Quantcast
Channel: Tech Support Guy - Virus & Other Malware Removal
Viewing all 4746 articles
Browse latest View live

slow and erratic laptop

June 10, 2015, 10:16 am
$
0
0
Can anyone advise on what causes my laptop ... ( Dell, running Windows 7) to operate slowly and freeze from time to time ?,I usually run a scan that shows some issues with Adware cookies, I clear these and also run Microsoft Security Essentials, but still have slow operation. Time Warner is my IP. How can I clear, or improve the operation ?.
Thank you for any and all advice.
Search

windows opening up all over desktop

June 10, 2015, 11:51 am
$
0
0
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz, Intel64 Family 6 Model 42 Stepping 7
Processor Count: 4
RAM: 8139 Mb
Graphics Card: Intel(R) HD Graphics Family, -250 Mb
Hard Drives: C: Total - 466146 MB, Free - 175546 MB;
Motherboard: Sony Corporation, VAIO
Antivirus: Microsoft Security Essentials, Updated and Enabled

I tried to download one app onto my desktop and got about 20 other programs that won't allow me to get rid of them. I'm guessing they are all viruses or malware! help - my day is now ruined and I cannot work! Nothing is running properly.

Michele

here is the log file:

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 3:06:18 PM, on 6/10/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)


Boot mode: Normal

Running processes:
C:\Users\Michelle\AppData\Local\Program Files\Amazon\MP3 Downloader

\AmazonMP3DownloaderHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Fitbit Connect\Fitbit Connect.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe
C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Users\Michelle\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Users\Michelle\AppData\Roaming\salesforce.com\Salesforce for Outlook\SfdcMsOl.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop

Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\Program Files (x86)\DDNi\Oasis\VAIO Messenger.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\RapidMediaConverter\RapidMediaConverterApp.exe
C:\Users\Michelle\AppData\Local\SmartWeb\SmartWebHelper.exe
C:\Users\Michelle\AppData\Local\SmartWeb\SmartWebApp.exe
C:\Program Files (x86)\Common Files\Umbrella\Umbrella208.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Michelle\AppData\Local\391FABCD-AA4E-664A-B135-466F529F4714\Runner.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Users\Michelle\AppData\Local\391FAB~1\Navigate\Navigate.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Michelle\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

http://start.iminent.com/?appId=0f14...e-8b012637a92c
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows

\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer,

optimized for Bing and MSN
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =

*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - (no file)
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files

\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:

\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files

(x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files

(x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files

(x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files

(x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage

Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application

Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files (x86)\Google\Google Desktop

Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [EEventManager] C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe
O4 - HKLM\..\Run: [MaxMenuMgr] "C:\Program Files (x86)\Seagate\SeagateManager\FreeAgent

Status\StxMenuMgr.exe"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin

\ismagent.lnk"
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client

\concentr.exe" /startup
O4 - HKLM\..\Run: [Fitbit Connect] "C:\Program Files (x86)\Fitbit Connect\Fitbit

Connect.exe" /autorun
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative

Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -

atboottime
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM

\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ZiperFly] "C:\Program Files (x86)\ZiperFly\ZiperFlyApp.exe"
O4 - HKLM\..\Run: [WinCheck] C:\Users\Michelle\AppData\Local\04860F00-1433943413-11DE-8BA1

-78843CE776B6\bnszDE1C.exe
O4 - HKLM\..\Run: [SmartWeb] C:\Users\Michelle\AppData\Local\SmartWeb\SmartWebHelper.exe
O4 - HKLM\..\Run: [gmsd_us_686] "C:\Program Files (x86)\gmsd_us_686\gmsd_us_686.exe"
O4 - HKLM\..\RunOnce: [Update] C:\Users\Michelle\AppData\Roaming\VOPackage\VOPackage.exe

/runonce
O4 - HKLM\..\RunOnce: [upgmsd_us_686.exe] C:\Users\Michelle\AppData\Local

\gmsd_us_686\upgmsd_us_686.exe -runonce
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Michelle\AppData\Local\Facebook\Update

\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Google Update] "C:\Users\Michelle\AppData\Local\Google\Update

\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [AmazonMP3DownloaderHelper] C:\Users\Michelle\AppData\Local\Program

Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet

Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [Regedit32] C:\Windows\system32\regedit.exe
O4 - HKCU\..\Run: [Fitbit Connect] "C:\Program Files (x86)\Fitbit Connect\Fitbit

Connect.exe" /autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet

Services\iCloudServices.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D767CAD71DA7DD1CDFD0D3EF6D1B23BA] "C:\Program

Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - Startup: DING!.lnk = C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe
O4 - Startup: Dropbox.lnk = Michelle\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Epson all-in-one Registration.lnk = E:\Common\EpsonReg\Epkick.exe
O4 - Startup: RapidMediaConverterApp.lnk = C:\Program Files (x86)\RapidMediaConverter

\RapidMediaConverterApp.exe
O4 - Startup: Salesforce for Outlook.lnk = Michelle\AppData\Roaming\salesforce.com

\Salesforce for Outlook\SfdcMsOl.exe
O4 - Startup: SmartWeb.lnk = Michelle\AppData\Local\SmartWeb\SmartWebHelper.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan

\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:

\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google

\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer

\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program

Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer

\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program

Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} -

C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:

\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared

\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared

\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: 55963676-2F5E-4BAF-AC28-CF26AA587566 - vpnweb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0AAFCB96-EDF3-4DC5-8B04-92736E8794F4}: NameServer

= 81.218.119.5,82.163.142.130
O17 - HKLM\System\CCS\Services\Tcpip\..\{D03747CE-6806-4EA9-8661-91C65DA7FCFF}: NameServer

= 81.218.119.5,82.163.142.130
O17 - HKLM\System\CS1\Services\Tcpip\..\{0AAFCB96-EDF3-4DC5-8B04-92736E8794F4}: NameServer

= 81.218.119.5,82.163.142.130
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files

(x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files

(x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\ProgramData\FlashBeat\FlashBeat32.dll C:\PROGRA~2\SearchProtect

\SearchProtect\bin\VC32Loader.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files

(x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated

- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe

Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files

(x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows

\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files

\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Search Protect Service (CltMngSvc) - Client Connect LTD - C:\Program Files

(x86)\SearchProtect\Main\bin\CltMngSvc.exe
O23 - Service: Coupon Printer Service (CouponPrinterService) - Coupons.com Inc. - C:

\Program Files (x86)\Coupons\CouponPrinterService.exe
O23 - Service: DCDhcpService - Atheros Communication Inc. - C:\Program Files\Sony\VAIO

Smart Network\WFDA\DCDhcpService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows

\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:

\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:

\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: Energy Server Service (ESRV_SVC) - Intel Corporation - C:\Program Files

\Sony\VAIO Care\ESRV\esrv_svc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows

\system32\fxssvc.exe (file missing)
O23 - Service: Fitbit Connect Service (Fitbit Connect) - Fitbit, Inc. - C:\Program Files

(x86)\Fitbit Connect\FitbitConnectService.exe
O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - C:

\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe
O23 - Service: GlobalUpdater - SIEN S.A. - C:\Program Files (x86)\Common Files\IMGUpdater

\IMGUpdater.exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) -

Google - C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files

(x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files

(x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google

\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation -

C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek

\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) -

Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IMService - Iminent - C:\Program Files (x86)\Common Files\Umbrella

\Umbrella208.exe
O23 - Service: Infonaut 1.10.0.14 Client Service (insvc_1.10.0.14) - Infonaut - C:\Program

Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe

(file missing)
O23 - Service: Template Flatbed Scanner (kysykiti) - Unknown owner - C:\Users\Michelle

\AppData\Local\04860F00-1433943552-11DE-8BA1-78843CE776B6\snsvEE03.tmp
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS)

- Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components

\LMS\LMS.exe
O23 - Service: lxqvbcbiws32 - Unknown owner - C:\Program Files\015\lxqvbcbiws32.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) -

McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe

(file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:

\Windows\system32\lsass.exe (file missing)
O23 - Service: Oasis2Service - Digital Delivery Networks, Inc. - C:\Program Files

(x86)\DDNi\Oasis2Service\Oasis2Service.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB

\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner -

C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:

