bluesman420

Members
  • Content count

    2
  • Joined

  • Last visited

About bluesman420

  • Rank
    New Member
  1. Had a bunch of pesky popups and malware. The Anti-Malware util took care of most of it, but MyPC Backupo remains. I'm sure I have some other stuff that I don't need - like this old cell phone util - VZW Software Upgrade Assistant (LG). This site rocks. Please help when you can. Thanks. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-08-2014 02Ran by PHILR420 (administrator) on PHIL-PC on 02-09-2014 13:16:20Running from C:\Users\Phil\DesktopPlatform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 11Boot Mode: Normal The only official download link for FRST:Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe(Intel Corporation) C:\Windows\System32\igfxtray.exe(Intel Corporation) C:\Windows\System32\hkcmd.exe(Intel Corporation) C:\Windows\System32\igfxpers.exe(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe(LG Electronics) C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIIBE.EXE(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIIBE.EXE(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1234216 2008-03-28] (Synaptics, Inc.)HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetchHKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)HKLM-x32\...\Run: [switchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.)HKLM-x32\...\Run: [Monitor] => C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [298376 2012-09-28] (LeapFrog Enterprises, Inc.)HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2011-10-31] (SEIKO EPSON CORPORATION)HKLM-x32\...\Run: [POEngine] => C:\Program Files (x86)\PokerOffice\POEngine.exe [475136 2007-02-22] ()HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)HKLM-x32\...\Run: [ospd_us_50] => [X]Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2741616 2011-03-04] (Hewlett-Packard Company)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [Google Update] => C:\Users\Phil\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-10-10] (Google Inc.)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [bYR_AGENT] => C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe [392320 2012-12-09] (LG Electronics)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [searchProtection] => "C:\Users\Phil\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostartHKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-10-10] (Google Inc.)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [AdobeBridge] => [X]HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [uTorrent] => C:\Users\Phil\AppData\Roaming\uTorrent\uTorrent.exe [1329744 2014-07-11] (BitTorrent Inc.)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [POEngine5] => [X]HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [GoogleChromeAutoLaunch_3C063AA4110F43C4A83767362D40A1E9] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-08-06] (Google Inc.)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [EPLTarget\P0000000000000004] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIBE.EXE [283232 2013-04-08] (SEIKO EPSON CORPORATION)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIBE.EXE [283232 2013-04-08] (SEIKO EPSON CORPORATION)HKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\MountPoints2: E - E:\TL_Bootstrap.exeHKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\MountPoints2: {38d2afbc-1374-11e2-8049-001f16edfac7} - E:\TL_Bootstrap.exeHKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\MountPoints2: {5c3fc15e-acdc-11e2-811a-001f16edfac7} - E:\TL_Bootstrap.exeHKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\MountPoints2: {82ba5ef3-5b1c-11e2-94d1-001f16edfac7} - E:\TLBootstrap_WPP.exeHKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\MountPoints2: {c756299e-1e52-11e2-b5b9-001f16edfac7} - E:\TL_Bootstrap.exeHKU\S-1-5-21-900518891-2468357431-3931253192-1000\...\MountPoints2: {ed0292a9-f22f-11e3-8979-001f16edfac7} - E:\VZW_Software_upgrade_assistant.exeStartup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CrashPlan Tray.lnkShortcutTarget: CrashPlan Tray.lnk -> C:\Program Files\CrashPlan\CrashPlanTray.exe (No File)Startup: C:\Users\Phil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnkShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)ShellIconOverlayIdentifiers: SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)ShellIconOverlayIdentifiers: SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)ShellIconOverlayIdentifiers: SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankHKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehpHKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x51ABDB6B8BA4CD01HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-USHKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankHKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blankSearchScopes: HKCU - DefaultScope {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL = SearchScopes: HKCU - {2539B9EF-320A-4904-A877-452CA9E8A8F0} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3220468SearchScopes: HKCU - {77C21879-8685-46A6-A621-724ED91E6400} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=714647&p={searchTerms}SearchScopes: HKCU - {7F95CB08-8588-4417-88A9-D6051EF68495} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=TV&apn_dtid=OSJ000YYUS&apn_uid=F3CB838E-7A69-4478-A72E-531041998161&apn_sauid=7D8F1EAD-CE7A-462A-866E-D19B41CF1FA5BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)DPF: HKLM-x32 {254AA86E-5655-4518-AA87-185D7CC41801} https://secure.logmeinrescue.com/TechConsole/x86/RescueControl.cabDPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.9.0.cabHandler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox:========FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_278.dll ()FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)FF Plugin: @java.com/JavaPlugin,version=10.7.