27 09:44 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\GlarySoft2014-08-14 18:19 - 2014-08-23 11:16 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\DiskDefrag2014-08-14 18:18 - 2014-08-14 18:18 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (5).exe2014-08-14 18:18 - 2014-08-14 18:18 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (4).exe2014-08-14 18:15 - 2014-08-14 18:16 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (3).exe2014-08-14 18:15 - 2014-08-14 18:15 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (2).exe2014-08-14 18:14 - 2014-08-14 18:14 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (1).exe2014-08-14 18:13 - 2014-08-14 18:13 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup.exe2014-08-15 11:17 - 2014-08-15 11:17 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_150803173445318587.exe2014-08-15 11:17 - 2014-08-15 11:17 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_150803172000784607.exe2014-08-14 17:37 - 2014-08-14 17:40 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809374825884190.exe2014-08-14 17:37 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809372042763201.exe2014-08-14 17:37 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809371092783465.exe2014-08-27 10:44 - 2011-07-10 19:25 - 00000000 ____D () C:\Program Files\AVG2014-08-27 10:41 - 2014-08-27 10:41 - 03386520 _____ (AVG Technologies CZ, s.r.o.) C:\Users\savas.kyriakidis\Downloads\avg_remover_stf_x86_2014_4116.exe2014-08-27 09:44 - 2014-08-19 23:07 - 00000000 ____D () C:\ProgramData\GlarySoft2014-08-27 09:44 - 2014-08-14 18:19 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\GlarySoft2014-08-22 14:32 - 2014-08-22 14:32 - 00000000 ____D () C:\Users\savas.kyriakidis\Documents\ProcAlyzer Dumps2014-08-16 12:05 - 2014-08-16 12:05 - 00000000 ____D () C:\ProgramData\SlimWare Utilities Inc2014-08-16 12:05 - 2014-08-15 20:57 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\SlimWare Utilities Inc2014-08-16 12:04 - 2014-08-16 12:04 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\Downloaded Installers2014-08-16 09:22 - 2014-08-15 20:56 - 00000000 ____D () C:\Program Files\DriverUpdateAlternateDataStreams: C:\ProgramData\TEMP:0B4227B4AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2Task: {FCAFF07B-D3AC-4A0C-A6E2-6C23DFC270C9} - \{B7983C11-5FD9-12B1-4EAA-DE223F2AD5D5} No Task File <==== ATTENTIONTask: {C22BB22A-70B9-4AEA-B6E6-2234A457F078} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exeC:\Program Files\SlimCleaner PlusTask: {C22BB22A-70B9-4AEA-B6E6-2234A457F078} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exeTask: {788B04FA-AA4F-4BCC-9AAE-A2881E7E64E6} - \Scheduled Update for Ask Toolbar No Task File <==== ATTENTIONTask: {510F6543-BD19-48A5-9E5E-D5E371879760} - System32\Tasks\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon => C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exeC:\Program Files\AVGTask: {510F6543-BD19-48A5-9E5E-D5E371879760} - System32\Tasks\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon => C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exeTask: {30B9F70E-3CAE-49C3-9D96-BE89B7AA59AB} - \Time Trigger Test Task No Task File <==== ATTENTIONTask: {2343967C-C69F-44DE-8AA3-E9113A3466E5} - \Security Center Update - 754758581 No Task File <==== ATTENTIONTask: {1D455FF0-01E6-438C-A9D6-27C72AC03552} - \PC Performer No Task File <==== ATTENTIONCMD: netsh winsock resetEmptyTemp:end
  • Click File, Save As and type fixlist.txt as the File Name.

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.

    > XP users click run after receipt of Windows Security Warning - Open File.

    > 8 users will be prompted about Windows SmartScreen protection - click More information and Run.

  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please include it in your reply.

Link to post
Share on other sites
jjoyner1985

jjoyner1985

Posted
  • Author
Posted
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:23-08-2014

Ran by savas.kyriakidis at 2014-08-27 14:33:58 Run:2

Running from F:\

Boot Mode: Normal

 

==============================================

 

Content of fixlist:

*****************

start

HKLM\...\RunOnce: [AvgUninstallURL] => cmd.exe /c start http://www.avg.com/w...C05RDIwQy0zN1RT"&"inst=NzctMTIyNzA3NzAwOS1GSSsxLUZMMTArMS1ERFQrMC1UVUcrMy1MU0QrM (the data entry has 100 more characters).