\Windows\system32\locator.exe (file missing)
O23 - Service: Intel(R) System Behavior Tracker Collector Service (SampleCollector) - Intel

Corporation - C:\Program Files\Sony\VAIO Care\VCPerfService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows

\system32\lsass.exe (file missing)
O23 - Service: sBJdUnmvV - Useful Technology - C:\ProgramData\UxdxVE\sBJdUnmvV.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files

(x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:

\Windows\System32\snmptrap.exe (file missing)
O23 - Service: VAIO Content Importer (SOHCImp) - Sony Corporation - C:\Program Files

(x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O23 - Service: VAIO Device Searcher (SOHDs) - Sony Corporation - C:\Program Files

(x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:

\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:

\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:

\Windows\system32\sppsvc.exe (file missing)
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft

\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:

\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS)

- Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components

\UNS\UNS.exe
O23 - Service: User Energy Server Service (USER_ESRV_SVC) - Intel Corporation - C:\Program

Files\Sony\VAIO Care\ESRV\esrv_svc.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO

Event Service\VESMgr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:

\Windows\system32\lsass.exe (file missing)
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files

(x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony

Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony

Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation -

C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
O23 - Service: VCService - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows

\System32\vds.exe (file missing)
O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network

\VSNService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows

\system32\vssvc.exe (file missing)
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update\vuagent.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner -

C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:

\Windows\system32\wbengine.exe (file missing)
O23 - Service: Web Bar Service (wbsvc) (wbsvc) - Web Bar Media - C:\Program Files\WebBar

\wbsvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner -

C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) -

Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Technical Specifications NOT (wovelivy) - Unknown owner - C:\Users\Michelle

\AppData\Roaming\04860F00-1433957695-11DE-8BA1-78843CE776B6\nso285B.tmpfs
O23 - Service: Device Cut (xoperoze) - Unknown owner - C:\Users\Michelle\AppData\Roaming

\04860F00-1433957695-11DE-8BA1-78843CE776B6\jnst5AC6.tmp
O23 - Service: Subscription Clear (zedepory) - Unknown owner - C:\Users\Michelle\AppData

\Roaming\04860F00-1433957695-11DE-8BA1-78843CE776B6\hnsj7470.tmp
O23 - Service: ZiperFly Update Service - Unknown owner - C:\Program Files (x86)\ZiperFly

\ZiperFlySrv.exe

--
End of file - 22331 bytes

Need help for ransomware virus

June 10, 2015, 2:04 pm
$
0
0
I have a huge problem, my dads computer got infected by CTB-locker a ransomware but he made the mistake to restore his files to the same date his computer got infected, I removed the virus but, can't restore the files I've already tried checking older versions and shadowexplorer and differentent decrypting softwares, what can I do to retrieve the crypted data..?

Malwarebytes issue and others

June 10, 2015, 4:17 pm

Abnormal processor usage and very slow laptop

June 11, 2015, 3:45 am
$
0
0
Dear all, I am writing here because I am experiencing problems with my laptop since a few days. It worked absolutely fine, but lately the processor seems to go up to 100% usage quite frequently and without reason; everything is very slow and when I watch videos the sound is crackling and irregular. Looking at the task manager I see that the cpu is often used by system32 or the task manager but I cannot really figure out what is happening. It tends to change quite often and quickly. I fear that I might have caught a virus. I have AVG internet security installed and since I have added malwarebytes and superantispyware which have found a couple of adware but I nothing has improved. I would be very glad if you could help, thanks! My specs are: Laptop: MSI GP 602pe Windows 8.1 Pro (in French) 64 bit Processor: Intel Core i5-4210H CPU @ 2.90GHz with HD graphics 4600 RAM: 4Gb GPU: NVidia 840m Thanks for your help, Erpotti

HALP! Total Ad Performace takeover, serious lag, and pop unders

June 12, 2015, 7:42 am
$
0
0
Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to download and run the 64 bit version
  • Right click to run as administrator. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

Need help with friends computer

June 12, 2015, 8:36 am
$
0
0
can you tell us what is wrong
We are good here but not miracle workers and just posting a log without telling us the problem, doesn't give us anything to work on

Internet Explorer hijacked by alien browser

June 13, 2015, 1:21 am
Search

Need help with Cryptowall & Help_Decrypt.

June 13, 2015, 6:19 am
$
0
0
Hi, my laptop got invaded by Cryptowall last week, I've tried a few things already, but don't know if it had help at all, so I would like an expect to take a look what else can be done.

I'd found 3 HELP_DECRYPT files suddenly appeared on my desktop last Saturday, and then noticed some of my photos won't open. Then found my spreadsheets and pdf files won't open either. I'd quickly deleted the 3 files without even opening them and carried out a simple file search of these files, and found more than 800 of these files found its way all over. I'd deleted all these files into the recycle bin without a second thought. I'd then did an Avira scan, but it didn't find anything at all. I then tried to do a system restore, but I couldn't access any saved points more than a few weeks old. And these system restore points didn't help either, I still can't open my personal files.

I have since found out this is likely to be a Cryptowall 3.0 and chances of restoring my files myself are very low. I have since carried out scans using the Malwarebytes Anti-Malware, SuperAntiSpyware & the online ESET. And finally I thought to quarantine all my corrupted files then give the ShadowExplorer a go from bleebingcomputer.com. Unfortunately the ListCwall.exe couldn’t find the list of corrupted files that is supposed to be hidden in the Registry at all.

So any advice you can offer will be greatly appreciated, thanks in advance.

I have also enclosed a Hijack This log for you.

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows XP Professional, Service Pack 3, 32 bit
Processor: Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz, x86 Family 6 Model 15 Stepping 13
Processor Count: 2
RAM: 2037 Mb
Graphics Card: Mobile Intel(R) 965 Express Chipset Family, 256 Mb
Hard Drives: C: Total - 70001 MB, Free - 8965 MB; D: Total - 44461 MB, Free - 5520 MB;
Motherboard: Intel Corp., Base Board Product Name
Antivirus: Avira Desktop, Updated: No, On-Demand Scanner: Enabled

Attached Files
File Type: txt ListCWall.txt (1.2 KB)
File Type: log hijackthis.log (9.8 KB)

IE Browser Hijacked

June 13, 2015, 6:52 am
$
0
0
That would be the best thing to do
the copy the program to desktop on the affected computer

Unable to remove CoudScout! Please Help

June 13, 2015, 7:32 am
$
0
0
Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to download and run the 64 bit version
  • Right click to run as administrator. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

Unable to access internet via WiFi after multiple malware removals (v2)

June 13, 2015, 9:29 am
$
0
0
My issue regarding malware removal almost mirrors the posting/fix by Kevinf80 when helping HENDUBZ on 10/20/14. The ill computer is HP Media Center (m7334n) upgraded from XP to Windows 7.I believe it might have started from the MyOSProtect.dll virus. Log below xferd via my USB drive. Thanks so much for your expertise. I hope I have the same success at HENDUBZ!

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 32 bit
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+, x64 Family 15 Model 43 Stepping 1
Processor Count: 2
RAM: 3006 Mb
Graphics Card: ATI RADEON XPRESS 200 Series, 64 Mb
Hard Drives: C: Total - 455272 MB, Free - 326950 MB;
Motherboard: MSI, AMETHYST-M
Antivirus: None

Extremely slow overall speeds and internet crashing

June 13, 2015, 1:40 pm
$
0
0
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Genuine Intel(R) CPU U4100 @ 1.30GHz, Intel64 Family 6 Model 23 Stepping 10
Processor Count: 2
RAM: 3002 Mb
Graphics Card: Mobile Intel(R) 4 Series Express Chipset Family, 1309 Mb
Hard Drives: C: Total - 292854 MB, Free - 236661 MB;
Motherboard: Gateway, Base Board Product Name
Antivirus: ESET NOD32 Antivirus 4.0, Disabled

What's up Tech Guy,

This is my second time using you guys, great service. I'm just experiencing really slow overall speed to my laptop. Along with Firefox constantly crashing along with Adobe Flash. I use the free versions of Maleware Bytes and SuperAnti-Spyware and Advanced System Care 8 for my protection. They're not really helping at the moment.

Thank you in advance! Plz let me know if I need to do anything else before we begin.

