Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Flashplayer.exe virus


  • Please log in to reply
28 replies to this topic

#1 kschwi

kschwi

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 29 May 2016 - 11:53 AM

Hi,

 

I have Windows 10 on my old desktop.  Right before I purchased a new desktop, my old desktop was infected with the flashplayer.exe virus. I ran both Avira and the ESET online virus scanner to remove it.

Days later I received my new dell desktop.  I received a message from Chrome on two occasions letting me know it prevented flashplayer.exe from downloading. Why is this happening?

 

I then needed to email a few files off of my old desktop so I disconnected the new desktop from my DSL cord and re-connected the old desktop. A few days later I noticed flashplayer.exe did download onto my computer.  For some reason Chrome did not block it. I used malwareware bytes to remove this file.

 

I;m guessing there must be something wrong with my old desktop and it might be still infected. I have no idea why flashplayer.exe try to download on my new desktop. I don't visit malicious/suspicious sites or at least not that I am aware of. Should I post this in the  Virus, Trojan, Spyware, and Malware Removal Logs forum?

 

 

 



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:36 PM

Posted 29 May 2016 - 04:29 PM

Reset your router to factory settings.

 

 

Adware Cleaner Scan.

 

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

JRT Scan.

Please download Junkware Removal Tool and save it on your desktop.

 

  • Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log is saved to your desktop and will automatically open.
  • Please post the JRT log.
  •  

Adware Removal Tool Scan.

 

Download Adware removal tool to your desktop, right click the icon and select Run as Administrator.

 

 

LOr0Gd7.png

 

Hit Ok.

 

sYFsqHx.png

 

Hit next make sure to leave all items checked, for removal.

 

8NcZjGc.png

 

 

The Program will close all open programs to complete the removal, so save any work and hit OK. Then hit OK after the removal process is complete, thenOK again to finish up. Post log generated by tool.

 

ZHP Scan.

Please download Zhp Cleaner  to your desktop.  Right Click the icon and select run as administrator.

 http://nicolascoolman.com/download/zhpcleaner

 

 

2. Once you have started the program, you will need to click the scanner button.

EgsT69u.png

The program will close all open browsers!

3. Once the scan is completed, the you will want to click the Repair button.

6QJjV50.png

At the end of the process you may be asked to reboot your machine. After you reboot a report will open on your desktop.

Copy and paste the report here in your next reply.

 Zemana Scan

 

 

Run a full scan with Zemana AntiMalware!

Install and select deep scan.

jdmyscF.jpg

Remove any infections found.

Then click on the icon in the pic below.

DOLGyto.jpg

Double click on the scan log, copy and paste here in your reply



#3 kschwi

kschwi
  • Topic Starter

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 29 May 2016 - 06:49 PM

I could not get ZHP Scan to download. Nothing downloading and the webpage looked out of whack. Should I skip it and go to the Zemana scan. Also the JRT log is extremely long and as a result my reply keeps timing out. I did not include it here.

 

Here is the Adware Cleaner Log

# AdwCleaner v5.118 - Logfile created 29/05/2016 at 17:47:22
# Updated 23/05/2016 by Xplode
# Database : 2016-05-29.1 [Server]
# Operating system : Windows 10 Home  (X64)
# Username : Karl - KARL-DESKTOP
# Running from : C:\Users\Karl\Desktop\adwcleaner_5.118.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
[-] Folder Deleted : C:\ProgramData\apn
[#] Folder Deleted : C:\ProgramData\Application Data\apn
 
***** [ Files ] *****
 
[-] File Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage
[-] File Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal
[-] File Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istatic.eshopcomp.com_0.localstorage
[-] File Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istatic.eshopcomp.com_0.localstorage-journal
[-] File Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.shopathome.com_0.localstorage
[-] File Deleted : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.shopathome.com_0.localstorage-journal
 
***** [ DLLs ] *****
 
 
***** [ WMI ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
[-] Key Deleted : HKCU\Software\YahooPartnerToolbar
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\emailfanatic.dl.tb.ask.com
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com
[-] [C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
[-] [C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : netflix.com
[-] [C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mohistory.org
[-] [C:\Users\KyleKelsey\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com
[-] [C:\Users\KyleKelsey\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C1].txt - [3542 bytes] - [29/05/2016 17:47:22]
C:\AdwCleaner\AdwCleaner[S1].txt - [3545 bytes] - [29/05/2016 17:43:25]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [3688 bytes] ##########
 
 
Adware Removal Tool 5.1
Time: 2016_05_29_18_09_39
OS: Windows 10 Home - x64 Bit
Account Name: Karl
Adware Definition: 05282016
Elapsed time: 09:54
Repair Status:- Automatic Done
\\\\\\\\\\\\\\\\\\\\\\\ Repair Logs \\\\\\\\\\\\\\\\\\\\\\
 
[-] Repaired ->> File ->> C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
 * * * * * * * * * * * * * * * * * * * * * * * * * 
 
Adware Removal Tool 5.1
Time: 2016_05_29_18_09_39
OS: Windows 10 Home - x64 Bit
Account Name: Karl
Adware Definition: 05282016
Elapsed time: 09:54
Scan Status:- Automatic Done
 
\\\\\\\\\\\\\\\\\\\\\\\ Scan Logs \\\\\\\\\\\\\\\\\\\\\\
 
Browser: Chrome Found : PUP.adclick : C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
 


#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:36 PM

Posted 29 May 2016 - 06:52 PM

Upload the JRT log to sendspace and link me to it.

 

As far as ZHP cleaner....
 

Use this link.  Click on this....8DfnBlx.png



#5 kschwi

kschwi
  • Topic Starter

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 29 May 2016 - 07:08 PM

Did I do this correctly?

 

https://www.sendspace.com/file/h80ttu



#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:36 PM

Posted 29 May 2016 - 07:11 PM

Did I do this correctly?

 

https://www.sendspace.com/file/h80ttu

 

 

Yes continue with the other scans.



#7 kschwi

kschwi
  • Topic Starter

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 30 May 2016 - 08:44 AM

The ZHP Cleaner found 6 items but seems to freeze after the scan is complete. I have tried clicking on repair and nothing happens. Same with Report

 

It found

.superfluous.cloudfront.net

PUP.Optional.Generic

PUP.Optional.DomalQ

PUP.Optional.SoundCloud

Toolbar.Ask

Heurtistic.Suspect 

 

I took a screenshot of what popped up when it was finished

 

https://www.sendspace.com/file/t0115y



#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:36 PM

Posted 30 May 2016 - 09:13 AM

Continue with Zemana



#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:36 PM

Posted 30 May 2016 - 09:45 AM

Malwarebytes Scan.

 

We need you to run MalwareBytes to get a log, please download the free version of MalwareBytes HERE

http://data-cdn.mbamupdates.com/web/mbam-setup-2.2.0.1024.exe  Alternate Link.

Save the file to somewhere you can easily find it. Double click the saved file to start the install, accept any security warnings that may appear, and after the install click the new desktop icon to start the program. We need to modify a couple of things with MalwareBytes before we use it so please follow the steps below.

