Quantcast
Channel: Tech Support Guy - Virus & Other Malware Removal
Viewing all 4746 articles
Browse latest View live

May have virus

0
0
Hello,

I think my PC is infected with spyware, malware or a virus. For the past few months , my computer is constantly freezing and lagging. I ran tests and cleaned out my temp folder. None of those resolved the issue. It sounds like it loading something and nothing comes up. Please AI need your help




Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 32 bit
Processor: Pentium(R) Dual-Core CPU E5700 @ 3.00GHz, x64 Family 6 Model 23 Stepping 10
Processor Count: 2
RAM: 2012 Mb
Graphics Card: Intel(R) G41 Express Chipset, 782 Mb
Hard Drives: C: Total - 305142 MB, Free - 196888 MB;
Motherboard: Dell Inc., 07N90W
Antivirus: McAfee Anti-Virus and Anti-Spyware, Updated and Enabled

I'm not sure if there is spyware on my iPhone 4s

0
0
I am so sorry to post something that is probably very simple to answer but I have a very good feeling that my iPhone 4s has spyware in place! I have tried to down load my system info and i recieve a message that Safari is unable to do it. I have researched so much about spyware on the internet that has taught me a lot ! However, because I've been educating myself I would like a computer whiz to confirm my suspicions! I am going to copy and past a "system service" that is on my phone and could someone please explain this to me in simple terms! Thank you so much!!!
{"bundleID":"com.apple.WebKit.WebContent","app_name":"com.apple.WebKit.WebC ontent","share_with_app_devs":false,"name":"com.apple.WebKit.WebContent","a pp_version":"8600","is_first_party":false,"os_version":"iPhone OS 8.3 (12F70)","bug_type":"185","slice_uuid":"bae85426-ad23-3d3c-b4c2-eae46e171e6d","build_version":"8600.1.4.15.16"}
Incident Identifier: 04C90239-24DC-4332-B4C5-23327329DD42
CrashReporter Key: fbd21ff30003da2688f51bfa99bbb05608c72d50
Hardware Model: iPhone4,1
Process: com.apple.WebKit.WebContent [1860]
Path: /System/Library/Frameworks/WebKit.framework/XPCServices/com.apple.WebKit.WebContent.xpc/com.apple.WebKit.WebContent
Identifier: com.apple.WebKit.WebContent
Version: 8600.1.4.15.16 (8600)
Code Type: ARM (Native)
Parent Process: launchd [1]

Date/Time: 2015-06-20 20:22:07.739 -0400
Launch Time: 2015-06-20 19:39:56.665 -0400
OS Version: iOS 8.3 (12F70)
Report Version: 104

Exception Type: EXC_RESOURCE
Exception Subtype: CPU
Exception Message: (Limit 50%) Observed 51% over 180 secs
Triggered by Thread: 0

Thread 0 name: Dispatch queue: com.apple.main-thread
Thread 0 Attributed:
0 WebCore 0x33f960d2 0x33e49000 + 1364178
1 WebCore 0x33f961de 0x33e49000 + 1364446
2 WebCore 0x33f961de 0x33e49000 + 1364446
3 WebCore 0x33f961de 0x33e49000 + 1364446
4 WebCore 0x33f961de 0x33e49000 + 1364446
5 WebCore 0x33f961de 0x33e49000 + 1364446
6 WebCore 0x33f961de 0x33e49000 + 1364446
7 WebCore 0x33f236b4 0x33e49000 + 894644
8 WebCore 0x33e66b02 0x33e49000 + 121602
9 WebCore 0x33e66a56 0x33e49000 + 121430
10 CoreFoundation 0x284f615c 0x28426000 + 852316
11 CoreFoundation 0x284f5cdc 0x28426000 + 851164
12 CoreFoundation 0x284f3f46 0x28426000 + 843590
13 CoreFoundation 0x2843f99c 0x28426000 + 104860
14 CoreFoundation 0x2843f7ae 0x28426000 + 104366
15 Foundation 0x291a8dbc 0x2919e000 + 44476
16 Foundation 0x291f6e78 0x2919e000 + 364152
17 libxpc.dylib 0x36ccc97c 0x36cc1000 + 47484
18 libxpc.dylib 0x36cce004 0x36cc1000 + 53252
19 com.apple.WebKit.WebContent 0x0008db0e 0x8a000 + 15118
20 libdyld.dylib 0x36b68aac 0x36b67000 + 6828

Thread 1 name: Dispatch queue: com.apple.libdispatch-manager
Thread 1:
0 libsystem_kernel.dylib 0x36c1b24c 0x36c1a000 + 4684
1 libdispatch.dylib 0x36b3b4ec 0x36b29000 + 74988
2 libdispatch.dylib 0x36b3b21e 0x36b29000 + 74270

Thread 2 name: JavaScriptCore::BlockFree
Thread 2:
0 libsystem_kernel.dylib 0x36c2eb2c 0x36c1a000 + 84780
1 libsystem_pthread.dylib 0x36cae360 0x36cac000 + 9056
2 libsystem_pthread.dylib 0x36caf230 0x36cac000 + 12848
3 libc++.1.dylib 0x35d88fa4 0x35d83000 + 24484
4 JavaScriptCore 0x2975a216 0x29745000 + 86550
5 JavaScriptCore 0x297566cc 0x29745000 + 71372
6 libsystem_pthread.dylib 0x36caede8 0x36cac000 + 11752
7 libsystem_pthread.dylib 0x36caed5a 0x36cac000 + 11610
8 libsystem_pthread.dylib 0x36cacb04 0x36cac000 + 2820

Thread 3 name: JavaScriptCore::Marking
Thread 3:
0 libsystem_kernel.dylib 0x36c2eb2c 0x36c1a000 + 84780
1 libsystem_pthread.dylib 0x36cae360 0x36cac000 + 9056
2 libsystem_pthread.dylib 0x36caf230 0x36cac000 + 12848
3 libc++.1.dylib 0x35d88fa4 0x35d83000 + 24484
4 JavaScriptCore 0x2991f150 0x29745000 + 1941840
5 JavaScriptCore 0x2991f1b4 0x29745000 + 1941940
6 JavaScriptCore 0x297566cc 0x29745000 + 71372
7 libsystem_pthread.dylib 0x36caede8 0x36cac000 + 11752
8 libsystem_pthread.dylib 0x36caed5a 0x36cac000 + 11610
9 libsystem_pthread.dylib 0x36cacb04 0x36cac000 + 2820

Thread 4 name: com.apple.NSURLConnectionLoader
Thread 4:
0 libsystem_kernel.dylib 0x36c1b49c 0x36c1a000 + 5276
1 libsystem_kernel.dylib 0x36c1b290 0x36c1a000 + 4752
2 CoreFoundation 0x284f57ee 0x28426000 + 849902
3 CoreFoundation 0x284f3db4 0x28426000 + 843188
4 CoreFoundation 0x2843f99c 0x28426000 + 104860
5 CoreFoundation 0x2843f7ae 0x28426000 + 104366
6 CFNetwork 0x27fdd642 0x27f61000 + 509506
7 Foundation 0x2926e186 0x2919e000 + 852358
8 libsystem_pthread.dylib 0x36caede8 0x36cac000 + 11752
9 libsystem_pthread.dylib 0x36caed5a 0x36cac000 + 11610
10 libsystem_pthread.dylib 0x36cacb04 0x36cac000 + 2820

Thread 5 name: WebCore: CFNetwork Loader
Thread 5:
0 libsystem_kernel.dylib 0x36c1b49c 0x36c1a000 + 5276
1 libsystem_kernel.dylib 0x36c1b290 0x36c1a000 + 4752
2 CoreFoundation 0x284f57ee 0x28426000 + 849902
3 CoreFoundation 0x284f3db4 0x28426000 + 843188
4 CoreFoundation 0x2843f99c 0x28426000 + 104860
5 CoreFoundation 0x2843f7ae 0x28426000 + 104366
6 WebCore 0x33ef4a70 0x33e49000 + 703088
7 JavaScriptCore 0x297566cc 0x29745000 + 71372
8 libsystem_pthread.dylib 0x36caede8 0x36cac000 + 11752
9 libsystem_pthread.dylib 0x36caed5a 0x36cac000 + 11610
10 libsystem_pthread.dylib 0x36cacb04 0x36cac000 + 2820

Thread 6 name: com.apple.CFSocket.private
Thread 6:
0 libsystem_kernel.dylib 0x36c2f080 0x36c1a000 + 86144
1 CoreFoundation 0x284f9fa0 0x28426000 + 868256
2 libsystem_pthread.dylib 0x36caede8 0x36cac000 + 11752
3 libsystem_pthread.dylib 0x36caed5a 0x36cac000 + 11610
4 libsystem_pthread.dylib 0x36cacb04 0x36cac000 + 2820

Thread 7 name: AVAudioSession Notify Thread
Thread 7:
0 libsystem_kernel.dylib 0x36c1b49c 0x36c1a000 + 5276
1 libsystem_kernel.dylib 0x36c1b290 0x36c1a000 + 4752
2 CoreFoundation 0x284f57ee 0x28426000 + 849902
3 CoreFoundation 0x284f3db4 0x28426000 + 843188
4 CoreFoundation 0x2843f99c 0x28426000 + 104860
5 CoreFoundation 0x2843f7ae 0x28426000 + 104366
6 libAVFAudio.dylib 0x27146f28 0x2712d000 + 106280
7 libAVFAudio.dylib 0x27139424 0x2712d000 + 50212
8 libsystem_pthread.dylib 0x36caede8 0x36cac000 + 11752
9 libsystem_pthread.dylib 0x36caed5a 0x36cac000 + 11610
10 libsystem_pthread.dylib 0x36cacb04 0x36cac000 + 2820

Thread 8 name: com.apple.coremedia.player.async
Thread 8:
0 libsystem_kernel.dylib 0x36c1b4ec 0x36c1a000 + 5356
1 libdispatch.dylib 0x36b38b8e 0x36b29000 + 64398
2 MediaToolbox 0x29f76692 0x29f72000 + 18066
3 CoreMedia 0x28c9fd2c 0x28c70000 + 195884
4 libsystem_pthread.dylib 0x36caede8 0x36cac000 + 11752
5 libsystem_pthread.dylib 0x36caed5a 0x36cac000 + 11610
6 libsystem_pthread.dylib 0x36cacb04 0x36cac000 + 2820

Thread 9:
0 libsystem_kernel.dylib 0x36c1b49c 0x36c1a000 + 5276
1 libsystem_kernel.dylib 0x36c1b290 0x36c1a000 + 4752
2 CoreFoundation 0x284f57ee 0x28426000 + 849902
3 CoreFoundation 0x284f3db4 0x28426000 + 843188
4 CoreFoundation 0x2843f99c 0x28426000 + 104860
5 CoreFoundation 0x28489366 0x28426000 + 406374
6 CoreMotion 0x28d54ab6 0x28d0f000 + 285366
7 libsystem_pthread.dylib 0x36caede8 0x36cac000 + 11752
8 libsystem_pthread.dylib 0x36caed5a 0x36cac000 + 11610
9 libsystem_pthread.dylib 0x36cacb04 0x36cac000 + 2820

Thread 10:
0 libsystem_kernel.dylib 0x36c2f9c0 0x36c1a000 + 88512
1 libsystem_pthread.dylib 0x36cace20 0x36cac000 + 3616
2 libsystem_pthread.dylib 0x36cacaf8 0x36cac000 + 2808

Thread 11:
0 libsystem_kernel.dylib 0x36c2f9c0 0x36c1a000 + 88512
1 libsystem_pthread.dylib 0x36cace20 0x36cac000 + 3616
2 libsystem_pthread.dylib 0x36cacaf8 0x36cac000 + 2808

Thread 12:
0 libsystem_kernel.dylib 0x36c2f9c0 0x36c1a000 + 88512
1 libsystem_pthread.dylib 0x36cace20 0x36cac000 + 3616
2 libsystem_pthread.dylib 0x36cacaf8 0x36cac000 + 2808

Thread 13:
0 libsystem_kernel.dylib 0x36c2f9c0 0x36c1a000 + 88512
1 libsystem_pthread.dylib 0x36cace20 0x36cac000 + 3616
2 libsystem_pthread.dylib 0x36cacaf8 0x36cac000 + 2808

Thread 0 crashed with ARM Thread State (32-bit):
r0: 0xb583503f r1: 0x2050a200 r2: 0x0f434b28 r3: 0xe57e07ff
r4: 0x00193a8c r5: 0x127240e0 r6: 0x001939e4 r7: 0x001939d4
r8: 0x00000000 r9: 0x00000000 r10: 0x00193b5c r11: 0x080f8400
ip: 0x0000001f sp: 0x001939a4 lr: 0x12078c00 pc: 0x33f960d2
cpsr: 0x20000030