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Metacafe.lnk

ShortcutTarget: Metacafe.lnk -> C:\$RECYCLE.BIN\S-1-5-21-3726736968-409882640-1958551794-1000\MetacafeAgent.exe (No File)

Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File

Winsock: Catalog5 01 %SystemRoot%\System32\mswsock.dll [223232] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

S3 catchme; \??\C:\ComboFix\catchme.sys [X]

2014-08-22 14:00 - 2014-08-23 16:48 - 00000000 ____D () C:\ProgramData\HitmanPro

2014-08-20 18:46 - 2014-08-20 18:46 - 00000666 _____ () C:\Toolbars.dat

2014-08-19 23:07 - 2014-08-27 09:44 - 00000000 ____D () C:\ProgramData\GlarySoft

2014-08-17 16:29 - 2014-08-17 16:29 - 04763288 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4745.exe

2014-08-17 15:54 - 2014-08-17 15:54 - 04462440 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4335_welcomecmp.exe

2014-08-16 17:04 - 2014-08-16 17:05 - 04755832 _____ (AVG Technologies) C:\Users\savas.kyriakidis\Downloads\avg_free_stb_all_2014_4744_cnet.exe

2014-08-15 13:32 - 2014-08-15 13:32 - 06534584 _____ (Systweak Software ) C:\Users\savas.kyriakidis\Downloads\PCDiagnosisProTPSSetup.exe

2014-08-14 18:19 - 2014-08-27 09:44 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\GlarySoft

2014-08-14 18:19 - 2014-08-23 11:16 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\DiskDefrag

2014-08-14 18:18 - 2014-08-14 18:18 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (5).exe

2014-08-14 18:18 - 2014-08-14 18:18 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (4).exe

2014-08-14 18:15 - 2014-08-14 18:16 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (3).exe

2014-08-14 18:15 - 2014-08-14 18:15 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (2).exe

2014-08-14 18:14 - 2014-08-14 18:14 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup (1).exe

2014-08-14 18:13 - 2014-08-14 18:13 - 14416448 _____ () C:\Users\savas.kyriakidis\Downloads\gu5setup.exe

2014-08-15 11:17 - 2014-08-15 11:17 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_150803173445318587.exe

2014-08-15 11:17 - 2014-08-15 11:17 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_150803172000784607.exe

2014-08-14 17:37 - 2014-08-14 17:40 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809374825884190.exe

2014-08-14 17:37 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809372042763201.exe

2014-08-14 17:37 - 2014-08-14 17:37 - 03552760 _____ (tuneuppro.com ) C:\Users\savas.kyriakidis\Downloads\tall_140809371092783465.exe

2014-08-27 10:44 - 2011-07-10 19:25 - 00000000 ____D () C:\Program Files\AVG

2014-08-27 10:41 - 2014-08-27 10:41 - 03386520 _____ (AVG Technologies CZ, s.r.o.) C:\Users\savas.kyriakidis\Downloads\avg_remover_stf_x86_2014_4116.exe

2014-08-27 09:44 - 2014-08-19 23:07 - 00000000 ____D () C:\ProgramData\GlarySoft

2014-08-27 09:44 - 2014-08-14 18:19 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Roaming\GlarySoft

2014-08-22 14:32 - 2014-08-22 14:32 - 00000000 ____D () C:\Users\savas.kyriakidis\Documents\ProcAlyzer Dumps

2014-08-16 12:05 - 2014-08-16 12:05 - 00000000 ____D () C:\ProgramData\SlimWare Utilities Inc

2014-08-16 12:05 - 2014-08-15 20:57 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\SlimWare Utilities Inc

2014-08-16 12:04 - 2014-08-16 12:04 - 00000000 ____D () C:\Users\savas.kyriakidis\AppData\Local\Downloaded Installers

2014-08-16 09:22 - 2014-08-15 20:56 - 00000000 ____D () C:\Program Files\DriverUpdate

AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4

AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2

Task: {FCAFF07B-D3AC-4A0C-A6E2-6C23DFC270C9} - \{B7983C11-5FD9-12B1-4EAA-DE223F2AD5D5} No Task File <==== ATTENTION

Task: {C22BB22A-70B9-4AEA-B6E6-2234A457F078} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe

C:\Program Files\SlimCleaner Plus

Task: {C22BB22A-70B9-4AEA-B6E6-2234A457F078} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe

Task: {788B04FA-AA4F-4BCC-9AAE-A2881E7E64E6} - \Scheduled Update for Ask Toolbar No Task File <==== ATTENTION

Task: {510F6543-BD19-48A5-9E5E-D5E371879760} - System32\Tasks\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon => C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe

C:\Program Files\AVG

Task: {510F6543-BD19-48A5-9E5E-D5E371879760} - System32\Tasks\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon => C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe

Task: {30B9F70E-3CAE-49C3-9D96-BE89B7AA59AB} - \Time Trigger Test Task No Task File <==== ATTENTION

Task: {2343967C-C69F-44DE-8AA3-E9113A3466E5} - \Security Center Update - 754758581 No Task File <==== ATTENTION

Task: {1D455FF0-01E6-438C-A9D6-27C72AC03552} - \PC Performer No Task File <==== ATTENTION

CMD: netsh winsock reset

EmptyTemp:

end

*****************

 

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\AvgUninstallURL => value deleted successfully.