  1. If the dashboard is not already displayed select it.
  2. Then select "Update Now" to get the latest database.

VSKiiIc.jpg

  1. Next we need to change a scanning option, select "Settings" on the main menu, then "Detection and Protection" on the left.
  2. Then select "Scan for rootkits" in the detection options, as well as the other two options already checked.

ZU4W2g2.jpg

  • Now return to Dashboard on the main menu and select "Scan Now" at the bottom of the screen.

nF8dOcq.jpg

  • Allow MalwareBytes to scan your system, it may take some time depending on what you have loaded onto your hard drive.

L8lsasM.jpg

When the scan is finished

  1. Click "Save Results"
  2. Then click on "Text file"

5x4JOvA.jpg

  • A window will then open allowing you to choose a name for the logfile and also allowing you to choose where to save it, save it to the desktop.
  • Please copy and paste the contents of this file in your next post.

 

 

Eset Online Scanner.

 

Eset Scan

Click Me To Download Eset Scan

Disable your antivirus prior to this scan.
 
 esetonlinebtn.png
 

  •  Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

 

Minitoolbox scan.

 

 

Please download MINITOOLBOX and run it.



Checkmark following boxes:


Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

Security Check Scan.

 

Download Security Check to your desktop, right click it run as administrator. When the program completes, the tool will automatically open a log file, please post that log here in your next post.


Edited by InadequateInfirmity, 30 May 2016 - 09:48 AM.


#10 kschwi

kschwi
  • Topic Starter

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 30 May 2016 - 10:09 AM

I finally got the ZHP Cleaner to repair. Here is the log. Am running Zemana now. 

 

Should I still run malware bytes?

 

~ ZHPCleaner v2016.5.29.70 by Nicolas Coolman (2016/05/29)
~ Run by Karl (Administrator)  (30/05/2016 09:59:46)
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\Karl\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Karl\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 10586)
 
 
---\\  Services (0)
~ No malicious or unnecessary items found.
 
 
---\\  Browser internet (0)
~ No malicious or unnecessary items found.
 
 
---\\  Hosts file (1)
~ The hosts file is legitimate (21)
 
 
---\\  Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.
 
 
---\\  Explorer ( File, Folder) (218)
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage    =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal    =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage    =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage-journal    =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d3tpuxked45kzt.cloudfront.net_0.localstorage    =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d3tpuxked45kzt.cloudfront.net_0.localstorage-journal    =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dwq4do82y8xi7.cloudfront.net_0.localstorage    =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dwq4do82y8xi7.cloudfront.net_0.localstorage-journal    =>.Superfluous.CloudfrontNet
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage    =>PUP.Optional.Generic
MOVED file: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal    =>PUP.Optional.Generic
MOVED folder: C:\Users\Karl\AppData\Local\Google\Chrome\User Data\Default\File System\008  =>PUP.Optional.DomaIQ
MOVED folder: C:\Users\Karl\AppData\Local\{8BE2D004-E8A3-4080-90F2-580C53493805}  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI106D.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI107B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI1128.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI11B5.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI1252.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI1271.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI13E9.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI162B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI163E.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI16DB.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI175A.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI1759.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI17F6.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI19EA.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI1A97.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI1B8B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI1CD6.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI1F80.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI2126.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI24D4.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI261F.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI274F.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI27A9.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI2846.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI28F3.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI2990.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI2AC9.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI2D2B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI375B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI38A9.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3927.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI398A.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI39A5.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3A03.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3A81.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3AEF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3B1C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3B5E.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3C08.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3C92.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3D33.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3D31.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3D8D.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3DDF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3FA0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI3FE1.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI428E.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI43C4.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI43F8.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI443D.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI44C0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4509.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI459C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI45D6.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4663.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI46F1.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI47CF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI49CF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI49C3.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4A7B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4AED.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4BA7.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4CF0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4E33.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4E67.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4FA0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI4.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5070.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI50AE.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI51F7.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI533.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI53AC.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI542B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5707.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI58A7.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5925.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5A34.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5B36.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5BF3.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5CA0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5D4D.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5DEA.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5FA0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI5FDF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6084.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6101.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI61AF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI625C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6250.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6347.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI634B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI63A8.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI64DD.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6651.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6677.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6787.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI688B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI69A4.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI69CA.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI69EB.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6A41.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6A86.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6AA8.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6B23.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6D08.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6E2C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI6EC9.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI7013.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI70B0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI71C9.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI73CD.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI746A.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI7546.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI7611.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI773B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI77C8.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI77FA.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI7897.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI7943.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI7A0F.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI8130.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI81CD.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI825B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI846E.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI87A4.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI8A03.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI933.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI9330.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI935D.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI949.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI96D8.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI97E2.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI992C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI9A74.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI9C0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSI9E7B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA14C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA1FD.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA237.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA2A1.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA323.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA3AB.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA3D0.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA4F3.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA5C4.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA5DE.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA6AF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA727.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA75C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA7D.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA841.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA847.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA8F3.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIA9CF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIAA8B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIAC43.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIACEF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIAFB.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIB5C5.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIB663.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIB662.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIB691.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIB815.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIB829.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIB95E.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIBB84.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIBD0D.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIC08.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIC1FB.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIC239.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIC245.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIC301.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIC43A.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIC6A9.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIC841.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSICA93.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSICAA.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSICB1.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSICB20.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSID555.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSID602.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSID66.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIDCB7.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIDEF9.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIDFD4.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIE0BF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIE133.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIE131.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIE16C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIE189.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIE42E.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIE43A.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIE99B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIEAA6.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIECBA.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIED28.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIEECE.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIF06.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIF12.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIF80C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIF96B.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIFAB4.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIFAF.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIFC2C.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIFF4A.tmp-  =>Empty
MOVED folder: C:\WINDOWS\Installer\MSIFF49.tmp-  =>Empty
 
 
---\\  Registry ( Key, Value, Data) (6)
DELETED key*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\d23716qn9q7omq.cloudfront.net [974]  =>.Superfluous.CloudfrontNet
DELETED key*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\d2m2wsoho8qq12.cloudfront.net [36]  =>.Superfluous.CloudfrontNet
DELETED key*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\soundcloud.com [266]  =>PUP.Optional.SoundCloud
DELETED key*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.olark.com [7450]  =>PUP.Optional.Generic
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool]  =>Toolbar.Ask
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} [Google Inc.]  =>Heuristic.Suspect
 
 
---\\  Summary of the elements found (6)
http://www.nicolascoolman.fr/?p=5145  =>.Superfluous.CloudfrontNet
http://www.nicolascoolman.fr/?p=679  =>PUP.Optional.DomaIQ
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.SoundCloud
 
 
---\\  Other deletions. (15)
~ Registry Keys Tracing deleted (15)
~ Remove the old reports ZHPCleaner. (0)
 
 
---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)
~ Browser not found (Opera Software)
 
 
---\\ Statistics
~ Items scanned : 277
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 224
 
 
~ End of clean in 00h00mn30s
~====================


#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:36 PM

Posted 30 May 2016 - 10:10 AM

Carry out all scans...



