Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unable to start Windows Firewall


  • Please log in to reply
12 replies to this topic

#1 Bongowhack

Bongowhack

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:06 PM

Posted 06 May 2015 - 05:11 PM

Hi there, until recently I had Symantec security protecting my computer and since the licence lapsed, I've been unable to start Windows Firewall.
 
I'm running a 64 bit Windows 7 Home Premium.
 
I've uninstalled all Symantec files and have tried numerous methods to get the firewall going again with no success.
 
Trying to start it through services.msc, the following error message appears:
 
"Windows could not start the WIndows Firewall on Local Computer. For more information, review the System Event Log. If this is a non-Microsoft service, contact the service vendor, and refer to service-specific error code 5."
 
I've tried running the System File Checker and nothing came back.
 
Any help would be greatly appreciated as there are a number of things I can't do (re-install my wireless printer for example) without a the firewall in place.
 
Thanks,
 
Mike

Edited by Queen-Evie, 06 May 2015 - 06:40 PM.
moved from Windows 7 to Am I Infected


BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 06 May 2015 - 06:26 PM

Lets make sure that you are not infected prior to looking at the firewall issue. :) Do you currently have an antivirus?

 

Run the Norton Removal Tool please.

http://www.bleepingcomputer.com/download/norton-removal-tool/

 

Download and run wipe  and system ninja,

 

https://privacyroot.com/software/www/en/wipe.php

https://singularlabs.com/software/system-ninja/

 

Then.....

 

Go ahead and install ccleaner Now that you have the program installed go ahead and run the cleaner function.

https://www.piriform.com/ccleaner/download
kwLN4uv.png


Now that you have cleaned out some temp files, lets go ahead and disable all of the items starting up with your machine except your antivirus. To do this you will need to click on tools then start up select each item then disable.

GjWwvEu.png

Now that you have disabled those un-needed start ups lets go into the settings, we will have Ccleaner run when your machine boots, so that you will never have to worry about cleaning temp files again.

To do this:

  • Hit options.
  • Settings.
  • Place a tick to run Ccleaner when the computer starts.


Lxioao1.png

Now go to the advanced tab, and select close program after cleaning, now run the cleaner again this will close Ccleaner.

SnqZ2JW.png

 

Reboot your machine and then follow the  instructions below.

 

Step 1: eScanAV.

 

Disable your antivirus prior to this scan.

http://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

Download the eScanAV Anti-Virus Toolkit (MWAV)
http://www.escanav.com/english/content/products/downloadlink/downloadcounter.asp?pcode=MWAV&src=english_dwn&type=alter

 

Source

http://www.escanav.com/english/content/products/downloadlink/downloadproduct.asp?pcode=MWAV
Save the file to your desktop.
Right click run as administrator.
A new icon will appear on your desktop.
Right click run as administrator on new icon.
Click on the update tab.
ZCDJtZN.png
Once you have updated the program, make sure the settings are the same as the picture below.
7DUFn5c.png
Once you have made sure the settings match the picture, hit the Scan & Clean button.
Upon scan completion, click View Log.
ApSVXsQ.png
Copy and paste entire log into your next reply.
Note: Reboot if needed to remove infections.

 

Step 2: Zemana

 

Run a full scan with Zemana antimalware.

http://www.zemana.us/product/zemana-antimalware/default.aspx

Install and select deep scan.

jdmyscF.jpg

Remove any infections found.

Then click on the icon in the pic below.

DOLGyto.jpg

Double click on the scan log, copy and paste here in your reply.

 

 

Step 3: Junkware Removal Tool.
 
Please download Junkware Removal Tool and save it on your desktop.

Source

http://thisisudax.org/

  • Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log is saved to your desktop and will automatically open.
  • Please post the JRT log.

Step 4: Adware Cleaner.
 
Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


#3 Bongowhack

Bongowhack
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:06 PM

Posted 06 May 2015 - 07:16 PM

That's one hell of a detailed reply - thanks. I've already tried the Norton Uninstall tool and CCleaner rings a bell but the rest looks like new ground for me.

It's 1am in the UK now so I'll try these steps after work tomorrow & let you know how I get on.

Many thanks.

Mike.

#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 06 May 2015 - 07:18 PM

No problem, we will look into the firewall issue when we make sure you are clean. I have dealt with firewall issues many times so we should get you fixed up. :)



#5 Bongowhack

Bongowhack
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:06 PM

Posted 19 May 2015 - 05:25 AM

Righty then, it's taken a fair while to get through all the steps in your reply but I've eventually managed the lot and can post the results below.

 

I've enabled my Avira and Microsoft Security Essentials anti virus software again but still can't enable the Windows Firewall - any help on that topic would be much appreciated.

 

Many thanks,

 

Mike

 

 

 

 

15 May 2015 22:49:14 [1ee4] - **********************************************************
15 May 2015 22:49:14 [1ee4] - MWAV - eScanAV AntiVirus Toolkit.
15 May 2015 22:49:14 [1ee4] - Copyright © MicroWorld Technologies
15 May 2015 22:49:14 [1ee4] - **********************************************************
15 May 2015 22:49:14 [1ee4] - Source: C:\Users\Asus\Downloads\mwav.exe
15 May 2015 22:49:14 [1ee4] - Version 14.0.178 (C:\USERS\ASUS\APPDATA\LOCAL\TEMP\MEXE.COM)
15 May 2015 22:49:14 [1ee4] - Log File: C:\Users\Asus\AppData\Local\Temp\MWAV.LOG
15 May 2015 22:49:14 [1ee4] - MWAV Registered: TRUE
15 May 2015 22:49:14 [1ee4] - User Account: Asus (Administrator Mode)
15 May 2015 22:49:14 [1ee4] - OS Type: Windows Workstation [InstallType: Client]
15 May 2015 22:49:14 [1ee4] - OS: Windows 7 64-Bit [OS Install Date: 29 Dec 2011 19:17:16]
15 May 2015 22:49:14 [1ee4] - Ver: Personal Service Pack 1 (Build 7601)
15 May 2015 22:49:14 [1ee4] - System Up Time: 14 Minutes, 0 Second
15 May 2015 22:49:14 [1ee4] - Parent Process Name : C:\Users\Asus\Downloads\mwav.exe
15 May 2015 22:49:14 [1ee4] - Windows Root  Folder: C:\Windows
15 May 2015 22:49:14 [1ee4] - Windows Sys32 Folder: C:\Windows\system32
15 May 2015 22:49:14 [1ee4] - DHCP NameServer: 192.168.0.1
15 May 2015 22:49:14 [1ee4] - Interface0 DHCPNameServer: 192.168.0.1
15 May 2015 22:49:14 [1ee4] - Interface1 DHCPNameServer: 172.20.10.1
15 May 2015 22:49:14 [1ee4] - Local Fixed Drives: c:\,d:\,q:\
15 May 2015 22:49:14 [1ee4] - MWAV Mode(A): Scan and Clean files (for viruses, adware and spyware)
15 May 2015 22:49:14 [1ee4] - [CREATED ZIP FILE: C:\Users\Asus\AppData\Local\Temp\pinfect.zip]
15 May 2015 22:49:14 [1ee4] - Latest Date of files inside MWAV: Mon Mar  2 17:13:53 2015.
15 May 2015 22:49:16 [1ee4] - Putting back WSCSVC Service Entries...
15 May 2015 22:49:16 [1ee4] - Putting back SharedAccess Service Entries...
15 May 2015 22:49:19 [1ee4] - Putting back iphlpsvc Service Entries...
15 May 2015 22:49:19 [1ee4] - ** Changed Value of "Path"
15 May 2015 22:49:19 [1ee4] - ** Changed Value of "HKEY_CLASSES_ROOT\.scr" from "AutoCADScriptFile" to "scrfile"
15 May 2015 22:49:19 [1ee4] - ** Changed Value of "HKEY_CLASSES_ROOT\.htm" from "ChromeHTML" to "htmlfile"
15 May 2015 22:49:19 [1ee4] - ** Changed Value of "HKEY_CLASSES_ROOT\.html" from "ChromeHTML" to "htmlfile"
15 May 2015 22:49:19 [1ee4] - Loading/Creating FileScan Cache Database C:\ProgramData\MicroWorld\MWAV\ESCANDBY.MDB [Log: C:\Users\Asus\AppData\Local\Temp\ESCANDB.LOG]
15 May 2015 22:49:26 [1ee4] - Loaded/Created FileScan Cache Database...
15 May 2015 22:49:26 [1ee4] - Loading AV Library [DB]...
15 May 2015 22:50:37 [1ee4] - ArchiveScan: DISABLED
15 May 2015 22:50:38 [1ee4] - AV Library Loaded - MultiThreaded - 8 : [DB-DIRECT].
15 May 2015 22:50:38 [1ee4] - MWAV doing self scanning...
15 May 2015 22:50:39 [1ee4] - MWAV files are clean.
15 May 2015 22:50:44 [1ee4] - ArchiveScan: DISABLED
15 May 2015 22:50:44 [1ee4] - Virus Database Date: 02 Mar 2015
15 May 2015 22:50:44 [1ee4] - Virus Database Count: 6701505
15 May 2015 22:50:44 [1ee4] - Sign Version: 7.59505 [518257]
 
15 May 2015 22:52:47 [1ee4] - **********************************************************
15 May 2015 22:52:47 [1ee4] - MWAV - eScanAV AntiVirus Toolkit.
15 May 2015 22:52:47 [1ee4] - Copyright © MicroWorld Technologies
15 May 2015 22:52:47 [1ee4] - 
15 May 2015 22:52:47 [1ee4] - Support: support@escanav.com
15 May 2015 22:52:47 [1ee4] - Web: http://www.escanav.com
15 May 2015 22:52:47 [1ee4] - **********************************************************
15 May 2015 22:52:47 [1ee4] - Version 14.0.178[DB] (C:\USERS\ASUS\APPDATA\LOCAL\TEMP\MEXE.COM)
15 May 2015 22:52:47 [1ee4] - Log File: C:\Users\Asus\AppData\Local\Temp\MWAV.LOG
15 May 2015 22:52:47 [1ee4] - User Account: Asus (Administrator Mode)
15 May 2015 22:52:47 [1ee4] - Parent Process Name : C:\Users\Asus\Downloads\mwav.exe
15 May 2015 22:52:47 [1ee4] - Windows Root  Folder: C:\Windows
15 May 2015 22:52:47 [1ee4] - Windows Sys32 Folder: C:\Windows\system32
15 May 2015 22:52:47 [1ee4] - OS: Windows 7 64-Bit [OS Install Date: 29 Dec 2011 19:17:16]
15 May 2015 22:52:47 [1ee4] - Ver: Personal Service Pack 1 (Build 7601)
15 May 2015 22:52:47 [1ee4] - Latest Date of files inside MWAV: Mon Mar  2 17:13:53 2015.
 
15 May 2015 22:52:47 [04c0] - Options Selected by User:
15 May 2015 22:52:47 [04c0] - Memory Check: Enabled
15 May 2015 22:52:47 [04c0] - Registry Check: Enabled
15 May 2015 22:52:47 [04c0] - StartUp Folder Check: Enabled
15 May 2015 22:52:47 [04c0] - System Folder Check: Enabled
15 May 2015 22:52:47 [04c0] - Services Check: Enabled
15 May 2015 22:52:47 [04c0] - Scan Spyware: Enabled
15 May 2015 22:52:47 [04c0] - Scan Archives: Disabled
15 May 2015 22:52:47 [04c0] - Drive Check: Enabled
15 May 2015 22:52:47 [04c0] - All Drive Check :Disabled
15 May 2015 22:52:47 [04c0] - Drive Selected = C:\
15 May 2015 22:52:47 [04c0] - Folder Check: Disabled
15 May 2015 22:52:47 [04c0] - SCAN: All_Files [ANSI]
15 May 2015 22:52:47 [04c0] - MWAV Mode(B): Scan and Clean files (for viruses, adware and spyware)
 
15 May 2015 22:52:47 [04c0] - Scanning DNS Records...
15 May 2015 22:52:47 [04c0] - Scanning Master Boot Record (User)...
15 May 2015 22:52:48 [04c0] - Scanning Logical Boot Records...
15 May 2015 22:52:48 [04c0] - ***** Scanning For Hidden Rootkit Processes *****
15 May 2015 22:52:49 [04c0] - ***** Scanning For Hidden Rootkit Services *****
15 May 2015 22:52:50 [1ee4] - Please Wait Exiting Application...
 