Windows 7 Laptop Hijacked - Help please!

June 14, 2015, 12:48 am
$
0
0
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Starter, Service Pack 1, 32 bit
Processor: Intel(R) Atom(TM) CPU N2600 @ 1.60GHz, x64 Family 6 Model 54 Stepping 1
Processor Count: 4
RAM: 2036 Mb
Graphics Card: Intel(R) Graphics Media Accelerator 3600 Series, 5 Mb
Hard Drives: C: Total - 291830 MB, Free - 204283 MB;
Motherboard: Acer, JE01_CT
Antivirus: McAfee Anti-Virus and Anti-Spyware, Updated and Enabled

I hardly use the laptop and when I do I use it for the most basic of things: Word, Excel, Hotmail. Help please. Thanks

Virus shut off programs Need help!!

June 14, 2015, 9:12 am
$
0
0
Hi I have a Dell Vostro 400 Desktop with windows vista basic 32 bit. I was told to come over here from networking because I might have a possible virus on the Desktop that shut down my programs in Services.msc..
Please look at http://forums.techguy.org/networking...pped-help.html

I would appreciate any help you can offer right now.

Thanks so much
Search

pop ups and "gamingcandy"

June 14, 2015, 10:09 am
$
0
0
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 8.1 with Bing, 64 bit
Processor: AMD E1-2100 APU with Radeon(TM) HD Graphics, AMD64 Family 22 Model 0 Stepping 1
Processor Count: 2
RAM: 3554 Mb
Graphics Card: AMD Radeon HD 8210, 512 Mb
Hard Drives: C: Total - 455270 MB, Free - 380418 MB; D: Total - 20624 MB, Free - 1996 MB;
Motherboard: Hewlett-Packard, 2330
Antivirus: Windows Defender, Disabled

Hi, thanks for your time. I am having some really annoying popups and many from something called "gamingcandy" which pops up as a little box at the bottom.

The only additional steps I have taken are to back up my files.