#12 kschwi

kschwi
  • Topic Starter

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 30 May 2016 - 11:00 AM

Zemana AntiMalware 2.20.2.905 (Installed)
 
-------------------------------------------------------
Scan Result            : Completed
Scan Date              : 2016/5/30
Operating System       : Windows 10 64-bit
Processor              : 4X Intel® Core™ i3 CPU  530 @ 2.93GHz
BIOS Mode              : Legacy
CUID                   : 1271052DA29549299AF479
Scan Type              : Deep Scan
Duration               : 45m 4s
Scanned Objects        : 368135
Detected Objects       : 3
Excluded Objects       : 0
Read Level             : SCSI
Auto Upload            : ON
Detect All Extensions  : OFF
Scan Documents         : OFF
Domain Info            : WORKGROUP,0,2
 
Detected Objects
-------------------------------------------------------
 
Proxy Auto Config
Status             : Scanned
Object             : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : Suspicious Setting
Cleaning Action    : Delete
Related Objects    :
                Registry Entry - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL = http://proxy.kodak.com:81/proxy.pac
 
Gateway Authentication
Status             : Scanned
Object             : HKCU\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\FB3D15FE3C854D4BDB7ED13809BE271F55D7721D\Blob
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : Suspicious Root CA
Cleaning Action    : Delete
Related Objects    :
                Registry Entry - HKCU\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\FB3D15FE3C854D4BDB7ED13809BE271F55D7721D\Blob = 5C0000000100000004000000000400001900000001000000100000004A8A6652F795185ADC5BED9E5B470FFC0F0000000100000014000000D6F82F25EA86BE80DF2A597DFCA7BBCE07378307030000000100000014000000FB3D15FE3C854D4BDB7ED13809BE271F55D7721D1400000001000000140000002BEFBA806B6293EBC7564C61CDEAC7F09CEF28CE0400000001000000100000004D33971DAB271E8D38DAAE9DCA70680B20000000010000008C02000030820288308201F1A003020102020101300D06092A864886F70D0101050500306E310B3009060355040616025553310E300C060355040A1605325769726531173015060355040B160E4761746577617920446576696365311530130603550405160C333930363131303238383631311F301D06035504031616476174657761792041757468656E7469636174696F6E301E170D3036313231373139333430345A170D3237303231303139333430345A306E310B3009060355040616025553310E300C060355040A1605325769726531173015060355040B160E4761746577617920446576696365311530130603550405160C333930363131303238383631311F301D06035504031616476174657761792041757468656E7469636174696F6E30819F300D06092A864886F70D010101050003818D0030818902818100A8E5C78C0B2BBAA9393F0A05CFFEF067A30C088B8E639D4EA8E30F48F8570041C7BF6495F0204D5A75790DEFC7590D61295D804EFA758B6DE9BF6AA1182AB67DA03F0F1AB04E2CBB376888D08D71432CFD588618F0234081402A9C2B585E00914D90748D1597C769CE7227DC0DA18DF0BC396FEA3592CEC1133FB849DBE7625F0203010001A3363034300F0603551D130101FF040530030101FF300E0603551D0F0101FF040403020106301106096086480186F8420101040403020204300D06092A864886F70D0101050500038181000737AD2E71383CCC92006AA70B01D490C3E16AFDBE501EF2CABB91BD7959B3413969AB922C2807CF86BADAF51A7B3B30322987A295FF2EAB54C11B8B35541F7A82531E76C1744A6875827DA512EC88DC4297928C38F6FB6408EB099C7C6BC84CDEA6C207A65A98FC32AB84FD152D8D22D8A6DBB04B79AD40853E17D04D00A4F7
 
DataSafe_9_4_51_9_4_60_x64_Update.exe
Status             : Scanned
Object             : %programfiles%\dell datasafe local backup\components\dsupdate\updates\datasafe_9_4_51_9_4_60_x64_update.exe
MD5                : 07B179BCD6EAAB041FC410F40678133C
Publisher          : -
Size               : 155648
Version            : 3.5.0.16548
Detection          : Malware:Win32/Thracia.A!Ieek
Cleaning Action    : Quarantine
Related Objects    :
                File - %programfiles%\dell datasafe local backup\components\dsupdate\updates\datasafe_9_4_51_9_4_60_x64_update.exe
 
 
Cleaning Result
-------------------------------------------------------
Cleaned               : 3
Reported as safe      : 0
Failed                : 0


#13 kschwi

kschwi
  • Topic Starter

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 30 May 2016 - 01:52 PM

Neither Malwbarebytes or ESET found any threats. Running minitoolbox now.  Here is the MBAM log

alwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 5/30/2016
Scan Time: 11:05 AM
Logfile: mbam.txt
Administrator: Yes
 
Version: 2.2.1.1043
Malware Database: v2016.05.30.05
Rootkit Database: v2016.05.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 10
CPU: x64
File System: NTFS
User: Karl
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 509191
Time Elapsed: 58 min, 23 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)

Edited by kschwi, 30 May 2016 - 01:54 PM.


#14 kschwi

kschwi
  • Topic Starter

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 30 May 2016 - 01:59 PM

Minitoolbox report

 

MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by Karl (administrator) on 30-05-2016 at 13:56:49
Running from "C:\Users\Karl\Downloads"
Microsoft Windows 10 Home  (X64)
Model: Inspiron 580 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
========================= IP Configuration: ================================
 
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global
set interface interface="Local Area Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Karl-Desktop
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : attlocal.net
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : attlocal.net
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : A4-BA-DB-F4-49-F0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2602:306:8bbe:2e20::3e9(Preferred) 
   Lease Obtained. . . . . . . . . . : Monday, May 30, 2016 12:25:36 PM
   Lease Expires . . . . . . . . . . : Wednesday, June 29, 2016 12:25:36 PM
   IPv6 Address. . . . . . . . . . . : 2602:306:8bbe:2e20:7451:9ff4:99ba:f895(Preferred) 
   Temporary IPv6 Address. . . . . . : 2602:306:8bbe:2e20:5c6e:9433:c4ee:640a(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::7451:9ff4:99ba:f895%5(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, May 30, 2016 12:25:16 PM
   Lease Expires . . . . . . . . . . : Tuesday, May 31, 2016 12:25:16 PM
   Default Gateway . . . . . . . . . : fe80::62fe:20ff:febb:f79%5
                                       192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 245676763
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-A9-F8-C6-A4-BA-DB-F4-49-F0
   DNS Servers . . . . . . . . . . . : 2602:306:8bbe:2e20::1
                                       192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:38fb:8a5:9744:1d1d(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::38fb:8a5:9744:1d1d%6(Preferred) 
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 117440512
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-A9-F8-C6-A4-BA-DB-F4-49-F0
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.attlocal.net:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : attlocal.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  2602:306:8bbe:2e20::1
 