15 May 2015 22:52:54 [04c0] - ***** Scanning complete. *****
 
15 May 2015 22:52:54 [04c0] - Total Objects Scanned: 4
15 May 2015 22:52:54 [04c0] - Total Critical Objects: 0
15 May 2015 22:52:54 [04c0] - Total Disinfected Objects: 0
15 May 2015 22:52:54 [04c0] - Total Objects Renamed: 0
15 May 2015 22:52:54 [04c0] - Total Deleted Objects: 0
15 May 2015 22:52:54 [04c0] - Total Errors: 0
15 May 2015 22:52:54 [04c0] - Time Elapsed: 00:00:02
15 May 2015 22:52:54 [04c0] - Virus Database Date: 02 Mar 2015
15 May 2015 22:52:54 [04c0] - Virus Database Count: 6701505
15 May 2015 22:52:54 [04c0] - Sign Version: 7.59505 [518257]
 
15 May 2015 22:52:54 [04c0] - Scan Completed.
 
15 May 2015 22:52:59 [1ee4] - Virus Database Date: 02 Mar 2015
15 May 2015 22:52:59 [1ee4] - Virus Database Count: 6701505
15 May 2015 22:52:59 [1ee4] - Sign Version: 7.59505 [518257]
15 May 2015 22:53:02 [1ee4] - Downloading AntiVirus and Anti-Spyware Databases...
15 May 2015 23:06:51 [1ee4] - Update Successful...
16 May 2015 15:33:27 [1ee4] - Indexed Spyware Databases Successfully Created...
16 May 2015 15:33:27 [1ee4] - Old Sign Version: 7.59505 New Sign Version: 7.60593
16 May 2015 15:35:18 [1ee4] - Reload of AntiVirus Signatures successfully done.
16 May 2015 15:35:18 [1ee4] - Virus Database Date: 15 May 2015
16 May 2015 15:35:18 [1ee4] - Virus Database Count: 5595685
16 May 2015 15:35:18 [1ee4] - Sign Version: 7.60593 [519345]
 
16 May 2015 15:35:41 [1f68] - Options Selected by User:
16 May 2015 15:35:41 [1f68] - Memory Check: Enabled
16 May 2015 15:35:41 [1f68] - Registry Check: Enabled
16 May 2015 15:35:41 [1f68] - StartUp Folder Check: Enabled
16 May 2015 15:35:41 [1f68] - System Folder Check: Enabled
16 May 2015 15:35:41 [1f68] - Services Check: Enabled
16 May 2015 15:35:41 [1f68] - Scan Spyware: Enabled
16 May 2015 15:35:41 [1f68] - Scan Archives: Disabled
16 May 2015 15:35:41 [1f68] - Drive Check: Enabled
16 May 2015 15:35:41 [1f68] - All Drive Check :Disabled
16 May 2015 15:35:41 [1f68] - Drive Selected = C:\
16 May 2015 15:35:41 [1f68] - Folder Check: Disabled
16 May 2015 15:35:41 [1f68] - SCAN: All_Files [ANSI]
16 May 2015 15:35:41 [1f68] - MWAV Mode(B): Scan and Clean files (for viruses, adware and spyware)
 
16 May 2015 15:35:41 [1f68] - Scanning Master Boot Record (User)...
16 May 2015 15:35:41 [1f68] - Scanning Logical Boot Records...
16 May 2015 15:35:42 [1f68] - ***** Scanning For Hidden Rootkit Processes *****
16 May 2015 15:35:43 [1f68] - ***** Scanning For Hidden Rootkit Services *****
 
16 May 2015 15:35:47 [1f68] - ***** Scanning Memory Files *****
 
16 May 2015 15:36:06 [1f68] - ***** Scanning Registry Files *****
16 May 2015 15:36:06 [1f68] - ERROR(3)!!! Invalid Entry  = C:\Windows\Downloaded Program Files\sysreqlab_nvd.dll (in key HKLM\Software\Microsoft\Code Store Database\Distribution Units\{1E54D648-B804-468d-BC78-4AFFED8E262F}). Action Taken: Removing it.
16 May 2015 15:37:50 [1f68] - ERROR(3)!!! Invalid Entry  = C:\Windows\DOWNLO~1\NVIDIA~1.OCX (in key HKLM\Software\Microsoft\Code Store Database\Distribution Units\{74DBCB52-F298-4110-951D-AD2FF67BC8AB}). Action Taken: Removing it.
16 May 2015 15:37:50 [1f68] - ERROR(3)!!! Invalid Entry  = C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll (in key HKLM\Software\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}). Action Taken: Removing it.
16 May 2015 15:37:56 [1f68] - ERROR(3)!!! Invalid Entry vidc.mjpg = pvmjpg30.dll (in key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32). Action Taken: Removing it.
16 May 2015 15:37:57 [1f68] - ERROR(3)!!! Invalid Entry Setwallpaper = c:\programdata\SetWallpaper.cmd (in key HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Run). Action Taken: Removing it.
16 May 2015 15:37:57 [1f68] - ERROR(3)!!! Invalid Entry  Maintance = "C:\Program Files\\net1.exe" windowsStartup (in key HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run). Action Taken: Removing it.
 
16 May 2015 15:37:58 [1f68] - ***** Scanning StartUp Folders *****
16 May 2015 15:38:52 [1e00] - ScanFile (C:\Users\Asus\Desktop\PinnacleStudioSetup\Prerequisites\directx_jun2010_rar_redist.exe) took 6911 ms
16 May 2015 15:53:05 [1dac] - ScanFile (C:\Users\Asus\AppData\Roaming\Spotify\Data\libcef.dll) took 8736 ms
16 May 2015 15:54:06 [1de0] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\1d04e118.qua
16 May 2015 15:54:06 [1de0] - ScanFile (C:\ProgramData\Avira\Antivirus\INFECTED\1d04e118.qua) took 5007 ms
16 May 2015 15:54:06 [057c] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\141ee5b7.qua
16 May 2015 15:54:07 [03f0] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\1af2ac5e.qua
16 May 2015 15:54:07 [03f0] - ScanFile (C:\ProgramData\Avira\Antivirus\INFECTED\1af2ac5e.qua) took 5336 ms
16 May 2015 15:54:07 [1e00] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\3941cb23.qua
16 May 2015 15:54:07 [1de0] - File C:\ProgramData\Avira\Antivirus\INFECTED\1d04e118.qua infected by "Gen:Variant.Adware.Kazy.566748[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:07 [1e00] - File C:\ProgramData\Avira\Antivirus\INFECTED\3941cb23.qua infected by "Gen:Variant.Adware.Kazy.566748[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:07 [057c] - File C:\ProgramData\Avira\Antivirus\INFECTED\141ee5b7.qua infected by "Gen:Variant.Adware.Jatif.294[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:07 [03f0] - File C:\ProgramData\Avira\Antivirus\INFECTED\1af2ac5e.qua infected by "Gen:Variant.Adware.Kazy.566748[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:08 [057c] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\50eb6e7a.qua
16 May 2015 15:54:08 [057c] - File C:\ProgramData\Avira\Antivirus\INFECTED\50eb6e7a.qua infected by "JS:Trojan.HideLink.A[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:09 [03f0] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\503ad912.qua
16 May 2015 15:54:09 [03f0] - File C:\ProgramData\Avira\Antivirus\INFECTED\503ad912.qua infected by "Adware.BrowseFox.CO[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:09 [057c] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\57b0dcce.qua
16 May 2015 15:54:09 [057c] - File C:\ProgramData\Avira\Antivirus\INFECTED\57b0dcce.qua infected by "Adware.RollAround.A[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:09 [1820] - ScanFile (C:\ProgramData\Avira\Antivirus\INFECTED\465afcdf.qua) took 5242 ms
16 May 2015 15:54:09 [1478] - ScanFile (C:\ProgramData\Avira\Antivirus\INFECTED\2e9495a7.qua) took 7987 ms
16 May 2015 15:54:09 [1984] - ScanFile (C:\ProgramData\Avira\Antivirus\INFECTED\42c8b996.qua) took 5351 ms
16 May 2015 15:54:09 [1dac] - ScanFile (C:\ProgramData\Avira\Antivirus\INFECTED\0ae2d094.qua) took 8564 ms
16 May 2015 15:54:10 [1820] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\7cc5e39d.qua
16 May 2015 15:54:10 [1820] - File C:\ProgramData\Avira\Antivirus\INFECTED\7cc5e39d.qua infected by "Gen:Variant.Adware.Kazy.566748[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:14 [1de0] - Scanning File C:\ProgramData\Avira\Antivirus\INFECTED\51379cf5.qua
16 May 2015 15:54:14 [1de0] - ScanFile (C:\ProgramData\Avira\Antivirus\INFECTED\51379cf5.qua) took 5928 ms
16 May 2015 15:54:14 [1de0] - File C:\ProgramData\Avira\Antivirus\INFECTED\51379cf5.qua infected by "Adware.BrowseFox.BY[ZP] (DB)" Virus! Action Taken: File Deleted.
 
16 May 2015 15:54:47 [1984] - ScanFile (C:\ProgramData\HP Photo Creations\PhotoProductCore.exe) took 11512 ms
16 May 2015 15:55:01 [1e00] - ScanFile (C:\ProgramData\Microsoft\Microsoft Antimalware\Network Inspection System\Support\NisLog.txt) took 5241 ms
16 May 2015 15:55:45 [1dac] - ScanFile (C:\ProgramData\MicroWorld\MWAV\ESCANDBY.MDB) took 5896 ms
 
16 May 2015 15:56:42 [1f68] - ***** Scanning Service Files *****
16 May 2015 15:57:13 [1f68] - Giving rights(a) to [HKLM64\SYSTEM\CurrentControlSet\Services\TrkWks].
 
16 May 2015 15:57:24 [1f68] - ***** Scanning Registry and File system for Adware/Spyware *****
16 May 2015 15:57:25 [1f68] - Loading Spyware Signatures from new External Database [Name: C:\Users\Asus\AppData\Local\Temp\spydb.avs, Size: 464724]...
16 May 2015 15:57:25 [1f68] - Indexed Spyware Databases Successfully Created...
 
