Really odd stuff
- Thread starter Dariuas
- Start date
- Mar 8, 2013
- 22,627
Hello,
This is different computer than last time? Is this your PC or you're fixing someone's PC for money?
This is different computer than last time? Is this your PC or you're fixing someone's PC for money?
- Mar 8, 2013
- 22,627
Sorry, I overlooked this topic.
Scan with Farbar Recovery Scan Tool
Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.
Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.
- Right-click on
icon and select
Run as Administrator to start the tool.
(XP users click run after receipt of Windows Security Warning - Open File). - Make sure that Addition option is checked.
- Press Scan button and wait.
- The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.
- Jan 12, 2015
- 14
No problem, I am doing that now! I was looking through some of the files on this machine and found this:
What happened to your files ?
All of your files were protected by a strong encryption with RSA-2048 using CryptoWall 3.0.
More information about the encryption keys using RSA-2048 can be found here: http://en.wikipedia.org/wiki/RSA_(cryptosystem)
What does this mean ?
This means that the structure and data within your files have been irrevocably changed, you will not be able to work with them, read them or see them,
it is the same thing as losing them forever, but with our help, you can restore them.
How did this happen ?
Especially for you, on our server was generated the secret key pair RSA-2048 - public and private.
All your files were encrypted with the public key, which has been transferred to your computer via the Internet.
Decrypting of your files is only possible with the help of the private key and decrypt program, which is on our secret server.
What do I do ?
Alas, if you do not take the necessary measures for the specified time then the conditions for obtaining the private key will be changed.
If you really value your data, then we suggest you do not waste valuable time searching for other solutions because they do not exist.
For more specific instructions, please visit your personal home page, there are a few different addresses pointing to your page below:
1.http://7oqnsnzwwnm6zb7y.icepaytor.com/1ixf2c4
2.http://7oqnsnzwwnm6zb7y.ptiontor4pay.com/1ixf2c4
3.http://7oqnsnzwwnm6zb7y.waytopaytor.com/1ixf2c4
4.http://7oqnsnzwwnm6zb7y.suntorpaymoon.com/1ixf2c4
If for some reasons the addresses are not available, follow these steps:
1.Download and install tor-browser: http://www.torproject.org/projects/torbrowser.html.en
2.After a successful installation, run the browser and wait for initialization.
3.Type in the address bar: 7oqnsnzwwnm6zb7y.onion/1ixf2c4
4.Follow the instructions on the site.
IMPORTANT INFORMATION:
Your personal page: http://7oqnsnzwwnm6zb7y.icepaytor.com/1ixf2c4
Your personal page (using TOR): 7oqnsnzwwnm6zb7y.onion/1ixf2c4
Your personal identification number (if you open the site (or TOR 's) directly): 1ixf2c4
What happened to your files ?
All of your files were protected by a strong encryption with RSA-2048 using CryptoWall 3.0.
More information about the encryption keys using RSA-2048 can be found here: http://en.wikipedia.org/wiki/RSA_(cryptosystem)
What does this mean ?
This means that the structure and data within your files have been irrevocably changed, you will not be able to work with them, read them or see them,
it is the same thing as losing them forever, but with our help, you can restore them.
How did this happen ?
Especially for you, on our server was generated the secret key pair RSA-2048 - public and private.
All your files were encrypted with the public key, which has been transferred to your computer via the Internet.
Decrypting of your files is only possible with the help of the private key and decrypt program, which is on our secret server.
What do I do ?
Alas, if you do not take the necessary measures for the specified time then the conditions for obtaining the private key will be changed.
If you really value your data, then we suggest you do not waste valuable time searching for other solutions because they do not exist.
For more specific instructions, please visit your personal home page, there are a few different addresses pointing to your page below:
1.http://7oqnsnzwwnm6zb7y.icepaytor.com/1ixf2c4
2.http://7oqnsnzwwnm6zb7y.ptiontor4pay.com/1ixf2c4
3.http://7oqnsnzwwnm6zb7y.waytopaytor.com/1ixf2c4
4.http://7oqnsnzwwnm6zb7y.suntorpaymoon.com/1ixf2c4
If for some reasons the addresses are not available, follow these steps:
1.Download and install tor-browser: http://www.torproject.org/projects/torbrowser.html.en
2.After a successful installation, run the browser and wait for initialization.
3.Type in the address bar: 7oqnsnzwwnm6zb7y.onion/1ixf2c4
4.Follow the instructions on the site.
IMPORTANT INFORMATION:
Your personal page: http://7oqnsnzwwnm6zb7y.icepaytor.com/1ixf2c4
Your personal page (using TOR): 7oqnsnzwwnm6zb7y.onion/1ixf2c4
Your personal identification number (if you open the site (or TOR 's) directly): 1ixf2c4
- Mar 8, 2013
- 22,627
- Jan 12, 2015
- 14
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-04-2015
Ran by owner at 2015-04-15 09:57:41
Running from C:\Users\owner\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (Version: 3.1.1 - Hewlett-Packard) Hidden
8500A909_eDocs (Version: 1.00.0000 - Hewlett-Packard) Hidden
8500A909_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
8500A909a (Version: 50.0.165.000 - Hewlett-Packard) Hidden
ABBYY FineReader 9.0 Sprint (HKLM\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212 - ABBYY) Hidden
Acer Arcade Live Main Page (HKLM\...\{EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}) (Version: 1.1.1331 - Acer Inc.)
Acer Assist (HKLM\...\Acer Assist) (Version: - Acer Incorporated)
Acer DV Magician (HKLM\...\{F6EFFB76-4A07-11DA-9D78-000129760D75}) (Version: 1.5.0920 - Acer Inc.)
Acer DVDivine (HKLM\...\{B145EC69-66F5-11D8-9D75-000129760D75}) (Version: 3.2.1730 - Acer Inc.)
Acer eDataSecurity Management (HKLM\...\{A5633652-3795-4829-BB0B-644F0279E279}) (Version: 3.0.3060 - Egis Inc.)
Acer Empowering Technology (HKLM\...\{8F1B6239-FEA0-450A-A950-B05276CE177C}) (Version: 3.0.3008 - Acer Incorporated)
Acer eRecovery Management (HKLM\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 3.0.3014 - Acer Incorporated)
Acer HomeMedia (HKLM\...\{AA4BF92B-2AAF-11DA-9D78-000129760D75}) (Version: 1.4.1331 - Acer Inc.)
Acer HomeMedia Connect (HKLM\...\{132888AE-EF67-41C5-BCA2-7D5D2488AB63}) (Version: 1.4.4931 - Acer Inc.)
Acer HomeMedia Trial Creator (HKLM\...\{B580C409-E16F-44FF-904D-3AE94E113BE0}) (Version: 1.4.1331 - Acer Inc.)
Acer Registration (HKLM\...\Acer Registration) (Version: - Acer - Leader Technologies)
Acer ScreenSaver (HKLM\...\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}) (Version: 4.01.0422 - Acer Incorporated)
Acer SlideShow DVD (HKLM\...\{41581EF5-45A7-11DA-9D78-000129760D75}) (Version: 1.5.1109 - Acer Inc.)