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
 
Pinging google.com [2607:f8b0:4009:808::200e] with 32 bytes of data:
Request timed out.
Reply from 2607:f8b0:4009:808::200e: time=27ms 
 
Ping statistics for 2607:f8b0:4009:808::200e:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 27ms, Maximum = 27ms, Average = 27ms
Server:  UnKnown
Address:  2602:306:8bbe:2e20::1
 
DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  2001:4998:44:204::a7
 2001:4998:c:a06::2:4008
 2001:4998:58:c02::a9
 206.190.36.45
 98.139.183.24
 98.138.253.109
 
 
Pinging yahoo.com [2001:4998:58:c02::a9] with 32 bytes of data:
Request timed out.
Reply from 2001:4998:58:c02::a9: time=101ms 
 
Ping statistics for 2001:4998:58:c02::a9:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 101ms, Maximum = 101ms, Average = 101ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...a4 ba db f4 49 f0 ......Broadcom NetLink ™ Gigabit Ethernet
  1...........................Software Loopback Interface 1
  6...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
  2...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.64     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      169.254.0.0      255.255.0.0         On-link      192.168.1.64    306
  169.254.255.255  255.255.255.255         On-link      192.168.1.64    276
      192.168.1.0    255.255.255.0         On-link      192.168.1.64    276
     192.168.1.64  255.255.255.255         On-link      192.168.1.64    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.64    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.64    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.64    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  5    276 ::/0                     fe80::62fe:20ff:febb:f79
  1    306 ::1/128                  On-link
  6    306 2001::/32                On-link
  6    306 2001:0:5ef5:79fd:38fb:8a5:9744:1d1d/128
                                    On-link
  5    276 2602:306:8bbe:2e20::/64  On-link
  5    276 2602:306:8bbe:2e20::3e9/128
                                    On-link
  5    276 2602:306:8bbe:2e20:5c6e:9433:c4ee:640a/128
                                    On-link
  5    276 2602:306:8bbe:2e20:7451:9ff4:99ba:f895/128
                                    On-link
  5    276 fe80::/64                On-link
  6    306 fe80::/64                On-link
  6    306 fe80::38fb:8a5:9744:1d1d/128
                                    On-link
  5    276 fe80::7451:9ff4:99ba:f895/128
                                    On-link
  1    306 ff00::/8                 On-link
  5    276 ff00::/8                 On-link
  6    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\NLAapi.dll [65024] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\napinsp.dll [55808] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/30/2016 12:33:59 PM) (Source: Application Error) (User: )
Description: Faulting application name: Avira.OE.ServiceHost.exe, version: 1.1.34.19732, time stamp: 0x5506a918
Faulting module name: KERNELBASE.dll, version: 10.0.10586.306, time stamp: 0x571afb9a
Exception code: 0xe0434352
Fault offset: 0x000bdae8
Faulting process id: 0x16e0
Faulting application start time: 0xAvira.OE.ServiceHost.exe0
Faulting application path: Avira.OE.ServiceHost.exe1
Faulting module path: Avira.OE.ServiceHost.exe2
Report Id: Avira.OE.ServiceHost.exe3
Faulting package full name: Avira.OE.ServiceHost.exe4
Faulting package-relative application ID: Avira.OE.ServiceHost.exe5
 
Error: (05/30/2016 12:33:59 PM) (Source: .NET Runtime) (User: )
Description: Application: Avira.OE.ServiceHost.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Xml.XmlException
   at System.Xml.XmlTextReaderImpl.Throw(System.Exception)
   at System.Xml.XmlTextReaderImpl.ParseDocumentContent()
   at System.Xml.XmlTextReaderImpl.Read()
   at System.Xml.XmlLoader.Load(System.Xml.XmlDocument, System.Xml.XmlReader, Boolean)
   at System.Xml.XmlDocument.Load(System.Xml.XmlReader)
   at System.Xml.XmlDocument.Load(System.String)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.TryLoadXmlDocumentFromFile(Int32, System.TimeSpan)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.LoadXmlDocumentFromFile()
   at Avira.OE.WinCore.OeSharedSettingsAccessor.Get(System.String)
   at Avira.OE.WinCore.OeProductInfo.get_Culture()
   at Avira.OE.WinCore.Utility.CultureSetter.SetDefaultCultureDefinedInAppsettings()
   at Avira.OE.ServiceHost.ServiceHost.SetDefaultCulture()
   at Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object)
   at System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   at System.Threading.ThreadPoolWorkQueue.Dispatch()
   at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
 
Error: (05/30/2016 12:33:43 PM) (Source: TOASTER.EXE) (User: )
Description: An Unhandled Exception occured.
The file 'C:\Users\Karl\AppData\local\\softthinks\scheduler.xml' already exists.
   at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
   at System.IO.File.InternalCopy(String sourceFileName, String destFileName, Boolean overwrite)
   at System.IO.File.Copy(String sourceFileName, String destFileName)
   at Toaster.SchedulerReader.read()
   at Toaster.Notifications.FullSystemBackup.FsbHelper.IsFsbScheduledNow()
   at Toaster.Notifications.FullSystemBackup.FsbHelper.CheckReminder()
   at Toaster.Helper.CheckReminders(ObservableCollection`1 notificationHelpers)
   at Toaster.MainWindowViewModel.NotificationsTimerTick(Object sender, EventArgs e)
   at System.Windows.Threading.DispatcherTimer.FireTick(Object unused)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)
 
Error: (05/30/2016 12:33:34 PM) (Source: Application Error) (User: )
Description: Faulting application name: Avira.OE.ServiceHost.exe, version: 1.1.34.19732, time stamp: 0x5506a918
Faulting module name: KERNELBASE.dll, version: 10.0.10586.306, time stamp: 0x571afb9a
Exception code: 0xe0434352
Fault offset: 0x000bdae8
Faulting process id: 0x1748
Faulting application start time: 0xAvira.OE.ServiceHost.exe0
Faulting application path: Avira.OE.ServiceHost.exe1
Faulting module path: Avira.OE.ServiceHost.exe2
Report Id: Avira.OE.ServiceHost.exe3
Faulting package full name: Avira.OE.ServiceHost.exe4
Faulting package-relative application ID: Avira.OE.ServiceHost.exe5
 
Error: (05/30/2016 12:33:33 PM) (Source: .NET Runtime) (User: )
Description: Application: Avira.OE.ServiceHost.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Xml.XmlException
   at System.Xml.XmlTextReaderImpl.Throw(System.Exception)
   at System.Xml.XmlTextReaderImpl.ParseDocumentContent()
   at System.Xml.XmlTextReaderImpl.Read()
   at System.Xml.XmlLoader.Load(System.Xml.XmlDocument, System.Xml.XmlReader, Boolean)
   at System.Xml.XmlDocument.Load(System.Xml.XmlReader)
   at System.Xml.XmlDocument.Load(System.String)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.TryLoadXmlDocumentFromFile(Int32, System.TimeSpan)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.LoadXmlDocumentFromFile()
   at Avira.OE.WinCore.OeSharedSettingsAccessor.Get(System.String)
   at Avira.OE.WinCore.OeProductInfo.get_Culture()
   at Avira.OE.WinCore.Utility.CultureSetter.SetDefaultCultureDefinedInAppsettings()
   at Avira.OE.ServiceHost.ServiceHost.SetDefaultCulture()
   at Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object)
   at System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   at System.Threading.ThreadPoolWorkQueue.Dispatch()
   at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
 