Thank you

Pop Ups in all Browsers

June 14, 2015, 2:01 pm
$
0
0
Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by DEBBIE at 2015-06-14 15:39:40
Running from C:\Users\DEBBIE\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3434724080-3493510173-3397833782-500 - Administrator - Disabled)
DEBBIE (S-1-5-21-3434724080-3493510173-3397833782-1001 - Administrator - Enabled) => C:\Users\DEBBIE
Guest (S-1-5-21-3434724080-3493510173-3397833782-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3434724080-3493510173-3397833782-1009 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Total Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Total Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
FW: Kaspersky Total Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACDSee Pro 7 (64-bit) (HKLM\...\{D2A6EC54-CB46-49E4-A6FC-A9179F9D9D12}) (Version: 7.1.164 - ACD Systems International Inc.)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (HKLM-x32\...\Adobe Photoshop Elements 11) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
aiofw (x32 Version: 1.00.3001.0000 - Eastman Kodak Company) Hidden
aioocr (x32 Version: 1.00.0000 - kodak) Hidden
aioscnnr (x32 Version: 1.00.5001.0000 - Eastman Kodak Company) Hidden
Amazon 1Button App for Windows Taskbar (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.2 - Amazon)
AMD Catalyst Install Manager (HKLM\...\{2D850140-7900-64E9-D6E3-489A28BD569D}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM-x32\...\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft Panorama Maker 6 (HKLM-x32\...\{DABFD34E-BE68-4BC6-9254-5D7A7FF76B99}) (Version: 6.0.8.85 - ArcSoft)
Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.14.1.0 - Ask.com) <==== ATTENTION
Ask Toolbar Updater (HKU\S-1-5-21-3434724080-3493510173-3397833782-1001\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.0.20007 - Ask.com) <==== ATTENTION
Avery Design & Print (HKLM-x32\...\Avery Design & Print 1.0.0) (Version: 1.0.0 - Avery Products Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CCScore (x32 Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
center (x32 Version: 1.00.6001.0000 - Eastman Kodak Company) Hidden
CenturyLink Installer (HKLM-x32\...\{C96FF998-45BD-411E-9253-B7F2660FE280}) (Version: 1.0 - CenturyLink, Inc.)
CinemaP-1.9cV12.04 (HKLM-x32\...\CinemaP-1.9cV12.04) (Version: 1.36.01.22 - Cinema PlusV12.04) <==== ATTENTION
Citrix Online Launcher (HKLM-x32\...\{77463C86-BB3A-426E-A6C2-06B4D28C250F}) (Version: 1.0.223 - Citrix)
Color Schemer Studio (HKLM-x32\...\Color Schemer Studio_is1) (Version: Studio v1.51 - Color Schemer)
Core FTP LE 2.1 (HKLM-x32\...\Core FTP LE 2.1) (Version: - )
CP_AtenaShokunin1Config (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CP_CalendarTemplates1 (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
cp_LightScribeConfig (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
cp_OnlineProjectsConfig (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CP_Package_Basic1 (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CP_Package_Variety1 (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CP_Package_Variety2 (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CP_Package_Variety3 (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CP_Panorama1Config (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
cp_PosterPrintConfig (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
cp_UpdateProjectsConfig (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CueTour (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.4 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.4 - Dell Inc.)
Dell Customer Connect (HKLM-x32\...\{FEFDCDCF-C49C-45D0-AAF8-5345858ADEC7}) (Version: 1.2.1.0 - Dell Inc.)
Dell Data Vault (Version: 4.2.2.0 - Dell Inc.) Hidden
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.0.6584.81 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.0.3.60494 - Dell)
Dell Update (HKLM-x32\...\{3FB000F3-7444-41C1-A0A6-53E8FD0B7D9C}) (Version: 1.6.1007.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
DELLOSD (HKLM-x32\...\{B0F29C6D-C7A9-40AC-9658-921961818E2B}) (Version: 1.0.0.17 - DELL)
DeLorme Send To GPS 1.2 (HKLM-x32\...\{0F60FD8E-3E58-4F8E-BF2C-DFA4C9987AE2}_is1) (Version: - DeLorme Publishing)
Destinations (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
DIRECTV Player (HKLM-x32\...\{437f5443-c052-432c-b1e7-abd9bc5cabdb}) (Version: 11.0 - DIRECTV)
Dropbox (HKU\S-1-5-21-3434724080-3493510173-3397833782-1001\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Elements 11 Organizer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
EPSON Artisan 710 Series Printer Uninstall (HKLM\...\EPSON Artisan 710 Series) (Version: - SEIKO EPSON Corporation)
EPSON Artisan 710 Series Printer Uninstall (HKLM-x32\...\EPSON Artisan 710 Series) (Version: - SEIKO EPSON Corporation)
Epson Event Manager (HKLM-x32\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 2.30.01 - SEIKO EPSON Corporation)
Epson Print CD (HKLM-x32\...\{D16A31F9-276D-4968-A753-FFEAC56995D0}) (Version: 2.00.00 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4h - SEIKO EPSON CORPORATION)
EpsonNet Setup (HKLM-x32\...\{FFFAE01B-466F-4C07-9821-A94FD753BDDA}) (Version: 3.1c - SEIKO EPSON CORPORATION)
ESSBrwr (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESSCDBK (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESScore (x32 Version: 6.04.0000.0003 - EASTMAN KODAK Company) Hidden
ESSgui (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESSini (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESSPCD (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESSSONIC (x32 Version: 6.4.0000.0001 - EASTMAN KODAK Company) Hidden
ESSTOOLS (x32 Version: 5.00.0000.0004 - EASTMAN KODAK Company) Hidden
essvatgt (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
Evernote v. 5.8.3 (HKLM-x32\...\{404B3FB8-A820-11E4-83FC-00163E98E7D6}) (Version: 5.8.3.6507 - Evernote Corp.)
Families Sync (HKLM-x32\...\{2AF0EAAB-BFD0-47CD-9CB5-D4B28081C7E2}) (Version: 2.1.3 - TelGen)
FreeAgent Go Tools (HKLM-x32\...\InstallShield_{ECD43B7A-CB3B-4AF8-91F6-C460A575E411}) (Version: 1.01.0045 - Seagate)
FreeAgent Go Tools (x32 Version: 1.01.0045 - Seagate) Hidden
FullDPAppQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{10B3936F-0E93-4431-8E7B-3FEA5DAC88C3}) (Version: 2.6.1 - Garmin Ltd or its subsidiaries)
Garmin Trip and Waypoint Manager v5 (HKLM-x32\...\{414A373B-59DF-4102-94CA-9FE9A74CBDDA}) (Version: 5.0.0.0 - Garmin Ltd or its subsidiaries)
GemMaster Mystic (HKLM-x32\...\12133444-BF36-4d4e-B7FB-A3424C645DE4) (Version: - )
GenSmarts (HKLM-x32\...\GenSmarts_is1) (Version: - Underwood Innovations)
Google Chrome (HKU\S-1-5-21-3434724080-3493510173-3397833782-1001\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
GoToMeeting 7.2.0.2759 (HKU\S-1-5-21-3434724080-3493510173-3397833782-1001\...\GoToMeeting) (Version: 7.2.0.2759 - CitrixOnline)
GSAK 7.7.3.53 (Final) (HKLM-x32\...\GSAK_is1) (Version: - CWE computer services)
H&R Block Deluxe + Efile + State 2013 (HKLM-x32\...\{EDE796DE-0A72-464D-9D21-F04BC41A092B}) (Version: 13.05.6502 - HRB Technology, LLC.)
H&R Block Deluxe + Efile + State 2014 (HKLM-x32\...\{BDA77C08-60A6-4AAB-B5A9-849ECF399A49}) (Version: 14.05.6401 - HRB Technology, LLC.)
H&R Block Iowa 2013 (HKLM-x32\...\{30A6A2A7-7B5B-4595-98B4-6B6D3F376531}) (Version: 1.13.3401 - HRB Technology, LLC.)
H&R Block Iowa 2014 (HKLM-x32\...\{4B90D57B-133C-4D29-8C0B-2408BCB1E2C6}) (Version: 1.14.3101 - HRB Technology, LLC.)
Help_CTR (x32 Version: 1.00.7000.000 - Eastman Kodak Company) Hidden
helptut (x32 Version: 1.00.5000.0000 - kodak) Hidden
helpug (x32 Version: 1.00.1000.0000 - kodak) Hidden
Highlight Viewer (Windows Live Toolbar) (x32 Version: 03.01.0146 - Microsoft Corporation) Hidden
HPPhotoSmartExpress (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
HpSdpAppCoreApp (x32 Version: 3.00.0000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
InstantShareDevices (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
JustCloud (HKLM-x32\...\JustCloud) (Version: - JustCloud)
JustCloud 1.0.0 (HKLM\...\JustCloud) (Version: 1.0.0 - JustCloud)
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.361 - Kaspersky Lab)
Kaspersky Total Security (x32 Version: 15.0.2.361 - Kaspersky Lab) Hidden
kgcbaby (x32 Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcbase (x32 Version: 5.03.0000.0004 - EASTMAN KODAK Company) Hidden
kgchday (x32 Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgchlwn (x32 Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcinvt (x32 Version: 5.03.0000.0003 - EASTMAN KODAK Company) Hidden
kgckids (x32 Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcmove (x32 Version: 5.03.0000.0003 - EASTMAN KODAK Company) Hidden
kgcvday (x32 Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
ksdip (x32 Version: 1.00.0000.0004 - Eastman Kodak Company) Hidden
Legacy 8.0 (HKLM-x32\...\Legacy 8.0) (Version: 8.0 - Millennia Corporation)
LightScribe 1.4.105.1 (x32 Version: 1.4.105.1 - http://www.lightscribe.com) Hidden
Map Button (Windows Live Toolbar) (x32 Version: 03.01.0146 - Microsoft Corporation) Hidden
MapCreate U.S.A Hunting w/ Topo 6.3 (HKLM-x32\...\{75139A83-2BC0-4531-B584-E4C123C0BC8C}) (Version: 6.3 - )
Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4719.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3434724080-3493510173-3397833782-1001\...\OneDriveSetup.exe) (Version: 17.3.5860.0512 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
netbrdg (x32 Version: 6.03.0001.0002 - EASTMAN KODAK Company) Hidden
NETGEAR A6200 Genie (HKLM-x32\...\{638CBDD4-5014-44D1-930A-1E5AC6083542}) (Version: 1.0.0.0 - NETGEAR)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.0 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.8.3 - Nikon)
Octoshape Streaming Services (HKU\S-1-5-21-3434724080-3493510173-3397833782-1001\...\Octoshape Streaming Services) (Version: - Octoshape ApS)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
OfotoXMI (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
OGA Notifier 2.0.0048.0 (x32 Version: 2.0.0048.0 - Microsoft Corporation) Hidden
OptionalContentQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
PCmover Professional (HKLM-x32\...\{6B3AE7E8-7208-459E-8FE3-BB1AC57235B7}) (Version: 7.00.626.0 - Laplink Software, Inc.)
Pdf995 (installed by H&R Block) (HKLM-x32\...\Pdf995) (Version: - )
PdfEdit995 (installed by H&R Block) (HKLM-x32\...\PdfEdit995) (Version: - )
PhotoGallery (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.4.16 - Nikon)
PocketCloud (HKLM-x32\...\{AAF1E996-6AE6-4684-88A8-41F4E98E2899}) (Version: 2.6.21 - Wyse Technology)
PSE11 STI Installer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Qualcomm Atheros Communications)
Quicken 2013 (HKLM-x32\...\{034DD4BB-F0D6-4ECF-B064-8E39E3EF7076}) (Version: 22.1.12.7 - Intuit)
Quicken WillMaker Plus 2013 (HKLM-x32\...\{8065044B-2AF3-434E-A6E2-B7C60CDB978B}) (Version: 1.0.0.0 - Nolo)
Qwest QuickAssist Desktop Tools (HKLM-x32\...\{A63E18AC-B504-4045-AFE6-A279BBABB988}) (Version: 23 - SupportSoft)
RandMap (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Seagate Manager Installer (HKLM-x32\...\InstallShield_{E6F019F1-DFB6-4853-A87D-6E31624755A9}) (Version: 2.02.0109 - Seagate)
Seagate Manager Installer (x32 Version: 2.02.0109 - Seagate) Hidden
Second Site 5 (HKLM-x32\...\Second Site 5) (Version: 5.1 - )
SFR (x32 Version: 6.04.0000.0001 - Eastman Kodak Company) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHASTA (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
skin0001 (x32 Version: 6.04.0000.0004 - EASTMAN KODAK Company) Hidden
SkinsHP1 (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
SKINXSDK (x32 Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
SlideShow (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
SlideShowMusic (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
Smart Menus (Windows Live Toolbar) (x32 Version: 03.01.0146 - Microsoft Corporation) Hidden
SnapDo (HKLM-x32\...\SnapDo8b4b102e-3f23-4af9-91d5-eea54735d43a) (Version: 2.2.0315.1743 - ReSoft LTD.)
Sonic_PrimoSDK (x32 Version: 70.0.170.000 - Hewlett-Packard) Hidden
Splashtop Software Updater (HKLM-x32\...\Splashtop Software Updater) (Version: 1.5.6.15 - Splashtop Inc.)
Splashtop Streamer (HKLM-x32\...\{B7C5EA94-B96A-41F5-BE95-25D78B486678}) (Version: 2.5.5.4 - Splashtop Inc.)
staticcr (x32 Version: 6.04.0000.0005 - EASTMAN KODAK Company) Hidden
Symantec Technical Support Web Controls (HKLM-x32\...\{9743AF47-B746-4324-B4C4-512E67D04370}) (Version: 3.5.1 - Symantec Corporation)
The Master Genealogist v8 (HKLM-x32\...\{4350AE2E-967A-48FC-B364-8937E391C597}) (Version: 8.08.0000 - Wholly Genes Software)
The Master Genealogist v9 (HKLM-x32\...\{096FBCE1-9FE5-4400-966D-81AFA00368A2}) (Version: 9.05.0000 - Wholly Genes Software)
TMG Utility (HKLM-x32\...\TMG Utility) (Version: See the properties of the "tmgu.exe" file - )
TomTom HOME (HKLM-x32\...\{99072AB4-D795-44D5-9D65-E3C9F8322C97}) (Version: 2.9.7 - TomTom)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
tooltips (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
Unload (x32 Version: 7.0.0 - Hewlett-Packard) Hidden
ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.8.3 - Nikon)
VPRINTOL (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinZip 19.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E7}) (Version: 19.0.11294 - WinZip Computing, S.L. )
WIRELESS (x32 Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Citrix\GoToMeeting\2128\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{E86236DE-9BD2-42b7-86F6-A829D8EC768C}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\DIRECTV Player\win64\npPlayerPlugin64.dll (Cisco)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileS yncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3434724080-3493510173-3397833782-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\DEBBIE\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