Acer VideoMagician (HKLM\...\{F79A208D-D929-11D9-9D77-000129760D75}) (Version: 1.4.1017 - Acer Inc.)
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 2.0.0.0 - Adobe Systems Incorporated)
Acrobat.com (Version: 2.0.0 - Adobe Systems Incorporated) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
Adobe Acrobat 5.0 (HKLM\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader X (10.1.4) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.4 - Adobe Systems Incorporated)
Agere Systems PCI-SV92EX Soft Modem (HKLM\...\Agere Systems Soft Modem) (Version: - Agere Systems)
AIO_Scan (Version: 90.0.200.000 - Hewlett-Packard) Hidden
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Art Explosion Publisher Pro 2.0 (HKLM\...\{39D4FB9C-9CDE-4449-BD2B-6AD4D376CFDC}) (Version: 2.0.0.13 - Nova Development)
Attendance Rx (HKLM\...\{6AC6AFA4-E560-433A-93C8-3FF119C6BD06}) (Version: - )
AV Input Selection (HKLM\...\{F429ED71-4A8B-457A-85E4-F6398CE73E58}) (Version: 1.02.0047 - YUAN)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4800 - AVG Technologies)
AVG 2014 (Version: 14.0.4311 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4800 - AVG Technologies) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BPD_DSWizards (Version: 1.00.0000 - Hewlett-Packard) Hidden
bpd_scan (Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Carbonite Online Backup Setup (HKLM\...\Carbonite Setup Lite) (Version: 3.7.3 - Carbonite Inc.)
Childcare Manager 10 (HKLM\...\{101AC149-4111-4131-A201-ED4E5DAC9F6A}) (Version: 10.0.2765 - Personalized Software)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Copy (Version: 90.0.146.000 - Hewlett-Packard) Hidden
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Destination Component (Version: 110.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 120.0.194.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DJ_AIO_ProductContext (Version: 90.0.201.000 - Hewlett-Packard) Hidden
DJ_AIO_Software (Version: 90.0.200.000 - Hewlett-Packard) Hidden
DJ_AIO_Software_min (Version: 90.0.200.000 - Hewlett-Packard) Hidden
DocMgr (Version: 120.0.000.000 - Hewlett-Packard) Hidden
DocProc (Version: 12.0.0.0 - Hewlett-Packard) Hidden
Document Capture Pro (HKLM\...\{0F0D5FD4-2AC3-4E5B-B92B-B1C17F33032C}) (Version: 1.06.0005 - Seiko Epson Corporation)
Document Capture Pro OneNote Connector (HKLM\...\{65FC2F65-FCD4-495C-B250-1F7C049E4A39}) (Version: 1.00.0000 - Seiko Epson Corporation)
Epson Connect (HKLM\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.7.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM\...\{A3138C04-CD9C-45A2-AC26-5E3B640AAE8C}) (Version: 3.10.0036 - Seiko Epson Corporation)
Epson FAX Utility (HKLM\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.51.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM\...\EPSON PC-FAX Driver 2) (Version: - )
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 2.30.00 - SEIKO EPSON Corp.)
EPSON WF-4630 Series Printer Uninstall (HKLM\...\EPSON WF-4630 Series) (Version: - SEIKO EPSON Corporation)
Epson WF-4630 User’s Guide version 1.0 (HKLM\...\UsersGuideEpson WF-4630 User’s Guide_is1) (Version: 1.0 - )
EPSON WP-4540 Series Printer Uninstall (HKLM\...\EPSON WP-4540 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
F4100 (Version: 90.0.200.000 - Hewlett-Packard) Hidden
F4100_doccd (Version: 90.0.200.000 - Hewlett-Packard) Hidden
F4100_Help (Version: 90.0.200.000 - Hewlett-Packard) Hidden
Fax (Version: 120.0.194.000 - Hewlett-Packard) Hidden
forestfairy_3136689 Screen Saver (HKLM\...\forestfairy_3136689) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: - )
Google Toolbar for Internet Explorer (Version: 4.0.0.002 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Hawking HWUN1 Wireless LAN Card (HKLM\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.5.0 - Hawking)
HDVidCodec (HKLM\...\1ClickDownload) (Version: 2.1 Build 26473 - hdvidcodec.com) <==== ATTENTION
homeforchristmas_3085949 Screen Saver (HKLM\...\homeforchristmas_3085949) (Version: - )
Homework Helpers (HKLM\...\{AD8780DE-96F5-454B-B551-E063B94AAD4F}) (Version: - )
HP Customer Participation Program 12.0 (HKLM\...\HPExtendedCapabilities) (Version: 12.0 - HP)
HP Deskjet All-In-One Software 9.0 (HKLM\...\{706BB40A-4102-4c89-8107-DC68C4EBD19B}) (Version: 9.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 12.0 (HKLM\...\HP Imaging Device Functions) (Version: 12.0 - HP)
HP Officejet 6700 Basic Device Software (HKLM\...\{6B7C73A0-07C7-4C06-A13C-48108D39CF03}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Officejet 6700 Help (HKLM\...\{50DA41E2-0701-43E2-A8BB-FAA0CB64B28B}) (Version: 140.0.2.2 - Hewlett Packard)
HP Officejet 6700 Product Improvement Study (HKLM\...\{8CC1FCCE-853D-488C-80BF-BD8E0B80F202}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Photosmart Essential 2.01 (HKLM\...\HP Photosmart Essential) (Version: 2.01 - HP)
HP Smart Web Printing (HKLM\...\HP Smart Web Printing) (Version: 4.05 - HP)
HP Update (HKLM\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard)
HPSSupply (Version: 120.0.194.000 - Hewlett-Packard) Hidden
I.R.I.S. OCR (HKLM\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Java 7 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java(TM) 6 Update 3 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
join.me (HKU\S-1-5-21-3578330069-1835105506-1903496687-1000\...\JoinMe) (Version: 1.20.0.125 - LogMeIn, Inc.)
Keyless Entry System (HKLM\...\Keyless Entry System) (Version: - )
LightScribe 1.4.142.1 (Version: 1.4.142.1 - http://www.lightscribe.com) Hidden
LogMeIn (HKLM\...\{34F93E31-E1A0-421C-8E86-BCF7C4193A91}) (Version: 4.0.982 - LogMeIn, Inc.)
LTCM Client (HKLM\...\LTCM Client) (Version: - Leader Technologies Inc.)