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll ()FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Phil\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Phil\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Phil\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Phil\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin ProgramFiles/Appdata: C:\Users\Phil\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)FF Plugin ProgramFiles/Appdata: C:\Users\Phil\AppData\Roaming\mozilla\plugins\npo1d.dll (Google) Chrome: =======CHR HomePage: Default -> hxxp://www.google.com/CHR StartupUrls: Default -> "https://www.google.com/"CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}CHR Profile: C:\Users\Phil\AppData\Local\Google\Chrome\User Data\DefaultCHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Phil\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-30]CHR Extension: (YouTube) - C:\Users\Phil\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-10-16]CHR Extension: (Search) - C:\Users\Phil\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-10-16]CHR Extension: (Readium) - C:\Users\Phil\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepbnnnkkadjhjahcafoaglimekefifl [2014-08-18]CHR Extension: (Hangouts) - C:\Users\Phil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2013-08-28]CHR Extension: (Google Wallet) - C:\Users\Phil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]CHR Extension: (Gmail) - C:\Users\Phil\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-10-16]CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36424 2014-08-14] (Just Develop It)R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2369720 2014-08-01] (Microsoft Corporation)R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [File not signed]R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]S2 SMUpd; C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe /service [X]S3 SymSnapService; "C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe" [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [66608 2010-02-12] (Symantec Corporation)R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-02] (Malwarebytes Corporation)R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] ()S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)S3 sscdserd; C:\Windows\System32\DRIVERS\sscdserd.sys [141384 2010-11-11] (MCCI Corporation)U1 StarOpen; No ImagePathS1 MpKslc2bbbbd9; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{366C4A22-8684-4CAD-A2A3-3132C00EB632}\MpKslc2bbbbd9.sys [X]S3 SMUpdd; \??\C:\Program Files\Common Files\Goobzo\GBUpdate\smw.sys [X]S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]S3 tsusbhub; system32\drivers\tsusbhub.sys [X]S3 usbbus; system32\DRIVERS\lgx64bus.sys [X]S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [X]S3 USBModem; system32\DRIVERS\lgx64modem.sys [X]U2 V2iMount; No ImagePathS3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-02 13:16 - 2014-09-02 13:16 - 00022361 _____ () C:\Users\Phil\Desktop\FRST.txt2014-09-02 13:15 - 2014-09-02 13:16 - 00000000 ____D () C:\FRST2014-09-02 13:07 - 2014-09-02 13:07 - 02104832 _____ (Farbar) C:\Users\Phil\Desktop\FRST64.exe2014-09-02 13:06 - 2014-09-02 13:07 - 02104832 _____ (Farbar) C:\Users\Phil\Downloads\FRST64.exe2014-08-30 20:06 - 2014-08-30 20:06 - 00019778 _____ () C:\Users\Phil\Downloads\[kickass.to]ultimate.spiderman.season.1.complete.web.dl.x264.aac.torrent2014-08-27 17:30 - 2014-08-22 22:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll2014-08-27 17:30 - 2014-08-22 20:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2014-08-27 17:29 - 2014-08-22 21:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll2014-08-25 21:50 - 2014-09-02 10:01 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-08-25 21:49 - 2014-08-25 21:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2014-08-25 21:49 - 2014-08-25 21:49 - 00000000 ____D () C:\ProgramData\Malwarebytes2014-08-25 21:49 - 2014-08-25 21:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2014-08-25 21:49 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys2014-08-25 21:49 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys2014-08-25 21:49 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys2014-08-25 21:42 - 2014-08-25 21:46 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Phil\Downloads\mbam-setup-2.0.2.1012 (1).exe2014-08-25 21:42 - 2014-08-25 21:43 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Phil\Downloads\mbam-setup-2.0.2.1012.exe2014-08-24 16:56 - 2014-08-29 11:41 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Lavasoft2014-08-24 15:29 - 2014-08-24 15:29 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\LavasoftStatistics2014-08-24 15:26 - 2014-08-24 15:26 - 00000000 ____D () C:\Program Files\Lavasoft2014-08-24 15:08 - 2014-08-24 15:08 - 00000000 ____D () C:\ProgramData\Lavasoft2014-08-24 14:12 - 2014-08-24 14:13 - 01707144 _____ () C:\Users\Phil\Downloads\Adaware_Installer (1).exe2014-08-24 14:07 - 2014-08-24 14:08 - 01707144 _____ () C:\Users\Phil\Downloads\Adaware_Installer.exe2014-08-20 21:57 - 2014-08-22 23:56 - 00000000 ____D () C:\Users\Phil\Documents\Calibre Library2014-08-20 21:57 - 2014-08-20 22:35 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\calibre2014-08-20 21:57 - 2014-08-20 21:57 - 00000995 _____ () C:\Users\Public\Desktop\calibre - E-book management.lnk2014-08-20 21:57 - 2014-08-20 21:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management2014-08-20 21:57 - 2014-08-20 21:57 - 00000000 ____D () C:\Program Files (x86)\Calibre22014-08-20 21:55 - 2014-08-20 21:55 - 00001188 _____ () C:\Users\Phil\Desktop\Live PC Help.lnk2014-08-20 21:43 - 2014-08-20 21:43 - 00000000 ____D () C:\Program Files (x86)\predm2014-08-20 03:04 - 2014-06-30 18:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll2014-08-20 03:04 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll2014-08-20 03:04 - 2014-03-09 17:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe2014-08-20 03:04 - 2014-03-09 17:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll2014-08-20 03:04 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe2014-08-20 03:04 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll2014-08-20 03:03 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe2014-08-20 03:03 - 2014-06-06 02:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe2014-08-19 23:07 - 2014-08-19 23:07 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Media Freeware2014-08-19 23:06 - 2014-08-20 04:58 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup2014-08-19 23:06 - 2014-08-19 23:06 - 00004030 _____ () C:\Windows\System32\Tasks\LaunchSignup2014-08-19 23:06 - 2014-08-19 23:06 - 00002004 _____ () C:\Users\Phil\Desktop\Sync Folder.lnk2014-08-19 23:06 - 2014-08-19 23:06 - 00001122 _____ () C:\Users\Phil\Desktop\MyPC Backup.lnk2014-08-19 23:06 - 2014-08-19 23:06 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup2014-08-19 23:05 - 2014-08-26 09:11 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Systweak2014-08-19 23:05 - 2013-08-22 18:36 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe2014-08-19 23:03 - 2014-08-20 21:46 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO2014-08-19 23:03 - 2014-08-19 23:03 - 00003840 _____ () C:\Windows\System32\Tasks\Smp2014-08-19 23:03 - 2014-08-19 23:03 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weather Alerts2014-08-19 23:01 - 2014-08-19 23:01 - 00000000 ____D () C:\Users\Phil\AppData\Local\CrashRpt2014-08-19 23:00 - 2014-08-19 23:00 - 00634712 _____ () C:\Users\Phil\Downloads\epubreader_setup.exe2014-08-19 23:00 - 2014-08-19 23:00 - 00634712 _____ () C:\Users\Phil\Downloads\epubreader_setup (1).exe2014-08-18 18:23 - 2014-08-18 18:23 - 00002580 _____ () C:\Users\Phil\Downloads\[kickass.to]adult.jokes (1).torrent2014-08-18 18:21 - 2014-08-18 18:21 - 00002580 _____ () C:\Users\Phil\Downloads\[kickass.to]adult.jokes.torrent2014-08-15 03:28 - 2014-07-15 23:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll2014-08-15 03:28 - 2014-07-15 22:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll2014-08-15 03:27 - 2014-07-25 08:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-08-15 03:27 - 2014-07-25 07:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll2014-08-15 03:27 - 2014-06-24 22:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll2014-08-15 03:27 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll2014-08-15 03:27 - 2014-06-15 22:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys2014-08-15 03:27 - 2014-06-03 06:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll2014-08-15 03:27 - 2014-06-03 06:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll2014-08-15 03:27 - 2014-06-03 06:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll2014-08-15 03:27 - 2014-06-03 06:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe2014-08-15 03:27 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll2014-08-15 03:27 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll2014-08-15 03:27 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll2014-08-15 03:26 - 2014-08-06 22:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll2014-08-15 03:26 - 2014-08-06 22:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll2014-08-15 03:26 - 2014-07-31 19:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll2014-08-15 03:26 - 2014-07-31 19:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll2014-08-15 03:26 - 2014-07-25 10:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2014-08-15 03:26 - 2014-07-25 10:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2014-08-15 03:26 - 2014-07-25 10:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-08-15 03:26 - 2014-07-25 09:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2014-08-15 03:26 - 2014-07-25 09:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2014-08-15 03:26 - 2014-07-25 09:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2014-08-15 03:26 - 2014-07-25 09:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-08-15 03:26 - 2014-07-25 09:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2014-08-15 03:26 - 2014-07-25 09:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll2014-08-15 03:26 - 2014-07-25 09:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2014-08-15 03:26 - 2014-07-25 09:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2014-08-15 03:26 - 2014-07-25 09:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2014-08-15 03:26 - 2014-07-25 09:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2014-08-15 03:26 - 2014-07-25 09:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2014-08-15 03:26 - 2014-07-25 09:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-08-15 03:26 - 2014-07-25 08:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-08-15 03:26 - 2014-07-25 08:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2014-08-15 03:26 - 2014-07-25 08:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll2014-08-15 