Bad magic 0x291A8DC1
Microstackshots: 1 (from 2147483647-04-04 06:32:00 -0500 to 2147483647-04-04 06:32:00 -0500)
1 ??? [0x195a80]
1 CoreFoundation 0x28426000 + 104865 [0x2843f9a1]
1 ??? [0x195938]
1 CoreFoundation 0x28426000 + 843193 [0x284f3db9]
1 ??? [0x194ca0]
1 CoreFoundation 0x28426000 + 849907 [0x284f57f3]
1 ??? [0x194c60]
1 libsystem_kernel.dylib 0x36c1a000 + 4757 [0x36c1b295]
1 ??? [0x194c24]
1 libsystem_kernel.dylib 0x36c1a000 + 5276 [0x36c1b49c]
*1 ??? [0x80014111]

Binary Images:
0x8a000 - 0x8dfff com.apple.WebKit.WebContent armv7 <bae85426ad233d3cb4c2eae46e171e6d> /System/Library/Frameworks/WebKit.framework/XPCServices/com.apple.WebKit.WebContent.xpc/com.apple.WebKit.WebContent
0x1b96000 - 0x1bb1fff Safari armv7 <6680f5ad1c973dddb5abb55fb1e06fc3> /Applications/MobileSafari.app/Safari.wkbundle/Safari
0x1fe81000 - 0x1fea4fff dyld armv7 <35ecdca1a767375e95ffa0f2a78d76d0> /usr/lib/dyld
0x26c86000 - 0x26c86fff WebProcessLoader armv7 <c4e6c89bbcea3c04b3d45f3cf6a7fed1> /System/Library/AccessibilityBundles/WebProcessLoader.axbundle/WebProcessLoader
0x26d32000 - 0x26d4dfff libJapaneseConverter.dylib armv7 <1531c07cd9613bba8fc6fe9217f33612> /System/Library/CoreServices/Encodings/libJapaneseConverter.dylib
0x26d4e000 - 0x26d6ffff libKoreanConverter.dylib armv7 <e91af7fb662c3c3ab502c2575c270234> /System/Library/CoreServices/Encodings/libKoreanConverter.dylib
0x26d9c000 - 0x26e88fff RawCamera armv7 <0b450cc0a2ca343ebb001b36b7db61d5> /System/Library/CoreServices/RawCamera.bundle/RawCamera
0x26e9f000 - 0x26fb3fff IMGSGX543GLDriver armv7 <94b2fdcb2ea9382db24393a59eaf0397> /System/Library/Extensions/IMGSGX543GLDriver.bundle/IMGSGX543GLDriver
0x26fbf000 - 0x2712cfff AVFoundation armv7 <d269609e868231debb09b8b9b65a7367> /System/Library/Frameworks/AVFoundation.framework/AVFoundation
0x2712d000 - 0x2718cfff libAVFAudio.dylib armv7 <a8b5cbfd28863732b462e2fa2d3b78e9> /System/Library/Frameworks/AVFoundation.framework/libAVFAudio.dylib
0x271c7000 - 0x271c7fff Accelerate armv7 <a79992cca15033b7bed80bd705be71f4> /System/Library/Frameworks/Accelerate.framework/Accelerate
0x271c8000 - 0x271d7fff libCGInterfaces.dylib armv7 <0179d4f097993b9387feabd99c719c21> /System/Library/Frameworks/Accelerate.framework/Frameworks/vImage.framework/Libraries/libCGInterfaces.dylib
0x271d8000 - 0x273f1fff vImage armv7 <872e53dd96dc36bf90b3a0ac74c5adb1> /System/Library/Frameworks/Accelerate.framework/Frameworks/vImage.framework/vImage
0x273f2000 - 0x274cffff libBLAS.dylib armv7 <3a6573adecda34749cc5282831e744cb> /System/Library/Frameworks/Accelerate.framework/Frameworks/vecLib.framework/libBLAS.dylib
0x274d0000 - 0x27793fff libLAPACK.dylib armv7 <1c01784b93d3329b97fc65515e51d5a5> /System/Library/Frameworks/Accelerate.framework/Frameworks/vecLib.framework/libLAPACK.dylib
0x27794000 - 0x277a6fff libLinearAlgebra.dylib armv7 <cebf63450c443b33815fa077775a1a11> /System/Library/Frameworks/Accelerate.framework/Frameworks/vecLib.framework/libLinearAlgebra.dylib
0x277a7000 - 0x2781bfff libvDSP.dylib armv7 <3008dddb27c53aad952b3bbc6e640984> /System/Library/Frameworks/Accelerate.framework/Frameworks/vecLib.framework/libvDSP.dylib
0x2781c000 - 0x2782dfff libvMisc.dylib armv7 <39de9e92305734d9b8661d4d2981467d> /System/Library/Frameworks/Accelerate.framework/Frameworks/vecLib.framework/libvMisc.dylib
0x2782e000 - 0x2782efff vecLib armv7 <6c07e6493c69320b8888af62c9702490> /System/Library/Frameworks/Accelerate.framework/Frameworks/vecLib.framework/vecLib
0x2782f000 - 0x27856fff Accounts armv7 <267824c6da983372b6ebc77a6ab0b158> /System/Library/Frameworks/Accounts.framework/Accounts
0x27b85000 - 0x27df9fff AudioToolbox armv7 <35314493dec2370e88277f154701eecb> /System/Library/Frameworks/AudioToolbox.framework/AudioToolbox
0x27f61000 - 0x280edfff CFNetwork armv7 <9b5451d8ea3a395c9d85b29480c2b5dc> /System/Library/Frameworks/CFNetwork.framework/CFNetwork
0x280ee000 - 0x28173fff CloudKit armv7 <3688a76a888b34f9849a8997f0df5eb7> /System/Library/Frameworks/CloudKit.framework/CloudKit
0x28174000 - 0x281d3fff CoreAudio armv7 <2145d56fd7563bd9bc4a8261974aeec6> /System/Library/Frameworks/CoreAudio.framework/CoreAudio
0x281ef000 - 0x2820cfff CoreBluetooth armv7 <1c0cd3e8d8b23164b1dff15acebc391e> /System/Library/Frameworks/CoreBluetooth.framework/CoreBluetooth
0x2820d000 - 0x28425fff CoreData armv7 <8827e84fedc838ea92a4aab968b568f6> /System/Library/Frameworks/CoreData.framework/CoreData
0x28426000 - 0x28758fff CoreFoundation armv7 <56d409e85e843dd98e7d3494112a0c35> /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation
0x28759000 - 0x28882fff CoreGraphics armv7 <097d6e7085893b518a4b07052fd170d5> /System/Library/Frameworks/CoreGraphics.framework/CoreGraphics
0x288c2000 - 0x288c4fff libCGXType.A.dylib armv7 <b18ea406878f326fa1f5735cd361cc16> /System/Library/Frameworks/CoreGraphics.framework/Resources/libCGXType.A.dylib
0x288c5000 - 0x288cffff libCMSBuiltin.A.dylib armv7 <2ca7a30774ea3073af7faf523b371911> /System/Library/Frameworks/CoreGraphics.framework/Resources/libCMSBuiltin.A.dylib
0x28a9c000 - 0x28ab6fff libPDFRIP.A.dylib armv7 <e5f23147e2b037c8898063252e637b05> /System/Library/Frameworks/CoreGraphics.framework/Resources/libPDFRIP.A.dylib
0x28ab7000 - 0x28ad2fff libRIP.A.dylib armv7 <383be8976d58346191e245a0ed169b97> /System/Library/Frameworks/CoreGraphics.framework/Resources/libRIP.A.dylib
0x28ad3000 - 0x28be5fff CoreImage armv7 <149e85c285313ece80f8f9ee5ec05f21> /System/Library/Frameworks/CoreImage.framework/CoreImage
0x28be6000 - 0x28c3efff CoreLocation armv7 <f2d38b73b524355a9f567854029e797c> /System/Library/Frameworks/CoreLocation.framework/CoreLocation
0x28c70000 - 0x28d0efff CoreMedia armv7 <f6c07770f5503f6784ab5aa145d37c1c> /System/Library/Frameworks/CoreMedia.framework/CoreMedia
0x28d0f000 - 0x28dedfff CoreMotion armv7 <15b462dede9b3f54992fe8fd793ceeed> /System/Library/Frameworks/CoreMotion.framework/CoreMotion
0x28dee000 - 0x28e4cfff CoreTelephony armv7 <3749e93443863780811f2b6ca2af9a2e> /System/Library/Frameworks/CoreTelephony.framework/CoreTelephony
0x28e4d000 - 0x28f19fff CoreText armv7 <06c12d17c87332e3a92fdd471c7460b3> /System/Library/Frameworks/CoreText.framework/CoreText
0x28f1a000 - 0x28f30fff CoreVideo armv7 <2a18de158cf5384cb5f19b7f56231ceb> /System/Library/Frameworks/CoreVideo.framework/CoreVideo
0x2919e000 - 0x293a3fff Foundation armv7 <97042f0fe32f3ff1bee01cea7866d334> /System/Library/Frameworks/Foundation.framework/Foundation
0x294a5000 - 0x294fafff IOKit armv7 <c13d6573e7e83c75a88893c3e004e48c> /System/Library/Frameworks/IOKit.framework/Versions/A/IOKit
0x294fb000 - 0x29744fff ImageIO armv7 <cad9046aa04733a2a0e2eac058cd84af> /System/Library/Frameworks/ImageIO.framework/ImageIO
0x29745000 - 0x29a8ffff JavaScriptCore armv7 <9679b331fe0d331cb60fcf6182371f44> /System/Library/Frameworks/JavaScriptCore.framework/JavaScriptCore
0x29d87000 - 0x29d8ffff MediaAccessibility armv7 <a807163c0ec33367ab1643971de5a910> /System/Library/Frameworks/MediaAccessibility.framework/MediaAccessibility
0x29d90000 - 0x29f71fff MediaPlayer armv7 <6e91ee66a59d3be29b6a80828512ac92> /System/Library/Frameworks/MediaPlayer.framework/MediaPlayer
0x29f72000 - 0x2a2f1fff MediaToolbox armv7 <dceb7cd851a031c68c03dd7a59a2b7a4> /System/Library/Frameworks/MediaToolbox.framework/MediaToolbox
0x2a3b2000 - 0x2a421fff Metal armv7 <8e11a65349973e4eb041753af33687dc> /System/Library/Frameworks/Metal.framework/Metal
0x2a422000 - 0x2a4b6fff MobileCoreServices armv7 <ee16e1530e7f367d973a716cfe88b1af> /System/Library/Frameworks/MobileCoreServices.framework/MobileCoreServices
0x2a50b000 - 0x2a5a2fff NetworkExtension armv7 <0d7c23fe9c2030319f2792e43a9dc275> /System/Library/Frameworks/NetworkExtension.framework/NetworkExtension
0x2af6e000 - 0x2b049fff GLEngine armv7 <005d189c37be32e9b165877327103720> /System/Library/Frameworks/OpenGLES.framework/GLEngine.bundle/GLEngine
0x2b04a000 - 0x2b052fff OpenGLES armv7 <7e510b8799793a1b820bf22def9975cc> /System/Library/Frameworks/OpenGLES.framework/OpenGLES
0x2b054000 - 0x2b054fff libCVMSPluginSupport.dylib armv7 <2b49dae847f63c5682ddacdeadf08e15> /System/Library/Frameworks/OpenGLES.framework/libCVMSPluginSupport.dylib
0x2b055000 - 0x2b057fff libCoreFSCache.dylib armv7 <324c3cef7d6d3e958a1f3a55e20e74f8> /System/Library/Frameworks/OpenGLES.framework/libCoreFSCache.dylib
0x2b058000 - 0x2b05bfff libCoreVMClient.dylib armv7 <2d35b7480ad03ee7b2ac3c6a03edcdec> /System/Library/Frameworks/OpenGLES.framework/libCoreVMClient.dylib
0x2b05c000 - 0x2b064fff libGFXShared.dylib armv7 <8db068ab7c3131c38b62f97ebdd5f96a> /System/Library/Frameworks/OpenGLES.framework/libGFXShared.dylib
0x2b065000 - 0x2b0a4fff libGLImage.dylib armv7 <20469ae8ddd537d7a4177d24c81ff20a> /System/Library/Frameworks/OpenGLES.framework/libGLImage.dylib
0x2b0a5000 - 0x2b1dffff libGLProgrammability.dylib armv7 <4bb0c292626b3ea68243decad94b6059> /System/Library/Frameworks/OpenGLES.framework/libGLProgrammability.dylib
0x2b57a000 - 0x2b6d6fff QuartzCore armv7 <8586510d30293a1db1e5a8e5f1efad21> /System/Library/Frameworks/QuartzCore.framework/QuartzCore
0x2b6d7000 - 0x2b71dfff QuickLook armv7 <6a8429aee14d3014b0325b0126258af7> /System/Library/Frameworks/QuickLook.framework/QuickLook
0x2b90b000 - 0x2b94cfff Security armv7 <2cb85f8b1c9e3a62b73841d04dd05e13> /System/Library/Frameworks/Security.framework/Security
0x2bafc000 - 0x2bb58fff SystemConfiguration armv7 <8812238f38ed332f88803b8da35eb92b> /System/Library/Frameworks/SystemConfiguration.framework/SystemConfiguration
0x2bb5b000 - 0x2c409fff UIKit armv7 <ea23c036152530dd951a9b396153dcad> /System/Library/Frameworks/UIKit.framework/UIKit
0x2c40a000 - 0x2c471fff VideoToolbox armv7 <ba11ed2d070931b28a0f08cf663af71e> /System/Library/Frameworks/VideoToolbox.framework/VideoToolbox
0x2c4a1000 - 0x2c68bfff WebKit armv7 <ecf00c91b5f636e294c7303bfea6612e> /System/Library/Frameworks/WebKit.framework/WebKit
0x2cba9000 - 0x2cbadfff AggregateDictionary armv7 <43803ef0c99337ad8e84b201cbd53be4> /System/Library/PrivateFrameworks/AggregateDictionary.framework/AggregateDictionary