==================== Restore Points =========================

25-05-2015 06:53:34 Scheduled Checkpoint
03-06-2015 03:50:19 Scheduled Checkpoint
06-06-2015 16:21:02 Dell Update: Dell Customer Connect
09-06-2015 16:25:07 Windows Update
12-06-2015 07:23:11 Installed Families Sync.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 08:25 - 2013-08-22 08:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0714D485-1D68-4EE1-9A4C-28AC6542977F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3434724080-3493510173-3397833782-1001UA => C:\Users\DEBBIE\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {0CF97B05-804F-458B-825D-31291BEB16C1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {104B375E-6A8D-45BF-9476-7FA83ADFC412} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-03-20] (PC-Doctor, Inc.)
Task: {13052C03-988D-4D58-8380-F5CC69D80701} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-01] (Google Inc.)
Task: {14848AE7-456B-49FC-8840-AE079FBE7032} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DELL-PC-DEBBIE Dell-PC => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2015-03-10] (Microsoft Corporation)
Task: {16990156-FC51-471A-BF8C-5D1D0B2A4E8D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
Task: {3749FC26-635A-41AC-9511-FE5D468C4579} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-15] (Microsoft Corporation)
Task: {383DB385-0CF5-4D7F-9581-4884E9AB3DD8} - System32\Tasks\G2MUpdateTask-S-1-5-21-3434724080-3493510173-3397833782-1001 => C:\Users\DEBBIE\AppData\Local\Citrix\GoToMeeting\2759\g2mupdate.exe [2015-05-31] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {41A348A0-4847-4CC2-ACB7-102A99DBD834} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {453597EE-6D51-480E-B7F6-06E2404879AF} - System32\Tasks\Google Software Updater => C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-02-01] (Google)
Task: {4A677CF3-0552-4D50-B082-DD23FE978F5E} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-04-10] (Dell Inc.)
Task: {59D95944-0286-4126-BBC1-333A3780BC2C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3434724080-3493510173-3397833782-1001Core => C:\Users\DEBBIE\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {5A6F0A04-1E00-4C5D-80CB-F6A0378F0204} - System32\Tasks\PocketCloud => C:\Program
Task: {6309478C-58A5-4C42-920A-12720D91BC54} - System32\Tasks\its_in_da_game_helper_service => C:\Program Files (x86)\Its In Da Game\its_in_da_game_helper_service.exe [2015-05-28] ()
Task: {73F626FC-47FA-422B-B680-A67502886412} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {74CD1E4C-6F73-43EB-BE07-2E9F6A5A8230} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {84BDDEFA-1FB0-43D2-BD0D-1C768E3E6491} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {88FBD21F-BAE1-4C40-8500-A9335B9BD390} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-01] (Google Inc.)
Task: {90F3D55D-191A-468F-9B0D-A5B581C717CE} - System32\Tasks\PocketCloudUpdater => C:\Program
Task: {9781D193-71E7-4780-A903-18C36918F6CB} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
Task: {9FAA1DE2-FF58-4170-9F90-70520920DAB2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {A8EA6443-461A-4F75-A9D3-8686811A0395} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-09] (Adobe Systems Incorporated)
Task: {AA2724A9-422A-496C-BA4C-287D2C3B1B9A} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)
Task: {B2196280-1BDF-486D-9F52-ED42AA81FD3E} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Debjrgnsn@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-06-16] (Adobe Systems Incorporated)
Task: {B22C8893-3339-443B-8C31-BCF56289F396} - System32\Tasks\PocketCloudVirtualChannel => C:\Program Files (x86)\Wyse\PocketCloud Windows Companion\WPCRDPVirtualChannelServer.exe
Task: {C7491998-8312-4CD8-BFBB-2B062B15E9AB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C7E7C169-ED56-4D64-9FC6-20F56BE620CC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {CE6912B8-FE40-44BA-A728-B23E251D0A83} - System32\Tasks\G2MUploadTask-S-1-5-21-3434724080-3493510173-3397833782-1001 => C:\Users\DEBBIE\AppData\Local\Citrix\GoToMeeting\2759\g2mupload.exe [2015-05-31] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {D0A78E71-8532-41A3-AFE3-1C8CC0194E97} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2012-01-03] () <==== ATTENTION
Task: {D157791B-C3D3-4209-A7D5-F2DBE11BCE00} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3434724080-3493510173-3397833782-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {DCECCDD7-A968-4EC3-86C8-423132391454} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DEBBIE-PC-DEBBIE Debbie-PC => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2015-03-10] (Microsoft Corporation)
Task: {DEE405A1-80EC-49EA-8F1D-F6E3EA90A608} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-03-20] (PC-Doctor, Inc.)
Task: {EB75E724-69C4-4031-BD33-A2B00CE7136C} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)
Task: {EF7E6809-6FC7-499F-B14D-4A48B36BBDC6} - System32\Tasks\LaunchApp => C:\Program Files (x86)\JustCloud\JustCloud.exe [2015-05-21] ()
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3434724080-3493510173-3397833782-1001.job => C:\Users\DEBBIE\AppData\Local\Citrix\GoToMeeting\2759\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3434724080-3493510173-3397833782-1001.job => C:\Users\DEBBIE\AppData\Local\Citrix\GoToMeeting\2759\g2mupload.exe
Task: C:\WINDOWS\Tasks\Google Software Updater.job => C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3434724080-3493510173-3397833782-1001Core.job => C:\Users\DEBBIE\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3434724080-3493510173-3397833782-1001UA.job => C:\Users\DEBBIE\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\its_in_da_game_helper_service.job => C:\Program Files (x86)\Its In Da Game\its_in_da_game_helper_service.exe