03:26 - 2014-07-25 08:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2014-08-15 03:26 - 2014-07-25 08:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2014-08-15 03:26 - 2014-07-25 08:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll2014-08-15 03:26 - 2014-07-25 08:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-08-15 03:26 - 2014-07-25 08:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll2014-08-15 03:26 - 2014-07-25 08:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2014-08-15 03:26 - 2014-07-25 08:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2014-08-15 03:26 - 2014-07-25 08:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2014-08-15 03:26 - 2014-07-25 08:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll2014-08-15 03:26 - 2014-07-25 08:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2014-08-15 03:26 - 2014-07-25 08:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2014-08-15 03:26 - 2014-07-25 08:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll2014-08-15 03:26 - 2014-07-25 08:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2014-08-15 03:26 - 2014-07-25 08:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-08-15 03:26 - 2014-07-25 08:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-08-15 03:26 - 2014-07-25 07:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll2014-08-15 03:26 - 2014-07-25 07:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2014-08-15 03:26 - 2014-07-25 07:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll2014-08-15 03:26 - 2014-07-25 07:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2014-08-15 03:26 - 2014-07-25 07:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2014-08-15 03:26 - 2014-07-25 07:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2014-08-15 03:26 - 2014-07-25 07:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2014-08-15 03:26 - 2014-07-25 07:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll2014-08-15 03:26 - 2014-07-25 07:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2014-08-15 03:26 - 2014-07-25 07:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2014-08-15 03:26 - 2014-07-25 07:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2014-08-15 03:26 - 2014-07-25 07:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2014-08-15 03:26 - 2014-07-25 07:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2014-08-15 03:26 - 2014-07-25 06:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2014-08-15 03:26 - 2014-07-25 06:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2014-08-15 03:26 - 2014-07-25 06:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2014-08-15 03:26 - 2014-07-25 06:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2014-08-15 03:26 - 2014-07-25 06:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2014-08-15 03:26 - 2014-07-25 06:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2014-08-15 03:26 - 2014-07-13 22:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll2014-08-15 03:26 - 2014-07-13 21:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-02 13:16 - 2014-09-02 13:16 - 00022361 _____ () C:\Users\Phil\Desktop\FRST.txt2014-09-02 13:16 - 2014-09-02 13:15 - 00000000 ____D () C:\FRST2014-09-02 13:14 - 2012-10-07 22:10 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\uTorrent2014-09-02 13:11 - 2009-07-14 00:45 - 00021792 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02014-09-02 13:11 - 2009-07-14 00:45 - 00021792 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02014-09-02 13:07 - 2014-09-02 13:07 - 02104832 _____ (Farbar) C:\Users\Phil\Desktop\FRST64.exe2014-09-02 13:07 - 2014-09-02 13:06 - 02104832 _____ (Farbar) C:\Users\Phil\Downloads\FRST64.exe2014-09-02 12:57 - 2012-10-06 21:04 - 02022189 _____ () C:\Windows\WindowsUpdate.log2014-09-02 12:48 - 2012-11-20 20:10 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-900518891-2468357431-3931253192-1000UA.job2014-09-02 12:41 - 2012-10-10 09:38 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-09-02 12:40 - 2012-10-06 21:07 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job2014-09-02 10:01 - 2014-08-25 21:50 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-09-02 09:29 - 2012-10-10 09:38 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2014-09-02 09:28 - 2012-10-07 09:20 - 00062027 _____ () C:\Windows\setupact.log2014-09-02 09:28 - 2012-10-07 09:00 - 00000396 _____ () C:\Windows\Tasks\Defraggler Volume C Task.job2014-09-02 09:28 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-09-02 00:47 - 2012-11-20 20:10 - 00000852 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-900518891-2468357431-3931253192-1000Core.job2014-08-31 23:58 - 2012-10-09 23:11 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\vlc2014-08-31 19:35 - 2012-10-06 22:11 - 05873152 ___SH () C:\Users\Phil\Desktop\Thumbs.db2014-08-30 20:31 - 2012-10-07 22:08 - 00000000 ____D () C:\Program Files\PeerBlock2014-08-30 20:06 - 2014-08-30 20:06 - 00019778 _____ () C:\Users\Phil\Downloads\[kickass.to]ultimate.spiderman.season.1.complete.web.dl.x264.aac.torrent2014-08-30 18:47 - 2013-01-07 20:08 - 00000000 ____D () C:\Users\Phil\Desktop\Pics from the desktop my stupid wife put there2014-08-30 16:47 - 2014-04-10 11:38 - 00000000 ____D () C:\Users\Phil\Desktop\Credit Cards2014-08-29 11:41 - 2014-08-24 16:56 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Lavasoft2014-08-29 11:27 - 2012-10-07 10:40 - 00332988 _____ () C:\Windows\PFRO.log2014-08-29 09:50 - 2013-01-30 11:45 - 00000000 ____D () C:\Program Files\Microsoft Office 152014-08-28 03:40 - 