0x2cd73000 - 0x2cd76fff AirPlaySupport armv7 <b2ec45734af330c0874506b555b143a0> /System/Library/PrivateFrameworks/AirPlaySupport.framework/AirPlaySupport
0x2cf7b000 - 0x2cfb9fff AppSupport armv7 <e1706add1b26324fb9c8dc6fc3614f95> /System/Library/PrivateFrameworks/AppSupport.framework/AppSupport
0x2d0fb000 - 0x2d139fff AppleJPEG armv7 <2425baad41ae32538d38e5444dfb64f6> /System/Library/PrivateFrameworks/AppleJPEG.framework/AppleJPEG
0x2d144000 - 0x2d156fff ApplePushService armv7 <386a92a19d2c3bc5a315d206d4be4fde> /System/Library/PrivateFrameworks/ApplePushService.framework/ApplePushService
0x2d157000 - 0x2d15dfff AppleSRP armv7 <7211a80b47663c19a1094ca3211cb042> /System/Library/PrivateFrameworks/AppleSRP.framework/AppleSRP
0x2d192000 - 0x2d19bfff AssertionServices armv7 <8afeeca759fd39528c8c003fcbbe3c40> /System/Library/PrivateFrameworks/AssertionServices.framework/AssertionServices
0x2d19c000 - 0x2d1b6fff AssetsLibraryServices armv7 <4eb13a55b12e318f869915f10f60cb4c> /System/Library/PrivateFrameworks/AssetsLibraryServices.framework/AssetsLibraryServices
0x2d21e000 - 0x2d221fff BTLEAudioController armv7 <489e47c243a2337886bcf7283ff7b2b6> /System/Library/PrivateFrameworks/BTLEAudioController.framework/BTLEAudioController
0x2d222000 - 0x2d23afff BackBoardServices armv7 <5387378112d83ef3861b6f2bdb525d74> /System/Library/PrivateFrameworks/BackBoardServices.framework/BackBoardServices
0x2d23d000 - 0x2d272fff BaseBoard armv7 <3ba2d91af0723d69b670a5916ab6a0a9> /System/Library/PrivateFrameworks/BaseBoard.framework/BaseBoard
0x2d4c4000 - 0x2d4ccfff CaptiveNetwork armv7 <514415f4d15630b383e23b8cf8597fb1> /System/Library/PrivateFrameworks/CaptiveNetwork.framework/CaptiveNetwork
0x2d4d5000 - 0x2d5f8fff Celestial armv7 <e8c9906d5d893349b69d9f3183b43245> /System/Library/PrivateFrameworks/Celestial.framework/Celestial
0x2d621000 - 0x2d626fff CertUI armv7 <e43adf2191a43d3fba2742faa13f4350> /System/Library/PrivateFrameworks/CertUI.framework/CertUI
0x2d769000 - 0x2d78afff ChunkingLibrary armv7 <3b5dd2b7e86c35a390eedb16dbe82f5c> /System/Library/PrivateFrameworks/ChunkingLibrary.framework/ChunkingLibrary
0x2d78b000 - 0x2d7cffff CloudDocs armv7 <b65c2b7f7afb329fae393a3b228ca25c> /System/Library/PrivateFrameworks/CloudDocs.framework/CloudDocs
0x2dc7c000 - 0x2dcc4fff ColorSync armv7 <a5f0f7101909375f8206341f0167b497> /System/Library/PrivateFrameworks/ColorSync.framework/ColorSync
0x2dcc8000 - 0x2dcd8fff CommonUtilities armv7 <558efb6105b137fa890c69c0ea8e26ef> /System/Library/PrivateFrameworks/CommonUtilities.framework/CommonUtilities
0x2dd51000 - 0x2dd55fff ConstantClasses armv7 <d6d49478489a3e8fa14f11e460dd3934> /System/Library/PrivateFrameworks/ConstantClasses.framework/ConstantClasses
0x2dd8f000 - 0x2dd96fff CoreAUC armv7 <ef0b9799864637758398678b74c749fa> /System/Library/PrivateFrameworks/CoreAUC.framework/CoreAUC
0x2de11000 - 0x2de33fff CoreDuet armv7 <f23c4f48c0653e618e1fd7aa81bf9ae8> /System/Library/PrivateFrameworks/CoreDuet.framework/CoreDuet
0x2de39000 - 0x2de49fff CoreDuetDaemonProtocol armv7 <176f151714e635419978fe1c490aa835> /System/Library/PrivateFrameworks/CoreDuetDaemonProtocol.framework/CoreDuetDaemonProtocol
0x2de50000 - 0x2de52fff CoreDuetDebugLogging armv7 <5b8e426276a73cf09b19d48a87fc475e> /System/Library/PrivateFrameworks/CoreDuetDebugLogging.framework/CoreDuetDebugLogging
0x2e0be000 - 0x2e159fff CorePDF armv7 <4047b3f8740c3c4582494a84e341531d> /System/Library/PrivateFrameworks/CorePDF.framework/CorePDF
0x2e245000 - 0x2e263fff CoreServicesInternal armv7 <dbeb8d004bf83d49a31d57fdbc7f964a> /System/Library/PrivateFrameworks/CoreServicesInternal.framework/CoreServicesInternal
0x2e463000 - 0x2e4e5fff CoreUI armv7 <1e8947c0cc213ed2946d536e13e13563> /System/Library/PrivateFrameworks/CoreUI.framework/CoreUI
0x2e4e6000 - 0x2e56afff CoreUtils armv7 <8585aaf1da543306ac6f24f824a681b9> /System/Library/PrivateFrameworks/CoreUtils.framework/CoreUtils
0x2e56b000 - 0x2e570fff CrashReporterSupport armv7 <5be916f2f61f343586b98c6b1d230273> /System/Library/PrivateFrameworks/CrashReporterSupport.framework/CrashReporterSupport
0x2e571000 - 0x2e576fff DAAPKit armv7 <9dca61469d0d35259d1d869c04c5c9fe> /System/Library/PrivateFrameworks/DAAPKit.framework/DAAPKit
0x2e7e6000 - 0x2e7fefff DataDetectorsCore armv7 <15433c6eb8783f91b481697d3400bc38> /System/Library/PrivateFrameworks/DataDetectorsCore.framework/DataDetectorsCore
0x2e7ff000 - 0x2e7fffff PhoneNumbers armv7 <21967a49eb2337198d7247c0cfe9c05d> /System/Library/PrivateFrameworks/DataDetectorsCore.framework/PlugIns/PhoneNumbers.plugin/PhoneNumbers
0x2e81a000 - 0x2e820fff DataMigration armv7 <b5acf452ae033f90925513cfd01b8bfd> /System/Library/PrivateFrameworks/DataMigration.framework/DataMigration
0x2e838000 - 0x2e852fff DictionaryServices armv7 <93f47b91fb463c2a9129898cd3a185fa> /System/Library/PrivateFrameworks/DictionaryServices.framework/DictionaryServices
0x2e871000 - 0x2e890fff EAP8021X armv7 <2639d8adafe9363e8c4d5027305bf4c8> /System/Library/PrivateFrameworks/EAP8021X.framework/EAP8021X
0x2e9c6000 - 0x2ede9fff FaceCore armv7 <337307090c7738948561ba7e8eb5dacb> /System/Library/PrivateFrameworks/FaceCore.framework/FaceCore
0x2ee11000 - 0x2ee11fff FontServices armv7 <cbb30d45ea9734bfa6884f86a938a73f> /System/Library/PrivateFrameworks/FontServices.framework/FontServices
0x2ee12000 - 0x2eee7fff libFontParser.dylib armv7 <494ed59103ed36e997fb67e6066643e5> /System/Library/PrivateFrameworks/FontServices.framework/libFontParser.dylib
0x2eee8000 - 0x2eef7fff libGSFontCache.dylib armv7 <bd784593545d39de8954b379fcd0f3aa> /System/Library/PrivateFrameworks/FontServices.framework/libGSFontCache.dylib
0x2eef8000 - 0x2ef26fff libTrueTypeScaler.dylib armv7 <4a3073f4c8e03f8c829fd4253aa1bf51> /System/Library/PrivateFrameworks/FontServices.framework/libTrueTypeScaler.dylib
0x2efdb000 - 0x2eff7fff FrontBoardServices armv7 <1e3e69f7a2b9312aa0678188baeaf4af> /System/Library/PrivateFrameworks/FrontBoardServices.framework/FrontBoardServices
0x2f5ac000 - 0x2f5b3fff libGPUSupportMercury.dylib armv7 <f5b3929b68023133b6613cda7f7a3ede> /System/Library/PrivateFrameworks/GPUSupport.framework/libGPUSupportMercury.dylib
0x2f937000 - 0x2f94dfff GenerationalStorage armv7 <f76b01463f90380ca6ec919ed1398efa> /System/Library/PrivateFrameworks/GenerationalStorage.framework/GenerationalStorage
0x2f94e000 - 0x2fc0efff GeoServices armv7 <926a6ac04e243b168e5fd0bf10c929f4> /System/Library/PrivateFrameworks/GeoServices.framework/GeoServices
0x2fc0f000 - 0x2fc1ffff GraphicsServices armv7 <c5f9926d3a403f5997576e6e043cc70d> /System/Library/PrivateFrameworks/GraphicsServices.framework/GraphicsServices
0x2fe62000 - 0x2fee6fff HomeSharing armv7 <4a8837ae419735b697e8c99aa97c84fc> /System/Library/PrivateFrameworks/HomeSharing.framework/HomeSharing
0x301f6000 - 0x301f9fff IOAccelerator armv7 <dc084a6852df32c0bab91a7dfa2999b1> /System/Library/PrivateFrameworks/IOAccelerator.framework/IOAccelerator
0x301fc000 - 0x30202fff IOMobileFramebuffer armv7 <068bc120153632e19cf70b80b9d120ea> /System/Library/PrivateFrameworks/IOMobileFramebuffer.framework/IOMobileFramebuffer
0x30203000 - 0x30208fff IOSurface armv7 <66aec3303d453ee799985c1a92fc15b2> /System/Library/PrivateFrameworks/IOSurface.framework/IOSurface
0x30209000 - 0x3020afff IOSurfaceAccelerator armv7 <5874c3171d313b5fa3125ba47f08f60f> /System/Library/PrivateFrameworks/IOSurfaceAccelerator.framework/IOSurfaceAccelerator
0x302b2000 - 0x302ebfff LanguageModeling armv7 <989132d79a6b3605ac08181c299086ff> /System/Library/PrivateFrameworks/LanguageModeling.framework/LanguageModeling
0x302ec000 - 0x3030afff LatentSemanticMapping armv7 <e7d9e90fb42a3112b02d2605eb3ab34d> /System/Library/PrivateFrameworks/LatentSemanticMapping.framework/LatentSemanticMapping
0x30365000 - 0x303c2fff MMCS armv7 <2773e5fa30493a65b35cbfd9365cc36d> /System/Library/PrivateFrameworks/MMCS.framework/MMCS
0x30453000 - 0x304f4fff ManagedConfiguration armv7 <46b04219628a3e3aa8fc078fd094544e> /System/Library/PrivateFrameworks/ManagedConfiguration.framework/ManagedConfiguration
0x30504000 - 0x3057afff MediaControlSender armv7 <78214dd2578730f398a3fc622894cd73> /System/Library/PrivateFrameworks/MediaControlSender.framework/MediaControlSender
0x30616000 - 0x3062afff MediaRemote armv7 <2a9d9b63959437d6956338b877f6e4af> /System/Library/PrivateFrameworks/MediaRemote.framework/MediaRemote
0x3062b000 - 0x3063dfff MediaServices armv7 <f3db6c9bc1f33a8c9338ba0d9f2738ba> /System/Library/PrivateFrameworks/MediaServices.framework/MediaServices
0x307b5000 - 0x307c2fff MobileAsset armv7 <513173db2afc385d9bdb36c51ab0d8c0> /System/Library/PrivateFrameworks/MobileAsset.framework/MobileAsset
0x30818000 - 0x3081ffff MobileInstallation armv7 <3b1be2be60273bd1a4b7291ea7a5db2c> /System/Library/PrivateFrameworks/MobileInstallation.framework/MobileInstallation
0x30820000 - 0x3082cfff MobileKeyBag armv7 <ba62d597cb623cc0bef057768f4f16a4> /System/Library/PrivateFrameworks/MobileKeyBag.framework/MobileKeyBag
0x30859000 - 0x3085cfff MobileSystemServices armv7 <88ece9069dc231fcb625eecfa092c559> /System/Library/PrivateFrameworks/MobileSystemServices.framework/MobileSystemServices
0x3087f000 - 0x3088cfff MobileWiFi armv7 <86526b49ad463478a0ad1b665454a91d> /System/Library/PrivateFrameworks/MobileWiFi.framework/MobileWiFi
0x308d3000 - 0x30a9cfff MusicLibrary armv7 <d0ac91087ff9364e89fb5aca14df347b> /System/Library/PrivateFrameworks/MusicLibrary.framework/MusicLibrary
0x30b6a000 - 0x30b6ffff Netrb armv7 <2d1657f764ca3ee19c946eb11a36ccd3> /System/Library/PrivateFrameworks/Netrb.framework/Netrb
0x30b70000 - 0x30b76fff NetworkStatistics armv7 <e998d8394c56364999f08fccad57edc9> /System/Library/PrivateFrameworks/NetworkStatistics.framework/NetworkStatistics
0x30b9a000 - 0x30b9cfff OAuth armv7 <41954e567fc73e0a8ee6f0c60e956239> /System/Library/PrivateFrameworks/OAuth.framework/OAuth
0x312fc000 - 0x31338fff OpenCL armv7 <9e433d6013b933ffb34c8acb6ebefe93> /System/Library/PrivateFrameworks/OpenCL.framework/OpenCL