 
16 May 2015 15:58:56 [1f68] - ***** Scanning Registry Files *****
16 May 2015 15:58:57 [1f68] - ** Value in HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\main/Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
16 May 2015 15:58:57 [1f68] - ** Deleted Value of "NoActiveDesktop" in "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer". Its value was DWORD:1.
16 May 2015 15:58:57 [1f68] - ** Deleted Value of "ForceActiveDesktopOn" in "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer". Its value was DWORD:0.
16 May 2015 15:58:59 [1f68] - ** Value in 64-bit HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\main/Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
16 May 2015 15:58:59 [1f68] - ** Value in HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\main/Start Page = http://www.google.co.uk/
16 May 2015 15:58:59 [1f68] - ** Value in 64-bit HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\main/Start Page = http://www.google.co.uk/
 
16 May 2015 15:58:59 [1f68] - ***** Scanning System32 Folders *****
 
16 May 2015 16:01:49 [03f0] - Scanning File C:\Users\Asus\AppData\Local\Temp\MWZ1D84.tmp
 
16 May 2015 16:02:45 [1f68] - ***** Scanning Drive C:\ *****
16 May 2015 16:03:03 [03f0] - ScanFile (C:\downloads\install_flashplayer11x32axau_mssd_aih.exe.ob!) took 7971 ms
16 May 2015 16:03:11 [1dac] - ScanFile (C:\downloads\thesims2_update.exe) took 7488 ms
16 May 2015 16:03:18 [03f0] - ScanFile (C:\eSupport\eDriver\LIB\0411.DLL) took 7192 ms
16 May 2015 16:03:18 [057c] - ScanFile (C:\eSupport\eDriver\LIB\0804.DLL) took 5866 ms
16 May 2015 16:05:42 [1820] - ScanFile (C:\eSupport\eDriver\Software\TRENDMICRO\Vizor32\TiPatch.exe) took 9875 ms
16 May 2015 16:06:13 [03f0] - ScanFile (C:\eSupport\eDriver\Software\VGA\Nvidia\Display.Driver\nvcompiler32.dl_) took 6739 ms
16 May 2015 16:06:13 [1820] - ScanFile (C:\eSupport\eDriver\Software\VGA\Nvidia\Display.Driver\nvcompiler.dl_) took 7285 ms
16 May 2015 16:06:20 [1dac] - ScanFile (C:\eSupport\eDriver\Software\VGA\Nvidia\Display.Driver\nvoglv64.dl_) took 8003 ms
16 May 2015 16:07:24 [1820] - ScanFile (C:\MSOCache\All Users\{90120000-0116-0409-1000-0000000FF1CE}-C\Office64MUI.msi) took 6177 ms
16 May 2015 16:16:38 [03f0] - ScanFile (C:\Program Files\Autodesk\3ds Max Design 2013\SketchUpReader.exe) took 23088 ms
16 May 2015 16:16:38 [03f0] - Scanning of C:\Program Files\Autodesk\3ds Max Design 2013\SketchUpReader.exe Timed out!!!
16 May 2015 16:18:52 [1dac] - ScanFile (C:\Program Files\Autodesk\Alias2013\bin\Appmanager.exe) took 15975 ms
16 May 2015 16:22:02 [057c] - ScanFile (C:\Program Files\Autodesk\AutoCAD 2013\AdExchange\AcBrowserHost.exe) took 45131 ms
16 May 2015 16:22:02 [057c] - Scanning of C:\Program Files\Autodesk\AutoCAD 2013\AdExchange\AcBrowserHost.exe Timed out!!!
16 May 2015 16:22:02 [1dac] - ScanFile (C:\Program Files\Autodesk\AutoCAD 2013\AdFlashVideoPlayer.exe) took 36442 ms
16 May 2015 16:22:02 [1dac] - Scanning of C:\Program Files\Autodesk\AutoCAD 2013\AdFlashVideoPlayer.exe Timed out!!!
16 May 2015 16:24:12 [057c] - C:\Program Files\Autodesk\AutoCAD 2013\pdfnet.res not Scanned. Possibly password protected...
16 May 2015 16:24:48 [1e00] - ScanFile (C:\Program Files\Autodesk\AutoCAD 2013\sfxbe322.dll) took 10047 ms
16 May 2015 16:25:13 [1820] - ScanFile (C:\Program Files\Autodesk\AutoCAD 2013\sfxfe32.exe) took 35802 ms
16 May 2015 16:25:13 [1820] - Scanning of C:\Program Files\Autodesk\AutoCAD 2013\sfxfe32.exe Timed out!!!
16 May 2015 16:27:19 [1984] - ScanFile (C:\Program Files\Autodesk\Composite 2013\program\quicktimeShim.exe) took 7971 ms
16 May 2015 16:27:34 [1984] - ScanFile (C:\Program Files\Autodesk\Composite 2013\python\lib\distutils\command\wininst-7.1.exe) took 13557 ms
16 May 2015 16:27:34 [03f0] - ScanFile (C:\Program Files\Autodesk\Composite 2013\python\lib\distutils\command\wininst-6.0.exe) took 13635 ms
16 May 2015 16:27:35 [1820] - ScanFile (C:\Program Files\Autodesk\Composite 2013\python\lib\distutils\command\wininst-8.0.exe) took 13806 ms
16 May 2015 16:27:35 [1dac] - ScanFile (C:\Program Files\Autodesk\Composite 2013\python\lib\distutils\command\wininst-8_d.exe) took 13712 ms
16 May 2015 16:27:35 [1478] - ScanFile (C:\Program Files\Autodesk\Composite 2013\python\lib\distutils\command\wininst-9.0.exe) took 13853 ms
16 May 2015 16:28:41 [1984] - ScanFile (C:\Program Files\Autodesk\Inventor Fusion 2013\AdFlashVideoPlayer.exe) took 16895 ms
16 May 2015 16:30:59 [03f0] - ScanFile (C:\Program Files\Autodesk\Inventor Fusion 2013\SketchUpReader.dll) took 34274 ms
16 May 2015 16:30:59 [03f0] - Scanning of C:\Program Files\Autodesk\Inventor Fusion 2013\SketchUpReader.dll Timed out!!!
16 May 2015 16:32:55 [1984] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\bin\Fonts\g13f12d.shx) took 6662 ms
16 May 2015 16:32:55 [1478] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\bin\ffmpeg.exe) took 5382 ms
16 May 2015 16:32:55 [057c] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\bin\Fonts\font.rsc) took 6552 ms
16 May 2015 16:32:55 [03f0] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\bin\Fonts\extfont2.shx) took 6661 ms
16 May 2015 16:32:55 [1dac] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\bin\Fonts\g13f12w.shx) took 6489 ms
16 May 2015 16:32:55 [1de0] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\bin\Fonts\exthalf2.shx) took 6864 ms
16 May 2015 16:32:57 [1e00] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\bin\fbxsdk-2013.1.dll) took 6396 ms
16 May 2015 16:34:52 [1de0] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\python\Lib\distutils\command\wininst-8_d.exe) took 14056 ms
16 May 2015 16:34:52 [1820] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\python\Lib\distutils\command\wininst-8.0.exe) took 14134 ms
16 May 2015 16:34:52 [1478] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\python\Lib\distutils\command\wininst-7.1.exe) took 14430 ms
16 May 2015 16:34:52 [057c] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\python\Lib\distutils\command\wininst-6.0.exe) took 14243 ms
16 May 2015 16:34:52 [03f0] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\python\Lib\distutils\command\wininst-9.0.exe) took 14243 ms
16 May 2015 16:38:23 [1984] - ScanFile (C:\Program Files\Autodesk\Showcase 2013\support\RTCluster\Windows\XP_and_Vista\Win32\libmmd.dll) took 10109 ms
16 May 2015 16:42:59 [1de0] - ScanFile (C:\Program Files\Bonjour\dns_sd.jar) took 5756 ms
16 May 2015 16:42:59 [1984] - ScanFile (C:\Program Files\Autodesk\SketchBookDesigner2013\SBP\SketchBookSnapshot.exe) took 58578 ms
16 May 2015 16:42:59 [1984] - Scanning of C:\Program Files\Autodesk\SketchBookDesigner2013\SBP\SketchBookSnapshot.exe Timed out!!!
16 May 2015 16:43:24 [1478] - ScanFile (C:\Program Files\CCleaner\uninst.exe) took 23089 ms
16 May 2015 16:43:24 [1478] - Scanning of C:\Program Files\CCleaner\uninst.exe Timed out!!!
16 May 2015 16:46:19 [1de0] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\java\jre1.6.0_03\bin\cmm.dll) took 9095 ms
16 May 2015 16:46:19 [057c] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\java\jre1.6.0_03\bin\dt_socket.dll) took 8611 ms
16 May 2015 16:46:19 [1dac] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\java\jre1.6.0_03\bin\dt_shmem.dll) took 8752 ms
16 May 2015 16:46:19 [1478] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\java\jre1.6.0_03\bin\dcpr.dll) took 9501 ms
16 May 2015 16:46:19 [1e00] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\java\jre1.6.0_03\bin\axbridge.dll) took 8517 ms
16 May 2015 16:46:19 [03f0] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\java\jre1.6.0_03\bin\client\jvm.dll) took 7566 ms
16 May 2015 16:46:19 [1820] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\java\jre1.6.0_03\bin\deploy.dll) took 9719 ms
16 May 2015 16:46:20 [1984] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\java\jre1.6.0_03\bin\awt.dll) took 9017 ms
16 May 2015 16:47:10 [1e00] - ScanFile (C:\Program Files\Common Files\Autodesk Shared\Revit Interoperability 2013\Rx\iconv.dll) took 7924 ms
16 May 2015 16:48:54 [1820] - ScanFile (C:\Program Files\GIMP 2\Python\pythonw.exe) took 5226 ms
16 May 2015 16:52:27 [1478] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{DC7EF960-7FE9-4D60-9052-C6C0DDDC7286}\nvsvcr.dll) took 5382 ms
16 May 2015 16:52:31 [057c] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{DC7EF960-7FE9-4D60-9052-C6C0DDDC7286}\NvUI.dll) took 5304 ms
16 May 2015 16:52:31 [1dac] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{DC7EF960-7FE9-4D60-9052-C6C0DDDC7286}\NvUIR.dll) took 6849 ms
16 May 2015 16:52:32 [1de0] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.3DVision.{13D2B296-0987-444F-8FBB-C71B6C5B5F70}\3DVision_327.02.exe) took 10733 ms
16 May 2015 16:52:41 [057c] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.0\nvcompiler32.dl_) took 5008 ms
16 May 2015 16:52:42 [1e00] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.0\nvcompiler.dl_) took 5773 ms
16 May 2015 16:52:52 [03f0] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.0\nvoglv64.dl_) took 10077 ms
16 May 2015 16:52:54 [1984] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.1\nvcompiler.dl_) took 5241 ms
16 May 2015 16:52:56 [1478] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.1\nvcompiler32.dl_) took 6162 ms
16 May 2015 16:52:58 [1dac] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.1\NVCPLSetupInt.exe) took 7628 ms
16 May 2015 16:53:02 [1984] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.1\nvd3dumx.dl_) took 7036 ms
16 May 2015 16:53:03 [057c] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.1\nvd3dum.dl_) took 8221 ms
16 May 2015 16:53:16 [057c] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.1\nvwgf2umx.dl_) took 10749 ms
16 May 2015 16:53:21 [1e00] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvcuda.dl_) took 6115 ms
16 May 2015 16:53:22 [1dac] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvcompiler.dl_) took 8112 ms
16 May 2015 16:53:22 [1984] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\NvCplSetupInt.exe) took 7534 ms
16 May 2015 16:53:24 [1820] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvcuda32.dl_) took 8253 ms
16 May 2015 16:53:26 [1de0] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvcompiler32.dl_) took 11419 ms
16 May 2015 16:53:28 [057c] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvd3dum.dl_) took 6537 ms
16 May 2015 16:53:29 [1e00] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvd3dumx.dl_) took 7286 ms
16 May 2015 16:53:38 [1478] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvlddmkm.sy_) took 9157 ms
16 May 2015 16:53:38 [1dac] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvopencl32.dl_) took 8643 ms
16 May 2015 16:53:39 [1820] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvopencl.dl_) took 8237 ms
16 May 2015 16:53:39 [1de0] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvoglv32.dl_) took 8658 ms
16 May 2015 16:53:41 [1984] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvwgf2umx.dl_) took 5554 ms
16 May 2015 16:53:41 [1e00] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvwgf2um.dl_) took 7488 ms
16 May 2015 16:53:46 [057c] - ScanFile (C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{23EA2E75-55FF-4F4C-8EA4-590D09F9D409}\nvoglv64.dl_) took 16583 ms
16 May 2015 16:55:53 [057c] - ScanFile (C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroExt\libcef.dll) took 14165 ms
16 May 2015 16:56:24 [03f0] - ScanFile (C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\eCaremeDLL.dll) took 8362 ms
16 May 2015 16:57:43 [1e00] - C:\Program Files (x86)\Autodesk\Autodesk Design Review 2013\EComposite\pdfnet.res not Scanned. Possibly password protected...
16 May 2015 16:58:20 [057c] - ScanFile (C:\Program Files (x86)\Avira\AntiVir Desktop\FAILSAFE\aescn.dll) took 10671 ms
16 May 2015 17:01:47 [1dac] - ScanFile (C:\Program Files (x86)\Coupons\uninstall.exe) took 10795 ms
16 May 2015 17:02:25 [1984] - ScanFile (C:\Program Files (x86)\Free YouTube Downloader\YouTubeDownloader.exe) took 5959 ms
16 May 2015 17:02:35 [1820] - ScanFile (C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\chrome_child.dll) took 5242 ms
16 May 2015 17:05:43 [1984] - ScanFile (C:\Program Files (x86)\Microsoft Office\Office12\1033\EXPTOOWS.XLA) took 9828 ms
16 May 2015 17:10:32 [1984] - ScanFile (C:\Program Files (x86)\Pinnacle\Studio 16\plugins\RTFx\MTracku.fex) took 5881 ms
16 May 2015 17:12:50 [1dac] - ScanFile (C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\PresentationCore.dll) took 5569 ms
16 May 2015 17:12:56 [1984] - ScanFile (C:\Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Printing.dll) took 11014 ms
16 May 2015 17:13:04 [057c] - ScanFile (C:\Program Files (x86)\Samsung\Kies\DriverChecker.exe) took 10031 ms
16 May 2015 17:17:06 [1984] - ScanFile (C:\ProgramData\Microsoft\Microsoft Antimalware\Network Inspection System\Support\NisLog.txt) took 8487 ms
16 May 2015 17:17:35 [03f0] - ScanFile (C:\ProgramData\MicroWorld\MWAV\ESCANDBY.MDB) took 17363 ms
16 May 2015 17:17:52 [1dac] - Scanning File C:\System Volume Information\{dd8022e7-f9e3-11e4-972a-5404a60626e2}{3808876b-c176-4e48-b7ae-04046e6cc752}
16 May 2015 17:17:52 [1478] - Scanning File C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
16 May 2015 17:17:56 [03f0] - C:\Users\Asus\AppData\Local\DWG Open File Tool\settings.bin not Scanned. Possibly password protected...
16 May 2015 17:18:15 [03f0] - Scanning File C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000000
16 May 2015 17:18:15 [03f0] - ScanFile (C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000000) took 9173 ms
16 May 2015 17:18:16 [03f0] - File C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000000 infected by "Gen:Application.Bundler.DefaultTab.1[ZP] (DB)" Virus! Action Taken: File Renamed.
 