Error: (05/30/2016 12:26:35 PM) (Source: Application Error) (User: )
Description: Faulting application name: Avira.OE.ServiceHost.exe, version: 1.1.34.19732, time stamp: 0x5506a918
Faulting module name: KERNELBASE.dll, version: 10.0.10586.306, time stamp: 0x571afb9a
Exception code: 0xe0434352
Fault offset: 0x000bdae8
Faulting process id: 0xb44
Faulting application start time: 0xAvira.OE.ServiceHost.exe0
Faulting application path: Avira.OE.ServiceHost.exe1
Faulting module path: Avira.OE.ServiceHost.exe2
Report Id: Avira.OE.ServiceHost.exe3
Faulting package full name: Avira.OE.ServiceHost.exe4
Faulting package-relative application ID: Avira.OE.ServiceHost.exe5
 
Error: (05/30/2016 12:26:34 PM) (Source: .NET Runtime) (User: )
Description: Application: Avira.OE.ServiceHost.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Xml.XmlException
   at System.Xml.XmlTextReaderImpl.Throw(System.Exception)
   at System.Xml.XmlTextReaderImpl.ParseDocumentContent()
   at System.Xml.XmlTextReaderImpl.Read()
   at System.Xml.XmlLoader.Load(System.Xml.XmlDocument, System.Xml.XmlReader, Boolean)
   at System.Xml.XmlDocument.Load(System.Xml.XmlReader)
   at System.Xml.XmlDocument.Load(System.String)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.TryLoadXmlDocumentFromFile(Int32, System.TimeSpan)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.LoadXmlDocumentFromFile()
   at Avira.OE.WinCore.OeSharedSettingsAccessor.Get(System.String)
   at Avira.OE.WinCore.OeProductInfo.get_Culture()
   at Avira.OE.WinCore.Utility.CultureSetter.SetDefaultCultureDefinedInAppsettings()
   at Avira.OE.ServiceHost.ServiceHost.SetDefaultCulture()
   at Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object)
   at System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   at System.Threading.ThreadPoolWorkQueue.Dispatch()
   at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
 
Error: (05/30/2016 12:25:47 PM) (Source: Application Error) (User: )
Description: Faulting application name: CALMAIN.exe, version: 8.1.0.14, time stamp: 0x433d11f9
Faulting module name: msvcrt.dll, version: 7.0.10586.0, time stamp: 0x5632d722
Exception code: 0xc0000005
Fault offset: 0x000885f8
Faulting process id: 0xe6c
Faulting application start time: 0xCALMAIN.exe0
Faulting application path: CALMAIN.exe1
Faulting module path: CALMAIN.exe2
Report Id: CALMAIN.exe3
Faulting package full name: CALMAIN.exe4
Faulting package-relative application ID: CALMAIN.exe5
 
Error: (05/30/2016 11:00:51 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
 
Error: (05/30/2016 11:00:47 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
 
 
System errors:
=============
Error: (05/30/2016 12:42:45 PM) (Source: Service Control Manager) (User: )
Description: The eapihdrv service failed to start due to the following error: 
%%1275
 
Error: (05/30/2016 12:42:45 PM) (Source: Application Popup) (User: )
Description: \??\C:\Users\Karl\AppData\Local\Temp\ehdrv.sys
 
Error: (05/30/2016 12:42:45 PM) (Source: Service Control Manager) (User: )
Description: The eapihdrv service failed to start due to the following error: 
%%1275
 
Error: (05/30/2016 12:42:45 PM) (Source: Application Popup) (User: )
Description: \??\C:\Users\Karl\AppData\Local\Temp\ehdrv.sys
 
Error: (05/30/2016 12:42:45 PM) (Source: Service Control Manager) (User: )
Description: The eapihdrv service failed to start due to the following error: 
%%1275
 
Error: (05/30/2016 12:42:45 PM) (Source: Application Popup) (User: )
Description: \??\C:\Users\Karl\AppData\Local\Temp\ehdrv.sys
 
Error: (05/30/2016 12:42:45 PM) (Source: Service Control Manager) (User: )
Description: The eapihdrv service failed to start due to the following error: 
%%1275
 
Error: (05/30/2016 12:42:45 PM) (Source: Application Popup) (User: )
Description: \??\C:\Users\Karl\AppData\Local\Temp\ehdrv.sys
 
Error: (05/30/2016 12:42:44 PM) (Source: Service Control Manager) (User: )
Description: The eapihdrv service failed to start due to the following error: 
%%1275
 
Error: (05/30/2016 12:42:44 PM) (Source: Application Popup) (User: )
Description: \??\C:\Users\Karl\AppData\Local\Temp\ehdrv.sys
 
 
Microsoft Office Sessions:
=========================
Error: (05/30/2016 12:33:59 PM) (Source: Application Error)(User: )
Description: Avira.OE.ServiceHost.exe1.1.34.197325506a918KERNELBASE.dll10.0.10586.306571afb9ae0434352000bdae816e001d1ba99729dd342C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exeC:\WINDOWS\SYSTEM32\KERNELBASE.dlle7d43bb4-93d1-43ef-9fc4-7b1478867217
 
Error: (05/30/2016 12:33:59 PM) (Source: .NET Runtime)(User: )
Description: Application: Avira.OE.ServiceHost.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Xml.XmlException
   at System.Xml.XmlTextReaderImpl.Throw(System.Exception)
   at System.Xml.XmlTextReaderImpl.ParseDocumentContent()
   at System.Xml.XmlTextReaderImpl.Read()
   at System.Xml.XmlLoader.Load(System.Xml.XmlDocument, System.Xml.XmlReader, Boolean)
   at System.Xml.XmlDocument.Load(System.Xml.XmlReader)
   at System.Xml.XmlDocument.Load(System.String)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.TryLoadXmlDocumentFromFile(Int32, System.TimeSpan)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.LoadXmlDocumentFromFile()
   at Avira.OE.WinCore.OeSharedSettingsAccessor.Get(System.String)
   at Avira.OE.WinCore.OeProductInfo.get_Culture()
   at Avira.OE.WinCore.Utility.CultureSetter.SetDefaultCultureDefinedInAppsettings()
   at Avira.OE.ServiceHost.ServiceHost.SetDefaultCulture()
   at Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object)
   at System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   at System.Threading.ThreadPoolWorkQueue.Dispatch()
   at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
 