0x31462000 - 0x31489fff PersistentConnection armv7 <fe6655dd93473cb1b435ba718ff41ce6> /System/Library/PrivateFrameworks/PersistentConnection.framework/PersistentConnection
0x318af000 - 0x318f9fff PhysicsKit armv7 <f875279d5fe53e088a04e0537f753479> /System/Library/PrivateFrameworks/PhysicsKit.framework/PhysicsKit
0x31911000 - 0x31918fff PowerLog armv7 <894fa9a13ee23ffc908c74c4dd4fd11f> /System/Library/PrivateFrameworks/PowerLog.framework/PowerLog
0x31c15000 - 0x31cabfff ProofReader armv7 <ef503c6ecf1d38019c86c5edeeffd9b7> /System/Library/PrivateFrameworks/ProofReader.framework/ProofReader
0x31cac000 - 0x31ccdfff ProtectedCloudStorage armv7 <dc50ec11c9573db4aa8c0bd1cddc8651> /System/Library/PrivateFrameworks/ProtectedCloudStorage.framework/ProtectedCloudStorage
0x31cce000 - 0x31cdafff ProtocolBuffer armv7 <eb68ec7e846e3eec960a2f1a87d2df46> /System/Library/PrivateFrameworks/ProtocolBuffer.framework/ProtocolBuffer
0x31d0f000 - 0x31d7dfff Quagga armv7 <4c908b7b1c723f1baf4701b12a3035b9> /System/Library/PrivateFrameworks/Quagga.framework/Quagga
0x31d7e000 - 0x31d86fff QuickLookThumbnailing armv7 <a922d817d9513654ad3d3cd5c1019b7b> /System/Library/PrivateFrameworks/QuickLookThumbnailing.framework/QuickLookThumbnailing
0x32227000 - 0x32241fff SpringBoardServices armv7 <bab3eb8a02e63c58816caa119a0eedae> /System/Library/PrivateFrameworks/SpringBoardServices.framework/SpringBoardServices
0x325b4000 - 0x326e0fff StoreServices armv7 <8a6532b3f1d73bf080dd61fcf421ffe6> /System/Library/PrivateFrameworks/StoreServices.framework/StoreServices
0x327ab000 - 0x327b1fff SymptomReporter armv7 <00320c7665133556a2dc2d14f15ce2ed> /System/Library/PrivateFrameworks/Symptoms.framework/Frameworks/SymptomReporter.framework/SymptomReporter
0x327ba000 - 0x327bdfff TCC armv7 <d9a2a6b05bab3a8da9be98fa2aa2ad2d> /System/Library/PrivateFrameworks/TCC.framework/TCC
0x3340f000 - 0x33437fff TextInput armv7 <bc6b4690669831c491b5cc158a43fd1b> /System/Library/PrivateFrameworks/TextInput.framework/TextInput
0x334f4000 - 0x335b6fff UIFoundation armv7 <b95c82977904320ca9e5a46d34ddf634> /System/Library/PrivateFrameworks/UIFoundation.framework/UIFoundation
0x335d3000 - 0x335d6fff UserFS armv7 <3b2efb8ace9234c1a5d30548618278e1> /System/Library/PrivateFrameworks/UserFS.framework/UserFS
0x33e34000 - 0x33e48fff WebContentAnalysis armv7 <f6c05605f68e32f488965707e06db6b5> /System/Library/PrivateFrameworks/WebContentAnalysis.framework/WebContentAnalysis
0x33e49000 - 0x349c7fff WebCore armv7 <9a857980242731b3b86ed88baf7764d9> /System/Library/PrivateFrameworks/WebCore.framework/WebCore
0x349c8000 - 0x34a86fff WebKitLegacy armv7 <cf9deb949e44336498e1eadc4339124d> /System/Library/PrivateFrameworks/WebKitLegacy.framework/WebKitLegacy
0x34a87000 - 0x34beefff WebUI armv7 <1e58cff407523da494cb28acd8a5b08a> /System/Library/PrivateFrameworks/WebUI.framework/WebUI
0x34e7a000 - 0x34eb5fff iTunesStore armv7 <7b378973157930f6b5e6abccb5111893> /System/Library/PrivateFrameworks/iTunesStore.framework/iTunesStore
0x35755000 - 0x3575dfff libAccessibility.dylib armv7 <d8223224f89531979ca64044e132cc64> /usr/lib/libAccessibility.dylib
0x359b1000 - 0x359c7fff libCRFSuite.dylib armv7 <6c8b4c1a81be3031b11bb2c8df905bfc> /usr/lib/libCRFSuite.dylib
0x359fa000 - 0x35afdfff libFosl_dynamic.dylib armv7 <d3a22c809a2137df9759998fee35f7a5> /usr/lib/libFosl_dynamic.dylib
0x35b17000 - 0x35b2efff libMobileGestalt.dylib armv7 <546035acb66b34fe8eb65a146ddd68fa> /usr/lib/libMobileGestalt.dylib
0x35b2f000 - 0x35b37fff libMobileGestaltExtensions.dylib armv7 <d34e1da449153a6884288871846f20ae> /usr/lib/libMobileGestaltExtensions.dylib
0x35b54000 - 0x35b55fff libSystem.B.dylib armv7 <08ff7c3cbd4e3e67993d0a48e6aed3fc> /usr/lib/libSystem.B.dylib
0x35bc6000 - 0x35c0afff libTelephonyUtilDynamic.dylib armv7 <22c8bc66647739f6a622daa126a5ddf5> /usr/lib/libTelephonyUtilDynamic.dylib
0x35d1a000 - 0x35d3cfff libarchive.2.dylib armv7 <bb88ac87da0539deb475655459969c75> /usr/lib/libarchive.2.dylib
0x35d3d000 - 0x35d3dfff libassertion_extension.dylib armv7 <c81b3b681dfa38bd82aadb07aca57faa> /usr/lib/libassertion_extension.dylib
0x35d6c000 - 0x35d78fff libbsm.0.dylib armv7 <5aacb51d3ab33eef96a210df170248aa> /usr/lib/libbsm.0.dylib
0x35d79000 - 0x35d82fff libbz2.1.0.dylib armv7 <3c8e4bd716963edeaed85a57f20d034e> /usr/lib/libbz2.1.0.dylib
0x35d83000 - 0x35dcdfff libc++.1.dylib armv7 <809aa036ab31309c926ca9e6ebe6250a> /usr/lib/libc++.1.dylib
0x35dce000 - 0x35de9fff libc++abi.dylib armv7 <406002273d8637abbaee6bac38172aa9> /usr/lib/libc++abi.dylib
0x35deb000 - 0x35df8fff libcmph.dylib armv7 <5e36a49a7c7c348bba8c34a9c7949c31> /usr/lib/libcmph.dylib
0x35df9000 - 0x35e01fff libcupolicy.dylib armv7 <aa99a13b634a37c3bc1b8d5bf199b854> /usr/lib/libcupolicy.dylib
0x35e28000 - 0x35e41fff libextension.dylib armv7 <1a01cb8a02303c3192303e971b6f6d9b> /usr/lib/libextension.dylib
0x35f72000 - 0x35f75fff libheimdal-asn1.dylib armv7 <18b222a9065935c1bc36f6bd6e91e4c9> /usr/lib/libheimdal-asn1.dylib
0x35f76000 - 0x36063fff libiconv.2.dylib armv7 <d2471d9b21d5391e9ebf48bdd3c535ed> /usr/lib/libiconv.2.dylib
0x36064000 - 0x361d2fff libicucore.A.dylib armv7 <c120e1f95861313a8f011280de2b5058> /usr/lib/libicucore.A.dylib
0x361df000 - 0x361dffff liblangid.dylib armv7 <3daf9c9e347e35488c42f7013b600555> /usr/lib/liblangid.dylib
0x361e0000 - 0x361eafff liblockdown.dylib armv7 <a5d7dd55fc0434d69bffb76a88de209b> /usr/lib/liblockdown.dylib
0x361eb000 - 0x36200fff liblzma.5.dylib armv7 <b83d5e0f50b7392186780d7fa064b2b7> /usr/lib/liblzma.5.dylib
0x3657b000 - 0x36590fff libmis.dylib armv7 <beea4b45428233e7af8a7838e04c0e8c> /usr/lib/libmis.dylib
0x365ba000 - 0x367b4fff libobjc.A.dylib armv7 <59d299fcc23336749134265993dd48ee> /usr/lib/libobjc.A.dylib
0x368a9000 - 0x36959fff libsqlite3.dylib armv7 <674b23fdd5193544b3658ebe42c88772> /usr/lib/libsqlite3.dylib
0x369db000 - 0x36a91fff libxml2.2.dylib armv7 <86ed8d560d153de3addfcad7374d30cc> /usr/lib/libxml2.2.dylib
0x36a92000 - 0x36ab3fff libxslt.1.dylib armv7 <0f99757ecf3a337996c29faf5f8e5dc1> /usr/lib/libxslt.1.dylib
0x36ab4000 - 0x36ac0fff libz.1.dylib armv7 <9f5e8650f96c351ab9c094e7a280aae2> /usr/lib/libz.1.dylib
0x36ac1000 - 0x36ac5fff libcache.dylib armv7 <91080a77362f321aab9ee9355030dd3e> /usr/lib/system/libcache.dylib
0x36ac6000 - 0x36acffff libcommonCrypto.dylib armv7 <81d06fb7445e3dc7ada75ed0b97003e0> /usr/lib/system/libcommonCrypto.dylib
0x36ad0000 - 0x36ad4fff libcompiler_rt.dylib armv7 <791bcfcf3be332d583aec09e3ecce816> /usr/lib/system/libcompiler_rt.dylib
0x36ad5000 - 0x36adbfff libcopyfile.dylib armv7 <b3781346554f328ea685999660cb7087> /usr/lib/system/libcopyfile.dylib
0x36adc000 - 0x36b28fff libcorecrypto.dylib armv7 <ab04a29c292630a89a5d37306720cffc> /usr/lib/system/libcorecrypto.dylib
0x36b29000 - 0x36b66fff libdispatch.dylib armv7 <7773602666b33c5fa7a42abc1f0426b4> /usr/lib/system/libdispatch.dylib
0x36b67000 - 0x36b68fff libdyld.dylib armv7 <94d89e576aeb386ebdfc40cccc32f2f1> /usr/lib/system/libdyld.dylib
0x36b69000 - 0x36b69fff libkeymgr.dylib armv7 <f998ce3066a031f1a1e803d54f24fd2c> /usr/lib/system/libkeymgr.dylib
0x36b6a000 - 0x36b6afff liblaunch.dylib armv7 <60f1508df69c3927bd313c3064a8ac34> /usr/lib/system/liblaunch.dylib
0x36b6b000 - 0x36b6efff libmacho.dylib armv7 <68c916315aa631adbaec0a8a42e338b4> /usr/lib/system/libmacho.dylib
0x36b6f000 - 0x36b70fff libremovefile.dylib armv7 <193828d453763f91a9d9c91118fe29a5> /usr/lib/system/libremovefile.dylib
0x36b71000 - 0x36b82fff libsystem_asl.dylib armv7 <32c06053050f37988233ef007a20222e> /usr/lib/system/libsystem_asl.dylib
0x36b83000 - 0x36b83fff libsystem_blocks.dylib armv7 <b4aba582daef30188b92ca1adbf0014c> /usr/lib/system/libsystem_blocks.dylib
0x36b84000 - 0x36be6fff libsystem_c.dylib armv7 <f9bba36ff63532b7ab9416ad089b915c> /usr/lib/system/libsystem_c.dylib
0x36be7000 - 0x36be9fff libsystem_configuration.dylib armv7 <dfcd8a8b3e19374d9d9b92f9125ed23b> /usr/lib/system/libsystem_configuration.dylib
0x36bea000 - 0x36bebfff libsystem_coreservices.dylib armv7 <9c170573a08b3e8ab8fd07cf3d5738a0> /usr/lib/system/libsystem_coreservices.dylib
0x36bec000 - 0x36bf8fff libsystem_coretls.dylib armv7 <0cfe7517b74438c2bb1aa146f27bd8c5> /usr/lib/system/libsystem_coretls.dylib
0x36bf9000 - 0x36bfffff libsystem_dnssd.dylib armv7 <b74319a4cdb23c15827c30e3acfac206> /usr/lib/system/libsystem_dnssd.dylib
0x36c00000 - 0x36c19fff libsystem_info.dylib armv7 <dac280dca30a3d8ea90f6ff7530c65f3> /usr/lib/system/libsystem_info.dylib
0x36c1a000 - 0x36c34fff libsystem_kernel.dylib armv7 <bb8bc7dde0db32c7b450986eaef3f255> /usr/lib/system/libsystem_kernel.dylib
0x36c35000 - 0x36c55fff libsystem_m.dylib armv7 <2ca83504dc863c2380ef4d837283d936> /usr/lib/system/libsystem_m.dylib
0x36c56000 - 0x36c68fff libsystem_malloc.dylib armv7 <b4ac17518c163fe5b14d4e1bb8dad86a> /usr/lib/system/libsystem_malloc.dylib
0x36c69000 - 0x36c97fff libsystem_network.dylib armv7 <6ca030ccb376302498cf989a98ba2056> /usr/lib/system/libsystem_network.dylib
0x36c98000 - 0x36c9dfff libsystem_networkextension.dylib armv7 <7636aa6643b13c178882862c65eb8098> /usr/lib/system/libsystem_networkextension.dylib
0x36c9e000 - 0x36ca5fff libsystem_notify.dylib armv7 <114882d084cd38c1af8b91927fc70464> /usr/lib/system/libsystem_notify.dylib
0x36ca6000 - 0x36cabfff libsystem_platform.dylib armv7 <4e61678a7d2b334bb08e058943ef2712> /usr/lib/system/libsystem_platform.dylib
0x36cac000 - 0x36cb2fff libsystem_pthread.dylib armv7 <02d86fbb3e9434449f50d011aec33e43> /usr/lib/system/libsystem_pthread.dylib
0x36cb3000 - 0x36cb5fff libsystem_sandbox.dylib armv7 <978280d6072e394dbffb0285d9715c63> /usr/lib/system/libsystem_sandbox.dylib
0x36cb6000 - 0x36cb9fff libsystem_stats.dylib armv7 <0c0f198111183e69872af168499d8292> /usr/lib/system/libsystem_stats.dylib
0x36cba000 - 0x36cbffff libsystem_trace.dylib armv7 <7c16daabde3e3596af2ca8ee9c6a5d8d> /usr/lib/system/libsystem_trace.dylib
0x36cc0000 - 0x36cc0fff libunwind.dylib armv7 <7a86e925589a3c6eb9bb604386a4498d> /usr/lib/system/libunwind.dylib
0x36cc1000 - 0x36cdcfff libxpc.dylib armv7 <89a85f226d7333d89d7afcf58d58c58e> /usr/lib/system/libxpc.dylib