2009-07-14 00:45 - 04993032 _____ () C:\Windows\system32\FNTCACHE.DAT2014-08-26 09:11 - 2014-08-19 23:05 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Systweak2014-08-26 09:11 - 2012-10-07 22:11 - 00000000 ____D () C:\Users\Phil\AppData\Local\Conduit2014-08-26 09:10 - 2012-10-07 22:11 - 00000000 ____D () C:\Users\Phil\AppData\Local\CRE2014-08-25 23:26 - 2013-08-01 17:23 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Search Protection2014-08-25 21:49 - 2014-08-25 21:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2014-08-25 21:49 - 2014-08-25 21:49 - 00000000 ____D () C:\ProgramData\Malwarebytes2014-08-25 21:49 - 2014-08-25 21:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2014-08-25 21:46 - 2014-08-25 21:42 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Phil\Downloads\mbam-setup-2.0.2.1012 (1).exe2014-08-25 21:43 - 2014-08-25 21:42 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Phil\Downloads\mbam-setup-2.0.2.1012.exe2014-08-25 16:05 - 2009-07-13 22:34 - 00000489 _____ () C:\Windows\win.ini2014-08-24 23:03 - 2012-10-06 21:05 - 00001614 _____ () C:\Users\Phil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk2014-08-24 15:29 - 2014-08-24 15:29 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\LavasoftStatistics2014-08-24 15:26 - 2014-08-24 15:26 - 00000000 ____D () C:\Program Files\Lavasoft2014-08-24 15:08 - 2014-08-24 15:08 - 00000000 ____D () C:\ProgramData\Lavasoft2014-08-24 14:13 - 2014-08-24 14:12 - 01707144 _____ () C:\Users\Phil\Downloads\Adaware_Installer (1).exe2014-08-24 14:08 - 2014-08-24 14:07 - 01707144 _____ () C:\Users\Phil\Downloads\Adaware_Installer.exe2014-08-22 23:56 - 2014-08-20 21:57 - 00000000 ____D () C:\Users\Phil\Documents\Calibre Library2014-08-22 22:07 - 2014-08-27 17:30 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll2014-08-22 21:45 - 2014-08-27 17:29 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll2014-08-22 20:59 - 2014-08-27 17:30 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2014-08-20 22:35 - 2014-08-20 21:57 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\calibre2014-08-20 21:57 - 2014-08-20 21:57 - 00000995 _____ () C:\Users\Public\Desktop\calibre - E-book management.lnk2014-08-20 21:57 - 2014-08-20 21:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management2014-08-20 21:57 - 2014-08-20 21:57 - 00000000 ____D () C:\Program Files (x86)\Calibre22014-08-20 21:55 - 2014-08-20 21:55 - 00001188 _____ () C:\Users\Phil\Desktop\Live PC Help.lnk2014-08-20 21:46 - 2014-08-19 23:03 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO2014-08-20 21:45 - 2012-10-19 01:22 - 00000000 ____D () C:\ProgramData\Temp2014-08-20 21:43 - 2014-08-20 21:43 - 00000000 ____D () C:\Program Files (x86)\predm2014-08-20 06:40 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache2014-08-20 04:58 - 2014-08-19 23:06 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup2014-08-20 04:50 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions2014-08-20 03:49 - 2013-07-14 08:49 - 00000000 ____D () C:\Windows\system32\MRT2014-08-20 03:24 - 2012-10-06 21:59 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe2014-08-20 03:00 - 2014-04-30 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel2014-08-19 23:07 - 2014-08-19 23:07 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Media Freeware2014-08-19 23:06 - 2014-08-19 23:06 - 00004030 _____ () C:\Windows\System32\Tasks\LaunchSignup2014-08-19 23:06 - 2014-08-19 23:06 - 00002004 _____ () C:\Users\Phil\Desktop\Sync Folder.lnk2014-08-19 23:06 - 2014-08-19 23:06 - 00001122 _____ () C:\Users\Phil\Desktop\MyPC Backup.lnk2014-08-19 23:06 - 2014-08-19 23:06 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup2014-08-19 23:03 - 2014-08-19 23:03 - 00003840 _____ () C:\Windows\System32\Tasks\Smp2014-08-19 23:03 - 2014-08-19 23:03 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weather Alerts2014-08-19 23:01 - 2014-08-19 23:01 - 00000000 ____D () C:\Users\Phil\AppData\Local\CrashRpt2014-08-19 23:00 - 2014-08-19 23:00 - 00634712 _____ () C:\Users\Phil\Downloads\epubreader_setup.exe2014-08-19 23:00 - 2014-08-19 23:00 - 00634712 _____ () C:\Users\Phil\Downloads\epubreader_setup (1).exe2014-08-19 07:48 - 2012-11-30 21:41 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\dvdcss2014-08-18 18:23 - 2014-08-18 18:23 - 00002580 _____ () C:\Users\Phil\Downloads\[kickass.to]adult.jokes (1).torrent2014-08-18 18:21 - 2014-08-18 18:21 - 00002580 _____ () C:\Users\Phil\Downloads\[kickass.to]adult.jokes.torrent2014-08-13 21:33 - 2012-10-07 00:58 - 00159744 ___SH () C:\Users\Phil\Documents\Thumbs.db2014-08-06 22:06 - 2014-08-15 03:26 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll2014-08-06 22:01 - 2014-08-15 03:26 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll2014-08-06 11:19 - 2012-10-06 21:09 - 00000000 ____D () C:\Program Files\Microsoft Silverlight2014-08-06 11:19 - 2012-10-06 21:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight2014-08-05 00:27 - 2012-10-10 00:13 - 00000000 ____D () C:\Users\Phil\AppData\Roaming\MediaMonkey Some content of