MarketResearch (Version: 120.0.226.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{BD68F46D-8A82-4664-8E68-F87C55BDEFD4}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{56B4002F-671C-49F4-984C-C760FE3806B5}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Web Publishing Wizard 1.52 (HKLM\...\WebPost) (Version: - )
Microsoft Works (HKLM\...\{6D52C408-B09A-4520-9B18-475B81D393F1}) (Version: 08.05.0818 - Microsoft Corporation)
MPM (HKLM\...\{CD8C5C7F-7C58-4F85-8977-A6C08C087912}) (Version: 1.00.0000 - Hewlett-Packard)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Norton Security Scan (HKLM\...\NSS) (Version: 4.1.0.28 - Symantec Corporation)
NVIDIA 3D Vision Driver 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM\...\InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.6776 - NVIDIA Corporation)
NVIDIA Graphics Driver 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
OCR Software by I.R.I.S. 12.0 (HKLM\...\HPOCR) (Version: 12.0 - HP)
Octoshape add-in for Adobe Flash Player (HKU\S-1-5-21-3578330069-1835105506-1903496687-1000\...\Octoshape add-in for Adobe Flash Player) (Version: - )
Officejet Pro 8500 A909 Series (HKLM\...\{624E7452-BA43-4f55-B9D5-FC75EEA0808B}) (Version: 12.0 - HP)
Opera Stable 22.0.1471.70 (HKLM\...\Opera 22.0.1471.70) (Version: 22.0.1471.70 - Opera Software ASA)
PrinterShare (HKLM\...\{51EECA1D-7EAD-4D3E-9B2C-73E7A819E401}) (Version: 1.2.1.0 - Printer Anywhere Inc.)
PrintMaster 2012 Gold (HKLM\...\5354-7805-5584-7015) (Version: 4.0.0.230 - Encore Software Inc.)
ProCare for Windows (HKLM\...\ProCare for Windows) (Version: - )
ProductContext (Version: 50.0.165.000 - Hewlett-Packard) Hidden
PSSWCORE (Version: 2.01.0000 - Hewlett-Packard) Hidden
Pure Networks Platform (Version: 11.1.9051.0 - Pure Networks) Hidden
QBFC2 (HKLM\...\{795F2EA4-9798-4BA5-B31A-C8F41A124FC8}) (Version: - )
QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Scan (Version: 12.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 12 - HP)
SmartWebPrinting (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Smilebox (HKU\S-1-5-21-3578330069-1835105506-1903496687-1000\...\Smilebox) (Version: 1.0.0.26929 - Smilebox, Inc.)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.1.20 - Safer-Networking Ltd.)
Status (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Toolbox (Version: 120.0.194.000 - Hewlett-Packard) Hidden
TrayApp (Version: 120.0.194.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden
Update for Office 2007 (KB934528) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{2B939677-2FFD-48F6-9075-7BF48CB87C80}) (Version: - )
Update for Office System 2007 Setup (KB929722) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{D8E9BEBD-655F-467D-8176-CA9959C140A3}) (Version: - )
USB Ethernet Adapter 13.01.0222.0194 (HKLM\...\{AD8916AD-B5F0-4FFF-BA42-2EC09FED5A35}) (Version: 13.01.0222.0194 - MCT Corp)
VideoToolkit01 (Version: 90.0.146.000 - Hewlett-Packard) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebEx Support Manager for Internet Explorer (HKLM\...\{C34FAEF3-4241-4C4E-9CFF-7BBD8BCEABE7}) (Version: 6.5.47 - WebEx Communications Inc.)
WebReg (Version: 120.0.194.000 - Hewlett-Packard) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google)
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{4c60e5ab-5c68-4c59-abaa-885010b24b32}\InprocServer32 -> C:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll No File
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{693566bc-21f8-401e-8d42-e2c5ce50dacc}\localserver32 -> C:\Users\owner\AppData\Local\Temp\{d5641912-e47a-429c-879e-cfe13eac7a13}\IDriver.NonElevated.exe No (the data entry has 4 more characters).
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{AFD66CA9-53CD-420C-F577-748128EE9A5E}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{F9E1BD9A-84B5-4D12-9195-0B3E7D86FD35}\InprocServer32 -> C:\ProgramData\{CA2FACF7-9029-4A21-892B-E7F60B39FF1A}\actxprxy.dll No File
==================== Restore Points =========================
11-04-2015 22:56:01 Installed HWUN1 Wireless LAN
11-04-2015 22:56:55 Device Driver Package Install: Ralink Network adapters
11-04-2015 22:57:33 Device Driver Package Install: Ralink Network adapters
12-04-2015 09:10:40 zoek.exe restore point
13-04-2015 00:00:00 Scheduled Checkpoint
13-04-2015 17:32:51 Restore Operation
13-04-2015 17:42:09 Restore Operation
14-04-2015 20:31:35 Scheduled Checkpoint
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {161A1B91-A20F-4868-94FD-C230091B2BF8} - System32\Tasks\{AA00E263-C397-4829-B185-2477E0427E1B} => pcalua.exe -a F:\SETUP.EXE -d F:\
Task: {18CE4E5E-F557-47B9-B3F5-2C81773E0261} - System32\Tasks\Check for updates (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {25CDD4E4-41A0-4F60-BFB1-F73F0CA2BB9C} - System32\Tasks\Refresh immunization (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {2738E73A-5732-4C3B-8B7F-D93B4E6F2653} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-7 No Task File <==== ATTENTION
Task: {2F416CC4-EDC4-4F3E-87F9-2C0B9586DCB9} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-1 No Task File <==== ATTENTION
Task: {33B87025-1615-402A-BA43-5C361B18D9C6} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-5_user No Task File <==== ATTENTION
Task: {491F98DB-2D64-4C77-A3CD-D0F7091EC109} - System32\Tasks\Opera scheduled Autoupdate 1404938597 => C:\Program Files\Opera\launcher.exe [2014-06-16] (Opera Software)
Task: {5BC4F5A5-EDCA-499C-9E49-E1E5CB2F96AE} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3578330069-1835105506-1903496687-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {5EDB9B37-C1E1-42D6-B0F8-6F80F10DBDAB} - System32\Tasks\EPSON WF-4630 Series Invitation {33BB1766-8F36-4E7A-8B5B-FBD60223E68A} => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSKLE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {6E665DC7-9974-4941-9B07-E9400C97157B} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-4 No Task File <==== ATTENTION
Task: {8484AF9D-FCBD-4EE2-96D7-2AAF9F421CB9} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-6 No Task File <==== ATTENTION
Task: {90EF7A9C-0A13-4263-9C7A-559FC811AF8F} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-3 No Task File <==== ATTENTION
Task: {930813BA-7EF4-4367-9C10-DCB14DBB728E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-08] (Google Inc.)
Task: {9494AD36-0104-4D3C-AC17-FE0CA6086867} - System32\Tasks\Scan the system (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: {96D6E405-4542-4330-8013-43F93693E100} - System32\Tasks\EPSON WF-4630 Series Update {33BB1766-8F36-4E7A-8B5B-FBD60223E68A} => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSKLE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {9A59EDB1-A63B-4243-8E8E-892CB00D0B1B} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-11 No Task File <==== ATTENTION
Task: {9ACBD1AF-E16A-405D-B843-E68E9DDAD1B7} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-5 No Task File <==== ATTENTION
Task: {B1B70C22-5F0A-4DB4-8DE5-F386366A8676} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - owner => C:\Program Files\Windows Calendar\WinCal.exe [2008-01-20] (Microsoft Corporation)
Task: {B834E88C-C986-4A8A-95C4-ED56EC9533A8} - System32\Tasks\HPCustParticipation HP Officejet 6700 => C:\Program Files\HP\HP Officejet 6700\Bin\HPCustPartic.exe [2011-09-09] (Hewlett-Packard Co.)