Problem popup

0
0
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Professional, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM)2 Duo CPU E7600 @ 3.06GHz, Intel64 Family 6 Model 23 Stepping 10
Processor Count: 2
RAM: 12159 Mb
Graphics Card: Intel(R) Q45/Q43 Express Chipset, 1759 Mb
Hard Drives: C: Total - 953766 MB, Free - 861567 MB; E: Total - 1430796 MB, Free - 1030206 MB;
Motherboard: Hewlett-Packard, 3048h
Antivirus: Microsoft Security Essentials, Updated and Enabled


I am getting popups and I have not been able to determine their origin. I am running Malwarebytes Premium and have not detected any issues with its scan. I believe I've traced the popup to this:
"C:\Program Files (x86)\Windows Network Accelerater\v5" and periodically I get a popup telling me this or that program update is available. At the same time, Secunia PSI tells me that all programs are up to date. I attached a snip of the popup I just got and in this specific case, I uninstalled VideoLan Player months ago but still get this message. Other messages mention Adobe or Microsoft programs that need to be 'installed'. Is this for real or do I have a problem, and if it is a problem, how can I get rid of it? Thanks in advance for your assistance.
Mike




Attached Images
File Type: jpg Capture.JPG (37.2 KB)

Isass.exe bringing my computer to a standstill

0
0
Snafu777,
You are living dangerously, with Quickbooks on an XP machine.
The data in quickbooks is at extra risk of being stolen.
It's not clear whether the immediate issue can be fixed here, but the long term issue is serious.
-------------------------------------------------------------
An article on the subject of XP, and options on what to do, is here:
http://www.malwareremoval.com/forum/...4#.UsLF3bRs_TI
The entire thread is also available as a PDF document here: http://downloads.malwareremoval.com/XP-The Elephant.pdf
----------------------------------------------
Download and Run Temp File Cleaner (TFC.exe)
Download Temp File Cleaner and save it to your desktop.
You might want to Save any unsaved work. TFC will close ALL open programs... including your browser!
Right click the TFC icon and choose Run as administrator.
If you have a lot of junk files to remove, it could take a while, so please be patient and let it finish.
When it's done, it will report the total size of files removed. If it asks to Reboot, choose to do so. This will remove files that could not be removed while Windows was running.
After Restart, log back in to your usual account.
You can keep TFC on your desktop and run it every week or two to clean out excessive temporary files. It does usually require a restart.
-----------------------------------------------------------
Download and Run the Farbar Scan Tool
  • Download FRST and save to your Desktop.
  • Double click FRST.exe to launch it.
  • FRST will start to run.
    • When the tool opens click Yes to disclaimer.
    • Press the Scan button.
    • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
    • Please post them in your next reply.
If you lose track of them, they will be saved in the same location as your FRST.exe download.
Feel free to use separate replies if it's more convenient.

So we are looking for the contents of the two logs from FRST.
askey127

Adware(Potantially)

0
0
Hey folks,i need help.Today i started up my PC and in every page I open there is same ad with signature Ads by Browser Shop.I already ran adwcleaner,and afther that MBAM ,and they're still there(i did restart after adwcleaner and MBAM).

Think my parents computer is infected

0
0
There pc is running slowly and Windows won't update.

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz, Intel64 Family 6 Model 23 Stepping 10
Processor Count: 2
RAM: 3061 Mb
Graphics Card: Intel(R) G33/G31 Express Chipset Family, 256 Mb
Hard Drives: C: Total - 293033 MB, Free - 227060 MB; D: Total - 12108 MB, Free - 2207 MB;
Motherboard: MSI, Boston
Antivirus: Norton Internet Security, Updated and Enabled

Just wanted to add I ran ADWcleaner and cleaned what it found and i am now able to update Windows. here is the log.

# AdwCleaner v4.207 - Logfile created 26/06/2015 at 14:35:03
# Updated 21/06/2015 by Xplode
# Database : 2015-06-23.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : bfam - BFAM-PC
# Running from : C:\Users\bfam\Downloads\AdwCleaner.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Users\bfam\AppData\Local\Browser Extensions
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{271E6FE6-9A91-4FBD-9A41-9CC8350CCFE8}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{271E6FE6-9A91-4FBD-9A41-9CC8350CCFE8}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\{F2E9660B-98AF-42c0-8258-9CDDF07BF95D}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17728


-\\ Google Chrome v43.0.2357.130

[C:\Users\bfam\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\bfam\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [4256 bytes] - [26/06/2015 14:25:20]
AdwCleaner[S0].txt - [3910 bytes] - [26/06/2015 14:35:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3969 bytes] ##########



if theres anything elsee i can run to make sure it's clean please let me know.

Something stopping me from logging onto paypal

0
0
Hi all,

Not sure if I am in the correct category, but I figure our administrator will move me if I'm not.

Something (malware?) is preventing me from logging onto PayPal, and checking out from a website that only uses PayPal. At first I didn't think it was my computer because I clear my browsing history every Monday and I run my CCleaner. Also, when I couldn't go though "check out" the website owner told me my computer had a problem, so I ran several virus scans: Two Kasperskey virus (vulnerabillity & critical area) scans, and a windows defender scan. All say my computer is running normally.

Here's what happens:

When I try to log onto PayPal I get a page that says: "Your Connection Is Not Private -- Attackers Might Be trying To Steal Your Information From www.paypal.com" It goes on to say "When Chrome tried to log onto www,paypal.com the website sent back unusual and incorrect information." And: "Chrome stopped the connection before any data was exchanged."

I have a: COMPAQ PRESARIO CQ2014 DESKTOP PC with AMD DUAL-CORE PROCESSOR, 3 GB / GO DDR 3 of RAM and a 500 GB / GO Hard Drive

I am currently using WINDOWS 7 with KASPERSKY ANTI VIRUS protection, and my browser is Chrome. Also, when I am not on my desktop I use an HP 7 ANDROID TABLET.

I can't log onto Paypal with my tablet either, but instead of the words above I am redirected to different unknown websites.

Why is this happening? Has this happened to anyone else?

Laptop running extremely slow

0
0
The laptop is running really good now, thanks heaps!!!

I have also upgraded the ram and this took it to another level. 4 gig of a possible 8.

Thanks again
Baleguy

eFix Results-Bad PC Security Level + Virus

0
0
do not use any snake oil program like e-fix . It will make the situation worse

Step 1
Click on this link to download : ADWCleaner Click on ONE of the Two Blue Download Now buttons That have a blue arrow beside them and save it to your desktop. Do not click on any links in the top Advert.

See the screenshot where the proper download buttons are highlighted


NOTE: If using Internet Explorer and you get an alert that stops the program downloading click on Tools > Smartscreen Filter > Turn off Smartscreen Filter then click on OK in the box that opens. Then click on the link again.