TEMP:====================C:\Users\Phil\AppData\Local\Temp\792v4m.exeC:\Users\Phil\AppData\Local\Temp\BackupSetup.exeC:\Users\Phil\AppData\Local\Temp\cabex.dllC:\Users\Phil\AppData\Local\Temp\instructionsBrs.exeC:\Users\Phil\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exeC:\Users\Phil\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exeC:\Users\Phil\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exeC:\Users\Phil\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exeC:\Users\Phil\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exeC:\Users\Phil\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exeC:\Users\Phil\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exeC:\Users\Phil\AppData\Local\Temp\lowproc.exeC:\Users\Phil\AppData\Local\Temp\nsdBD84.exeC:\Users\Phil\AppData\Local\Temp\nsiDBB2.exeC:\Users\Phil\AppData\Local\Temp\nsnB4EB.exeC:\Users\Phil\AppData\Local\Temp\nst2C32.exeC:\Users\Phil\AppData\Local\Temp\nsy23C8.exeC:\Users\Phil\AppData\Local\Temp\OfficeSetup.exeC:\Users\Phil\AppData\Local\Temp\oi_{2ABE091E-4060-4CF7-83FF-66DF4316DC44}.exeC:\Users\Phil\AppData\Local\Temp\ose00000.exeC:\Users\Phil\AppData\Local\Temp\PokerOffice5.exeC:\Users\Phil\AppData\Local\Temp\RealPlayer_20120604.exeC:\Users\Phil\AppData\Local\Temp\SearchProtectINT.exeC:\Users\Phil\AppData\Local\Temp\SearchProtectionSetup.exeC:\Users\Phil\AppData\Local\Temp\SearchWithGoogleUpdate.exeC:\Users\Phil\AppData\Local\Temp\SkypeSetup.exeC:\Users\Phil\AppData\Local\Temp\stubhelper.dllC:\Users\Phil\AppData\Local\Temp\tu17p84.exeC:\Users\Phil\AppData\Local\Temp\unelevate.exeC:\Users\Phil\AppData\Local\Temp\UNINSTALL.EXEC:\Users\Phil\AppData\Local\Temp\utt4B7D.tmp.exeC:\Users\Phil\AppData\Local\Temp\utt68D3.tmp.exeC:\Users\Phil\AppData\Local\Temp\uttCC40.tmp.exeC:\Users\Phil\AppData\Local\Temp\uttFF28.tmp.exeC:\Users\Phil\AppData\Local\Temp\vcredist_x64.exeC:\Users\Phil\AppData\Local\Temp\vlc-2.0.6-win32.exeC:\Users\Phil\AppData\Local\Temp\vlc-2.0.7-win32.exeC:\Users\Phil\AppData\Local\Temp\vlc-2.0.8-win32.exeC:\Users\Phil\AppData\Local\Temp\vlc-2.1.3-win32.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-27 01:28 ==================== End Of Log ============================ Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-08-2014 02Ran by PHILR420 at 2014-09-02 13:17:31Running from C:\Users\Phil\DesktopBoot Mode: Normal========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32239 - BitTorrent Inc.)7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - )AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.4.0.2540 - Adobe Systems Incorporated)Adobe AIR (x32 Version: 3.4.0.2540 - Adobe Systems Incorporated) HiddenAdobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)Adobe Community Help (x32 Version: 3.0.0 - Adobe Systems Incorporated) HiddenAdobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.4.402.278 - Adobe Systems Incorporated)Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.4.402.278 - Adobe Systems Incorporated)Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) HiddenAdobe Photoshop Lightroom 5 64-bit (HKLM\...\{6C1A010F-9108-4162-A26F-9FEC4AC0F0F0}) (Version: 5.0.1 - Adobe)Adobe Reader X (10.1.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.11 - Adobe Systems Incorporated)Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)calibre (HKLM-x32\...\{F3586612-687E-4F67-B070-CB511E18B5B3}) (Version: 0.9.13 - Kovid Goyal)CCleaner (HKLM\...\CCleaner) (Version: 3.23 - Piriform)Cheetah DVD Burner (HKLM-x32\...\{BD01E97F-2A6A-495E-BE38-22C7B80F3CD7}) (Version: - )Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.98.60.50 - Conexant)ConvertXtoDVD 4.1.19.365 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.19.365 - )DeepBurner Pro v1.9.0.228 (HKLM-x32\...\{1AD22277-7A1E-71EC-B27D-EB7A22BED143}) (Version: - )Defraggler (HKLM\...\Defraggler) (Version: 2.10 - Piriform)DVDFab 8.2.1.5 (10/10/2012) Qt (HKLM-x32\...\DVDFab 8 Qt_is1) (Version: - Fengtao Software Inc.)Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION)Epson Event Manager (HKLM-x32\...\{BECE9CCD-83F6-4BAA-9B26-227DF7D2E932}) (Version: 3.01.0000 - Seiko Epson Corporation)EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)EPSON XP-400 Series Printer Uninstall (HKLM\...\EPSON XP-400 Series) (Version: - SEIKO EPSON Corporation)FrostWire 5.4.0 (HKLM-x32\...\FrostWire 5) (Version: 5.4.0.0 - FrostWire Team)Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) HiddenGoogle Update Helper (x32 Version: 1.3.24.15 - Google Inc.) HiddenIntel® Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2555 - Intel Corporation)iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)Java 7 Update 7 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417007FF}) (Version: 7.0.70 - Oracle)Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) HiddenLeapFrog Connect (HKLM-x32\...\UPCShell) (Version: 4.2.9.15649 - LeapFrog)LeapFrog Connect (x32 Version: 4.2.9.15649 - LeapFrog) HiddenLeapFrog LeapPad Explorer Plugin (x32 Version: 4.2.11.15696 - LeapFrog) HiddenLightScribe System Software (HKLM-x32\...\{E0E55FC1-C53D-4F8D-B14B-B59C312747C8}) (Version: 1.18.22.2 - LightScribe)Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) HiddenMicrosoft Camera Codec Pack (HKLM-x32\...\{D03632B5-1DA9-4536-976D-604719500C45}) (Version: 16.4.1970.0624 - Microsoft Corporation)Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4641.1003 - Microsoft Corporation)Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) HiddenMicrosoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) HiddenMicrosoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) HiddenMicrosoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) HiddenMicrosoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) HiddenMicrosoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) HiddenMicrosoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) HiddenMicrosoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) HiddenMyPC Backup (HKLM\...\MyPC Backup) (Version: - JDi Backup Ltd) <==== ATTENTIONNero 12 Content Pack (HKLM-x32\...