Task: {B9344AD8-83A9-46EC-93B0-99502574AE2D} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-2 No Task File <==== ATTENTION
Task: {D2A19940-D4E8-4945-BEA1-DC425C668AFB} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-10 No Task File <==== ATTENTION
Task: {D392335B-3064-490D-BE5A-08B4714DB8FA} - \PriceFinderUpdate No Task File <==== ATTENTION
Task: {D5D4AFB7-5281-462C-A94F-5860D2FFC79D} - \LaunchSignup No Task File <==== ATTENTION
Task: {E0059CF9-778A-47DB-A13B-66E22B8A0943} - System32\Tasks\Norton Security Scan for owner => C:\Program Files\Norton Security Scan\Engine\4.1.0.28\Nss.exe [2014-08-21] (Symantec Corporation)
Task: {E616A03A-6247-4174-BAB2-48E2949B1EC9} - System32\Tasks\At1 => C:\Users\owner\AppData\Roaming\WINWORD.EXE <==== ATTENTION
Task: {EC114CAB-AC41-49F2-A80D-F39D66E888D8} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3578330069-1835105506-1903496687-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {ECA4F40A-A200-4595-8E39-31EF275B4F7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-08] (Google Inc.)
Task: {ED4C57EB-67DB-4E6F-8206-556C99037E26} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\EPSON WF-4630 Series Invitation {33BB1766-8F36-4E7A-8B5B-FBD60223E68A}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSKLE.EXE
Task: C:\Windows\Tasks\EPSON WF-4630 Series Update {33BB1766-8F36-4E7A-8B5B-FBD60223E68A}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSKLE.EXE:/EXE:{33BB1766-8F36-4E7A-8B5B-FBD60223E68A} /F:UpdateSYSTEM
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Security Scan for owner.job => C:\PROGRA~1\NORTON~2\Engine\410~1.28\Nss.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
==================== Loaded Modules (whitelisted) ==============
2008-08-19 14:47 - 2008-01-25 21:49 - 00098304 _____ () C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLSchRecordMonitor.dll
2008-08-19 14:47 - 2008-01-25 21:49 - 00260096 _____ () C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\sqlite3.dll
2013-09-21 08:16 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-09-21 08:16 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2008-08-19 14:37 - 2008-04-25 16:30 - 00024576 _____ () C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
2008-08-19 14:38 - 2008-08-19 14:38 - 00032768 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.Controller\3.0.3008.0__14bcaafdb44b5951\Framework.Model.Controller.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00009216 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3008.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00061440 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3008.0__3036420f80dd6947\Framework.Library.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00015360 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Host\3.0.3008.0__672b450de5a7e94a\Framework.Host.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00006144 _____ () C:\Windows\assembly\GAC_MSIL\Framework.PluginInterface\3.0.3008.0__9ecdf03bb2054f94\Framework.PluginInterface.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00036864 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3008.0__4df5dcab8860d239\Framework.Utility.dll
2008-08-19 14:38 - 2008-04-25 16:30 - 00487424 _____ () C:\Windows\system32\INT15.dll
2009-04-17 16:02 - 2009-04-17 16:02 - 00073728 _____ () C:\Program Files\PrinterShare\pipeSvr.exe
2008-08-19 14:44 - 2006-07-19 14:36 - 00262247 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe
2013-09-21 08:16 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-09-21 08:16 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2013-09-21 08:16 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2015-04-11 22:58 - 2009-11-09 12:35 - 00913408 _____ () C:\Program Files\Hawking\Common\RaWLAPI.dll
2008-01-29 15:25 - 2008-01-29 15:25 - 00598016 _____ () C:\Program Files\bin32\nSvcAppFlt.exe
2008-01-29 15:17 - 2008-01-29 15:17 - 00102400 _____ () C:\Program Files\bin32\nv_common.dll
2008-01-29 15:18 - 2008-01-29 15:18 - 00454656 _____ () C:\Program Files\bin32\SpecialCase.dll
2008-01-29 15:24 - 2008-01-29 15:24 - 00163840 _____ () C:\Program Files\bin32\nSvcIp.exe
2015-04-03 16:58 - 2015-03-30 17:07 - 09279304 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.118\pdf.dll
2015-04-03 16:58 - 2015-03-30 17:07 - 14974280 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.118\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:17C643E2
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3578330069-1835105506-1903496687-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\owner\Desktop\VPK 13-14\0 ClipArt\Clipart (42).jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HWUN1 Wireless Utility.lnk => C:\Windows\pss\HWUN1 Wireless Utility.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: EEventManager => "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: ehTray.exe => C:\Windows\ehome\ehTray.exe
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: FUFAXRCV => "C:\Program Files\Epson Software\FAX Utility\FUFAXRCV.exe"
MSCONFIG\startupreg: FUFAXSTM => "C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: LogMeIn GUI => "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
MSCONFIG\startupreg: LTCM Client => C:\Program Files\LTCM Client\ltcmClient.exe /startup
MSCONFIG\startupreg: nmctxth => "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SDTray => "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: SmileboxTray => "C:\Users\owner\AppData\Roaming\Smilebox\SmileboxTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
==================== Accounts: =============================
Administrator (S-1-5-21-3578330069-1835105506-1903496687-500 - Administrator - Disabled)
Guest (S-1-5-21-3578330069-1835105506-1903496687-501 - Limited - Enabled)
LogMeInRemoteUser (S-1-5-21-3578330069-1835105506-1903496687-1004 - Administrator - Enabled) => C:\Users\LogMeInRemoteUser
owner (S-1-5-21-3578330069-1835105506-1903496687-1000 - Administrator - Enabled) => C:\Users\owner
UpdatusUser (S-1-5-21-3578330069-1835105506-1903496687-1005 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name: Officejet Pro 8500 A909a
Description: Officejet Pro 8500 A909a
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart 6510 series
Description: Photosmart 6510 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/14/2015 07:15:52 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:14:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:13:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:13:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:11:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:06:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/14/2015 07:06:37 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:06:37 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 04:43:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/13/2015 05:52:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
System errors:
=============
Error: (04/14/2015 07:15:26 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Techinline Remote Desktop Client Service:0de1ed28-75dc-4b5f-b1e8-d6c3bf091f86
Error: (04/14/2015 07:14:04 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Techinline Remote Desktop Client Service:3e6e53a7-c8de-4d6c-994c-bdc32bcc917f
Error: (04/14/2015 07:13:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LogMeIn2
Error: (04/14/2015 07:13:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LogMeIn1
Error: (04/14/2015 07:11:00 PM) (Source: Schannel) (EventID: 4108) (User: )
Description: The certificate received from the remote server has not validated correctly. The error code is 0x80092013. The SSL connection request has failed. The attached data contains the server certificate.