Close your browser and double click on this icon on your desktop:



You will then see the screen below, click on the Scan button (as indicated), accept any prompts that appear and allow it to run, it may take several minutes to complete, when it is done, you will get a message saying "PENDING" , Ignore that & click on the Clean button, accept any prompts that appear and allow the system to reboot. You will then be presented with the report, Copy & Paste it into your next post.
Please note: the newer versions of Adwcleaner have a pretty colour display on some versions of windows and slightly different icons. The screenshots are from the older version but are basically the same

computer setting keep changing and random error message pop ups

0
0
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Pentium(R) CPU B970 @ 2.30GHz, Intel64 Family 6 Model 42 Stepping 7
Processor Count: 2
RAM: 4000 Mb
Graphics Card: Intel(R) HD Graphics Family, 1808 Mb
Hard Drives: C: Total - 190775 MB, Free - 69017 MB; D: Total - 260561 MB, Free - 260429 MB;
Motherboard: ASUSTeK Computer Inc., K54C
Antivirus: Microsoft Security Essentials, Updated and Enabled




This all started about a month ago when Google chrome browser stopped working. As in it wouldn't load up the main page or freeze. And I would have to shut it down to get my computer working again. So I backed up my music, pics, vids, etc.. Then deleted Google chrome along with anything else I don't remember downloading. Now my setting change from windows 7 to what looks like a older version of windows. And the same 2 error messages keep popping up at random times named RunDLL. I would like to know how to fix this as well as a good program that will help prevent this from happening again. I had malwarebytes (free) and I ran that several times with no help. I have since deleted the program because I was going try to reset my computer and that program stopped me every time, however in the end I did not reset my computer.

Popups and Ads

0
0
I need to have the popups and ads removed and cleaned off

popups and ads

0
0
My computer needs to be cleaned it has a lot of popups and other little boxes coming up while I am typing

Computer running very sluggish.

0
0
For the past year my computer has been running very sluggish, especially when I use my internet browser. My computer's hardware is more than sufficient enough to internet browse so I definitely know this is a result of a virus. I have been putting this off trying to get this fixed for quite some time because I never really had the opportunity to fix it but eventually I reached my breaking point and I feel that I have had enough.

Here's my HJTlog:
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 1:41:52 PM, on 6/27/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)

FIREFOX: 38.0.5 (x86 en-GB)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Users\Tome\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Tome\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Users\Tome\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
C:\Users\Tome\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
C:\Users\Tome\AppData\Roaming\Spotify\Spotify.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera_crashreporter.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\Opera\30.0.1835.88\opera.exe
C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe
C:\Users\Tome\Downloads\HijackThis (1).exe
C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={030FD471-42A7-4FF3-A630-42215BF9F565}&mid=479cb041349147cda4376de783387da1-6bc4b34ce9ee813f67ecc913b3ef20dab54e604d&lang=en&ds=AVG&coid=avgtbavg&cmpid =0215pit&pr=fr&d=2015-05-24 21:58:34&v=4.1.0.411&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 74.208.10.249 gs.apple.com
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Web TuneUp\4.1.0.411\AVG Web TuneUp.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [shield] C:\Program Files (x86)\Shield\shieldtray.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [LauncherC1765nf] "C:\Program Files (x86)\Dell Printers\Printer SSW\Launcher\dlm1launcher.exe" /S Dell C1765nf Color MFP
O4 - HKLM\..\Run: [StatusAutoRunC1765nf] "C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1pl.exe" RUNSTART
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files (x86)\Yahoo!\Messenger\YPager.exe -quiet
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Tome\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Tome\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - Startup: OneNote 2010 Screen Clipper and Launcher.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O4 - Global Startup: desktop (1).ini
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{1BE4E777-F26C-441E-B741-7C60C51E938C}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{5CDE650B-9662-4CBC-8931-55B3949CD891}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{9D6FAFE7-99BF-4F41-BC9C-4DAA71B77527}: NameServer = 156.154.70.22,156.154.71.22
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: COMODO Internet Security Helper Service (cmdagent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Dell Status Monitor Database (DLNBDB) - Unknown owner - C:\Program Files (x86)\Dell Printers\Printer SSW\Status Monitor\dlm1db.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intuit Update Service v4 (IntuitUpdateServiceV4) - Intuit Inc. - C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice_tmp.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Realtek87B - Realtek - C:\Program Files (x86)\Realtek\RTL8187 Wireless LAN Utility\RtlService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: ShadowExplorer Service (sesvc) - www.shadowexplorer.com - C:\Program Files (x86)\ShadowExplorer\sesvc.exe
O23 - Service: SHDSERV - Unknown owner - C:\Program Files (x86)\Shield\shdserv.exe
O23 - Service: Shield Client Service (ShieldClientService) - Unknown owner - C:\Program Files (x86)\Shield\shieldclnt.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.4.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe

--
End of file - 15396 bytes







Thanks in advance.

Hit by "DealSpace"

0
0
So I gave my harddrive to a colleague and ever since I got it back from her, all my browsers have been 'taken over' by Dealspace and Ads by DealSpace.

Here's my SysInfo Log
Quote:

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Ultimate, Service Pack 1, 64 bit
Processor: AMD FX(tm)-8350 Eight-Core Processor, AMD64 Family 21 Model 2 Stepping 0
Processor Count: 8
RAM: 16282 Mb
Graphics Card: AMD Radeon HD 7800 Series, -2048 Mb
Hard Drives: C: Total - 57138 MB, Free - 2781 MB; E: Total - 406936 MB, Free - 194845 MB; F: Total - 9999 MB, Free - 2718 MB; G: Total - 476937 MB, Free - 300814 MB; I: Total - 953634 MB, Free - 243863 MB;
Motherboard: ASUSTeK COMPUTER INC., CROSSHAIR V FORMULA-Z
Antivirus: None
Please help, thank you :)

Drive inrusion/hijacking feared

0
0
Hello there: I've been keeping an eye on my disk Used Space count for over a year since I noticed that the amount shown on that day, after clicking 'Properties', was far higher than the amount shown on the previous day. The weird thing is that at times the count is lower [from 35,075,772,000 on Aug.7/14 to 32,925,254,000 on Aug.8/14 but most of the time the count is higher by a huge gap like 33,071,047,000 on Fri.,Aug.15/14 to 35,315,864,000 the following Monday, Aug.18/14 to 38,819,946,000 by Tue., Aug.19; more recently it went from 36,526,375,000 on Fri., June 5/15 to 39,332,327,000 the following Monday without my having spent any significant time on my computer over that weekend. As I write this post the count is up to 43,079,946,240 which is a whopping 17.94% increase over the count on June 5. I am VERY CONCERNED and fear that my computer has been hijacked by something nefarious like one of those zombie botnets or worse. Perversely, cleaning the drive sometimes has the opposite effect and results in a higher count although not by much.
My laptop is a bottom-of-the-line TOSHIBA C50D-A-024 AMD running on Win 8.1 but the same thing happened when I had an HP Pavillion / WIN 7.
Let me make it clear that I never stream films or play games online or do any of those activities that consume large chunks of bandwith; just read the news, bit of market trading and the occasional video embedded in a news report, and there are the monthly MS Windows updates; Norton Internet Security is installed on my system. Not being much of a techie I'm at a loss to understand what's going on and fear the worst. If anyone out there can help on this issue it'll be much, verily much appreciated.
3nexxio5

Interpol virus help needed

0
0
Hello, I hope you can help me. Two days ago I picked up a Interpol virus that instructed me to send money to have the virus removed. I didn't. Instead, I checked the internet and ended up purchasing Spyhunter. I ran it and it located two Trojans and removed them (as far as I can tell). I am very concerned about using the PC normally again (i.e., for e-mail, banking, work etc.) I consider myself less than a beginner when it comes to using a PC other than for e-mail, web surfing, research, etc.

How can I make sure that my PC is clean and safe to use?

I hope I've provided everything you need to help.
Thank you in advance,

Brasspiper


Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows XP Professional, Service Pack 3, 32 bit
Processor: Intel(R) Core(TM)2 Duo CPU T5670 @ 1.80GHz, x86 Family 6 Model 15 Stepping 13
Processor Count: 2
RAM: 3061 Mb
Graphics Card: Mobile Intel(R) 965 Express Chipset Family, 256 Mb
Hard Drives: C: Total - 152625 MB, Free - 137073 MB;
Motherboard: Intel Corp., Base Board Product Name
Antivirus: ESET NOD32 Antivirus 7.0, Updated: Yes, On-Demand Scanner: Enabled

Computer may be hijacked

0
0
Hi,

My daughter inherited a computer and the previous user used to play a lot of online games etc. I deleted what I could find but still there seem to be a lot of issues. I would appreciate any help you can provide. Thanks. Here is the sys info:

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: AMD C-50 Processor, AMD64 Family 20 Model 1 Stepping 0
Processor Count: 2
RAM: 2662 Mb
Graphics Card: AMD Radeon HD 6250 Graphics, 384 Mb
Hard Drives: C: Total - 292136 MB, Free - 246812 MB;
Motherboard: TOSHIBA, Portable PC
Antivirus: Panda Free Antivirus, Updated and Enabled


And I did a hijack this scan and here is the log file:

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 3:47:35 PM, on 6/28/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)

FIREFOX: 25.0.1 (en-US)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.10.26\ccSvcHst.exe
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Grandma Audrey\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.toshiba.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.yhs4.search.yahoo.com/yhs/web?hspart=SGMedia&hsimp=yhs-sgm_ytb&type=20140117,$ycode,ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn3\yt.dll
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn3\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn3\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [PSUAMain] "C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: DSUDiskOptimizer - Unknown owner - C:\Program Files (x86)\Disk Speedup\DSUDefragSrv64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Panda Protection Service (NanoServiceMain) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Toshiba Laptop Checkup Application Launcher (Norton PC Checkup Application Launcher) - Symantec Corporation - C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.10.26\SymcPCCULaunchSvc.exe
O23 - Service: Panda Devices Agent (PandaAgent) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service: Common Client Job Manager Service (PCCUJobMgr) - Symantec Corporation - C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.10.26\ccSvcHst.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Panda Product Service (PSUAService) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 10944 bytes

Blue screen

0
0
I have a blue screen warning that just popped warning of a ERROR 333 registry failure, a phone number is shown and a request to call Microsoft technical .... the phone number connect to an outfit in India who charge for diagnosis and repair !.
The blue screen cannot be deleted.... what must I do to rectify this situation .... the page warns against shutting down !!

Thank you .


I have, since posting, run a junk removal tool programme, that cleared the issue.
Thank you.

Extremely slow overall speeds and internet crashing

0
0
Below are both logs. ESET NOD32 is not up to date. I don't use it, should I?



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:28-06-2015 01
Ran by Robert Levine (administrator) on ROBERTLEVINE-LA on 28-06-2015 20:49:04
Running from C:\Users\Robert Levine\Desktop
Loaded Profiles: Robert Levine (Available Profiles: Robert Levine)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Acer) C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.EXE
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerEvent.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_190.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_190.exe
(Farbar) C:\Users\Robert Levine\Desktop\FRST64(1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-07-06] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7940128 2009-07-06] (Realtek Semiconductor)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe [828960 2009-08-06] (Acer Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [825864 2009-08-17] (Dritek System Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152544 2012-12-12] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992 2015-03-06] (IObit)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-08-20] (Google Inc.)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [21969480 2015-05-19] (Google)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6581488 2013-08-14] (SUPERAntiSpyware)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_190_Plugin.exe [927920 2015-06-24] (Adobe Systems Incorporated)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\MountPoints2: {946da12e-35a6-11e2-848a-00269e4e6115} - D:\LGAutoRun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-25] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk [2009-12-03]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer: source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer: source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
SearchScopes: HKU\.DEFAULT -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-562143518-3092077655-1884302216-1000 -> {180780f0-b348-4b44-8210-94a8f3ee15b2} URL = http://search.comcast.net/search/?cat=Web&con=toolbar&q={searchTerms}
SearchScopes: HKU\S-1-5-21-562143518-3092077655-1884302216-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer: source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW_enUS356
SearchScopes: HKU\S-1-5-21-562143518-3092077655-1884302216-1000 -> {B730E2FB-931E-C117-652C-C429D0471E60} URL = http://www.bing.com/search?q={searchTerms}&pc=ZUGO&form=ZGAIDF
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-02-14] (IObit)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-12-29] (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.6.5825.1100\swg64.dll [2010-12-02] (Google Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10] (Sun Microsystems, Inc.)
BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-29] (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5825.1100\swg.dll [2010-12-02] (Google Inc.)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-04-01] (IObit)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-12-29] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-29] (Google Inc.)
Toolbar: HKU\S-1-5-21-562143518-3092077655-1884302216-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-12-29] (Google Inc.)
DPF: HKLM {8AD9C840-044E-11D1-B3E9-00805F499D93} https://healthweb.stjohn.org/update/...ndows-i586.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll [2009-02-06] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll [2009-02-06] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75
Tcpip\..\Interfaces\{3735CC59-560E-41A5-9231-88599413F005}: [DhcpNameServer] 75.75.76.76 75.75.75.75
Tcpip\..\Interfaces\{7478F35A-A3A8-4F20-826B-2B339EB04BA7}: [DhcpNameServer] 68.87.66.249 162.150.8.28