==================== Loaded Modules (Whitelisted) ==============

2014-03-19 12:40 - 2012-04-26 15:51 - 00040448 _____ () C:\WINDOWS\System32\pdf995mon64.dll
2014-04-13 05:53 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-10-16 19:20 - 2012-08-01 14:03 - 00073728 _____ () C:\Program Files (x86)\DELL\DELLOSD\DellOSDService.exe
2015-03-26 15:40 - 2015-03-26 15:40 - 00085504 _____ () C:\Users\DEBBIE\AppData\Local\RemoteSaver\RemoteSaver.exe
2013-10-16 19:30 - 2012-04-24 21:43 - 00254512 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2015-03-26 15:40 - 2015-03-26 15:40 - 01051136 _____ () C:\Users\DEBBIE\AppData\Local\RemoteSaver\RemoteSaver_run.exe
2013-06-21 16:36 - 2012-07-27 12:05 - 00053536 _____ () C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe
2015-05-28 11:27 - 2015-05-28 11:27 - 00191696 _____ () C:\Program Files (x86)\Its In Da Game\its_in_da_game_helper_service.exe
2015-03-20 06:42 - 2015-01-27 10:29 - 08898720 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-06-21 21:46 - 2013-06-21 21:46 - 00016176 _____ () C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe
2013-06-21 21:35 - 2013-06-21 21:35 - 00032256 _____ () C:\Program Files (x86)\Wyse\PocketCloud\AetherServiceLib.dll
2013-06-21 21:31 - 2013-06-21 21:31 - 00035840 _____ () C:\Program Files (x86)\Wyse\PocketCloud\AetherHelperLib.dll
2013-10-04 00:42 - 2013-10-04 00:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-08-08 16:11 - 2012-08-08 16:11 - 00384128 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ContactsApi.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-02-24 04:45 - 2015-02-24 04:45 - 00179200 _____ () C:\Program Files (x86)\ProductUI\Startup.exe
2014-09-16 14:51 - 2014-09-16 14:51 - 01387880 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\NDSPCShowServer.exe
2013-09-19 17:45 - 2015-05-21 07:50 - 02499520 _____ () C:\Program Files (x86)\JustCloud\JustCloud.exe
2013-09-19 17:37 - 2015-05-21 07:49 - 01439232 _____ () C:\Program Files (x86)\JustCloud\Shared Stack.dll
2013-09-19 17:37 - 2015-05-21 07:46 - 00012288 _____ () C:\Program Files (x86)\JustCloud\GetText.dll
2015-05-25 09:06 - 2015-05-21 07:46 - 00044032 _____ () C:\Program Files (x86)\JustCloud\UIKit.dll
2013-09-19 17:37 - 2015-05-21 07:46 - 00191488 _____ () C:\Program Files (x86)\JustCloud\MPCBClient.dll
2015-05-25 09:06 - 2015-05-21 07:45 - 00060928 _____ () C:\Program Files (x86)\JustCloud\LinqBridge.dll
2015-05-25 09:06 - 2015-05-21 07:45 - 00270336 _____ () C:\Program Files (x86)\JustCloud\AlphaFS.dll
2014-11-15 21:47 - 2014-11-15 21:47 - 01459712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI\4bd80968bf6662528 41ca7792faaff11\Windows.UI.ni.dll
2013-09-19 17:45 - 2015-05-21 07:50 - 00057768 _____ () C:\Program Files (x86)\JustCloud\BackupStack.exe
2015-05-25 09:06 - 2015-05-21 07:45 - 00236032 _____ () C:\Program Files (x86)\JustCloud\websocket-sharp.dll
2013-10-14 12:07 - 2013-11-21 18:22 - 00484880 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-12-23 16:54 - 2014-12-23 16:54 - 01272616 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\kpcengine.2.3.dll
2015-03-26 15:40 - 2015-03-26 15:40 - 02199552 _____ () C:\Users\DEBBIE\AppData\Local\RemoteSaver\RemoteSaver_run.dll
2015-03-26 15:40 - 2015-03-26 15:40 - 01819136 _____ () C:\Users\DEBBIE\AppData\Local\RemoteSaver\ursqu.dll
2014-09-16 08:35 - 2014-09-16 08:35 - 00211456 _____ () C:\Program Files (x86)\ProductUI\Agent.Communication.EventsRelayProxy.dll
2014-09-16 14:51 - 2014-09-16 14:51 - 11475296 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\PCShowServer.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 00339296 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\ndsLogStore.dll
2014-09-16 14:51 - 2014-09-16 14:51 - 02948448 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\DrmSingleton.dll
2014-09-16 14:51 - 2014-09-16 14:51 - 02106728 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\DiscoveryManager.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 00689000 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\libgstreamer-0.10.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 00205672 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\libgstbase-0.10.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 00060272 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\libgstinterfaces-0.10.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 00043880 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\libgstvideo-0.10.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 00044896 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\libgstapp-0.10.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 01403224 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\libxml2-2.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 00091976 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\z.dll
2014-09-16 14:52 - 2014-09-16 14:52 - 08296288 _____ () C:\Users\DEBBIE\AppData\Local\DIRECTV Player\gsttspplugin.dll
2007-09-19 05:43 - 2007-12-11 13:44 - 00338944 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\Kfx.dll
2007-09-19 05:41 - 2007-12-11 13:44 - 00257536 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\AppCore.dll
2007-09-19 05:39 - 2007-12-11 13:44 - 00343552 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\Atlas.dll
2006-12-06 23:19 - 2007-12-11 13:44 - 00013824 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\MEshim.dll
2007-09-19 05:39 - 2007-12-11 13:44 - 00233472 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\SpiffyExt.dll
2007-09-19 05:56 - 2007-12-11 13:44 - 00231424 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\VistaControls.esx
2007-09-19 05:36 - 2007-12-11 13:44 - 00086016 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\LocAcqMod.dll
2007-09-19 05:56 - 2007-12-11 13:44 - 00077312 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\DXRawFormatHandler.esx
2007-09-19 05:33 - 2007-12-11 13:44 - 00062464 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\DibLibIP.dll
2006-03-07 11:05 - 2007-12-11 13:44 - 01564672 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\AreaIFDLL.dll
2007-09-19 06:06 - 2007-12-11 13:44 - 00675840 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\ESEmail.esx
2007-09-19 05:43 - 2007-12-11 13:44 - 00084480 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\keml40.dll
2007-09-19 05:36 - 2007-12-11 13:44 - 00114176 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\kpries40.dll
2007-09-19 06:00 - 2007-12-11 13:44 - 01064448 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\ESSkin.esx
2006-12-20 16:32 - 2007-12-11 13:44 - 00770048 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\SkinuxIm.dll
2006-12-21 12:47 - 2007-12-11 13:44 - 00430080 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\SkinuxFF.dll
2006-12-21 12:48 - 2007-12-11 13:44 - 00495616 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\SkinuxProc.dll
2006-12-20 16:32 - 2007-12-11 13:44 - 00835584 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\SkinuxBase.dll
2006-12-21 12:47 - 2007-12-11 13:44 - 02052096 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\SkinuxCmp.dll
2006-12-21 12:48 - 2007-12-11 13:44 - 00786432 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\SkinuxXML2.dll
2007-02-12 10:54 - 2007-12-11 13:44 - 01339392 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\SkinuxCommon.dll
2007-09-19 05:38 - 2007-12-11 13:44 - 00117760 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\IStorageMediaStore.esx
2007-09-19 05:56 - 2007-12-11 13:44 - 00172032 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\Pcd.esx
2007-09-19 05:53 - 2007-12-11 13:44 - 00052224 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\KPCDInterface.dll
2007-09-19 05:53 - 2007-12-11 13:44 - 00143360 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\VPrintOnlineHelper40.dll
2007-09-19 05:36 - 2007-12-11 13:44 - 00082432 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\UpdateChecker.esx
2007-09-19 03:59 - 2007-12-11 13:44 - 00010240 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\LocUpdateCheck.dll
2007-09-19 06:16 - 2007-12-11 13:44 - 00339968 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\VistaAdapter.esx
2007-09-19 06:04 - 2007-12-11 13:44 - 00096256 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\VistaCDBackup.esx
2007-09-19 06:06 - 2007-12-11 13:44 - 00307200 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\VistaPrintOnline.esx
2007-09-19 05:55 - 2007-12-11 13:44 - 00688128 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\VPrintOnline.dll
2007-09-19 06:15 - 2007-12-11 13:44 - 00466944 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\Escom.dll
2007-09-19 05:37 - 2007-12-11 13:44 - 00044544 _____ () C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\LocCamBack.dll
2015-06-09 21:00 - 2015-06-05 13:22 - 01281864 _____ () C:\Users\DEBBIE\AppData\Local\Google\Chrome\Application\43.0.2357.124\libgl esv2.dll
2015-06-09 21:00 - 2015-06-05 13:22 - 00080712 _____ () C:\Users\DEBBIE\AppData\Local\Google\Chrome\Application\43.0.2357.124\libeg l.dll
2015-06-14 15:30 - 2015-06-14 15:30 - 00043008 _____ () c:\users\debbie\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpodvgqr.dll
2015-03-04 16:45 - 2015-03-04 16:45 - 00750080 _____ () C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 16:45 - 2015-03-04 16:45 - 00047616 _____ () C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 16:45 - 2015-03-04 16:45 - 00865280 _____ () C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 16:45 - 2015-03-04 16:45 - 00200704 _____ () C:\Users\DEBBIE\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2015-01-29 19:57 - 2015-01-29 19:57 - 00439304 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2015-01-29 19:57 - 2015-01-29 19:57 - 00321032 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2014-11-23 07:18 - 2014-11-23 07:18 - 00316576 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2014-05-31 07:17 - 2009-03-12 15:45 - 00135168 ____N () C:\Program Files (x86)\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll
2014-05-31 07:17 - 2008-11-21 13:58 - 00057344 ____N () C:\Program Files (x86)\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll
2013-10-16 19:29 - 2012-06-07 22:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 13:34 - 2012-06-08 13:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-11-23 07:18 - 2014-11-23 07:18 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll
2013-10-16 19:18 - 2012-07-19 05:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-10-18 05:37 - 2014-10-18 05:37 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\1706c668394b6917a6 3634ebd3bedcf2\PSIClient.ni.dll
2013-12-20 16:32 - 2013-11-21 16:00 - 01904928 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\STRestoreAPI.dll
2013-10-16 19:32 - 2012-11-26 01:20 - 01153384 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\libxml2.dll
2013-10-16 19:32 - 2012-11-26 01:20 - 00117608 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\zlib1.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:333B9FFC
AlternateDataStreams: C:\Users\DEBBIE\SkyDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3434724080-3493510173-3397833782-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\DEBBIE\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\Des ktopBackground\img24.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "ACPW07EN"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{BEF28827-1A01-4F10-9E8F-C43DCD8A66F1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D1EF433E-7E43-4787-A91B-FB443D98CAE6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{15165499-F88C-4F37-A20F-B3CE7EE73A33}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B6185866-E84D-42C4-A3F2-B9B8D2001EA1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{295D9C36-89BA-4CC5-9F6E-674954B44D20}] => (Allow) C:\Program Files (x86)\Laplink\PCmover\pcmover.exe
FirewallRules: [{A674A19D-0075-4862-9AAA-936EFD1997DB}] => (Allow) C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe
FirewallRules: [{975EADBD-9F5B-4B1D-A0CA-D56D9C6FE759}] => (Allow) C:\Program Files (x86)\Wyse\PocketCloud\AetherWindowsService.exe
FirewallRules: [{CA5A0942-8B92-4A44-A2E9-04C4298BB159}] => (Allow) C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudDesktopApp.exe
FirewallRules: [UDP Query User{B3988197-1B28-4DD9-A028-71F7C15C86D6}C:\program files (x86)\dell wireless\bluetooth suite\bttray.exe] => (Allow) C:\program files (x86)\dell wireless\bluetooth suite\bttray.exe
FirewallRules: [TCP Query User{CAF98816-97C9-4872-9477-6E733471655B}C:\program files (x86)\dell wireless\bluetooth suite\bttray.exe] => (Allow) C:\program files (x86)\dell wireless\bluetooth suite\bttray.exe
FirewallRules: [UDP Query User{37DED9F7-8F8D-40EF-8B5F-13F1F4B16770}C:\program files (x86)\dell wireless\bluetooth suite\btvstack.exe] => (Allow) C:\program files (x86)\dell wireless\bluetooth suite\btvstack.exe
FirewallRules: [TCP Query User{488F566B-FFD2-4F44-975E-3EC5B43FED6A}C:\program files (x86)\dell wireless\bluetooth suite\btvstack.exe] => (Allow) C:\program files (x86)\dell wireless\bluetooth suite\btvstack.exe
FirewallRules: [{14E037B1-EF6D-458C-871C-DBF32709F767}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{46205931-A47E-4F9C-8E6F-CCA7A6922431}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{2CE026AE-C421-4B23-82FE-36C5DA64538C}] => (Allow) LPort=1900
FirewallRules: [{73DDF1A7-74BD-40B0-BED8-C9B3ACEB115F}] => (Allow) LPort=2869
FirewallRules: [{899322FC-E337-4A44-9793-014BBCF7B82F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{B193EBFB-60EC-4FCC-A0CF-97CDF720ACF2}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{DCB277A2-6140-40C1-83F8-DE1D428B0F8D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{DCE40060-7C2D-4D93-9AF4-47D87129442F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{35B47CE6-30AC-4EF1-ADDB-675B7ED89C26}] => (Allow) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Win7Ui.exe
FirewallRules: [{DB01076E-45B8-46CE-A5A8-7251474AD83B}] => (Allow) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtTray.exe
FirewallRules: [{45CCE5C9-8A1A-461F-ADA1-1B16C5D88C54}] => (Allow) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtTray.exe
FirewallRules: [{42B51A5C-C4A5-4758-A052-CF67F46D32AA}] => (Allow) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Btvstack.exe
FirewallRules: [{E3FE6463-8EFA-4254-8E31-A42BADC955C8}] => (Allow) C:\Users\DEBBIE\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{213B606C-7944-4883-B1D8-33F229AC0A99}] => (Allow) C:\Program Files (x86)\EpsonNet\EpsonNet Setup\tool09\ENEasyApp.exe
FirewallRules: [{99C0E069-970F-41F2-AF9A-44009F4E7B03}] => (Allow) C:\Program Files (x86)\EpsonNet\EpsonNet Setup\tool09\ENEasyApp.exe
FirewallRules: [{D8955FFA-D56F-42D6-A725-3B8C93EC2D22}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{A2B7C51A-7F17-466A-B054-652738D66E2F}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [TCP Query User{116E7D2E-A78E-42E4-B155-E4308E03A939}C:\program files (x86)\symantec\norton online backup\nobuclient.exe] => (Allow) C:\program files (x86)\symantec\norton online backup\nobuclient.exe
FirewallRules: [UDP Query User{7D63F1CF-EF0C-4537-AA0C-790B057FBF6D}C:\program files (x86)\symantec\norton online backup\nobuclient.exe] => (Allow) C:\program files (x86)\symantec\norton online backup\nobuclient.exe
FirewallRules: [TCP Query User{A2BDE0D5-B8B1-4C76-9506-4AD7C3D83E55}C:\users\debbie\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\debbie\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{CCBDFB89-6124-4564-8333-350745DD70BA}C:\users\debbie\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\debbie\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{CD192B6F-0540-401F-807E-E8E4F65DC6C4}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{5A501E6D-94AE-415C-B0B6-080572A0AE47}] => (Allow) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe
FirewallRules: [{ED862FB1-3DD7-4188-9B64-2CBAEB398AAC}] => (Allow) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe
FirewallRules: [{CBCE54F6-6759-4165-9E3D-4DCBAEC88AC1}] => (Allow) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\DataProxy.exe