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Metacafe.lnk => Moved successfully.

C:\$RECYCLE.BIN\S-1-5-21-3726736968-409882640-1958551794-1000\MetacafeAgent.exe not found.

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.

"HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => Key not found.

Winsock: Catalog5 entry 000000000001\\LibraryPath  was set successfully to %SystemRoot%\system32\NLAapi.dll

"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000007" => Key deleted successfully.

catchme => Service deleted successfully.

C:\ProgramData\HitmanPro => Moved successfully.

C:\Toolbars.dat => Moved successfully.

C:\ProgramData\GlarySoft => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4745.exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\avg_avct_stb_all_2014_4335_welcomecmp.exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\avg_free_stb_all_2014_4744_cnet.exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\PCDiagnosisProTPSSetup.exe => Moved successfully.

C:\Users\savas.kyriakidis\AppData\Roaming\GlarySoft => Moved successfully.

C:\Users\savas.kyriakidis\AppData\Roaming\DiskDefrag => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\gu5setup (5).exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\gu5setup (4).exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\gu5setup (3).exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\gu5setup (2).exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\gu5setup (1).exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\gu5setup.exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\tall_150803173445318587.exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\tall_150803172000784607.exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\tall_140809374825884190.exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\tall_140809372042763201.exe => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\tall_140809371092783465.exe => Moved successfully.

C:\Program Files\AVG => Moved successfully.

C:\Users\savas.kyriakidis\Downloads\avg_remover_stf_x86_2014_4116.exe => Moved successfully.

"C:\ProgramData\GlarySoft" => File/Directory not found.

"C:\Users\savas.kyriakidis\AppData\Roaming\GlarySoft" => File/Directory not found.

C:\Users\savas.kyriakidis\Documents\ProcAlyzer Dumps => Moved successfully.

C:\ProgramData\SlimWare Utilities Inc => Moved successfully.

C:\Users\savas.kyriakidis\AppData\Local\SlimWare Utilities Inc => Moved successfully.

C:\Users\savas.kyriakidis\AppData\Local\Downloaded Installers => Moved successfully.

C:\Program Files\DriverUpdate => Moved successfully.

C:\ProgramData\TEMP => ":0B4227B4" ADS removed successfully.

C:\ProgramData\TEMP => ":DFC5A2B2" ADS removed successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FCAFF07B-D3AC-4A0C-A6E2-6C23DFC270C9}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FCAFF07B-D3AC-4A0C-A6E2-6C23DFC270C9}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B7983C11-5FD9-12B1-4EAA-DE223F2AD5D5}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C22BB22A-70B9-4AEA-B6E6-2234A457F078}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C22BB22A-70B9-4AEA-B6E6-2234A457F078}" => Key deleted successfully.

C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis) => Moved successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis)" => Key deleted successfully.

"C:\Program Files\SlimCleaner Plus" => File/Directory not found.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C22BB22A-70B9-4AEA-B6E6-2234A457F078}" => Key not found.

C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis) not found.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SlimCleaner Plus (Scheduled Scan - savas.kyriakidis)" => Key not found.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{788B04FA-AA4F-4BCC-9AAE-A2881E7E64E6}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{788B04FA-AA4F-4BCC-9AAE-A2881E7E64E6}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{510F6543-BD19-48A5-9E5E-D5E371879760}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{510F6543-BD19-48A5-9E5E-D5E371879760}" => Key deleted successfully.

C:\Windows\System32\Tasks\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon => Moved successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon" => Key deleted successfully.

"C:\Program Files\AVG" => File/Directory not found.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{510F6543-BD19-48A5-9E5E-D5E371879760}" => Key not found.

C:\Windows\System32\Tasks\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon not found.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG\PC Tuneup 2011\Integrator\Start On Rita Logon" => Key not found.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{30B9F70E-3CAE-49C3-9D96-BE89B7AA59AB}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{30B9F70E-3CAE-49C3-9D96-BE89B7AA59AB}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Time Trigger Test Task" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2343967C-C69F-44DE-8AA3-E9113A3466E5}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2343967C-C69F-44DE-8AA3-E9113A3466E5}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Security Center Update - 754758581" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1D455FF0-01E6-438C-A9D6-27C72AC03552}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1D455FF0-01E6-438C-A9D6-27C72AC03552}" => Key deleted successfully.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PC Performer" => Key deleted successfully.