FireFox:
========
FF ProfilePath: C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: https://www.google.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_190.dll [2015-06-24] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll [2015-06-24] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2012-10-31] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8064.0206 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-02-06] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-562143518-3092077655-1884302216-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101772.dll [2012-12-27] (Amazon.com, Inc.)
FF user.js: detected! => C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default\user.js [2015-02-14]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default\searchplug ins\bing-zugo.xml [2010-12-02]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\xfinity.xml [2012-02-28]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default\Extensions \iobitascsurfingprotection@iobit.com [2015-04-18]
FF Extension: Search Toolbar - C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default\Extensions \searchtoolbar@zugo.com [2010-12-02]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009-12-02]

Chrome:
=======
CHR Profile: C:\Users\Robert Levine\AppData\Local\Google\Chrome\User Data\Default
CHR HKU\S-1-5-21-562143518-3092077655-1884302216-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\ROBERT~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlha lf_live.crx [2013-05-04]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [143120 2013-05-23] (SUPERAntiSpyware.com)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [814880 2015-04-03] (IObit)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-01-27] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-03-26] (IObit)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2014-11-10] (IObit)
S3 int15.sys; C:\Windows\System32\OEM\Factory\int15.sys [17952 2008-03-28] (Acer, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
S3 PTDUBus; C:\Windows\System32\DRIVERS\PTDUBus.sys [70672 2009-08-12] (DEVGURU Co., LTD.)
S3 PTDUMdm; C:\Windows\System32\DRIVERS\PTDUMdm.sys [173456 2009-08-12] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 PTDUVsp; C:\Windows\System32\DRIVERS\PTDUVsp.sys [173456 2009-08-12] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 PTDUWFLT; C:\Windows\System32\DRIVERS\PTDUWFLT.sys [12688 2009-08-12] (DEVGURU Co., LTD.)
S3 PTDUWWAN; C:\Windows\System32\DRIVERS\PTDUWWAN.sys [141840 2009-08-12] (DEVGURU Co., LTD.)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2014-11-10] (IObit.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2014-11-10] (IObit.com)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-28 20:49 - 2015-06-28 20:49 - 00018037 _____ C:\Users\Robert Levine\Desktop\FRST.txt
2015-06-28 20:47 - 2015-06-28 20:47 - 02112512 _____ (Farbar) C:\Users\Robert Levine\Desktop\FRST64(1).exe
2015-06-27 19:12 - 2015-06-27 19:12 - 00281632 _____ C:\Windows\Minidump\062715-29749-01.dmp
2015-06-24 22:48 - 2015-06-24 22:48 - 18174128 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-06-15 19:19 - 2015-06-15 19:19 - 00000000 ____D C:\Users\Robert Levine\AppData\Local\GWX
2015-06-15 19:17 - 2015-06-27 19:12 - 00000112 _____ C:\Windows\setupact.log
2015-06-15 19:17 - 2015-06-15 19:17 - 00006164 _____ C:\Windows\PFRO.log
2015-06-15 19:17 - 2015-06-15 19:17 - 00000000 _____ C:\Windows\setuperr.log
2015-06-15 19:15 - 2015-06-15 19:15 - 70262784 _____ C:\Windows\system32\config\components.iodefrag.bak
2015-06-15 19:15 - 2015-06-15 19:15 - 00000000 ____H C:\asc_rdflag
2015-06-13 16:36 - 2015-06-13 16:36 - 00509440 _____ (Tech Support Guy System) C:\Users\Robert Levine\Downloads\SysInfo.exe
2015-06-09 22:08 - 2015-05-25 13:08 - 03206144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-09 22:08 - 2015-05-22 14:18 - 01021440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00423424 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-09 22:08 - 2015-05-22 14:13 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-09 22:08 - 2015-05-21 09:19 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-09 22:08 - 2015-04-29 14:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-06-09 22:08 - 2015-04-29 14:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-06-09 22:08 - 2015-04-29 14:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-06-09 22:08 - 2015-04-29 14:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-06-09 22:08 - 2015-04-29 14:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-06-09 22:08 - 2015-04-29 14:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-06-09 22:08 - 2015-04-29 14:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-06-09 22:08 - 2015-04-29 14:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-06-09 22:08 - 2015-04-29 14:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-06-09 22:08 - 2015-04-29 14:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-06-09 22:08 - 2015-04-24 14:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-09 22:08 - 2015-04-24 13:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-09 22:07 - 2015-06-01 15:16 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-09 22:07 - 2015-06-01 14:07 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-09 22:07 - 2015-05-27 10:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-09 22:07 - 2015-05-27 10:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-09 22:07 - 2015-05-22 23:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-06-09 22:07 - 2015-05-22 23:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-09 22:07 - 2015-05-22 23:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-06-09 22:07 - 2015-05-22 23:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-06-09 22:07 - 2015-05-22 23:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-09 22:07 - 2015-05-22 23:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-06-09 22:07 - 2015-05-22 23:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-09 22:07 - 2015-05-22 23:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-06-09 22:07 - 2015-05-22 23:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-06-09 22:07 - 2015-05-22 23:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-06-09 22:07 - 2015-05-22 23:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-09 22:07 - 2015-05-22 23:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-06-09 22:07 - 2015-05-22 23:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-09 22:07 - 2015-05-22 22:57 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-06-09 22:07 - 2015-05-22 22:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-06-09 22:07 - 2015-05-22 22:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-06-09 22:07 - 2015-05-22 22:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-09 22:07 - 2015-05-22 22:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-09 22:07 - 2015-05-22 22:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-09 22:07 - 2015-05-22 22:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-09 22:07 - 2015-05-22 22:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-09 22:07 - 2015-05-22 22:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-06-09 22:07 - 2015-05-22 22:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-09 22:07 - 2015-05-22 22:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-09 22:07 - 2015-05-22 22:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-09 22:07 - 2015-05-22 22:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-09 22:07 - 2015-05-22 15:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-06-09 22:07 - 2015-05-22 15:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-06-09 22:07 - 2015-05-22 15:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-06-09 22:07 - 2015-05-22 15:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-09 22:07 - 2015-05-22 15:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-09 22:07 - 2015-05-22 15:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-09 22:07 - 2015-05-22 15:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-06-09 22:07 - 2015-05-22 14:59 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-06-09 22:07 - 2015-05-22 14:53 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-06-09 22:07 - 2015-05-22 14:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-09 22:07 - 2015-05-22 14:52 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-06-09 22:07 - 2015-05-22 14:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-09 22:07 - 2015-05-22 14:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-09 22:07 - 2015-05-22 14:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-09 22:07 - 2015-05-22 14:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-06-09 22:07 - 2015-05-22 14:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-06-09 22:07 - 2015-05-22 14:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-06-09 22:07 - 2015-05-22 14:36 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-06-09 22:07 - 2015-05-22 14:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-06-09 22:07 - 2015-05-22 14:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-06-09 22:07 - 2015-05-22 14:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-09 22:07 - 2015-05-22 14:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-09 22:07 - 2015-05-22 14:07 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-06-09 22:07 - 2015-05-22 14:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-09 22:07 - 2015-05-22 14:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-09 22:07 - 2015-05-22 14:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-06-09 22:07 - 2015-05-22 13:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-09 22:07 - 2015-05-22 13:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-09 22:07 - 2015-05-22 13:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-09 22:07 - 2015-05-22 13:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 01255424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-06-04 22:03 - 2015-06-04 22:03 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-06-04 22:03 - 2015-06-04 22:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-06-04 22:03 - 2015-06-04 22:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-06-04 22:03 - 2015-06-04 22:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-06-04 22:03 - 2015-06-04 22:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-06-04 22:03 - 2015-06-04 22:03 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-06-04 21:58 - 2015-06-04 21:58 - 03147776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 02589184 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-04 21:58 - 2015-06-04 21:58 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-06-04 21:58 - 2015-06-04 21:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-04 21:58 - 2015-06-04 21:58 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-06-04 21:58 - 2015-06-04 21:58 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-06-04 21:57 - 2015-06-04 21:57 - 01632768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-06-04 21:57 - 2015-06-04 21:57 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-06-04 21:57 - 2015-06-04 21:57 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-06-04 21:57 - 2015-06-04 21:57 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-06-02 21:57 - 2015-06-02 21:57 - 00000092 _____ C:\Windows\wininit.ini
2015-06-02 21:53 - 2015-06-02 22:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-28 20:49 - 2013-11-14 20:54 - 00000000 ____D C:\FRST
2015-06-28 20:45 - 2010-02-12 13:09 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-28 20:43 - 2013-02-04 20:26 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-28 20:06 - 2009-07-14 00:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-28 20:06 - 2009-07-14 00:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-28 20:00 - 2008-01-09 22:13 - 01510794 _____ C:\Windows\WindowsUpdate.log
2015-06-28 12:32 - 2010-02-12 13:09 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-27 19:17 - 2012-11-13 10:36 - 00000000 ___RD C:\Users\Robert Levine\Google Drive
2015-06-27 19:15 - 2013-12-18 14:53 - 00000000 ____D C:\ProgramData\ProductData
2015-06-27 19:13 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-27 19:12 - 2014-12-20 00:56 - 386893139 _____ C:\Windows\MEMORY.DMP
2015-06-27 19:12 - 2012-12-03 12:25 - 00000000 ____D C:\Windows\Minidump
2015-06-27 18:35 - 2013-06-17 23:59 - 00001790 _____ C:\Users\Robert Levine\Desktop\Rankings.txt
2015-06-24 22:49 - 2013-02-04 20:26 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-24 22:49 - 2013-02-04 20:26 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-24 22:49 - 2011-07-20 10:11 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-19 23:33 - 2015-02-14 19:23 - 00002148 _____ C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2015-06-15 19:23 - 2009-07-14 01:13 - 00782510 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-15 19:19 - 2009-07-14 01:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-06-15 19:18 - 2009-07-14 00:45 - 00387848 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-15 19:16 - 2014-03-16 23:46 - 81084416 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2015-06-15 19:15 - 2014-03-16 23:46 - 00274432 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2015-06-15 19:15 - 2014-03-16 23:46 - 00028672 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2015-06-15 19:15 - 2014-03-16 23:46 - 00024576 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2015-06-15 19:11 - 2014-12-11 15:38 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-15 19:11 - 2014-05-06 20:27 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-15 19:11 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-14 13:01 - 2012-11-13 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-06-13 16:21 - 2009-08-20 03:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-13 16:12 - 2013-08-17 03:02 - 00000000 ____D C:\Windows\system32\MRT
2015-06-13 13:15 - 2009-12-03 00:39 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-02 22:34 - 2014-01-30 23:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-02 22:32 - 2013-01-16 16:15 - 00000000 ____D C:\ProgramData\APN
2015-06-02 22:03 - 2014-10-26 19:24 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-02 22:03 - 2014-10-26 19:24 - 00001069 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-02 22:03 - 2014-10-26 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-02 22:03 - 2014-10-26 19:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

==================== Files in the root of some directories =======

2013-11-04 16:04 - 2013-11-04 16:04 - 50053120 _____ () C:\Program Files (x86)\GUT3B6B.tmp
2010-12-02 21:17 - 2010-12-02 21:17 - 0000056 ____H () C:\ProgramData\ezsidmv.dat

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-03 01:04

==================== End of log ============================






Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01
Ran by Robert Levine at 2015-06-28 20:50:48
Running from C:\Users\Robert Levine\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-562143518-3092077655-1884302216-500 - Administrator - Disabled)
Guest (S-1-5-21-562143518-3092077655-1884302216-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-562143518-3092077655-1884302216-1002 - Limited - Enabled)
Robert Levine (S-1-5-21-562143518-3092077655-1884302216-1000 - Administrator - Enabled) => C:\Users\Robert Levine