Error: (05/30/2016 12:33:43 PM) (Source: TOASTER.EXE)(User: )
Description: An Unhandled Exception occured.
The file 'C:\Users\Karl\AppData\local\\softthinks\scheduler.xml' already exists.
   at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
   at System.IO.File.InternalCopy(String sourceFileName, String destFileName, Boolean overwrite)
   at System.IO.File.Copy(String sourceFileName, String destFileName)
   at Toaster.SchedulerReader.read()
   at Toaster.Notifications.FullSystemBackup.FsbHelper.IsFsbScheduledNow()
   at Toaster.Notifications.FullSystemBackup.FsbHelper.CheckReminder()
   at Toaster.Helper.CheckReminders(ObservableCollection`1 notificationHelpers)
   at Toaster.MainWindowViewModel.NotificationsTimerTick(Object sender, EventArgs e)
   at System.Windows.Threading.DispatcherTimer.FireTick(Object unused)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)
 
Error: (05/30/2016 12:33:34 PM) (Source: Application Error)(User: )
Description: Avira.OE.ServiceHost.exe1.1.34.197325506a918KERNELBASE.dll10.0.10586.306571afb9ae0434352000bdae8174801d1ba9961a8c892C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exeC:\WINDOWS\SYSTEM32\KERNELBASE.dllff58c43f-f388-432e-a146-16b40deb950a
 
Error: (05/30/2016 12:33:33 PM) (Source: .NET Runtime)(User: )
Description: Application: Avira.OE.ServiceHost.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Xml.XmlException
   at System.Xml.XmlTextReaderImpl.Throw(System.Exception)
   at System.Xml.XmlTextReaderImpl.ParseDocumentContent()
   at System.Xml.XmlTextReaderImpl.Read()
   at System.Xml.XmlLoader.Load(System.Xml.XmlDocument, System.Xml.XmlReader, Boolean)
   at System.Xml.XmlDocument.Load(System.Xml.XmlReader)
   at System.Xml.XmlDocument.Load(System.String)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.TryLoadXmlDocumentFromFile(Int32, System.TimeSpan)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.LoadXmlDocumentFromFile()
   at Avira.OE.WinCore.OeSharedSettingsAccessor.Get(System.String)
   at Avira.OE.WinCore.OeProductInfo.get_Culture()
   at Avira.OE.WinCore.Utility.CultureSetter.SetDefaultCultureDefinedInAppsettings()
   at Avira.OE.ServiceHost.ServiceHost.SetDefaultCulture()
   at Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object)
   at System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   at System.Threading.ThreadPoolWorkQueue.Dispatch()
   at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
 
Error: (05/30/2016 12:26:35 PM) (Source: Application Error)(User: )
Description: Avira.OE.ServiceHost.exe1.1.34.197325506a918KERNELBASE.dll10.0.10586.306571afb9ae0434352000bdae8b4401d1ba9841bb3713C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exeC:\WINDOWS\SYSTEM32\KERNELBASE.dllf053c876-36c7-4df5-8ebd-a0b1cdd93a3a
 
Error: (05/30/2016 12:26:34 PM) (Source: .NET Runtime)(User: )
Description: Application: Avira.OE.ServiceHost.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Xml.XmlException
   at System.Xml.XmlTextReaderImpl.Throw(System.Exception)
   at System.Xml.XmlTextReaderImpl.ParseDocumentContent()
   at System.Xml.XmlTextReaderImpl.Read()
   at System.Xml.XmlLoader.Load(System.Xml.XmlDocument, System.Xml.XmlReader, Boolean)
   at System.Xml.XmlDocument.Load(System.Xml.XmlReader)
   at System.Xml.XmlDocument.Load(System.String)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.TryLoadXmlDocumentFromFile(Int32, System.TimeSpan)
   at Avira.OE.WinCore.OeSharedSettingsAccessor.LoadXmlDocumentFromFile()
   at Avira.OE.WinCore.OeSharedSettingsAccessor.Get(System.String)
   at Avira.OE.WinCore.OeProductInfo.get_Culture()
   at Avira.OE.WinCore.Utility.CultureSetter.SetDefaultCultureDefinedInAppsettings()
   at Avira.OE.ServiceHost.ServiceHost.SetDefaultCulture()
   at Avira.OE.ServiceHost.ServiceHost.Initialize(System.Object)
   at System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   at System.Threading.ThreadPoolWorkQueue.Dispatch()
   at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
 
Error: (05/30/2016 12:25:47 PM) (Source: Application Error)(User: )
Description: CALMAIN.exe8.1.0.14433d11f9msvcrt.dll7.0.10586.05632d722c0000005000885f8e6c01d1ba98452da8baC:\Program Files (x86)\Canon\CAL\CALMAIN.exeC:\WINDOWS\SYSTEM32\msvcrt.dll9c03e892-29f9-4ad3-a973-43a90a29ab01
 
Error: (05/30/2016 11:00:51 AM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifestC:\Users\Karl\Downloads\esetsmartinstaller_enu.exe
 
Error: (05/30/2016 11:00:47 AM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifestC:\Users\Karl\Downloads\esetsmartinstaller_enu (2).exe
 