Error: (04/14/2015 07:08:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069
Error: (04/14/2015 07:08:52 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330
Error: (04/14/2015 07:06:46 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: i8042prt
Error: (04/14/2015 07:06:45 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spybot-S&D 2 Security Center ServiceSecurity Center%%1058
Error: (04/14/2015 07:05:52 PM) (Source: HTTP) (EventID: 15016) (User: )
Description: \Device\Http\ReqQueueKerberos
Microsoft Office Sessions:
=========================
Error: (04/12/2015 10:18:16 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 366 seconds with 60 seconds of active time. This session ended with a crash.
Error: (05/31/2012 00:50:07 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 5048 seconds with 1080 seconds of active time. This session ended with a crash.
Error: (04/17/2012 02:13:05 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1178 seconds with 780 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2015-04-15 09:56:31.329
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-15 09:56:30.933
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-15 09:56:30.548
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-15 09:56:29.665
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-14 19:28:40.076
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-14 19:28:39.690
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-14 19:28:39.325
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-14 19:28:38.948
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-11 23:12:36.540
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-11 23:12:36.179
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD Sempron(tm) Dual Core Processor 2300
Percentage of memory in use: 67%
Total physical RAM: 2813.8 MB
Available physical RAM: 921.27 MB
Total Pagefile: 7224.26 MB
Available Pagefile: 5065.41 MB
Total Virtual: 2047.88 MB
Available Virtual: 1903.34 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:140.96 GB) (Free:58.26 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:141.12 GB) (Free:140.86 GB) NTFS
Drive z: (ACER) (Network) (Total:140.96 GB) (Free:58.26 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: DC0CDE59)
Partition 1: (Not Active) - (Size=16 GB) - (Type=27)
Partition 2: (Active) - (Size=141 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=141.1 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Ran by owner at 2015-04-15 09:57:41
Running from C:\Users\owner\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (Version: 3.1.1 - Hewlett-Packard) Hidden
8500A909_eDocs (Version: 1.00.0000 - Hewlett-Packard) Hidden
8500A909_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
8500A909a (Version: 50.0.165.000 - Hewlett-Packard) Hidden
ABBYY FineReader 9.0 Sprint (HKLM\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212 - ABBYY) Hidden
Acer Arcade Live Main Page (HKLM\...\{EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}) (Version: 1.1.1331 - Acer Inc.)
Acer Assist (HKLM\...\Acer Assist) (Version: - Acer Incorporated)
Acer DV Magician (HKLM\...\{F6EFFB76-4A07-11DA-9D78-000129760D75}) (Version: 1.5.0920 - Acer Inc.)
Acer DVDivine (HKLM\...\{B145EC69-66F5-11D8-9D75-000129760D75}) (Version: 3.2.1730 - Acer Inc.)
Acer eDataSecurity Management (HKLM\...\{A5633652-3795-4829-BB0B-644F0279E279}) (Version: 3.0.3060 - Egis Inc.)
Acer Empowering Technology (HKLM\...\{8F1B6239-FEA0-450A-A950-B05276CE177C}) (Version: 3.0.3008 - Acer Incorporated)
Acer eRecovery Management (HKLM\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 3.0.3014 - Acer Incorporated)
Acer HomeMedia (HKLM\...\{AA4BF92B-2AAF-11DA-9D78-000129760D75}) (Version: 1.4.1331 - Acer Inc.)
Acer HomeMedia Connect (HKLM\...\{132888AE-EF67-41C5-BCA2-7D5D2488AB63}) (Version: 1.4.4931 - Acer Inc.)
Acer HomeMedia Trial Creator (HKLM\...\{B580C409-E16F-44FF-904D-3AE94E113BE0}) (Version: 1.4.1331 - Acer Inc.)
Acer Registration (HKLM\...\Acer Registration) (Version: - Acer - Leader Technologies)
Acer ScreenSaver (HKLM\...\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}) (Version: 4.01.0422 - Acer Incorporated)
Acer SlideShow DVD (HKLM\...\{41581EF5-45A7-11DA-9D78-000129760D75}) (Version: 1.5.1109 - Acer Inc.)
Acer VideoMagician (HKLM\...\{F79A208D-D929-11D9-9D77-000129760D75}) (Version: 1.4.1017 - Acer Inc.)
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 2.0.0.0 - Adobe Systems Incorporated)
Acrobat.com (Version: 2.0.0 - Adobe Systems Incorporated) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
Adobe Acrobat 5.0 (HKLM\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader X (10.1.4) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.4 - Adobe Systems Incorporated)
Agere Systems PCI-SV92EX Soft Modem (HKLM\...\Agere Systems Soft Modem) (Version: - Agere Systems)
AIO_Scan (Version: 90.0.200.000 - Hewlett-Packard) Hidden
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Art Explosion Publisher Pro 2.0 (HKLM\...\{39D4FB9C-9CDE-4449-BD2B-6AD4D376CFDC}) (Version: 2.0.0.13 - Nova Development)
Attendance Rx (HKLM\...\{6AC6AFA4-E560-433A-93C8-3FF119C6BD06}) (Version: - )
AV Input Selection (HKLM\...\{F429ED71-4A8B-457A-85E4-F6398CE73E58}) (Version: 1.02.0047 - YUAN)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4800 - AVG Technologies)
AVG 2014 (Version: 14.0.4311 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4800 - AVG Technologies) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BPD_DSWizards (Version: 1.00.0000 - Hewlett-Packard) Hidden
bpd_scan (Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Carbonite Online Backup Setup (HKLM\...\Carbonite Setup Lite) (Version: 3.7.3 - Carbonite Inc.)
Childcare Manager 10 (HKLM\...\{101AC149-4111-4131-A201-ED4E5DAC9F6A}) (Version: 10.0.2765 - Personalized Software)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Copy (Version: 90.0.146.000 - Hewlett-Packard) Hidden
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Destination Component (Version: 110.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 120.0.194.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DJ_AIO_ProductContext (Version: 90.0.201.000 - Hewlett-Packard) Hidden
DJ_AIO_Software (Version: 90.0.200.000 - Hewlett-Packard) Hidden
DJ_AIO_Software_min (Version: 90.0.200.000 - Hewlett-Packard) Hidden
DocMgr (Version: 120.0.000.000 - Hewlett-Packard) Hidden
DocProc (Version: 12.0.0.0 - Hewlett-Packard) Hidden
Document Capture Pro (HKLM\...\{0F0D5FD4-2AC3-4E5B-B92B-B1C17F33032C}) (Version: 1.06.0005 - Seiko Epson Corporation)
Document Capture Pro OneNote Connector (HKLM\...\{65FC2F65-FCD4-495C-B250-1F7C049E4A39}) (Version: 1.00.0000 - Seiko Epson Corporation)
Epson Connect (HKLM\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.7.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM\...\{A3138C04-CD9C-45A2-AC26-5E3B640AAE8C}) (Version: 3.10.0036 - Seiko Epson Corporation)
Epson FAX Utility (HKLM\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.51.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM\...\EPSON PC-FAX Driver 2) (Version: - )
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 2.30.00 - SEIKO EPSON Corp.)