16 May 2015 17:18:53 [03f0] - ScanFile (C:\Users\Asus\AppData\Local\Pando_Temp\PMBInst.exe) took 6927 ms
16 May 2015 17:32:52 [1e00] - ScanFile (C:\Users\Asus\Documents\Office 2007\Admin\oct.dll) took 8658 ms
16 May 2015 17:33:18 [1984] - ScanFile (C:\Users\Asus\Downloads\GoogleEarthSetup.exe) took 12293 ms
16 May 2015 17:33:18 [03f0] - ScanFile (C:\Users\Asus\Downloads\GoogleEarthSetup (1).exe) took 11528 ms
16 May 2015 17:33:18 [1820] - ScanFile (C:\Users\Asus\Downloads\DropboxInstaller.exe) took 6302 ms
16 May 2015 17:33:22 [1dac] - ScanFile (C:\Users\Asus\Downloads\cadpsetup.exe) took 24742 ms
16 May 2015 17:33:22 [1dac] - Scanning of C:\Users\Asus\Downloads\cadpsetup.exe Timed out!!!
16 May 2015 17:33:29 [1478] - ScanFile (C:\Users\Asus\Downloads\mwav.exe) took 12916 ms
16 May 2015 17:35:12 [1de0] - ScanFile (C:\Users\Asus\Music\iTunes\Downloads\iTunes Festival_ London 2011 - Singl.tmp\iTunes Festival_ Lon.tmp\download.itlp) took 7254 ms
16 May 2015 17:38:22 [03f0] - ScanFile (C:\Users\Asus\Music\iTunes\Mobile Applications\Matches 1.0.ipa) took 34413 ms
16 May 2015 17:38:46 [1478] - ScanFile (C:\Users\Asus\Music\lame_enc.dll) took 41839 ms
16 May 2015 17:38:46 [1478] - Scanning of C:\Users\Asus\Music\lame_enc.dll Timed out!!!
16 May 2015 17:39:26 [1820] - ScanFile (C:\Users\Mcx1-ASUSLAPTOP\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe) took 11824 ms
16 May 2015 17:39:26 [03f0] - ScanFile (C:\Users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe) took 11824 ms
16 May 2015 17:46:25 [1984] - ScanFile (C:\Windows\ASUS\GETPID.DLL) took 10358 ms
16 May 2015 17:46:25 [057c] - ScanFile (C:\Windows\ASUS\Preload.exe) took 10514 ms
16 May 2015 17:46:44 [03f0] - ScanFile (C:\Windows\ehome\MediaCenterWebLauncher.exe) took 6099 ms
16 May 2015 17:48:42 [03f0] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6612\ACECNFLT.EXE) took 6739 ms
16 May 2015 17:48:47 [1dac] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6612\ACEOLEDB.DLL) took 6412 ms
16 May 2015 17:48:47 [1478] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6612\ACEDAO.DLL) took 10031 ms
16 May 2015 17:48:47 [057c] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6612\ACACEDAO.DLL) took 11451 ms
16 May 2015 17:48:48 [1de0] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.4518\F2337_Works632.cnv.7D0F94BE_01EA_437E_ACD5_83E665F9465F) took 62432 ms
16 May 2015 17:48:48 [1de0] - Scanning of C:\Windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.4518\F2337_Works632.cnv.7D0F94BE_01EA_437E_ACD5_83E665F9465F Timed out!!!
16 May 2015 17:49:43 [1820] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\00002109E60090400000000000F01FEC\12.0.4518\EXPTOOWS.XLA_1033) took 11263 ms
16 May 2015 17:51:02 [1820] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744BA0000000010\11.0.0\AcroRd32.exe) took 27613 ms
16 May 2015 17:51:02 [1820] - Scanning of C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744BA0000000010\11.0.0\AcroRd32.exe Timed out!!!
16 May 2015 17:51:27 [1dac] - ScanFile (C:\Windows\Installer\$PatchCache$\Managed\B6ACDB9A3563B764CA384963D73AFB3E\15.4.3502\_WLXMOVIELIBRARY_DLL) took 19141 ms
16 May 2015 17:51:35 [057c] - ScanFile (C:\Windows\Installer\1028d26.msi) took 10873 ms
16 May 2015 17:51:55 [057c] - ScanFile (C:\Windows\Installer\3562740.msp) took 6505 ms
16 May 2015 17:52:11 [1478] - ScanFile (C:\Windows\Installer\59f925.msp) took 7192 ms
16 May 2015 17:52:16 [1de0] - ScanFile (C:\Windows\Installer\59f901.msp) took 15756 ms
16 May 2015 17:52:23 [1984] - ScanFile (C:\Windows\Installer\3552028.msp) took 13712 ms
16 May 2015 17:52:27 [057c] - ScanFile (C:\Windows\Installer\59fb3d.msp) took 7863 ms
16 May 2015 17:52:35 [1dac] - ScanFile (C:\Windows\Installer\463189f.msp) took 20234 ms
16 May 2015 17:52:35 [1dac] - Scanning of C:\Windows\Installer\463189f.msp Timed out!!!
16 May 2015 17:52:47 [057c] - ScanFile (C:\Windows\Installer\875d52.msp) took 5507 ms
16 May 2015 17:52:48 [1820] - ScanFile (C:\Windows\Installer\875e62.msp) took 8361 ms
16 May 2015 17:52:48 [1478] - ScanFile (C:\Windows\Installer\774131d.msp) took 5257 ms
16 May 2015 17:52:52 [03f0] - ScanFile (C:\Windows\Installer\59fab5.msp) took 17176 ms
16 May 2015 17:52:53 [1de0] - ScanFile (C:\Windows\Installer\875da2.msp) took 7394 ms
16 May 2015 17:53:10 [1dac] - ScanFile (C:\Windows\Installer\9c9eea.msp) took 7254 ms
16 May 2015 17:53:17 [1820] - ScanFile (C:\Windows\Installer\9c9f6d.msp) took 8097 ms
16 May 2015 17:53:20 [03f0] - ScanFile (C:\Windows\Installer\b4fb38.msp) took 8720 ms
16 May 2015 17:53:24 [1e00] - ScanFile (C:\Windows\Installer\9c9f00.msp) took 12511 ms
16 May 2015 17:53:31 [1478] - ScanFile (C:\Windows\Installer\9c9fad.msp) took 11965 ms
16 May 2015 17:54:01 [1e00] - ScanFile (C:\Windows\Installer\c493f6.msp) took 6943 ms
16 May 2015 17:54:06 [1984] - ScanFile (C:\Windows\Installer\875d68.msp) took 54757 ms
16 May 2015 17:54:06 [1984] - Scanning of C:\Windows\Installer\875d68.msp Timed out!!!
16 May 2015 17:54:08 [03f0] - ScanFile (C:\Windows\Installer\de5c1a.msp) took 5710 ms
16 May 2015 17:54:12 [1820] - ScanFile (C:\Windows\Installer\de5bce.msp) took 9610 ms
16 May 2015 17:54:26 [1dac] - ScanFile (C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe) took 9407 ms
16 May 2015 17:54:26 [1478] - ScanFile (C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe) took 17691 ms
16 May 2015 17:54:26 [03f0] - ScanFile (C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe) took 12948 ms
16 May 2015 17:54:26 [1de0] - ScanFile (C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe) took 6022 ms
16 May 2015 17:57:22 [1e00] - ScanFile (C:\Windows\Microsoft.NET\NETFXRepair.exe) took 36067 ms
16 May 2015 17:57:22 [1e00] - Scanning of C:\Windows\Microsoft.NET\NETFXRepair.exe Timed out!!!
16 May 2015 18:01:41 [057c] - ScanFile (C:\Windows\System32\3DAudio.ax) took 8611 ms
16 May 2015 18:01:43 [1de0] - ScanFile (C:\Windows\System32\Adobe\Shockwave 11\gi.dll) took 6818 ms
16 May 2015 18:01:43 [1820] - ScanFile (C:\Windows\System32\Adobe\Shockwave 11\gtapi.dll) took 7410 ms
16 May 2015 18:01:44 [1dac] - ScanFile (C:\Windows\System32\Adobe\Shockwave 11\gcapi_dll.dll) took 8361 ms
16 May 2015 18:03:06 [1984] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\dvcvideo64.inf_amd64_neutral_55a6a984d0739bd7\emVFW.dll) took 19563 ms
16 May 2015 18:03:06 [057c] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\hdxsf3.inf_amd64_neutral_bf90c7b763870976\RTLCPAPI.dll) took 10109 ms
16 May 2015 18:03:07 [1820] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\dvcvideo64.inf_amd64_neutral_55a6a984d0739bd7\emTwain.ds) took 20171 ms
16 May 2015 18:03:07 [1820] - Scanning of C:\Windows\System32\DriverStore\FileRepository\dvcvideo64.inf_amd64_neutral_55a6a984d0739bd7\emTwain.ds Timed out!!!
16 May 2015 18:05:17 [1478] - ScanFile (C:\Windows\System32\DriverStore\FileRepository\prngt004.inf_amd64_neutral_f5bf8a7ba9dfff55\Amd64\GS1301E3.PPD) took 6271 ms
16 May 2015 18:05:57 [057c] - ScanFile (C:\Windows\System32\drmmgrtn.dll) took 5569 ms
16 May 2015 18:06:34 [1820] - ScanFile (C:\Windows\System32\GWX\GWX.exe) took 17207 ms
16 May 2015 18:06:34 [1dac] - ScanFile (C:\Windows\System32\iexpress.exe) took 13292 ms
16 May 2015 18:06:36 [1e00] - ScanFile (C:\Windows\System32\FlashPlayerApp.exe) took 22792 ms
16 May 2015 18:06:36 [1e00] - Scanning of C:\Windows\System32\FlashPlayerApp.exe Timed out!!!
16 May 2015 18:06:47 [1478] - ScanFile (C:\Windows\System32\Macromed\Shockwave 10\gi.dll) took 6287 ms
16 May 2015 18:06:50 [1984] - ScanFile (C:\Windows\System32\Macromed\Shockwave 10\gcapi_dll.dll) took 11123 ms
16 May 2015 18:10:02 [1de0] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-a..rience-program-data_31bf3856ad364e35_6.1.7601.18683_none_cf41930399e1d55e\aeinv.dll) took 6677 ms