 
CodeIntegrity Errors:
===================================
  Date: 2016-05-24 06:24:21.205
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-05-23 07:01:32.782
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-05-14 16:59:25.801
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-05-14 10:31:18.661
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-05-14 10:31:17.382
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-05-14 10:19:09.414
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-05-14 10:19:09.160
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2016-05-13 06:18:25.366
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-05-12 06:26:42.085
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2016-04-16 06:45:54.388
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Action PC Football 2010 (C:\Program Files (x86)\Action PC Football 2010\) (HKLM-x32\...\ST6UNST #2) (Version:  - )
Action PC Football 2010 (HKLM-x32\...\ST6UNST #1) (Version:  - )
Action! PC Football 2011 (HKLM-x32\...\ST6UNST #4) (Version:  - )
Action! PC Football 2012 (HKLM-x32\...\ST6UNST #6) (Version:  - )
Action! PC Football 2013 (HKLM-x32\...\ST6UNST #7) (Version:  - )
Action! PC Football 2014 (HKLM-x32\...\ST6UNST #8) (Version:  - )
Action! PC Football 2015 (HKLM-x32\...\ST6UNST #9) (Version:  - )
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.16) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.3.633 - Adobe Systems, Inc.)
Aleks 3.18 (HKLM-x32\...\Aleks 3.18) (Version:  - )
Amazon Kindle (HKCU\...\Amazon Kindle) (Version:  - Amazon)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATT-RC Self Support Tool (HKLM\...\ATT-RC) (Version:  - )
ATT-RC Self Support Tool (HKLM-x32\...\ATT-RC) (Version:  - )
Audacity 1.3.13 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version:  - Audacity Team)
Avira (HKLM-x32\...\{316EB047-4627-4B63-B0A6-8CD32D07D962}) (Version: 1.1.34.19732 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{b5675cc4-ab8b-4945-8c1d-4c5479556d6a}) (Version: 1.1.34.19732 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG)
Baseball 2011 (HKLM-x32\...\ST6UNST #3) (Version:  - )
Baseball 2012 (HKLM-x32\...\ST6UNST #5) (Version:  - )
Belkin F7D1101 Basic Wireless USB Adapter (HKLM-x32\...\{AFD89880-C544-4777-B645-FBF6D3391B11}) (Version: 1.0.0.4 - Belkin) Hidden
Belkin F7D1101 Basic Wireless USB Adapter (HKLM-x32\...\InstallShield_{AFD89880-C544-4777-B645-FBF6D3391B11}) (Version: 1.0.0.4 - Belkin)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon Camera Access Library (HKLM-x32\...\CAL) (Version: 8.1.1.17 - )
Canon Camera Support Core Library (HKLM-x32\...\CSCLIB) (Version: 7.3.1.6 - )
Canon Camera Window DC_DV 5 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC5) (Version: 5.4.5.17 - )
Canon Camera Window DC_DV 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC6) (Version: 6.2.0.8 - )
Canon Camera Window MC 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowMC) (Version: 6.1.0.7 - )
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon G.726 WMP-Decoder (HKLM-x32\...\Canon G.726 WMP-Decoder) (Version: 1.0.1.3 - )
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version:  - )
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version:  - )
Canon MG3100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3100_series) (Version:  - )
Canon MG3100 series On-screen Manual (HKLM-x32\...\Canon MG3100 series On-screen Manual) (Version:  - )
Canon MG3100 series User Registration (HKLM-x32\...\Canon MG3100 series User Registration) (Version:  - )
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 2.2.0.13 - )
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version:  - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon RAW Image Task for ZoomBrowser EX (HKLM-x32\...\RAW Image Task) (Version: 2.3.0.11 - )
Canon RemoteCapture Task for ZoomBrowser EX (HKLM-x32\...\RemoteCaptureTask) (Version: 1.5.0.5 - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version:  - )
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 1.0.3.17 - )
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.17.41 - )
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 5.6.0.27 - )
CDex extraction audio (HKLM-x32\...\CDex) (Version:  - )
Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)
Crystal Reports for Visual Studio (HKLM-x32\...\{AC41D924-8C68-4BD5-A7A1-0AE4176C31A6}) (Version: 12.51.0.240 - SAP) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Data Vault (HKLM\...\{2E55EEFD-2162-4A7D-9158-EDB0305603A6}) (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)
Dell DataSafe Online (HKLM-x32\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.2.0009 - Dell, Inc.)
Dell Dock (HKLM\...\{C73A3942-84C8-4597-9F9B-EE227DCBA758}) (Version: 2.0 - Stardock Corporation) Hidden
Dell Dock (HKLM-x32\...\Dell Dock) (Version:  - Stardock Corporation)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6793.01 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell System Detect (HKCU\...\58d94f3ce2c27db0) (Version: 7.4.0.3 - Dell)
Dell Update (HKLM-x32\...\{90437913-9D4D-4D9D-B438-B8664DF851E9}) (Version: 1.7.1007.0 - Dell Inc.)
Dotfuscator Software Services - Community Edition (HKLM-x32\...\{1AA5BD63-6614-44B2-88A7-605191EDB835}) (Version: 5.0.2500.0 - PreEmptive Solutions)
eReg (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version:  - )
FlipShare (HKLM-x32\...\{420DFB63-8AE7-F7D6-E4B4-AB6D140221F4}) (Version: 5.10.25.0 - Flip Video)
Google Chrome (HKCU\...\Google Chrome) (Version: 51.0.2704.63 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.30.3 - Google Inc.) Hidden
GoToAssist 8.0.0.514 (HKLM-x32\...\GoToAssist) (Version:  - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.1.0 - LIGHTNING UK!)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KODAK Share Button App (HKLM-x32\...\{6FB3A94A-CAA8-4A7B-8E1D-CBB34A5E5FB8}) (Version: 2.02.0000.0000 - Eastman Kodak Company)
Korean Fonts Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5670-0000-900000000003}) (Version: 9.0.0 - Adobe Systems Incorporated)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LEGO Star Wars (HKLM-x32\...\{E914A24F-2412-4374-B420-86D21D6D444A}) (Version: 1.00.0000 - Giant) Hidden
LEGO Star Wars (HKLM-x32\...\InstallShield_{E914A24F-2412-4374-B420-86D21D6D444A}) (Version: 1.00.0000 - Giant)
LEGO Star Wars II (HKLM-x32\...\{578FA426-47C0-4A3F-98A4-01ACD26B7556}) (Version: 1.00.0000 - LucasArts) Hidden
LEGO Star Wars II (HKLM-x32\...\InstallShield_{578FA426-47C0-4A3F-98A4-01ACD26B7556}) (Version: 1.00.0000 - LucasArts)
Logitech SetPoint 6.1 (HKLM\...\SP6) (Version: 6.10.65 - Logitech)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK (HKLM-x32\...\{05855322-BE43-41FE-B583-D3AE0C326D58}) (Version: 4.0.50826.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM-x32\...\{BC537AE0-88AF-47ED-B762-33B0D62B5188}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{7A56D81D-6406-40E7-9184-8AC1769C4D69}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{EAEBF166-B06A-4D7F-BAF7-6615303D5C7C}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{09C52940-A4D1-4409-A7CC-1AAE630CF578}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{1E6ED082-E32D-4B2B-8B6A-70B094815135}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (HKLM\...\{8438EC02-B8A9-462D-AC72-1B521349C001}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 (HKLM-x32\...\{0E3DFC64-CC49-4BE2-8C9C-58EF129675DB}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) (HKLM\...\{034106B5-54B7-467F-B477-5B7DBB492624}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (HKLM\...\{1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3}) (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Designtime - 10.0.30319 (HKLM\...\{F5079164-1DB9-3BDA-853B-F78AF67CE071}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Professional - ENU (HKLM-x32\...\Microsoft Visual Studio 2010 Professional - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (HKLM-x32\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NTI Backup Now EZ (HKLM-x32\...\{B9ECA41B-55CC-4654-B6B5-6731D009EC69}) (Version: 2.5.2.56 - NTI Corporation) Hidden
NTI Backup Now EZ (HKLM-x32\...\InstallShield_{B9ECA41B-55CC-4654-B6B5-6731D009EC69}) (Version: 2.5.2.56 - NTI Corporation)
NVIDIA 3D Vision Driver 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.95 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.56.34 - NVIDIA Corporation)
NVIDIA Graphics Driver 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.95 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
PowerDVD DX (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.3.6029 - CyberLink Corp.)
PowerTeacher Gradebook (HKCU\...\PowerTeacher Gradebook) (Version:  - Pearson School Systems)
PreReq (HKLM-x32\...\{DA5BDB2A-12F0-4343-8351-21AAEB293990}) (Version: 6.2.4.0 - Eastman Kodak Company) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6043 - Realtek Semiconductor Corp.)
Roxio Burn (HKLM-x32\...\{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}) (Version: 1.01 - Roxio)
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.10.9560 - Skype Technologies S.A.)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 1.0.1.1060.gc75ebdfd - Spotify AB)
SpywareBlaster 4.6 (HKLM-x32\...\SpywareBlaster_is1) (Version: 4.6.1 - BrightFort LLC)
Sql Server Customer Experience Improvement Program (HKLM\...\{2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}) (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.5.1012 - SUPERAntiSpyware.com)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Sims Complete Collection (HKLM-x32\...\{F2527115-B8BF-4FDB-B5DA-5AADFB7C13E1}) (Version:  - )
Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
WCF RIA Services V1.0 SP1 (HKLM-x32\...\{D9E6001A-5DC3-4620-AF7A-80B6CD48645D}) (Version: 4.1.60114.0 - Microsoft Corporation)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
WebEx (HKCU\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Windows Driver Package - Eastman Kodak KODAK Digital Camera (01/29/2010 1.4.1.0) (HKLM\...\3D970B9F930E7AAE23C06D39A1AC98548C90B442) (Version: 01/29/2010 1.4.1.0 - Eastman Kodak)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Yahoo! Install Manager (HKLM-x32\...\YInstHelper) (Version:  - )
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.20.905 - Zemana Ltd.)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 65%
Total physical RAM: 3959.11 MB
Available physical RAM: 1361.94 MB
Total Virtual: 5239.11 MB
Available Virtual: 2186.8 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:455.84 GB) (Free:86.7 GB) NTFS
2 Drive d: (2013-09-05 1250) (CDROM) (Total:0.62 GB) (Free:0 GB) UDF
 