 

=========  netsh winsock reset =========

 

Initialization Function InitHelperDll in NSHHTTP.DLL failed to start with error code 11003

 

Sucessfully reset the Winsock Catalog.

You must restart the computer in order to complete the reset.

 

 

========= End of CMD: =========

 

EmptyTemp: => Removed 200 MB temporary data.

 

 

The system needed a reboot. 

 

==== End of Fixlog ====

Link to post
Share on other sites
Naathim

Naathim

Posted
Posted

Very good :)
 
 
Update me about any remaining issues.

51c9d14017fa0-SecurityCheck.PNG Scan with Security Check

Please download Security Check by Screen317 and save it to your desktop.

  • Right-click on 51c9d14017fa0-SecurityCheck.PNG icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Follow onscreen instructions inside the black box. This scan won't take long.
  • Soon a notepad document called checkup.txt will open automaticaly.

Please include the content of that document.

Link to post
Share on other sites
jjoyner1985

jjoyner1985

Posted
  • Author
Posted

Here you go:

 Results of screen317's Security Check version 0.99.87  
 Windows Vista Service Pack 2 x86 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Adobe Reader 10.1.11 Adobe Reader out of Date!  
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast avastui.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 0 % 
````````````````````End of Log`````````````````````` 
 
About the line stating that Reader is out of date, I checked for updates from the program, and it claims that this version is the most up-to-date. I know Reader XI is out there, but Adobe doesn't seem to want to let me download it. If this isn't a serious concern, then just ignore this last part of my post.
Link to post
Share on other sites
jjoyner1985

jjoyner1985

Posted
  • Author
Posted

I'm afraid I'm not really sure what you are wanting, as your last post did not specify how you wanted me to update you about any remaining issues. I assume, because your last message consisted on a quote to your last reply yesterday concerning the Security Check log, that you want me to run that scan again. Here are the results.

 

Results of screen317's Security Check version 0.99.87 
 Windows Vista Service Pack 2 x86 (UAC is enabled) 
 Internet Explorer 9 
 Internet Explorer 8 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Adobe Reader 10.1.11 Adobe Reader out of Date! 
````````Process Check: objlist.exe by Laurent```````` 
 AVAST Software Avast AvastSvc.exe 
 AVAST Software Avast avastui.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0 %
````````````````````End of Log``````````````````````
 

As you can see, they are the same as my reply yesterday.

Link to post
Share on other sites
jjoyner1985

jjoyner1985

Posted
  • Author
Posted

So, just an update from me? No scan?

 

The system appears to be working much better now. The safer/codeidentifiers/0 section of the registry has not added back any restrictions on what applications can be run. No more Chrome auto-generating windows are appearing, pointed to an IP address.

 

Everything looks good now, in my opinion.

Link to post
Share on other sites
Naathim

Naathim

Posted
Posted

That's what I wanted to hear / read actually :)
 
51a5ce45263de-delfix.png Clean with DelFix
Please download DelFix by Xplode and save it to your desktop.

  • Right-click on 51a5ce45263de-delfix.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Ensure that Remove disinfection tools, Purge system restore and Reset system settings are checked.
  • Push Run.
  • When finished, it will display a notepad report.

Include it for my review.
Please also manually reboot your machine after posting your logfile.

Link to post
Share on other sites
jjoyner1985

jjoyner1985

Posted
  • Author
Posted

Here you are.

 

Deleted : C:\Users\savas.kyriakidis\Desktop\JRT.txt
Deleted : C:\Users\savas.kyriakidis\Downloads\ComboFix.exe
Deleted : C:\Windows\grep.exe
Deleted : C:\Windows\PEV.exe
Deleted : C:\Windows\NIRCMD.exe
Deleted : C:\Windows\MBR.exe
Deleted : C:\Windows\SED.exe
Deleted : C:\Windows\SWREG.exe
Deleted : C:\Windows\SWSC.exe
Deleted : C:\Windows\SWXCACLS.exe