EPSON WF-4630 Series Printer Uninstall (HKLM\...\EPSON WF-4630 Series) (Version: - SEIKO EPSON Corporation)
Epson WF-4630 User’s Guide version 1.0 (HKLM\...\UsersGuideEpson WF-4630 User’s Guide_is1) (Version: 1.0 - )
EPSON WP-4540 Series Printer Uninstall (HKLM\...\EPSON WP-4540 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
F4100 (Version: 90.0.200.000 - Hewlett-Packard) Hidden
F4100_doccd (Version: 90.0.200.000 - Hewlett-Packard) Hidden
F4100_Help (Version: 90.0.200.000 - Hewlett-Packard) Hidden
Fax (Version: 120.0.194.000 - Hewlett-Packard) Hidden
forestfairy_3136689 Screen Saver (HKLM\...\forestfairy_3136689) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: - )
Google Toolbar for Internet Explorer (Version: 4.0.0.002 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Hawking HWUN1 Wireless LAN Card (HKLM\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.5.0 - Hawking)
HDVidCodec (HKLM\...\1ClickDownload) (Version: 2.1 Build 26473 - hdvidcodec.com) <==== ATTENTION
homeforchristmas_3085949 Screen Saver (HKLM\...\homeforchristmas_3085949) (Version: - )
Homework Helpers (HKLM\...\{AD8780DE-96F5-454B-B551-E063B94AAD4F}) (Version: - )
HP Customer Participation Program 12.0 (HKLM\...\HPExtendedCapabilities) (Version: 12.0 - HP)
HP Deskjet All-In-One Software 9.0 (HKLM\...\{706BB40A-4102-4c89-8107-DC68C4EBD19B}) (Version: 9.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 12.0 (HKLM\...\HP Imaging Device Functions) (Version: 12.0 - HP)
HP Officejet 6700 Basic Device Software (HKLM\...\{6B7C73A0-07C7-4C06-A13C-48108D39CF03}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Officejet 6700 Help (HKLM\...\{50DA41E2-0701-43E2-A8BB-FAA0CB64B28B}) (Version: 140.0.2.2 - Hewlett Packard)
HP Officejet 6700 Product Improvement Study (HKLM\...\{8CC1FCCE-853D-488C-80BF-BD8E0B80F202}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Photosmart Essential 2.01 (HKLM\...\HP Photosmart Essential) (Version: 2.01 - HP)
HP Smart Web Printing (HKLM\...\HP Smart Web Printing) (Version: 4.05 - HP)
HP Update (HKLM\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard)
HPSSupply (Version: 120.0.194.000 - Hewlett-Packard) Hidden
I.R.I.S. OCR (HKLM\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Java 7 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java(TM) 6 Update 3 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
join.me (HKU\S-1-5-21-3578330069-1835105506-1903496687-1000\...\JoinMe) (Version: 1.20.0.125 - LogMeIn, Inc.)
Keyless Entry System (HKLM\...\Keyless Entry System) (Version: - )
LightScribe 1.4.142.1 (Version: 1.4.142.1 - http://www.lightscribe.com) Hidden
LogMeIn (HKLM\...\{34F93E31-E1A0-421C-8E86-BCF7C4193A91}) (Version: 4.0.982 - LogMeIn, Inc.)
LTCM Client (HKLM\...\LTCM Client) (Version: - Leader Technologies Inc.)
MarketResearch (Version: 120.0.226.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{BD68F46D-8A82-4664-8E68-F87C55BDEFD4}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{56B4002F-671C-49F4-984C-C760FE3806B5}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Web Publishing Wizard 1.52 (HKLM\...\WebPost) (Version: - )
Microsoft Works (HKLM\...\{6D52C408-B09A-4520-9B18-475B81D393F1}) (Version: 08.05.0818 - Microsoft Corporation)
MPM (HKLM\...\{CD8C5C7F-7C58-4F85-8977-A6C08C087912}) (Version: 1.00.0000 - Hewlett-Packard)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Norton Security Scan (HKLM\...\NSS) (Version: 4.1.0.28 - Symantec Corporation)
NVIDIA 3D Vision Driver 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM\...\InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.6776 - NVIDIA Corporation)
NVIDIA Graphics Driver 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
OCR Software by I.R.I.S. 12.0 (HKLM\...\HPOCR) (Version: 12.0 - HP)
Octoshape add-in for Adobe Flash Player (HKU\S-1-5-21-3578330069-1835105506-1903496687-1000\...\Octoshape add-in for Adobe Flash Player) (Version: - )
Officejet Pro 8500 A909 Series (HKLM\...\{624E7452-BA43-4f55-B9D5-FC75EEA0808B}) (Version: 12.0 - HP)
Opera Stable 22.0.1471.70 (HKLM\...\Opera 22.0.1471.70) (Version: 22.0.1471.70 - Opera Software ASA)
PrinterShare (HKLM\...\{51EECA1D-7EAD-4D3E-9B2C-73E7A819E401}) (Version: 1.2.1.0 - Printer Anywhere Inc.)
PrintMaster 2012 Gold (HKLM\...\5354-7805-5584-7015) (Version: 4.0.0.230 - Encore Software Inc.)
ProCare for Windows (HKLM\...\ProCare for Windows) (Version: - )
ProductContext (Version: 50.0.165.000 - Hewlett-Packard) Hidden
PSSWCORE (Version: 2.01.0000 - Hewlett-Packard) Hidden
Pure Networks Platform (Version: 11.1.9051.0 - Pure Networks) Hidden
QBFC2 (HKLM\...\{795F2EA4-9798-4BA5-B31A-C8F41A124FC8}) (Version: - )
QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Scan (Version: 12.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 12 - HP)
SmartWebPrinting (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Smilebox (HKU\S-1-5-21-3578330069-1835105506-1903496687-1000\...\Smilebox) (Version: 1.0.0.26929 - Smilebox, Inc.)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.1.20 - Safer-Networking Ltd.)
Status (Version: 120.0.194.000 - Hewlett-Packard) Hidden
Toolbox (Version: 120.0.194.000 - Hewlett-Packard) Hidden
TrayApp (Version: 120.0.194.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden
Update for Office 2007 (KB934528) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{2B939677-2FFD-48F6-9075-7BF48CB87C80}) (Version: - )
Update for Office System 2007 Setup (KB929722) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{D8E9BEBD-655F-467D-8176-CA9959C140A3}) (Version: - )
USB Ethernet Adapter 13.01.0222.0194 (HKLM\...\{AD8916AD-B5F0-4FFF-BA42-2EC09FED5A35}) (Version: 13.01.0222.0194 - MCT Corp)
VideoToolkit01 (Version: 90.0.146.000 - Hewlett-Packard) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebEx Support Manager for Internet Explorer (HKLM\...\{C34FAEF3-4241-4C4E-9CFF-7BBD8BCEABE7}) (Version: 6.5.47 - WebEx Communications Inc.)