16 May 2015 18:12:30 [1dac] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-ehome-mcweblauncher_31bf3856ad364e35_6.1.7600.16385_none_5846a8771b202706\MediaCenterWebLauncher.exe) took 16973 ms
16 May 2015 18:16:38 [1de0] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-ie-iediag_31bf3856ad364e35_11.2.9600.16428_none_f937400aa65f97cc\iediagcmd.exe) took 14820 ms
16 May 2015 18:16:40 [1820] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-ie-iediag_31bf3856ad364e35_10.2.9200.16521_none_94b9c69101c503e9\iediagcmd.exe) took 17363 ms
16 May 2015 18:22:54 [1820] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.22943_none_cabe82b6e3f98805\ntoskrnl.exe) took 5086 ms
16 May 2015 18:26:14 [03f0] - ScanFile (C:\Windows\winsxs\amd64_microsoft-windows-sonic-createdisc_31bf3856ad364e35_6.1.7600.16385_none_9beb785f084a0caf\CreateDisc.dll) took 25693 ms
16 May 2015 18:26:14 [03f0] - Scanning of C:\Windows\winsxs\amd64_microsoft-windows-sonic-createdisc_31bf3856ad364e35_6.1.7600.16385_none_9beb785f084a0caf\CreateDisc.dll Timed out!!!
16 May 2015 18:29:18 [03f0] - ScanFile (C:\Windows\winsxs\amd64_microsoft.grouppoli..mpleditor.resources_31bf3856ad364e35_6.1.7600.16385_en-us_e8c84f834fb466a2\Microsoft.GroupPolicy.AdmTmplEditor.Resources.dll) took 13525 ms
16 May 2015 18:29:27 [1820] - ScanFile (C:\Windows\winsxs\amd64_microsoft.web.administration-nonmsil_31bf3856ad364e35_6.1.7600.16385_none_2465c4c8aa880db7\Microsoft.Web.Administration.dll) took 5866 ms
16 May 2015 18:29:27 [1dac] - ScanFile (C:\Windows\winsxs\amd64_microsoft.web.administration-nonmsil_31bf3856ad364e35_6.1.7601.17514_none_2696d890a7769151\Microsoft.Web.Administration.dll) took 6131 ms
16 May 2015 18:29:28 [03f0] - ScanFile (C:\Windows\winsxs\amd64_microsoft.web.management-nonmsil_31bf3856ad364e35_6.1.7600.16385_none_8356ea7534fa2230\Microsoft.Web.Management.dll) took 5601 ms
16 May 2015 18:29:36 [1e00] - ScanFile (C:\Windows\winsxs\amd64_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.7600.16385_hu-hu_fa62ef131b028c06\comctl32.dll.mui) took 8518 ms
16 May 2015 18:30:41 [1984] - ScanFile (C:\Windows\winsxs\amd64_netfx-microsoft.visualbasic_b03f5f7f11d50a3a_6.1.7601.18523_none_cfb8ce4cc5a21132\Microsoft.VisualBasic.dll) took 25116 ms
16 May 2015 18:30:41 [1984] - Scanning of C:\Windows\winsxs\amd64_netfx-microsoft.visualbasic_b03f5f7f11d50a3a_6.1.7601.18523_none_cfb8ce4cc5a21132\Microsoft.VisualBasic.dll Timed out!!!
16 May 2015 18:30:41 [1e00] - ScanFile (C:\Windows\winsxs\amd64_netfx-microsoft.visualbasic_b03f5f7f11d50a3a_6.1.7601.22733_none_b8ec27b2df488ae0\Microsoft.VisualBasic.dll) took 24788 ms
16 May 2015 18:30:41 [1e00] - Scanning of C:\Windows\winsxs\amd64_netfx-microsoft.visualbasic_b03f5f7f11d50a3a_6.1.7601.22733_none_b8ec27b2df488ae0\Microsoft.VisualBasic.dll Timed out!!!
16 May 2015 18:32:04 [1de0] - ScanFile (C:\Windows\winsxs\amd64_oxpsconverter_31bf3856ad364e35_6.1.7601.22091_none_084b74e2df1696ce\OxpsConverter.exe) took 22339 ms
16 May 2015 18:32:04 [1de0] - Scanning of C:\Windows\winsxs\amd64_oxpsconverter_31bf3856ad364e35_6.1.7601.22091_none_084b74e2df1696ce\OxpsConverter.exe Timed out!!!
16 May 2015 18:32:04 [1820] - ScanFile (C:\Windows\winsxs\amd64_oxpsconverter_31bf3856ad364e35_6.1.7601.17933_none_0804e1f7c5c64bf1\OxpsConverter.exe) took 22480 ms
16 May 2015 18:32:04 [1820] - Scanning of C:\Windows\winsxs\amd64_oxpsconverter_31bf3856ad364e35_6.1.7601.17933_none_0804e1f7c5c64bf1\OxpsConverter.exe Timed out!!!
16 May 2015 18:34:34 [057c] - ScanFile (C:\Windows\winsxs\Backup\wow64_microsoft-windows-a..ence-infrastructure_31bf3856ad364e35_6.1.7601.18777_none_3d4dc1d997e82a99_shimeng.dll_2036b947) took 6349 ms
16 May 2015 18:34:34 [1820] - ScanFile (C:\Windows\winsxs\Backup\wow64_microsoft-windows-a..ence-infrastructure_31bf3856ad364e35_6.1.7601.18777_none_3d4dc1d997e82a99_apphelp.dll_7ce69c4a) took 6100 ms
16 May 2015 18:34:34 [03f0] - ScanFile (C:\Windows\winsxs\Backup\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.18768_none_121ba6c9a5abae88_atmfd.dll_ff796bf0) took 5070 ms
16 May 2015 18:35:20 [03f0] - ScanFile (C:\Windows\winsxs\Backup\x86_microsoft-windows-d2d_31bf3856ad364e35_7.1.7601.18327_none_9b0ce353451f4255_d2d1.dll_ef77984b) took 27128 ms
16 May 2015 18:35:20 [03f0] - Scanning of C:\Windows\winsxs\Backup\x86_microsoft-windows-d2d_31bf3856ad364e35_7.1.7601.18327_none_9b0ce353451f4255_d2d1.dll_ef77984b Timed out!!!
16 May 2015 18:43:23 [1e00] - ScanFile (C:\Windows\winsxs\msil_ieexec_b03f5f7f11d50a3a_6.1.7601.18523_none_533db564c44f82fe\IEExec.exe) took 8440 ms
16 May 2015 18:43:23 [1478] - ScanFile (C:\Windows\winsxs\msil_ieexec_b03f5f7f11d50a3a_6.1.7601.22733_none_3c710ecaddf5fcac\IEExec.exe) took 7909 ms
16 May 2015 18:45:07 [057c] - ScanFile (C:\Windows\winsxs\wow64_microsoft-jsintl_31bf3856ad364e35_6.3.9600.16428_none_b9648c61e9b38e2a\jsIntl.dll) took 15194 ms
16 May 2015 18:45:19 [1820] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-i..-wow64-setupdll0012_31bf3856ad364e35_6.1.7600.16385_none_4a948a3cc9a258d5\_setup.dll) took 6147 ms
16 May 2015 18:45:23 [057c] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-gwx_31bf3856ad364e35_6.1.7601.18804_none_18fdc1e9a139c989\GWX.exe) took 10624 ms
16 May 2015 18:45:23 [1e00] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_10.2.9200.16660_none_20dde844529e8f3e\iexplore.exe) took 7550 ms
16 May 2015 18:45:23 [1de0] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_10.2.9200.16576_none_20e92fca5296266a\iexplore.exe) took 8034 ms
16 May 2015 18:45:23 [1478] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_10.2.9200.16540_none_20e6b79c5298409f\iexplore.exe) took 7488 ms
16 May 2015 18:45:23 [03f0] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_10.2.9200.16521_none_20e4a040529a2792\iexplore.exe) took 7238 ms
16 May 2015 18:45:23 [1984] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_10.2.9200.16635_none_20da757e52a1c35e\iexplore.exe) took 7800 ms
16 May 2015 18:45:23 [1dac] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_10.2.9200.16614_none_20d88bb252a3770f\iexplore.exe) took 7784 ms
16 May 2015 18:48:14 [1478] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.17107_none_fa5fe69aa41ac3c9\kernel32.dll) took 9392 ms
16 May 2015 18:48:14 [1de0] - ScanFile (C:\Windows\winsxs\wow64_microsoft-windows-installer-engine_31bf3856ad364e35_6.1.7601.22708_none_6c8d86ea17970b3a\msi.dll) took 10795 ms
16 May 2015 18:51:01 [03f0] - ScanFile (C:\Windows\winsxs\x86_custommarshalers_b03f5f7f11d50a3a_6.1.7601.22733_none_2fcfe9d06804de7b\CustomMarshalers.dll) took 6240 ms
16 May 2015 18:51:01 [1478] - ScanFile (C:\Windows\winsxs\x86_custommarshalers_b03f5f7f11d50a3a_6.1.7601.18523_none_469c906a4e5e64cd\CustomMarshalers.dll) took 6240 ms
16 May 2015 18:51:02 [1dac] - ScanFile (C:\Windows\winsxs\x86_faro.ls_1d23f5635ba800ab_1.1.406.58_none_4674ae31ba6222cf\CppUnit.dll) took 6739 ms
16 May 2015 18:51:03 [1820] - ScanFile (C:\Windows\winsxs\x86_faro.ls_1d23f5635ba800ab_1.1.406.58_none_4674ae31ba6222cf\cgGL.dll) took 6115 ms
16 May 2015 18:51:03 [1de0] - ScanFile (C:\Windows\winsxs\x86_faro.ls_1d23f5635ba800ab_1.1.406.58_none_4674ae31ba6222cf\cg.dll) took 5289 ms
16 May 2015 18:51:08 [03f0] - ScanFile (C:\Windows\winsxs\x86_faro.ls_1d23f5635ba800ab_1.1.406.58_none_4674ae31ba6222cf\xalanmessages_1_10.dll) took 6349 ms
16 May 2015 18:58:12 [1478] - ScanFile (C:\Windows\winsxs\x86_microsoft.transactions.bridge.dtc_b03f5f7f11d50a3a_6.1.7601.18523_none_c382394e4f8a5581\Microsoft.Transactions.Bridge.Dtc.dll) took 9516 ms
16 May 2015 18:58:12 [1de0] - ScanFile (C:\Windows\winsxs\x86_microsoft.transactions.bridge.dtc_b03f5f7f11d50a3a_6.1.7601.22733_none_acb592b46930cf2f\Microsoft.Transactions.Bridge.Dtc.dll) took 9906 ms
16 May 2015 18:58:12 [1820] - ScanFile (C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.91_none_db5f5c9d98cb161f\msvcm80.dll) took 6333 ms
 