Deleted : C:\Windows\Zip.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
 
~ Cleaning system restore ...
 
Deleted : RP #2081 [scheduled Checkpoint | 08/11/2014 02:11:41]
Deleted : RP #2082 [scheduled Checkpoint | 08/11/2014 15:01:42]
Deleted : RP #2083 [scheduled Checkpoint | 08/12/2014 10:45:08]
Deleted : RP #2084 [scheduled Checkpoint | 08/14/2014 02:36:25]
Deleted : RP #2086 [Tuneup Pro Thu, Aug 14, 14  17:59 | 08/14/2014 21:59:38]
Deleted : RP #2088 [Advanced-System Protector | 08/14/2014 23:31:34]
Deleted : RP #2089 [Removed SofTest | 08/15/2014 23:47:04]
Deleted : RP #2090 [Removed DriverUpdate | 08/16/2014 13:18:06]
Deleted : RP #2091 [Removed HTC Sync. | 08/16/2014 13:29:10]
Deleted : RP #2092 [Removed HTC Sync. | 08/16/2014 13:44:46]
Deleted : RP #2093 [Removed HTC BMP USB Driver. | 08/16/2014 14:02:17]
Deleted : RP #2095 [Advanced-System Protector | 08/16/2014 16:47:50]
Deleted : RP #2096 [installed AVG 2014 | 08/16/2014 21:58:06]
Deleted : RP #2097 [Removed SlimCleaner Plus | 08/16/2014 22:11:41]
Deleted : RP #2098 [Removed HTC Driver Installer. | 08/16/2014 22:14:50]
Deleted : RP #2099 [installed AVG 2014 | 08/17/2014 19:56:09]
Deleted : RP #2100 [installed AVG 2014 | 08/17/2014 19:59:04]
Deleted : RP #2101 [Removed AVG 2014 | 08/17/2014 20:03:04]
Deleted : RP #2102 [installed AVG 2011 | 08/17/2014 20:04:51]
Deleted : RP #2103 [installed AVG 2014 | 08/17/2014 21:08:16]
Deleted : RP #2104 [installed AVG 2014 | 08/17/2014 21:16:20]
Deleted : RP #2105 [Removed AVG 2014 | 08/17/2014 21:24:43]
Deleted : RP #2106 [installed AVG 2011 | 08/17/2014 21:26:10]
Deleted : RP #2108 [Advanced-System Protector | 08/19/2014 21:04:48]
Deleted : RP #2110 [Advanced-System Protector | 08/21/2014 01:40:12]
Deleted : RP #2111 [Checkpoint by HitmanPro | 08/23/2014 20:47:11]
Deleted : RP #2112 [Removed AVG 2011 | 08/26/2014 12:19:57]
Deleted : RP #2113 [Removed AVG 2011 | 08/26/2014 12:22:43]
Deleted : RP #2114 [scheduled Checkpoint | 08/27/2014 04:00:00]
Deleted : RP #2115 [Removed AVG 2011 | 08/27/2014 13:28:23]
Deleted : RP #2117 [avast! antivirus system restore point | 08/27/2014 14:51:04]
Deleted : RP #2118 [Removed Dell Dock | 08/27/2014 20:12:59]
Deleted : RP #2119 [Removed Java 6 Update 5 | 08/27/2014 20:28:20]
 
New restore point created !
 
~ Resetting system settings ... OK
 
########## - EOF - ##########
 
Thank you for all of your help. I will be donating.
Link to post
Share on other sites
Naathim

Naathim

Posted
Posted

I appreciate it :)



Below you will find my thoughts about securing your machine. Go ahead through it, you will benefit from some useful advice about safe computing.

 

Recommended reading:


icon_exclaim.gif MUST READ - security tips: Computer Security - a short guide to staying safer online.
icon_exclaim.gif MUST READ - general maintenance: What to do if your Computer is running slowly?




Recommended additional software:


icon_arrow.gif TFC - to clean unneeded temporary files.
icon_arrow.gif Malwarebytes' Anti-Malware - to scan your system from time to time in search for malware.
icon_arrow.gif Malwarebytes' Anti-Exploit - to prevent plenty of mostly exploited vulnerabilities.
icon_arrow.gif McShield - to prevent infections spread by removable media.
icon_arrow.gif CryptoPrevent - to secure yourself from very severe CryptoLocker infection.
icon_arrow.gif Unchecky - to prevent from installing additional foistware, implemented in legitimate installations.


Now if you have any other questions, feel free to ask me. Otherwise simply acknowledge my recommendations and this topic will be closed.




Minion-Bye-smaller.jpg


Stay safe,
Naat :)

Link to post
Share on other sites
jjoyner1985

jjoyner1985

Posted
  • Author
Posted

Sorry about the delay on replying. I'm in the process of leaving my current job and starting a new one. So, it's become very busy around here lately. Anyhow, I have pointed this thread out to the owner of the PC and emphasized the importance of your last post and the links therein. Also, I just completed the donation process. Thank you for your help.

 

Mods, you have the greenlight from me to close this thread.

Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.