WebReg (Version: 120.0.194.000 - Hewlett-Packard) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google)
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{4c60e5ab-5c68-4c59-abaa-885010b24b32}\InprocServer32 -> C:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll No File
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{693566bc-21f8-401e-8d42-e2c5ce50dacc}\localserver32 -> C:\Users\owner\AppData\Local\Temp\{d5641912-e47a-429c-879e-cfe13eac7a13}\IDriver.NonElevated.exe No (the data entry has 4 more characters).
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{AFD66CA9-53CD-420C-F577-748128EE9A5E}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3578330069-1835105506-1903496687-1000_Classes\CLSID\{F9E1BD9A-84B5-4D12-9195-0B3E7D86FD35}\InprocServer32 -> C:\ProgramData\{CA2FACF7-9029-4A21-892B-E7F60B39FF1A}\actxprxy.dll No File
==================== Restore Points =========================
11-04-2015 22:56:01 Installed HWUN1 Wireless LAN
11-04-2015 22:56:55 Device Driver Package Install: Ralink Network adapters
11-04-2015 22:57:33 Device Driver Package Install: Ralink Network adapters
12-04-2015 09:10:40 zoek.exe restore point
13-04-2015 00:00:00 Scheduled Checkpoint
13-04-2015 17:32:51 Restore Operation
13-04-2015 17:42:09 Restore Operation
14-04-2015 20:31:35 Scheduled Checkpoint
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {161A1B91-A20F-4868-94FD-C230091B2BF8} - System32\Tasks\{AA00E263-C397-4829-B185-2477E0427E1B} => pcalua.exe -a F:\SETUP.EXE -d F:\
Task: {18CE4E5E-F557-47B9-B3F5-2C81773E0261} - System32\Tasks\Check for updates (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {25CDD4E4-41A0-4F60-BFB1-F73F0CA2BB9C} - System32\Tasks\Refresh immunization (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {2738E73A-5732-4C3B-8B7F-D93B4E6F2653} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-7 No Task File <==== ATTENTION
Task: {2F416CC4-EDC4-4F3E-87F9-2C0B9586DCB9} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-1 No Task File <==== ATTENTION
Task: {33B87025-1615-402A-BA43-5C361B18D9C6} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-5_user No Task File <==== ATTENTION
Task: {491F98DB-2D64-4C77-A3CD-D0F7091EC109} - System32\Tasks\Opera scheduled Autoupdate 1404938597 => C:\Program Files\Opera\launcher.exe [2014-06-16] (Opera Software)
Task: {5BC4F5A5-EDCA-499C-9E49-E1E5CB2F96AE} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3578330069-1835105506-1903496687-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {5EDB9B37-C1E1-42D6-B0F8-6F80F10DBDAB} - System32\Tasks\EPSON WF-4630 Series Invitation {33BB1766-8F36-4E7A-8B5B-FBD60223E68A} => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSKLE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {6E665DC7-9974-4941-9B07-E9400C97157B} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-4 No Task File <==== ATTENTION
Task: {8484AF9D-FCBD-4EE2-96D7-2AAF9F421CB9} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-6 No Task File <==== ATTENTION
Task: {90EF7A9C-0A13-4263-9C7A-559FC811AF8F} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-3 No Task File <==== ATTENTION
Task: {930813BA-7EF4-4367-9C10-DCB14DBB728E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-08] (Google Inc.)
Task: {9494AD36-0104-4D3C-AC17-FE0CA6086867} - System32\Tasks\Scan the system (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: {96D6E405-4542-4330-8013-43F93693E100} - System32\Tasks\EPSON WF-4630 Series Update {33BB1766-8F36-4E7A-8B5B-FBD60223E68A} => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSKLE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {9A59EDB1-A63B-4243-8E8E-892CB00D0B1B} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-11 No Task File <==== ATTENTION
Task: {9ACBD1AF-E16A-405D-B843-E68E9DDAD1B7} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-5 No Task File <==== ATTENTION
Task: {B1B70C22-5F0A-4DB4-8DE5-F386366A8676} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - owner => C:\Program Files\Windows Calendar\WinCal.exe [2008-01-20] (Microsoft Corporation)
Task: {B834E88C-C986-4A8A-95C4-ED56EC9533A8} - System32\Tasks\HPCustParticipation HP Officejet 6700 => C:\Program Files\HP\HP Officejet 6700\Bin\HPCustPartic.exe [2011-09-09] (Hewlett-Packard Co.)
Task: {B9344AD8-83A9-46EC-93B0-99502574AE2D} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-2 No Task File <==== ATTENTION
Task: {D2A19940-D4E8-4945-BEA1-DC425C668AFB} - \0e8a4bf8-97c5-4dd9-bc38-456fe7ea62f9-10 No Task File <==== ATTENTION
Task: {D392335B-3064-490D-BE5A-08B4714DB8FA} - \PriceFinderUpdate No Task File <==== ATTENTION
Task: {D5D4AFB7-5281-462C-A94F-5860D2FFC79D} - \LaunchSignup No Task File <==== ATTENTION
Task: {E0059CF9-778A-47DB-A13B-66E22B8A0943} - System32\Tasks\Norton Security Scan for owner => C:\Program Files\Norton Security Scan\Engine\4.1.0.28\Nss.exe [2014-08-21] (Symantec Corporation)
Task: {E616A03A-6247-4174-BAB2-48E2949B1EC9} - System32\Tasks\At1 => C:\Users\owner\AppData\Roaming\WINWORD.EXE <==== ATTENTION
Task: {EC114CAB-AC41-49F2-A80D-F39D66E888D8} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3578330069-1835105506-1903496687-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {ECA4F40A-A200-4595-8E39-31EF275B4F7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-08] (Google Inc.)