========================= Users: ========================================
 
User accounts for \\KARL-DESKTOP
 
Administrator            DefaultAccount           Guest                    
Karl                     KyleKelsey               UpdatusUser              
 
 
**** End of log ****


#15 kschwi

kschwi
  • Topic Starter

  • Members
  • 131 posts
  • OFFLINE
  •  
  • Local time:10:36 PM

Posted 30 May 2016 - 02:01 PM

SecurityCheck by glax24 & Severnyj v.1.4.0.40 [21.05.16]
WebSite: www.safezone.cc
DateLog: 30.05.2016 14:00:31
Path starting: C:\Users\Karl\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe
Log directory: C:\SecurityCheck\
IsAdmin: True
User: Karl
VersionXML: 2.99is-30.05.2016
___________________________________________________________________________
 
Windows 10(6.3.10586) (x64) Core Lang: English(0409)
Installation date OS: 09.03.2016 02:24:41
LicenseStatus: Windows®, Core edition The machine is permanently activated.
Boot Mode: Normal
Default Browser: Internet Explorer (C:\Program Files\Internet Explorer\iexplore.exe)
SystemDrive: C: FS: [NTFS] Capacity: [455.8 Gb] Used: [369.1 Gb] Free: [86.7 Gb]
------------------------------- [ Windows ] -------------------------------
Internet Explorer 11.306.10586.0
User Account Control enabled
Automatic download and scheduled installation
Windows Update (wuauserv) - The service has stopped
Security Center (wscsvc) - The service is running
Remote Registry (RemoteRegistry) - The service has stopped
SSDP Discovery (SSDPSRV) - The service is running
Remote Desktop Services (TermService) - The service has stopped
World Wide Web Publishing Service (W3SVC) - The service is running
Windows Remote Management (WS-Management) (WinRM) - The service has stopped
------------------------------ [ MS Office ] ------------------------------
Microsoft Office 2010 x86 v.14.0.7015.1000
---------------------------- [ Antivirus_WMI ] ----------------------------
Avira Antivirus (enabled and up to date)
Windows Defender (disabled and up to date)
--------------------------- [ FirewallWindows ] ---------------------------
Windows Firewall (MpsSvc) - The service is running
--------------------------- [ AntiSpyware_WMI ] ---------------------------
Avira Antivirus (enabled and up to date)
Windows Defender (disabled and up to date)
---------------------- [ AntiVirusFirewallInstall ] -----------------------
Avira Antivirus v.15.0.17.273
-------------------------- [ SecurityUtilities ] --------------------------
SUPERAntiSpyware v.5.5.1012
Malwarebytes Anti-Malware version 2.2.1.1043 v.2.2.1.1043
SpywareBlaster 4.6 v.4.6.1
Zemana AntiMalware v.2.20.905
--------------------------- [ OtherUtilities ] ----------------------------
Microsoft Silverlight v.5.1.41212.0
--------------------------------- [ IM ] ----------------------------------
Skype™ 7.0 v.7.0.102 Warning! Download Update
^Optional update.^
-------------------------------- [ Java ] ---------------------------------
Java 7 Update 25 (64-bit) v.7.0.250 Warning! This software is no longer supported. Please uninstall it and use Java SE 8.
Java 8 Update 45 v.8.0.450 Warning! Download Update
Uninstall old version and install new one.
--------------------------- [ AppleProduction ] ---------------------------
iTunes v.12.0.1.26 Warning! Download Update
^Please use Apple Software Update tool.^
Bonjour v.3.0.0.10 Warning! Download Update
^Please use Apple Software Update tool.^
Bonjour Service (Bonjour Service) - The service is running
--------------------------- [ AdobeProduction ] ---------------------------
Adobe Flash Player 21 NPAPI v.21.0.0.242
Adobe Shockwave Player 11.6 v.11.6.3.633 Warning! Download Update
Adobe Reader XI (11.0.16) v.11.0.16
------------------------------- [ Browser ] -------------------------------
Google Chrome v.51.0.2704.63
----------------------------- [ EmailClient ] -----------------------------
Windows Live Mail v.15.4.3502.0922
--------------------------- [ RunningProcess ] ----------------------------
C:\Users\Karl\AppData\Local\Google\Chrome\Application\chrome.exe v.51.0.2704.63
Avira Scheduler (AntiVirSchedulerService) - The service is running
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe v.15.0.17.264
Avira Real-Time Protection (AntiVirService) - The service is running
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe v.15.0.17.264
Avira Mail Protection (AntiVirMailService) - The service has stopped
Avira Web Protection (AntiVirWebService) - The service has stopped
C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe v.15.0.17.273
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe v.15.0.17.264
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe v.2.3.173.0
MBAMScheduler (MBAMScheduler) - The service is running
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe v.3.1.7.0
MBAMService (MBAMService) - The service is running
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe v.3.2.21.0
Windows Defender Network Inspection Service (WdNisSvc) - The service has stopped
SAS Core Service (!SASCORE) - The service is running
C:\Program Files\SUPERAntiSpyware\SASCore64.exe v.1.0.0.1066
Windows Defender Service (WinDefend) - The service has stopped
Windows Defender Network Inspection Service (WdNisSvc) - The service has stopped
ZAM Controller Service (ZAMSvc) - The service has stopped
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe v.0.0.0.0
---------------------------- [ UnwantedApps ] -----------------------------
Google Toolbar for Internet Explorer v.1.0.0 << Hidden Warning! Browser's toolbar. It can slow down the working of your browser and have violation privacy problems.
Skype Click to Call v.5.10.9560 Warning! Browser's toolbar. It can slow down the working of your browser and have violation privacy problems.
----------------------------- [ End of Log ] ------------------------------





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users