==================== Faulty Device Manager Devices =============

Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/14/2015 03:35:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CCC.exe, version: 3.5.0.0, time stamp: 0x4f8350e0
Faulting module name: KERNELBASE.dll, version: 6.3.9600.17415, time stamp: 0x54505737
Exception code: 0xe0434352
Fault offset: 0x0000000000008b9c
Faulting process id: 0xb9c
Faulting application start time: 0xCCC.exe0
Faulting application path: CCC.exe1
Faulting module path: CCC.exe2
Report Id: CCC.exe3
Faulting package full name: CCC.exe4
Faulting package-relative application ID: CCC.exe5

Error: (06/14/2015 03:35:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: CCC.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ObjectDisposedException
Stack:
at System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
at ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionCon text, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (06/14/2015 03:19:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1038

Start Time: 01d0a6dec357c6e0

Termination Time: 4294967295

Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe

Report Id: b72ac6b6-12d2-11e5-beab-8056f2095834

Faulting package full name: Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nnt

Faulting package-relative application ID: App

Error: (06/14/2015 03:18:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CCC.exe, version: 3.5.0.0, time stamp: 0x4f8350e0
Faulting module name: KERNELBASE.dll, version: 6.3.9600.17415, time stamp: 0x54505737
Exception code: 0xe0434352
Fault offset: 0x0000000000008b9c
Faulting process id: 0x1040
Faulting application start time: 0xCCC.exe0
Faulting application path: CCC.exe1
Faulting module path: CCC.exe2
Report Id: CCC.exe3
Faulting package full name: CCC.exe4
Faulting package-relative application ID: CCC.exe5

Error: (06/14/2015 03:18:16 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: CCC.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ObjectDisposedException
Stack:
at System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
at ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionCon text, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (06/14/2015 03:13:45 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (06/14/2015 03:12:17 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Explorer.EXE
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: exception code c0000005, exception address 00007FFB320DA02F

Error: (06/14/2015 02:57:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: rundll32.exe_winethc.dll, version: 6.3.9600.17415, time stamp: 0x54504eb8
Faulting module name: USER32.dll, version: 6.3.9600.17736, time stamp: 0x550f4336
Exception code: 0xc0000142
Fault offset: 0x00000000000ec180
Faulting process id: 0x3804
Faulting application start time: 0xrundll32.exe_winethc.dll0
Faulting application path: rundll32.exe_winethc.dll1
Faulting module path: rundll32.exe_winethc.dll2
Report Id: rundll32.exe_winethc.dll3
Faulting package full name: rundll32.exe_winethc.dll4
Faulting package-relative application ID: rundll32.exe_winethc.dll5

Error: (06/14/2015 10:51:13 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (06/14/2015 10:17:59 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1d60

Start Time: 01d0a50acf2cdac4

Termination Time: 4294967295

Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe

Report Id: 891dd1db-12a8-11e5-beaa-8056f2095834

Faulting package full name: Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nnt

Faulting package-relative application ID: App


System errors:
=============
Error: (06/14/2015 03:38:06 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.