Task: {ED4C57EB-67DB-4E6F-8206-556C99037E26} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\EPSON WF-4630 Series Invitation {33BB1766-8F36-4E7A-8B5B-FBD60223E68A}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSKLE.EXE
Task: C:\Windows\Tasks\EPSON WF-4630 Series Update {33BB1766-8F36-4E7A-8B5B-FBD60223E68A}.job => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TTSKLE.EXE:/EXE:{33BB1766-8F36-4E7A-8B5B-FBD60223E68A} /F:UpdateSYSTEM
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Security Scan for owner.job => C:\PROGRA~1\NORTON~2\Engine\410~1.28\Nss.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
==================== Loaded Modules (whitelisted) ==============
2008-08-19 14:47 - 2008-01-25 21:49 - 00098304 _____ () C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLSchRecordMonitor.dll
2008-08-19 14:47 - 2008-01-25 21:49 - 00260096 _____ () C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\sqlite3.dll
2013-09-21 08:16 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-09-21 08:16 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2008-08-19 14:37 - 2008-04-25 16:30 - 00024576 _____ () C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
2008-08-19 14:38 - 2008-08-19 14:38 - 00032768 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.Controller\3.0.3008.0__14bcaafdb44b5951\Framework.Model.Controller.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00009216 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3008.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00061440 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3008.0__3036420f80dd6947\Framework.Library.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00015360 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Host\3.0.3008.0__672b450de5a7e94a\Framework.Host.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00006144 _____ () C:\Windows\assembly\GAC_MSIL\Framework.PluginInterface\3.0.3008.0__9ecdf03bb2054f94\Framework.PluginInterface.dll
2008-08-19 14:38 - 2008-08-19 14:38 - 00036864 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3008.0__4df5dcab8860d239\Framework.Utility.dll
2008-08-19 14:38 - 2008-04-25 16:30 - 00487424 _____ () C:\Windows\system32\INT15.dll
2009-04-17 16:02 - 2009-04-17 16:02 - 00073728 _____ () C:\Program Files\PrinterShare\pipeSvr.exe
2008-08-19 14:44 - 2006-07-19 14:36 - 00262247 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe
2013-09-21 08:16 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-09-21 08:16 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2013-09-21 08:16 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2015-04-11 22:58 - 2009-11-09 12:35 - 00913408 _____ () C:\Program Files\Hawking\Common\RaWLAPI.dll
2008-01-29 15:25 - 2008-01-29 15:25 - 00598016 _____ () C:\Program Files\bin32\nSvcAppFlt.exe
2008-01-29 15:17 - 2008-01-29 15:17 - 00102400 _____ () C:\Program Files\bin32\nv_common.dll
2008-01-29 15:18 - 2008-01-29 15:18 - 00454656 _____ () C:\Program Files\bin32\SpecialCase.dll
2008-01-29 15:24 - 2008-01-29 15:24 - 00163840 _____ () C:\Program Files\bin32\nSvcIp.exe
2015-04-03 16:58 - 2015-03-30 17:07 - 09279304 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.118\pdf.dll
2015-04-03 16:58 - 2015-03-30 17:07 - 14974280 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.118\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:17C643E2
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3578330069-1835105506-1903496687-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\owner\Desktop\VPK 13-14\0 ClipArt\Clipart (42).jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HWUN1 Wireless Utility.lnk => C:\Windows\pss\HWUN1 Wireless Utility.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: EEventManager => "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: ehTray.exe => C:\Windows\ehome\ehTray.exe
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: FUFAXRCV => "C:\Program Files\Epson Software\FAX Utility\FUFAXRCV.exe"
MSCONFIG\startupreg: FUFAXSTM => "C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: LogMeIn GUI => "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
MSCONFIG\startupreg: LTCM Client => C:\Program Files\LTCM Client\ltcmClient.exe /startup
MSCONFIG\startupreg: nmctxth => "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SDTray => "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: SmileboxTray => "C:\Users\owner\AppData\Roaming\Smilebox\SmileboxTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
==================== Accounts: =============================
Administrator (S-1-5-21-3578330069-1835105506-1903496687-500 - Administrator - Disabled)
Guest (S-1-5-21-3578330069-1835105506-1903496687-501 - Limited - Enabled)
LogMeInRemoteUser (S-1-5-21-3578330069-1835105506-1903496687-1004 - Administrator - Enabled) => C:\Users\LogMeInRemoteUser
owner (S-1-5-21-3578330069-1835105506-1903496687-1000 - Administrator - Enabled) => C:\Users\owner
UpdatusUser (S-1-5-21-3578330069-1835105506-1903496687-1005 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name: Officejet Pro 8500 A909a
Description: Officejet Pro 8500 A909a
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Photosmart 6510 series
Description: Photosmart 6510 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/14/2015 07:15:52 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:14:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:13:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:13:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:11:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:06:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/14/2015 07:06:37 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 07:06:37 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/14/2015 04:43:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
Error: (04/13/2015 05:52:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
System errors:
=============
Error: (04/14/2015 07:15:26 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Techinline Remote Desktop Client Service:0de1ed28-75dc-4b5f-b1e8-d6c3bf091f86
Error: (04/14/2015 07:14:04 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Techinline Remote Desktop Client Service:3e6e53a7-c8de-4d6c-994c-bdc32bcc917f
Error: (04/14/2015 07:13:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LogMeIn2
Error: (04/14/2015 07:13:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LogMeIn1
Error: (04/14/2015 07:11:00 PM) (Source: Schannel) (EventID: 4108) (User: )
Description: The certificate received from the remote server has not validated correctly. The error code is 0x80092013. The SSL connection request has failed. The attached data contains the server certificate.
Error: (04/14/2015 07:08:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069
Error: (04/14/2015 07:08:52 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330
Error: (04/14/2015 07:06:46 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: i8042prt
Error: (04/14/2015 07:06:45 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spybot-S&D 2 Security Center ServiceSecurity Center%%1058
Error: (04/14/2015 07:05:52 PM) (Source: HTTP) (EventID: 15016) (User: )
Description: \Device\Http\ReqQueueKerberos
Microsoft Office Sessions:
=========================
Error: (04/12/2015 10:18:16 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 366 seconds with 60 seconds of active time. This session ended with a crash.
Error: (05/31/2012 00:50:07 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 5048 seconds with 1080 seconds of active time. This session ended with a crash.
Error: (04/17/2012 02:13:05 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1178 seconds with 780 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2015-04-15 09:56:31.329
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-15 09:56:30.933
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-15 09:56:30.548
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-15 09:56:29.665
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-14 19:28:40.076
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-14 19:28:39.690
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-14 19:28:39.325
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-14 19:28:38.948
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-11 23:12:36.540
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-04-11 23:12:36.179
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD Sempron(tm) Dual Core Processor 2300
Percentage of memory in use: 67%
Total physical RAM: 2813.8 MB
Available physical RAM: 921.27 MB
Total Pagefile: 7224.26 MB
Available Pagefile: 5065.41 MB
Total Virtual: 2047.88 MB
Available Virtual: 1903.34 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:140.96 GB) (Free:58.26 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:141.12 GB) (Free:140.86 GB) NTFS
Drive z: (ACER) (Network) (Total:140.96 GB) (Free:58.26 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: DC0CDE59)
Partition 1: (Not Active) - (Size=16 GB) - (Type=27)
Partition 2: (Active) - (Size=141 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=141.1 GB) - (Type=07 NTFS)
==================== End Of Log ============================
- Mar 8, 2013
- 22,627
- Mar 8, 2013
- 22,627
Download attached fixlist.txt file and save it to the Desktop:
Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!
- Right-click on
icon and select
Run as Administrator to start the tool.
(XP users click run after receipt of Windows Security Warning - Open File). - Press the Fix button just once and wait.
- If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
- When finished FRST will generate a log on the Desktop, called Fixlog.txt.
Please attach it to your reply.
Similar threads
- Locked