16 May 2015 19:00:21 [1f68] - ***** Checking for specific ITW Viruses *****
 
16 May 2015 19:00:23 [1f68] - ***** Scanning complete. *****
 
16 May 2015 19:00:23 [1f68] - Total Objects Scanned: 563938
16 May 2015 19:00:23 [1f68] - Total Critical Objects: 10
16 May 2015 19:00:23 [1f68] - Total Disinfected Objects: 0
16 May 2015 19:00:23 [1f68] - Total Objects Renamed: 1
16 May 2015 19:00:23 [1f68] - Total Deleted Objects: 9
16 May 2015 19:00:23 [1f68] - Total Errors: 6
16 May 2015 19:00:23 [1f68] - Time Elapsed: 03:17:49
16 May 2015 19:00:23 [1f68] - Virus Database Date: 15 May 2015
16 May 2015 19:00:23 [1f68] - Virus Database Count: 5595685
16 May 2015 19:00:23 [1f68] - Sign Version: 7.60593 [519345]
 
16 May 2015 19:00:23 [1f68] - Scan Completed.
 
 
 
Zemana AntiMalware 2.14.2.667 (Installed)
-------------------------------------------------------
Scan Result           : Completed
Scan Date             : 2015/5/19
Operating System      : Windows 7 64-bit
Processor             : 8X Intel® Core™ i7-2630QM CPU @ 2.00GHz
BIOS Mode             : Legacy
CUID                  : 00429CE0B9051C4840905A
Scan Type             : Deep Scan
Duration              : 103m 50s
Scanned Objects       : 164923
Detected Objects      : 7
Excluded Objects      : 0
Read Level            : SCSI
Auto Upload           : Yes
Show All Extensions   : No
Scan Documents        : Yes
Domain Info           : WORKGROUP,1,2
 
 
Detected Objects
-------------------------------------------------------
directx_jun2010_rar_redist.exe
   Status             : Scanned
   Object             : %userprofile%\desktop\pinnaclestudiosetup\prerequisites\directx_jun2010_rar_redist.exe
   MD5                : 5A8C0CA830952EBC71C61BCE816BA734
   Publisher          : -
   Size               : 104448
   Version            : -
   Detection          : Malware:Win32/Blackoat.A!Lete
   Cleaning Action    : Quarantine
   Traces             :
                File - %userprofile%\desktop\pinnaclestudiosetup\prerequisites\directx_jun2010_rar_redist.exe
 
Phoenix_Viewer-1.6.1.1691_RELEASE_SSE2.exe
   Status             : Scanned
   Object             : %userprofile%\downloads\phoenix_viewer-1.6.1.1691_release_sse2.exe
   MD5                : B07B5D91E0306486317CC860A59DA807
   Publisher          : The Phoenix Viewer Project, Inc
   Size               : 419840
   Version            : 0.0.0.0
   Detection          : Malware:Win32/Quarand!Akma
   Cleaning Action    : Quarantine
   Traces             :
                File - %userprofile%\downloads\phoenix_viewer-1.6.1.1691_release_sse2.exe
 
Phoenix_Viewer-1.6.1.1691_RELEASE_SSE2 (2).exe
   Status             : Scanned
   Object             : %userprofile%\downloads\phoenix_viewer-1.6.1.1691_release_sse2 (2).exe
   MD5                : B07B5D91E0306486317CC860A59DA807
   Publisher          : The Phoenix Viewer Project, Inc
   Size               : 419840
   Version            : 0.0.0.0
   Detection          : Malware:Win32/Quarand!Akma
   Cleaning Action    : Quarantine
   Traces             :
                File - %userprofile%\downloads\phoenix_viewer-1.6.1.1691_release_sse2 (2).exe
 
Phoenix_Viewer-1.6.1.1691_RELEASE_SSE2 (1).exe
   Status             : Scanned
   Object             : %userprofile%\downloads\phoenix_viewer-1.6.1.1691_release_sse2 (1).exe
   MD5                : B07B5D91E0306486317CC860A59DA807
   Publisher          : The Phoenix Viewer Project, Inc
   Size               : 419840
   Version            : 0.0.0.0
   Detection          : Malware:Win32/Quarand!Akma
   Cleaning Action    : Quarantine
   Traces             :
                File - %userprofile%\downloads\phoenix_viewer-1.6.1.1691_release_sse2 (1).exe
 
ninja-setup-3.0.6.exe
   Status             : Scanned
   Object             : %userprofile%\downloads\ninja-setup-3.0.6.exe
   MD5                : 24FE0BB7A85A866B487D15C0EB6E3A74
   Publisher          : -
   Size               : 2507200
   Version            : 0.0.0.0
   Detection          : Adware:Win32/OpenCandy
   Cleaning Action    : Quarantine
   Traces             :
                File - %userprofile%\downloads\ninja-setup-3.0.6.exe
 
setup0213.exe
   Status             : Scanned
   Object             : %appdata%\how inc\e449deb256854b9692689e94dcb0e5d3\setup0213.exe
   MD5                : 73C44B7051C6985AFDEC027AA1148A87
   Publisher          : Roll Around
   Size               : 299768
   Version            : 2.0.5522.11785
   Detection          : Adware:Win32/BrowserHijack.Gen
   Cleaning Action    : Quarantine
   Traces             :
                File - %appdata%\how inc\e449deb256854b9692689e94dcb0e5d3\setup0213.exe
 
00000000.mwt
   Status             : Scanned
   Object             : %localappdata%\google\chrome\user data\default\file system\000\t\00\00000000.mwt
   MD5                : 71B2A07154E604081EBB6B370C920F70
   Publisher          : CoolMirage Ltd.
   Size               : 387032
   Version            : -
   Detection          : Downloader:Win32/Generic
   Cleaning Action    : Quarantine
   Traces             :
                File - %localappdata%\google\chrome\user data\default\file system\000\t\00\00000000.mwt
 
 
Cleaning Result
-------------------------------------------------------
Cleaned               : 7
Reported as safe      : 0
Failed                : 0
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.7.3 (05.18.2015:1)
OS: Windows 7 Home Premium x64
Ran by Asus on 19/05/2015 at 10:48:34.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Tasks
 
 
 
~~~ Registry Values
 
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{c3c77255-42c0-499f-b664-6e981a0b1647}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c3c77255-42c0-499f-b664-6e981a0b1647}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{c3c77255-42c0-499f-b664-6e981a0b1647}
 
 
 
~~~ Files
 
Successfully deleted: [File] C:\Windows\couponprinter.ocx
 
 
 
~~~ Folders
 
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{026806B7-AD41-4FDC-8FE4-D0962BDBC16D}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{0D450D9C-8DD5-4AA2-9573-07299C0AD36F}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{15B8C791-ACAE-4E6B-97B1-3F6C6C59BA9D}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{23907D65-6E66-4038-85CE-8B0A8353743A}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{29E80A03-822A-4BBF-9AE2-3750F7765C23}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{439A1CFD-450C-4450-A3F5-946FBF879D72}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{5DACA02E-B2D1-457E-9070-A59FE4E3ECC8}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{A6E96C49-DDB2-41C6-8299-724C8AA2472D}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{E75BF932-F901-4569-93B8-3F271EE4752B}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{ECF9C57A-D424-4564-A585-9C1A08CF1193}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{F2870147-EB48-4067-8E9D-BAD0E116B65C}
Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{F2AAA4E4-5C0C-4F52-B42C-52CE2F565181}
Successfully deleted: [Folder] C:\Program Files (x86)\coupons
Successfully deleted: [Folder] C:\Program Files (x86)\free youtube downloader
Successfully deleted: [Folder] C:\ProgramData\microsoft\windows\start menu\programs\coupons
Successfully deleted: [Folder] C:\ProgramData\partner
Successfully deleted: [Folder] C:\Users\Asus\appdata\local\free youtube downloader
Successfully deleted: [Folder] C:\Users\Asus\AppData\Roaming\registry mechanic
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 19/05/2015 at 10:56:14.85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
 
# AdwCleaner v4.204 - Logfile created 19/05/2015 at 11:07:17
# Updated 12/05/2015 by Xplode
# Database : 2015-05-12.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Asus - ASUSLAPTOP
# Running from : C:\Users\Asus\Downloads\adwcleaner_4.204.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\Yahoo! Companion
Folder Deleted : C:\Users\Asus\AppData\Roaming\GrabPro
Folder Deleted : C:\Users\Asus\AppData\Roaming\ProgSense
 
***** [ Scheduled tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{22E9CC7A-04B2-4558-A993-763395274E42}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{506DDB16-455A-4746-AD77-D23228955FD3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{22E9CC7A-04B2-4558-A993-763395274E42}
Key Deleted : HKCU\Software\ProgSense
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Coupon Printer for Windows5.0.0.0
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17801
 
 
-\\ Mozilla Firefox v
 
 
-\\ Google Chrome v42.0.2311.152
 
 
*************************
 
AdwCleaner[R0].txt - [4165 bytes] - [19/05/2015 11:01:47]
AdwCleaner[S0].txt - [4109 bytes] - [19/05/2015 11:07:17]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4168  bytes] ##########


#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 20 May 2015 - 05:10 PM

You must uninstall one of the antivirus that you have installed, choose either Avira or MSE...

 

 

 

 

 

 

Adware Removal Tool.
 
Download Adware removal tool to your desktop, right click the icon and select Run as Administrator.

Source: http://www.techsupportall.com/adware-removal-tool/

LOr0Gd7.png

Hit Ok.

sYFsqHx.png

Hit next make sure to leave all items checked, for removal.

8NcZjGc.png


The Program will close all open programs to complete the removal, so save any work and hit OK. Then hit OK after the removal process is complete,  then OK again to finish up. Post log generated by tool.

 

Step 2: ZHP Cleaner.

 

Download and save ZHP Cleaner to your desktop.

http://www.nicolascoolman.fr/download/zhpcleaner-2/

Right Click and run as administrator.

Click on the Repair button.

At the end of the process you will be asked to reboot your machine.

After you reboot a report will open on your desktop.

Copy and paste the report here in your next reply.

 

Step 3: Security Check.

 

Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document

 

 

 

Step 4: Minitoolbox.

 

Please download [b]MINITOOLBOX and run it.



Checkmark following boxes:


Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

Eset Scan

http://www.eset.com/us/online-scanner/
 

Disable your antivirus prior to this scan.

http://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

 
 
 esetonlinebtn.png
 

  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.


#7 Bongowhack

Bongowhack
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:06 PM

Posted 23 June 2015 - 07:23 AM

Another long delay but I've managed to get through all of the above steps and will copy the resulting reports below. I uninstalled Aviva so only have MSE left on the laptop.

 

* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * 
 
Adware Removal Tool v3.9
Time: 2015_06_23_08_46_22
OS: Windows 7 - 64 Bit
Account Name: Asus
U0L0S12
 
\\\\\\\\\\\\\\\\\\\\\\\ Repair Logs \\\\\\\\\\\\\\\\\\\\\\
 
Deleted - File - C:\program files (x86)\ASUS\Game Park\Mahjongg dimensions\data\images\introvid.swf
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}:masterclsid
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}:dllname
Deleted - RegistryValueData - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}:dllname
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{2EECD738-5844-4A99-B4B6-146BF802613B}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{472734EA-242A-422B-ADF8-83D1E48CC825}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Deleted - RegistryKey - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility:{98889811-442D-49DD-99D7-DC866BE87DBC}
 
\\ Finished
 
 

~ ZHPCleaner v2015.6.21.281 by Nicolas Coolman (2015\06\21)
~ Run by Asus (Administrator)  (23/06/2015 09:17:06)
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\Asus\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Asus\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)
 
 
---\\  Services (0)
~ No malicious items found.
 
 
---\\  Browser internet (0)
~ No malicious items found.
 
 
---\\  Hosts file (0)
~ No malicious items found.
 
 
---\\  Scheduled automatic tasks. (0)
~ No malicious items found.
 
 
---\\  Explorer ( File, Folder) (25)
MOVED file: C:\ProgramData\FullRemove.exe   (Suspect.Optional)
MOVED folder*: C:\ProgramData\225932FD0007F26CCD1A3974F875F002 (Adware.CrossRider)
MOVED folder*: C:\Windows\Installer\MSI10B0.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI15B1.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI1998.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI1E2B.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI1F64.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI2021.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI255F.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI34B7.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI4FCE.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI51C2.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI53B7.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI5483.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI5AE3.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI5EB1.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI6566.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI673B.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI6B13.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI6C0D.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI7089.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSI7F81.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSIE72B.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSIE892.tmp- (Empty)
MOVED folder*: C:\Windows\Installer\MSIE9EB.tmp- (Empty)
 
 
---\\  Registry ( Key, Value, Data) (3)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\cpbrkpie.Coupon6Ctrl.1 [cpbrkpie Control] (Adware.CouponBar)
DELETED key: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
 
 
---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)
~ Browser not found (Opera Software)
 
 
---\\ Statistics
~ Items scanned : 792
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 28
 
 
End of clean at 09:17:24
===================
ZHPCleaner-[R]-23062015-09_17_24.txt
ZHPCleaner-[S]-23062015-09_09_58.txt
 
 
 

 Results of screen317's Security Check version 1.004  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Trend Micro Titanium Internet Security   
Microsoft Security Essentials            
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 Zemana AntiMalware    
 Java™ 6 Update 31  
 Java 7 Update 51  
 Java version 32-bit out of Date! 
 Adobe Flash Player 10 Flash Player out of Date! 
 Adobe Reader XI  
 Google Chrome (43.0.2357.124) 
 Google Chrome (43.0.2357.130) 
 Google Chrome (Plugins...) 
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe 
 Microsoft Security Essentials msseces.exe 
 Zemana AntiMalware ZAM.exe   
 Trend Micro Titanium TiMiniService.exe  
 Trend Micro Titanium TiResumeSrv.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 0% 
````````````````````End of Log`````````````````````` 
 