Error: (06/14/2015 03:33:05 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.

Error: (06/14/2015 03:31:05 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.

Error: (06/14/2015 03:30:04 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.

Error: (06/14/2015 03:29:54 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.

Error: (06/14/2015 03:29:38 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.

Error: (06/14/2015 03:29:37 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.

Error: (06/14/2015 03:28:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Wyse Remote Access service failed to start due to the following error:
%%5

Error: (06/14/2015 03:24:08 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.

Error: (06/14/2015 03:19:07 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51.


Microsoft Office:
=========================
Error: (06/14/2015 03:35:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe3.5.0.04f8350e0KERNELBASE.dll6.3.9600.1741554505737e0434352000000000 0008b9cb9c01d0a6e0e348ccf1C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\WINDOWS\system32\KERNELBASE.dlld58198c3-12d4-11e5-beac-8056f2095834

Error: (06/14/2015 03:35:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: CCC.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ObjectDisposedException
Stack:
at System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
at ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionCon text, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (06/14/2015 03:19:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: backgroundTaskHost.exe6.3.9600.17415103801d0a6dec357c6e04294967295C:\WINDOW S\system32\backgroundTaskHost.exeb72ac6b6-12d2-11e5-beab-8056f2095834Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nntApp

Error: (06/14/2015 03:18:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe3.5.0.04f8350e0KERNELBASE.dll6.3.9600.1741554505737e0434352000000000 0008b9c104001d0a6dee2a2adeeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\WINDOWS\system32\KERNELBASE.dll7d7a1698-12d2-11e5-beab-8056f2095834

Error: (06/14/2015 03:18:16 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: CCC.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ObjectDisposedException
Stack:
at System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
at ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionCon text, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (06/14/2015 03:13:45 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description:

Error: (06/14/2015 03:12:17 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Explorer.EXE
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: exception code c0000005, exception address 00007FFB320DA02F

Error: (06/14/2015 02:57:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: rundll32.exe_winethc.dll6.3.9600.1741554504eb8USER32.dll6.3.9600.17736550f4 336c000014200000000000ec180380401d0a6dc5389b43bC:\WINDOWS\System32\rundll32 .exeUSER32.dll9171b498-12cf-11e5-beaa-8056f2095834

Error: (06/14/2015 10:51:13 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: -2147024883

Error: (06/14/2015 10:17:59 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: backgroundTaskHost.exe6.3.9600.174151d6001d0a50acf2cdac44294967295C:\WINDOW S\system32\backgroundTaskHost.exe891dd1db-12a8-11e5-beaa-8056f2095834Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nntApp


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3770S CPU @ 3.10GHz
Percentage of memory in use: 52%
Total physical RAM: 8064.98 MB
Available physical RAM: 3849.16 MB
Total Pagefile: 9472.98 MB
Available Pagefile: 4407.95 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:1849.2 GB) (Free:1653.28 GB) NTFS
Drive x: () (Fixed) (Total:0.34 GB) (Free:0.05 GB) NTFS
Drive y: (PBR Image) (Fixed) (Total:12.34 GB) (Free:0.71 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: FBD810E1)

Partition: GPT Partition Type.

==================== End of log ============================

Malware that is blocking Gmail, Google related sites and Youtube

June 15, 2015, 1:41 am
$
0
0
Below is the information regarding what happened.
This is the information from SysInfo.Exe

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 8.1, 64 bit
Processor: Intel(R) Core(TM) i5-4200U CPU @ 1.60GHz, Intel64 Family 6 Model 69 Stepping 1
Processor Count: 4
RAM: 8122 Mb
Graphics Card: Intel(R) HD Graphics Family, -2016 Mb
Hard Drives: C: Total - 455370 MB, Free - 384331 MB; D: Total - 20774 MB, Free - 2098 MB;
Motherboard: Hewlett-Packard, 2166
Antivirus: Windows Defender, Disabled

Recently, I have downloaded a file. The website for the file is http://sourceforge.net/projects/icloudbypasstool/

After downloading the file and running the application, there is always popup advertisements popping up in new tabs. I've tried installing and running Malwarebytes, adwcleaner, emsisoft, hitmanpro, JRT, Kaspersky security scan, and tdsskiller.

Now, from time to time, there will be a pop up notification asking if what kind of program i'd like to run the app with. The available options for me to choose from were google chrome, internet explorer and store.

When i try to enter Gmail / youtube / productforums.google , it shows:

This webpage is not available

ERR_CONNECTION_REFUSED

Sometimes, restarting the laptop allows me to access these websites. Sometimes, It doesn't.
Sometimes, by connecting to different WiFi, it works too. Sometimes, It doesn't.

I've been told to uninstall McAFee anti virus protection and to enable windows defender to see if it works. I've also tried disabling windows defender to see if i can access these websites, but it seems like its not working.

Any kind help would be appreciated.

Slow Browser All Across The Board

June 15, 2015, 11:31 am
$
0
0
Hello! So after upgrading to ssd and also a new hdd and reinstalling Windows, everything is back to normal... Browsing and downloading files are super zippy! I'm guessing windows got affected somehow. Thanks again for all your help!

Pesty Malware Mayhem

June 15, 2015, 12:50 pm
$
0
0
Pesty Malware Mayhem
There are several issues for this computer --that started a few days ago. The main issue is I am getting warning popups that state unresponsive plugins or unresponsive scripts. Browser pages that either try to load constantly or won't load at all leading to where the browser freezes and the only way to unfreeze is to reboot. This has slowed the computer down quite a bit.

A week ago I added a pop-up blocker which seems to help with the browser, but there still remains too many times where the computer simply locks up for 2-5 minutes at a time and says there are unresponsive plugins or unresponsive scripts.

I attempted to get a HJT log, but all I get when I try to run the program after download is code which has not happened before. I have a 64 bit system Toshiba Satellite Laptop. I have been using Firefox 38.5 as my browser running Microsoft Security Essentials for virus protection and using malawarebytes anti-malware and super-antispyware. Can someone take a look and tell me what the next steps are? Thanks
Viewing all 4746 articles
Browse latest View live
More Pages to Explore .....
Search

Latest Images

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

April 18, 2024, 11:05 am
Photographer Gifts for Clients / Print Packaging / 4x6 Photo Box by...

Photographer Gifts for Clients / Print Packaging / 4x6 Photo Box by...

April 17, 2024, 6:48 pm
Deepfake Video of Aamir Khan circulates Online

Deepfake Video of Aamir Khan circulates Online

April 17, 2024, 3:07 am
Very Hungry Caterpillar™ Shirt: World of Eric Carle™+ Little Goodall by...

Very Hungry Caterpillar™ Shirt: World of Eric Carle™+ Little Goodall by...

April 14, 2024, 8:14 am
Have you seen Michael Wines? Burien man has been missing since Saturday,...

Have you seen Michael Wines? Burien man has been missing since Saturday,...

April 12, 2024, 3:59 pm
Stay Salty POTS Awareness Stretchy Stacking Bracelets | Set of Three|...

Stay Salty POTS Awareness Stretchy Stacking Bracelets | Set of Three|...

April 11, 2024, 5:27 pm
19 Reader-Favourite March Purchases — From Steals To Splurges

19 Reader-Favourite March Purchases — From Steals To Splurges

April 11, 2024, 5:07 am
Fake lip ring, silver lip ring, simple lip ring, unisex lip ring by AIRlab

Fake lip ring, silver lip ring, simple lip ring, unisex lip ring by AIRlab

April 9, 2024, 4:00 pm
People's Blog • First Pictures of the Eclipse ! ! !

People's Blog • First Pictures of the Eclipse ! ! !

April 8, 2024, 1:08 pm
People's Blog • First Pictures of the Eclipse ! ! !

People's Blog • First Pictures of the Eclipse ! ! !

April 8, 2024, 1:08 pm