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 4.0 (Disabled - Out of date) {CB0F8167-5331-BA19-698E-64816B6801A5}
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: ESET NOD32 Antivirus 4.0 (Disabled - Out of date) {706E6083-750B-B597-533E-5FF310EF4B18}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.2.0 - IObit)
Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{5A22D889-FBDD-4AE8-86EC-089D45FC133E}) (Version: 1.2.17.05001 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.2.17.05001 - Alcor Micro Corp.) Hidden
Amazon MP3 Downloader 1.0.17 (HKLM-x32\...\Amazon MP3 Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{CCE825DB-347A-4004-A186-5F4A6FDD8547}) (Version: 2.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D70884EA-E2CE-4539-91DB-4766CC1E5F5F}) (Version: 6.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.5 - Atheros Communications Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
erLT (x32 Version: 1.20.0137 - Logitech, Inc.) Hidden
Gateway InfoCentre (HKLM-x32\...\Gateway InfoCentre) (Version: 3.02.3000 - Gateway Incorporated)
Gateway Power Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3002 - Gateway Incorporated)
Gateway Recovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3003 - Gateway Incorporated)
Gateway Registration (HKLM-x32\...\Gateway Registration) (Version: 1.02.3004 - Gateway Incorporated)
Gateway ScreenSaver (HKLM-x32\...\Gateway Screensaver) (Version: 1.2.0730 - Gateway Incorporated)
Gateway Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3014 - Gateway Incorporated)
Google Drive (HKLM-x32\...\{CBC9F5FD-5CFA-4A33-81CD-369EAB77E3A6}) (Version: 1.22.9403.0223 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 6.6.1124.846 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3001 - Gateway Incorporated)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
InterActual Player (HKLM-x32\...\InterActual Player) (Version: - )
IObit Apps Toolbar v9.9 (HKLM-x32\...\{6006D54D-D06A-4D6D-9218-90455E678421}) (Version: 9.9 - Spigot, Inc.) <==== ATTENTION
IObit Malware Fighter 3 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 3.0 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.2 - IObit)
iTunes (HKLM\...\{0E5D76AD-A3FB-48D5-8400-8903B10317D3}) (Version: 11.0.1.12 - Apple Inc.)
J2SE Runtime Environment 5.0 Update 6 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0150060}) (Version: 1.5.0.60 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden
KhalInstallWrapper (Version: 2.00.0000 - Logitech) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.01 - Gateway)
Logitech SetPoint (HKLM-x32\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.80 - Logitech)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
PANTECH UM175 Driver (HKLM\...\{C13AF9C7-8E06-4354-B629-DF6192CE4A66}) (Version: 3.3.3524.918 - PANTECH CO.,LTD)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5888 - Realtek Semiconductor Corp.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.6.1032 - SUPERAntiSpyware.com)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.2.0 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Welcome Center (HKLM-x32\...\Gateway Welcome Center) (Version: 1.00.3005 - Gateway Incorporated)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{A1BF9950-8CDB-468E-83FA-EACFB00EA7D5}) (Version: 14.0.8064.206 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

13-05-2015 22:23:40 Windows Update
13-05-2015 23:43:20 Windows Update
20-05-2015 22:34:01 Windows Update
22-05-2015 19:06:29 Windows Modules Installer
24-05-2015 10:19:10 Windows Update
30-05-2015 18:25:16 Windows Update
02-06-2015 21:49:12 Windows Update
04-06-2015 21:56:16 Windows Modules Installer
07-06-2015 18:16:40 Windows Update
11-06-2015 22:02:33 Windows Update
13-06-2015 13:11:36 Windows Update
16-06-2015 20:28:32 Windows Update
20-06-2015 21:16:11 Windows Update
24-06-2015 22:13:40 Windows Update
28-06-2015 18:06:40 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08906AE9-5FCB-4717-AEF3-617D2D5B1E8B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {242667FE-E276-43E0-B452-D7FC881A9253} - System32\Tasks\{A1BC4878-D205-4E80-A2C6-EC51BB1C110A} => C:\Program Files (x86)\Skype\\Phone\Skype.exe
Task: {3F4811C6-5F78-4023-AD65-2152BFCA93FB} - System32\Tasks\ASC8_SkipUac_Robert Levine => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-04-09] (IObit)
Task: {3FE689FC-5AFA-4198-A738-C782767FC328} - System32\Tasks\Uninstaller_SkipUac_Robert_Levine => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
Task: {47D77908-91C3-41C3-8B69-B4135B99C555} - System32\Tasks\{AA77018D-3EDC-45AB-9D3F-08B20A134887} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {4F21C938-1C1E-4FF6-9CAD-D473885DEC1B} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Gateway\Gateway Recovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {55006490-A6A0-4C81-A3B2-B5C73E9304BB} - System32\Tasks\{0911B644-F96A-4E2E-8ABE-5E703AACB783} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {57B2D87C-61C0-4A82-82DF-605864F07910} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
Task: {57D7C65B-5B15-4E13-B14D-5CB9021F744F} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2010-04-27] (Microsoft Corporation)
Task: {6D7C1A58-CFC2-4DBD-B1D0-479E72AC4739} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {89F9B29F-5509-458F-8802-E92F5093EF70} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-24] (Adobe Systems Incorporated)
Task: {924E83FE-607B-4FB5-80E7-903A06EA41CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.)
Task: {9DD858E7-8329-405B-A980-985373781E32} - System32\Tasks\{5C163488-CD72-4E1C-8CB6-08069F9893A8} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {9DF6FA2B-0CBA-44B4-A57B-8F6F088274B0} - System32\Tasks\{9CB0A5E2-3DB0-4CBE-8C32-845A33CB3A6B} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {AF575985-1D55-45EA-8F44-D56F3830A74B} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [2015-04-09] (IObit)
Task: {B1888DEC-1A58-486E-8121-AF7E21D061EC} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-562143518-3092077655-1884302216-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {CC37FA65-9196-4ED1-A0AA-5FC224235A6D} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-562143518-3092077655-1884302216-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {E036FEAA-F7EF-44C9-936E-4C95F6EBF79A} - System32\Tasks\{EDB63B8F-D65A-4ACE-BCB3-103335F3C0E8} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {E114752B-F887-4833-A839-5F7947CFE92F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2009-12-02 09:03 - 2009-07-20 13:35 - 00018960 _____ () C:\Program Files\Logitech\SetPoint\khalwrapper.dll
2009-12-02 09:03 - 2009-07-20 05:00 - 00077824 _____ () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
2015-02-14 19:23 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\sqlite3.dll
2015-04-18 16:07 - 2015-01-09 18:46 - 00517408 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\sqlite3.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-02-14 19:23 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madExcept_.bpl
2015-02-14 19:23 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madBasic_.bpl
2015-02-14 19:23 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madDisAsm_.bpl
2015-02-14 19:23 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\webres.dll
2015-02-14 19:26 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-02-14 19:26 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-02-14 19:26 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-06-27 19:15 - 2015-06-27 19:15 - 00098816 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32api.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00110080 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\pywintypes27.dll
2015-06-27 19:15 - 2015-06-27 19:15 - 00364544 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\pythoncom27.dll
2015-06-27 19:15 - 2015-06-27 19:15 - 00045568 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_socket.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 01161216 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_ssl.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00320512 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32com.shell.shell.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00713216 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_hashlib.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 01175040 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._core_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00805888 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._gdi_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00811008 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._windows_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 01062400 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._controls_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00735232 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._misc_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00682496 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\pysqlite2._sqlite.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00087552 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_ctypes.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00119808 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32file.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00108544 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32security.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00007168 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\hashobjs_ext.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00026624 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\usb_ext.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00167936 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32gui.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00018432 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32event.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00128512 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_elementtree.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00127488 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\pyexpat.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00013824 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\common.time34.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00036864 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_psutil_windows.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00038912 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32inet.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00011264 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32crypt.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00070656 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._html2.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00027136 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_multiprocessing.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00020480 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_yappi.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00035840 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32process.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00686080 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\unicodedata.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00122368 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._wizard.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00024064 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32pipe.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00010240 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\select.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00025600 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32pdh.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00525640 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\windows._lib_cacheinvalidation.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00017408 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32profile.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00022528 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32ts.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00078336 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._animate.pyd
2015-04-18 16:07 - 2015-01-09 18:46 - 00182048 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2015-04-18 16:07 - 2015-01-09 18:46 - 00145184 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2015-06-24 22:49 - 2015-06-24 22:49 - 16867504 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-562143518-3092077655-1884302216-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Robert Levine\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 75.75.76.76 - 75.75.75.75

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{521CB2D6-A73E-4760-9A58-3D03B52AB4BA}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{9A55B11E-B381-41FA-BA1D-F74EC20AAD70}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{5E269310-8F91-4892-B192-BAA91B7688FA}] => (Allow) svchost.exe
FirewallRules: [{46B1393C-C5F0-47E0-869A-F547CECA3BB8}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{85F47C38-8166-416A-87D1-C175B80326A5}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{94FA2C9A-8054-4ED1-86D8-0D8AFAC8D4E0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{700C7856-5E5C-43F2-A4EF-00FD1B8AF1C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5933B877-D324-43EC-9AE1-DD87209DBAAC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6C20A7F2-189C-46AC-B9AB-9626D5944FAE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FE13CAB0-518A-4583-AEF3-D3F8BD8C48E9}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{C8716A05-C129-4991-A545-FD3ABEA7BBC1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{88437958-85B4-4E89-B4CF-D0264852855E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{853B8275-7174-4027-AEA1-E7D873E0D48C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{FF32D750-8B7E-4EA1-B7FE-2A04DC258F7C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/28/2015 05:22:37 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2059

Error: (06/28/2015 05:22:37 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2059

Error: (06/28/2015 05:22:37 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/28/2015 02:53:10 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3595714

Error: (06/28/2015 02:53:10 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3595714

Error: (06/28/2015 02:53:10 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/28/2015 01:53:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1404

Error: (06/28/2015 01:53:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1404

Error: (06/28/2015 01:53:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/28/2015 00:24:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 36433691


System errors:
=============
Error: (06/27/2015 07:23:58 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for FailureCommand with the following error:
%%5

Error: (06/27/2015 07:23:50 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
%%5

Error: (06/27/2015 07:14:34 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (06/27/2015 07:13:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Group Policy Client service failed to start due to the following error:
%%1053

Error: (06/27/2015 07:12:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Group Policy Client service to connect.

Error: (06/27/2015 07:12:58 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x000000d1 (0x000000000000000a, 0x0000000000000002, 0x0000000000000000, 0xfffff880018456f0)C:\Windows\MEMORY.DMP062715-29749-01

Error: (06/27/2015 07:12:57 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 7:11:37 PM on ‎6/‎27/‎2015 was unexpected.

Error: (06/27/2015 01:23:41 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.201.171.0

Update Source: %NT AUTHORITY59

Update Stage: 4.8.0204.00

Source Path: 4.8.0204.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (06/15/2015 07:28:18 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for FailureCommand with the following error:
%%5

Error: (06/15/2015 07:28:15 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
%%5


Microsoft Office:
=========================

==================== Memory info ===========================

Processor: Genuine Intel(R) CPU U4100 @ 1.30GHz
Percentage of memory in use: 48%
Total physical RAM: 3002.91 MB
Available physical RAM: 1552.75 MB
Total Pagefile: 6004.04 MB
Available Pagefile: 3963.48 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Gateway) (Fixed) (Total:285.99 GB) (Free:231.4 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 7A67CF72)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=286 GB) - (Type=07 NTFS)

==================== End of log ============================

ASUS Problem

0
0
Do I ever have one for you guys. I have an ASUS laptop with 4 gigs ram, 1 TB HD, running Win 7 Home Premium. A few days ago, 06/26, I downloaded a program that had a bunch of addons. I use GEEKS to uninstall the extra programs I didn't want or need. After rebooting, I keep getting the following boxes: All these are "Error Boxes"

1. Child not found in resources; [flux/topbar]
2. Error parsing (Wrong type or incorrect parameter.) [property windrag]
3. No parent [property windrag]
4. Child not found in resources [flux/mainframe]
5. Child not found in resources [flux/exit]
6. Child not found in resources [flux/x]
7. Child not found in resources [flux/hours]
8. Error parsing (Wrong type or incorrect parameter.) [property fontname]
9. No parent [property fontname]

I tried several system restores, however, the earliest I could go back to was a Microsoft Critical Install on 06/26. It didn't show any earlier ones. I did go to the advanced portion of sys restore. Everything checked out good except for the last two checks. They are:

Root cause found Unspecified Changes to system configuration might have caused the problem

1. Repair action: System restore Result failed Error code =0x1f
2. Repair action: System files integrity check and repair Result failed =0x490

I know I'm throwing a lot at you, but I would like to get this fixed if possible. Any help is greatly appreciated.
:confused::mad::confused::mad::confused:



Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz, Intel64 Family 6 Model 37 Stepping 2
Processor Count: 4
RAM: 3884 Mb
Graphics Card: Intel(R) HD Graphics, 1718 Mb
Hard Drives: C: Total - 456936 MB, Free - 384757 MB;
Motherboard: ASUSTeK Computer Inc., U52F
Antivirus: Microsoft Security Essentials, Updated and Enabled
Viewing all 4746 articles
Browse latest View live




Latest Images