 
 

MiniToolBox by Farbar  Version: 22-06-2015
Ran by Asus (administrator) on 23-06-2015 at 09:44:17
Running from "C:\Users\Asus\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: K53SC Manufacturer: ASUSTeK Computer Inc.
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
Hosts file not detected in the default directory
========================= IP Configuration: ================================
 
Intel® Centrino® Wireless-N 100 = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : AsusLaptop
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Wireless Network Connection 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 78-92-9C-3A-49-B7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 78-92-9C-3A-49-B7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 100
   Physical Address. . . . . . . . . : 78-92-9C-3A-49-B6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::4ca7:d1:9650:1410%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 172.20.10.5(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.240
   Lease Obtained. . . . . . . . . . : 23 June 2015 08:38:31
   Lease Expires . . . . . . . . . . : 24 June 2015 08:24:06
   Default Gateway . . . . . . . . . : 172.20.10.1
   DHCP Server . . . . . . . . . . . : 172.20.10.1
   DHCPv6 IAID . . . . . . . . . . . : 309891740
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-0A-6B-7E-54-04-A6-06-26-E2
   DNS Servers . . . . . . . . . . . : 172.20.10.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 54-04-A6-06-26-E2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{5456265A-79C8-43D2-867A-8410E8965B0A}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{7145EFF4-11FF-4B6B-8591-5102B82FEF5C}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{6066E4C9-C227-449B-A3FB-88D462AD3C42}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{51370EC7-AD7C-4C92-A229-EDD5F33897AC}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  172.20.10.1
 
Name:    google.com
Addresses:  2a00:1450:4009:80b::200e
 216.58.208.46
 
 
Pinging google.com [216.58.208.46] with 32 bytes of data:
Reply from 216.58.208.46: bytes=32 time=53ms TTL=53
Reply from 216.58.208.46: bytes=32 time=40ms TTL=53
 
Ping statistics for 216.58.208.46:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 40ms, Maximum = 53ms, Average = 46ms
Server:  UnKnown
Address:  172.20.10.1
 
Name:    yahoo.com
Addresses:  98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=229ms TTL=49
Reply from 206.190.36.45: bytes=32 time=259ms TTL=49
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 229ms, Maximum = 259ms, Average = 244ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...78 92 9c 3a 49 b7 ......Microsoft Virtual WiFi Miniport Adapter #2
 13...78 92 9c 3a 49 b7 ......Microsoft Virtual WiFi Miniport Adapter
 12...78 92 9c 3a 49 b6 ......Intel® Centrino® Wireless-N 100
 11...54 04 a6 06 26 e2 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 36...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      172.20.10.1      172.20.10.5     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      172.20.10.0  255.255.255.240         On-link       172.20.10.5    281
      172.20.10.5  255.255.255.255         On-link       172.20.10.5    281
     172.20.10.15  255.255.255.255         On-link       172.20.10.5    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       172.20.10.5    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       172.20.10.5    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 12    281 fe80::/64                On-link
 12    281 fe80::4ca7:d1:9650:1410/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/18/2015 00:55:26 AM) (Source: NvStreamSvc) (User: )
Description: An error has occurred (NvStreamUserAgent restarted too many times in a short period. Aborting. [0]).
 
Error: (06/17/2015 10:08:02 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (06/17/2015 10:08:02 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.
 
Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (06/17/2015 10:08:02 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (06/17/2015 10:08:02 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
Element not found.  (HRESULT : 0x80070490) (0x80070490)
 
Error: (06/17/2015 10:07:55 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (06/17/2015 10:07:55 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)
 
Error: (06/17/2015 10:07:55 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (06/17/2015 10:07:55 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (06/17/2015 10:07:55 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.
 
 
Details:
0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))
 
 
System errors:
=============
Error: (06/23/2015 08:55:46 AM) (Source: Microsoft-Windows-DNS-Client) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
 
Error: (06/23/2015 08:55:38 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (06/23/2015 08:39:10 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureCommand with the following error: 
%%5
 
Error: (06/23/2015 08:39:00 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error: 
%%5
 
Error: (06/23/2015 08:38:32 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.
 
Error: (06/23/2015 08:28:40 AM) (Source: Service Control Manager) (User: )
Description: The Autodesk Content Service service failed to start due to the following error: 
%%1053
 
Error: (06/23/2015 08:28:40 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Autodesk Content Service service to connect.
 
Error: (06/23/2015 08:27:54 AM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.
 
Error: (06/20/2015 09:58:37 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
 
Error: (06/20/2015 08:44:10 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.
 
 
Microsoft Office Sessions:
=========================
 
=========================== Installed Programs ============================
 
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS K3 Series ScreenSaver (HKLM-x32\...\ASUS K3 Series ScreenSaver) (Version: 1.0.0002 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.6 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.43 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0030 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.84.161 - eCareme Technologies, Inc.)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0010 - ASUS)
AutoCAD 2013 - English (HKLM\...\{5783F2D7-B001-0000-0102-0060B0CE6BBA}) (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD 2013 - English (HKLM\...\{5783F2D7-B001-0409-2102-0060B0CE6BBA}) (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD 2013 - English (HKLM\...\AutoCAD 2013 - English) (Version: 19.0.55.0 - Autodesk)
AutoCAD 2013 Language Pack - English (HKLM\...\{5783F2D7-B001-0409-1102-0060B0CE6BBA}) (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD Raster Design 2013 (HKLM\...\{5783F2D7-B031-0409-0102-0060B0CE6BBA}) (Version: 19.0.70.0 - Autodesk) Hidden
AutoCAD Raster Design 2013 (HKLM\...\AutoCAD Raster Design 2013) (Version: 19.0.70.0 - Autodesk)
Autodesk 3ds Max Design 2013 64-bit (HKLM\...\{7D65612F-53B4-0409-85AA-21DF5A8E9455}) (Version: 15.0.0.347 - Autodesk) Hidden
Autodesk 3ds Max Design 2013 64-bit (HKLM\...\Autodesk 3ds Max Design 2013 64-bit) (Version: 15.0.0.347 - Autodesk)
Autodesk Alias 2013 64-bit (HKLM\...\{3560B973-D11D-4834-A01C-54C2A97DFD5F}) (Version: 19.00.0000 - Autodesk) Hidden
Autodesk Alias 2013 64-bit (HKLM\...\Autodesk Alias 2013 64-bit) (Version: 19.00.0000 - Autodesk)
Autodesk Alias Design 2013 64-bit (HKLM\...\{5B797183-A0FF-4559-B26B-DB26CFD81ABF}) (Version: 19.00.0000 - Autodesk) Hidden
Autodesk Alias Design 2013 64-bit (HKLM\...\Autodesk Alias Design 2013 64-bit) (Version: 19.00.0000 - Autodesk)
Autodesk Backburner 2013.0.0 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 2013.0.0 - Autodesk, Inc.)
Autodesk Civil View for 3ds Max Design 2013 (HKLM-x32\...\{FE6DCC8D-427F-405C-A779-C93B6D9F77A5}) (Version: 1.0.0.2 - Autodesk)
Autodesk Content Service (HKLM-x32\...\{62F029AB-85F2-0000-866A-9FC0DD99DDBC}) (Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.0.84.0 - Autodesk)
Autodesk Content Service Language Pack (HKLM-x32\...\{62F029AB-85F2-0001-866A-9FC0DD99DDBC}) (Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM-x32\...\{153DB567-6FF3-49AD-AC4F-86F8A3CCFDFB}) (Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk DirectConnect 2013 64-bit (HKLM\...\{324297F8-2898-454B-9AC4-07050AEB35B3}) (Version: 7.0.28.0 - Autodesk) Hidden
Autodesk DirectConnect 2013 64-bit (HKLM\...\Autodesk DirectConnect 2013 64-bit) (Version: 7.0.28.0 - Autodesk)
Autodesk Essential Skills Movies for 3ds Max Design 2013 64-bit (HKLM\...\{62CBE596-1BB8-4D7B-A056-103287BAD1C4}) (Version: 1.0.0.1 - Autodesk)
Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit (HKLM\...\Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit) (Version:  - Autodesk)
Autodesk Inventor Fusion 2013 (HKLM\...\{FFF5619F-2013-0064-A85E-9994F70A9E5D}) (Version: 2.0.0.206 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion 2013 (HKLM\...\Autodesk Inventor Fusion 2013) (Version: 2.0.0.206 - Autodesk, Inc.)
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\{82C1E6E4-6718-4EFD-9DCC-E276D690EF46}) (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\Autodesk Inventor Fusion plug-in for AutoCAD 2013) (Version: 0.2.0.230 - Autodesk)
Autodesk Inventor Fusion plug-in language pack for AutoCAD 2013 (HKLM\...\{FE2F4875-095C-427C-9A97-4F8DE05ACF22}) (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max Design 2013 64-bit (HKLM\...\{BC66B242-DF13-1664-851B-00123612ED98}) (Version: 15.0 - Autodesk)
Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2013 (HKLM-x32\...\{58760EEC-8B6A-43F4-81AA-696E381DFADD}) (Version: 3.0.13 - Autodesk)
Autodesk Mudbox 2013 64-bit (HKLM\...\{0C821839-EA2A-48C2-BBD5-2B3D28159BC0}) (Version: 7.0.0.602 - Autodesk) Hidden
Autodesk Mudbox 2013 64-bit (HKLM\...\Autodesk Mudbox 2013 64-bit) (Version: 7.0.0.602 - Autodesk)
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (HKLM\...\{06E18300-BB64-1664-8E6A-2593FC67BB74}) (Version: 1.0.0.1 - Autodesk)
Autodesk Showcase 2013 64-bit (HKLM\...\{A15BFC7D-6A90-47E6-8C6E-D51B2929D8C8}) (Version: 7.0.0.97 - Autodesk) Hidden
Autodesk Showcase 2013 64-bit (HKLM\...\Autodesk Showcase 2013 64-bit) (Version: 7.0.0.97 - Autodesk)
Autodesk SketchBook Designer 2013 (HKLM\...\{3CB60177-D3D2-4E9C-BE4D-8372B34B4C7F}) (Version: 3.00.0000 - Autodesk) Hidden
Autodesk SketchBook Designer 2013 (HKLM\...\Autodesk SketchBook Designer 2013) (Version: 3.00.0000 - Autodesk)
Autodesk SketchBook Designer for AutoCAD 2013 (HKLM\...\{7B42AD25-3D13-4422-A445-F5E18BD963FC}) (Version: 3.00.0000 - Autodesk) Hidden
Autodesk SketchBook Designer for AutoCAD 2013 (HKLM\...\Autodesk SketchBook Designer for AutoCAD 2013) (Version: 3.00.0000 - Autodesk)
Autodesk Sync (HKLM\...\{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}) (Version: 3.5.24.0 - Autodesk, Inc.)
Autodesk Workflows - AutoCAD Design Suite 2013 (HKLM\...\{06388E0D-A364-478B-8E40-7D76142A8DF3}) (Version: 3.0.10.0 - Autodesk)
B109n-z (HKLM-x32\...\{F428DC33-C0E4-40A8-BFC3-B59957F86FE0}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bookworm Deluxe (HKLM-x32\...\Bookworm Deluxe) (Version:  - Oberon Media Inc.)
BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
Composite 2013 64-bit (HKLM\...\{2F808931-D235-4FC7-90CD-F8A890C97B2F}) (Version: 8.0.0 - Autodesk)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
Cooking Dash (HKLM-x32\...\Cooking Dash) (Version:  - Oberon Media Inc.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
devolo dLAN Cockpit (HKLM-x32\...\dlancockpit) (Version: 3.0.0.0 - devolo AG)
dLAN Cockpit (HKLM-x32\...\{846E4C72-DF45-43ED-1680-EDF5F87F279E}) (Version: 3.23.12 - devolo AG) Hidden
dLAN Cockpit (HKLM-x32\...\Cockpit.92121A72F826FA9D0BD3A830E7F04987B31AFB22.1) (Version: 3 (23.12.2010) - devolo AG)
Dropbox (HKCU\...\Dropbox) (Version: 3.6.7 - Dropbox, Inc.)
Dulux MyColour4 (HKCU\...\Dulux MyColour4) (Version:  - Dulux)
EA SPORTS Game Face Browser Plugin 1.5.3.0 (HKCU\...\EA SPORTS Game Face Browser Plugin) (Version: 1.5.3.0 - Electronic Arts)
ETDWare PS/2-X64 8.0.5.3_WHQL (HKLM\...\Elantech) (Version: 8.0.5.3 - ELAN Microelectronic Corp.)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Free YouTube Downloader 4.0.334 (HKLM-x32\...\{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1) (Version:  - HOW Inc.)
Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\{E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1) (Version: 6.2.1.1 - Oberon Media, Inc.)
GIMP 2.8.0 (HKLM\...\GIMP-2_is1) (Version: 2.8.0 - The GIMP Team)
GoldWave v5.70 (HKLM-x32\...\GoldWave v5.70) (Version: 5.70 - GoldWave Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
Governor of Poker (HKLM-x32\...\Governor of Poker) (Version:  - Oberon Media Inc.)
GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden
Hewlett-Packard ACLM.NET v1.1.0.0 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Hotel Dash Suite Success (HKLM-x32\...\Hotel Dash Suite Success) (Version:  - Oberon Media Inc.)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Photosmart Wireless B109n-z All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{79A72AAD-7ED4-49D8-872D-D1465061F9DB}) (Version:  - HP)
HP Product Detection (HKLM-x32\...\{A436F67F-687E-4736-BD2B-537121A804CF}) (Version: 11.14.0001 - HP)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}) (Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden
hpWLPGInstaller (HKLM-x32\...\{07FB17D8-7DB6-4F06-80C4-8BE1719CB6A1}) (Version: 130.0.303.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
Intel PROSet Wireless (HKLM-x32\...\ProInst) (Version:  - ) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel® Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java™ 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
Jewel Quest 3 (HKLM-x32\...\Jewel Quest 3) (Version:  - Oberon Media Inc.)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Luxor 3 (HKLM-x32\...\Luxor 3) (Version:  - Oberon Media Inc.)
Mahjongg dimensions (HKLM-x32\...\Mahjongg dimensions) (Version:  - Oberon Media Inc.)
Malwarebytes Anti-Malware version 1.65.0.1400 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.65.0.1400 - Malwarebytes Corporation)
MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (HKLM\...\{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}) (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Network64 (HKLM\...\{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}) (Version: 140.0.221.000 - Hewlett-Packard) Hidden
NVIDIA 3D Vision Driver 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.5.195 - Electronic Arts, Inc.)
Phoenix Viewer 1.6.0.1691 (HKLM-x32\...\{26DB09BC-6EB5-4CE0-A05D-D4DECE60E189}_is1) (Version:  - PhoenixViewer.com)
Pinnacle Studio 16 - Install Manager (HKLM-x32\...\{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}) (Version: 16.10.115 - Corel Corporation)
Pinnacle Studio 16 (HKLM-x32\...\{284BFDBC-DAC6-43EC-85A8-E1CEC0D3A114}) (Version: 16.1.0.115 - Corel Corporation)
Pinnacle Video Driver (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
Plants vs Zombies (HKLM-x32\...\Plants vs Zombies) (Version:  - Oberon Media Inc.)
PS_AIO_06_B109n-z_SW_Min (HKLM-x32\...\{601F2C04-4E0A-464F-B9FE-4FD140098E21}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
QuickTransfer (HKLM-x32\...\{E517094C-06B6-419F-8FFD-EF4F57972130}) (Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6373 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10001 - Realtek Semiconductor Corp.)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.3.0.12035_16 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.3.0.12035_16 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.4.0 - SAMSUNG Electronics Co., Ltd.)
Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.80.000 - Hewlett-Packard) Hidden
SecondLifeViewer (remove only) (HKLM-x32\...\SecondLifeViewer) (Version:  - )
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.5.28 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SmartWebPrinting (HKLM-x32\...\{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}) (Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (HKLM-x32\...\{5DCF0E4B-F8EA-4229-A0BD-5CA6D4AFB749}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Spotify (HKCU\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
Star Trek Online (HKLM-x32\...\Star Trek Online) (Version:  - Cryptic Studios)
Status (HKLM-x32\...\{2FB9EA69-51D4-4913-9AD5-762C034DE811}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
System Ninja version 3.0.6 (HKLM-x32\...\{6E67710E-206D-43AB-BF21-E7CD63056C55}_is1) (Version: 3.0.6 - SingularLabs)
System Requirements Lab (HKLM-x32\...\SystemRequirementsLab) (Version:  - )
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Trend Micro Titanium Internet Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 3.0 - Trend Micro Inc.)
Trend Micro Titanium Internet Security (HKLM\...\{ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 3.00 - Trend Micro Inc.) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Vistaprint Photo Books (HKCU\...\{3B74BC5D-D31B-4238-B911-8B18BF2AD18B}_is1) (Version:  - Vistaprint)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.212.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
Wipe (HKLM\...\wipe) (Version: 2015.04 - PrivacyRoot.com)
Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS)
World of Goo (HKLM-x32\...\World of Goo) (Version:  - Oberon Media Inc.)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.14.667 - Zemana Ltd.)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (HKLM-x32\...\{C00C2A91-6CB3-483F-80B3-2958E29468F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (HKLM-x32\...\{E83DC314-C926-4214-AD58-147691D6FE9F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (HKLM-x32\...\{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}) (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (HKLM-x32\...\{77F69CA1-E53D-4D77-8BA3-FA07606CC851}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (HKLM-x32\...\{CE929F09-3853-4180-BD90-30764BFF7136}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
 
========================= Devices: ================================
 
Name: Photosmart Wireless B109n-z
Description: Photosmart Wireless B109n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Device ID: ROOT\MULTIFUNCTION\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: HP LaserJet 500 color M551
Description: HP LaserJet 500 color M551
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: 
Device ID: ROOT\MULTIFUNCTION\0001
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Photosmart Wireless B109n-z
Description: Photosmart Wireless B109n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Device ID: ROOT\MULTIFUNCTION\0002
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Photosmart Wireless B109n-z
Description: Photosmart Wireless B109n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Device ID: ROOT\MULTIFUNCTION\0005
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 60%
Total physical RAM: 4006.7 MB
Available physical RAM: 1589.75 MB
Total Pagefile: 8011.61 MB
Available Pagefile: 5332.93 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.13 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:6.42 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:254.45 GB) (Free:253.45 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\ASUSLAPTOP
 
Administrator            Asus                     Guest                    
Mcx1-ASUSLAPTOP          
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****
 
 

C:\Program Files\Adware-Removal-Tool\ARTP3.exe MSIL/FakeTool.PS trojan cleaned by deleting - quarantined
C:\Users\Asus\Downloads\ccsetup505.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
 
 
Many thanks.


#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 23 June 2015 - 03:55 PM

Seems that you now have these antivirus installed.

 

Trend Micro Titanium Internet Security   

Microsoft Security Essentials       

 

You must choose only one for your machine, can you also tell me what issues remain please.



#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 23 June 2015 - 04:04 PM

Also your primary drive c: is running low low low on space.

 

1 Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:6.42 GB) NTFS

 

I suggest that you open you downloads folder and purge. Also please run a full system clean up with  PrivaZer.

 

If you have trend micro it has a Firewall Booster aids Windows Firewall..... Still having issues with windows firewall??



#10 Bongowhack

Bongowhack
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:06 PM

Posted 23 June 2015 - 04:16 PM

I've never intended to install Trend Micro - haven't heard of it before so I'll have a look for that when I'm next on the laptop & set about uninstalling it.

After all of the above I tried to restart Windows Firewall but still to no avail. I ran the troubleshooter that Windows suggested and while it doesn't actually produce a log, I did copy & paste the results into another .txt file - I'll see about pasting that into here next time I'm on too.

Thanks again.

#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 23 June 2015 - 04:51 PM

Lets see if all the files needed for firewall operation are in place.

 

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


#12 Bongowhack

Bongowhack
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:06 PM

Posted 22 September 2015 - 06:29 AM

Thanks very much for your time so far, it's helped a lot (I now have 17G free space on my HDD etc) but I still can't enable my firewall (and hence use my printer - the reason I became aware of the various troubles my laptop was having).

 

Below I'll post the report from the Windows Troubleshooter on the Firewall issue and then the FSS.txt log:

 

Windows Firewall Troubleshooter Publisher details
Issues found
Windows could not start Windows Firewall
Not fixed
Set permissions for the related registry keys
Succeeded
 
Windows Firewall service is not started
Not fixed
Start Windows Firewall service
Succeeded
 
Issues checked
Cannot Access Shared Files and Printers
Checked
Remote Assistance is not working
Checked
Windows could not start Windows Firewall BFE service
Checked
Issues found Detection details
6
Windows could not start Windows Firewall Not fixed
On a computer that is running Windows 7 or Windows Vista, you find that the Windows Firewall service is not running. When you try to manually start the service, you receive the following error message: "Windows could not start the Windows Firewall, DHCP client, or Diagnostic Policy on Local Computer. For more information, review the System Event Log. If this is a non-Microsoft service, contact the service vendor, and refer to service-specific error code 5."
6
Windows Firewall service is not started Not fixed
Windows Firewall service is not running or is not started.
Issues checked Detection details
6
Cannot Access Shared Files and Printers Checked
You cannot access shared files and printers even though you have enabled File and Printer Sharing in Windows.
6
Remote Assistance is not working Checked
Remote Assistance is not working even though you have enabled Remote Assistance in Windows.
6
Windows could not start Windows Firewall BFE service Checked
On a computer that is running Windows 7 or Windows Vista, the Windows Firewall service is not running. When you try to manually start the service, you receive the following error message "Windows could not start the Windows Firewall, DHCP client, or Diagnostic Policy on Local Computer. For more information, review the System Event Log. For more information, review the System Event Log. If this is a non-Microsoft service, contact the service vendor, and refer to service-specific error code 5."
Detection details
 
Collection information
Computer Name: ASUSLAPTOP
Windows Version:
6.1
Architecture:
amd64
Time:
Tuesday, June 23, 2015 2:06:52 PM
Publisher details
 
Windows Firewall Troubleshooter
Automatically repair Windows Firewall problems, such as Windows fails to start Windows Firewall service (0x5), BFE service is missing, or Windows remote assistance is not working
Package Version:
1.2
Publisher:
Microsoft Corporation
 
 
Farbar Service Scanner Version: 26-07-2015
Ran by Asus (administrator) on 22-09-2015 at 12:18:05
Running from "C:\Users\Asus\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.
 
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Policy: 
========================
 
 
Action Center:
============
 
Action Center Notification Icon =====> Unable to open HKLM\...\ShellServiceObjects\{F56F6FDD-AA9D-4618-A949-C1B91AF43B1A} key. The key does not exist.
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of WinDefend. The value does not exist.
Checking ImagePath: ATTENTION!=====> Unable to retrieve ImagePath of WinDefend. The value does not exist.
Unable to retrieve ServiceDll of WinDefend. The value does not exist.
 
 
Windows Defender Disabled Policy: 
==========================
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
 
 
**** End of log ****
 
 
 
Thanks again for your continued help.
 
Mike


#13 Bongowhack

Bongowhack
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:06 PM

Posted 16 October 2015 - 03:27 AM

Can anyone else shed some light on the problems I'm continuing to have with Windows Firewall?

 

I've got the chance to upgrade to Windows 10, is it likely that doing so would provide a solution?

 

Mike






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users