\{4E7AC009-5212-499F-942F-A5AA42AE359E}) (Version: 12.0.00400 - Nero AG)Nero Abstract Themes (x32 Version: 12.0.11500 - Nero AG) HiddenNero Cliparts (x32 Version: 12.0.11500 - Nero AG) HiddenNero Disc Menus 1 (x32 Version: 12.0.11500 - Nero AG) HiddenNero Disc Menus 2 (x32 Version: 12.0.11500 - Nero AG) HiddenNero Disc Menus 3 (x32 Version: 12.0.11500 - Nero AG) HiddenNero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) HiddenNero Effects Basic (x32 Version: 12.0.11500 - Nero AG) HiddenNero Family and Events Themes (x32 Version: 12.0.11500 - Nero AG) HiddenNero Football (Soccer) Themes (x32 Version: 12.0.11500 - Nero AG) HiddenNero Holiday and Sports Themes (x32 Version: 12.0.11500 - Nero AG) HiddenNero Image Samples (x32 Version: 12.0.11500 - Nero AG) HiddenNero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) HiddenNero PiP Effects 1 (x32 Version: 12.0.11500 - Nero AG) HiddenNero PiP Effects Basic (x32 Version: 12.0.11500 - Nero AG) HiddenNero Platinum Effects 12 (x32 Version: 12.0.11500 - Nero AG) HiddenNero Retro Film Themes (x32 Version: 12.0.11500 - Nero AG) HiddenNero Update (x32 Version: 11.0.11800.31.0 - Nero AG) HiddenNero Video Samples (x32 Version: 12.0.11500 - Nero AG) HiddenNero Video Transitions 1 (x32 Version: 12.0.11500 - Nero AG) HiddenOffice 15 Click-to-Run Extensibility Component (Version: 15.0.4641.1003 - Microsoft Corporation) HiddenOffice 15 Click-to-Run Licensing Component (Version: 15.0.4641.1003 - Microsoft Corporation) HiddenOffice 15 Click-to-Run Localization Component (Version: 15.0.4641.1003 - Microsoft Corporation) HiddenPDF reDirect (remove only) (HKLM-x32\...\PDF reDirect) (Version: v2.5.2 - EXP Systems LLC)PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) HiddenPeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)Photomatix Pro version 4.2.7 (HKLM\...\PhotomatixPro42x64_is1) (Version: 4.2.7 - HDRsoft Ltd)PokerOffice (remove only) (HKLM-x32\...\PokerOffice) (Version: - )PokerOffice 5 (remove only) (HKCU\...\PokerOffice5) (Version: - )PokerStars.net (HKLM-x32\...\PokerStars.net) (Version: - PokerStars.net)Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) HiddenQuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)Search module (HKLM-x32\...\Search module) (Version: - )Search Protection (HKCU\...\Search Protection) (Version: 9.4.0.2 - Spigot, Inc.) <==== ATTENTIONSkype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)Snagit 11 (HKLM-x32\...\{44BD21C2-9132-48DB-B65B-23817E4C6F4B}) (Version: 11.2.0 - TechSmith Corporation)Software Updater (HKLM-x32\...\{A737E18A-5171-40D0-8034-7DD243420081}) (Version: 4.1.1 - SEIKO EPSON CORPORATION)swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) HiddenSynaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.0.7.0 - Synaptics)System Requirements Lab for Intel (HKLM-x32\...\{C71067FC-288F-4E0B-88C6-44DFDA8311E2}) (Version: 4.5.9.0 - Husdawg, LLC)Ultra MKV Converter 3.2.0610 (HKLM-x32\...\Ultra MKV Converter_is1) (Version: - Aone Software)Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin) (HKLM-x32\...\LeapPadExplorerPlugin) (Version: - LeapFrog)uTorrentControl_v2 Toolbar (HKLM-x32\...\uTorrentControl_v2 Toolbar) (Version: 6.9.0.16 - uTorrentControl_v2) <==== ATTENTIONVLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)VueScan x64 (HKLM\...\VueScan x64) (Version: - )Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (HKLM\...\8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D) (Version: 09/10/2009 02.03.05.012 - Leapfrog)WinZip 17.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D7}) (Version: 17.0.10283 - WinZip Computing, S.L. ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-900518891-2468357431-3931253192-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Phil\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No FileCustomCLSID: HKU\S-1-5-21-900518891-2468357431-3931253192-1000_Classes\CLSID\{3560575F-7C2D-48AE-AB45-DAD430A95EBE}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()CustomCLSID: HKU\S-1-5-21-900518891-2468357431-3931253192-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Phil\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)CustomCLSID: HKU\S-1-5-21-900518891-2468357431-3931253192-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Phil\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)CustomCLSID: HKU\S-1-5-21-900518891-2468357431-3931253192-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Phil\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {11270A88-FA35-499B-A3B5-F134CC725820} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2014-08-29] (Microsoft Corporation)Task: {1F56C82A-AF87-4DCF-9506-4D3BB795FCC9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-900518891-2468357431-3931253192-1000Core => C:\Users\Phil\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-10] (Google Inc.)Task: {2AC60BA4-A632-45A1-816A-C69E8EBB997C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-10] (Google Inc.)Task: {621227BB-01F3-4DB6-980A-915D62EC8390} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-08-01] (Microsoft Corporation)Task: {696D66B9-17F3-4821-B52B-6385A5C7EFA2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-06] (Adobe Systems Incorporated)Task: {88CAB189-F0F3-4FD0-AD5A-925995592AE6} - System32\Tasks\Defraggler Volume C Task => C:\Program Files\Defraggler\df64.exe [2012-06-06] (Piriform Ltd)Task: {95759F0C-639B-49CA-AD2B-C54FE79C61C6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2014-08-29] (Microsoft Corporation)Task: {A5E2036E-D0C6-4A2D-94FE-74FF549CF38C} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe [2014-08-14] (MyPC Backup) <==== ATTENTIONTask: {B89C72FA-63A3-41F6-BA68-3DFD13BB37D3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-09-24] (Piriform Ltd)Task: {C9EDD7F2-094C-417E-96A1-B816C7E6D804} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-10] (Google Inc.)Task: {D4F8DE20-3E3D-41FB-99D4-5D9768D11E5E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-900518891-2468357431-3931253192-1000UA => C:\Users\Phil\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-10] (Google Inc.)Task: {D55061E2-AE6F-4193-9188-A6FC6CB3EBF4} - System32\Tasks\Smp => C:\Program Files\Common Files\Goobzo\GBUpdate\smp.exe <==== ATTENTIONTask: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeTask: C:\Windows\Tasks\Defraggler Volume C Task.job => C:\Program Files\Defraggler\df64.exeTask: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-900518891-2468357431-3931253192-1000Core.job => C:\Users\Phil\AppData\Local\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-900518891-2468357431-3931253192-1000UA.job => C:\Users\Phil\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2010-06-06 10:20 - 2010-06-06 10:20 - 00065344 _____ () C:\Windows\System32\PDFreDirectMon64.dll2014-08-29 09:46 - 2014-08-29 09:46 - 08892576 _____ () C:\Program Files\Microsoft Office 15\root\Office15\1033\GrooveIntlResource.dll2014-08-14 10:09 - 2014-08-14 10:09 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll2014-08-14 10:05 - 2014-08-14 10:05 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll2014-03-21 08:26 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll2014-04-23 16:04 - 2014-04-23 16:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll2011-03-04 12:02 - 2011-03-04 12:02 - 02121728 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll2011-03-04 12:02 - 2011-03-04 12:02 - 07745536 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll2011-03-04 12:02 - 2011-03-04 12:02 - 00135168 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll2014-08-29 09:46 - 2014-08-29 09:46 - 08892576 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\1033\GrooveIntlResource.dll2014-08-13 18:47 - 2014-08-06 23:20 - 00718152 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libglesv2.dll2014-08-13 18:47 - 2014-08-06 23:20 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libegl.dll2014-08-13 18:47 - 2014-08-06 23:20 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\pdf.dll2014-08-13 18:47 - 2014-08-06 23:20 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll2014-08-13 18:47 - 2014-08-06 23:20 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Temp:56E2E879AlternateDataStreams: C:\Users\Phil\Documents\Amex ADT Scan P Russo.jpeg:3or4kl4x13tuuug3Byamue2s4bAlternateDataStreams: C:\Users\Phil\Documents\Amex ADT Scan P Russo.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ==================== Faulty Device Manager Devices ============= Name: MpKslc2bbbbd9Description: MpKslc2bbbbd9Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer: Service: MpKslc2bbbbd9Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-InterfaceDescription: Microsoft Teredo Tunneling AdapterClass Guid: {4d36e972-e325-11ce-bfc1-08002be10318}Manufacturer: MicrosoftService: tunnelProblem: : This device cannot start. (Code10)Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors:==================Error: (09/02/2014 09:27:24 AM) (Source: VSS) (EventID: 13) (User: )Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x800705aa, Insufficient system resources exist to complete the requested service.] Error: (09/02/2014 09:17:03 AM) (Source: Application Hang) (EventID: 1002) (User: )Description: The program Signup Wizard.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 178c Start Time: 01cfc65af465ff46 Termination Time: 1190 Application Path: C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe Report Id: e9f5b547-32a2-11e4-8288-001f16edfac7 Error: (09/02/2014 07:25:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 20875149 Error: (09/02/2014 07:25:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 20875149 Error: (09/02/2014 07:25:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/02/2014 07:25:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 20874151 Error: (09/02/2014 07:25:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 20874151 Error: (09/02/2014 07:25:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/02/2014 07:25:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 20873027 Error: (09/02/2014 07:25:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 20873027 System errors:=============Error: (09/02/2014 09:30:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Search Module Update service failed to start due to the following error: %%2 Error: (09/02/2014 09:29:28 AM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Computer Backup (MyPC Backup) service failed to start due to the following error: %%1053 Error: (09/02/2014 09:29:28 AM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the Computer Backup (MyPC Backup) service to connect. Error: (09/02/2014 09:27:07 AM) (Source: Service Control Manager) (EventID: 7011) (User: )Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ClickToRunSvc service. Error: (08/30/2014 11:55:13 AM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )Description: %NT AUTHORITY60 has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.183.1046.0 Update Source: %NT AUTHORITY59 Update Stage: 4.5.0216.00 Source Path: 4.5.0216.01 Signature Type: %NT AUTHORITY602 Update Type: %NT AUTHORITY604 User: NT AUTHORITY\SYSTEM Current Engine Version: %NT AUTHORITY605 Previous Engine Version: %NT AUTHORITY606 Error code: %NT AUTHORITY607 Error description: %NT AUTHORITY608 Error: (08/29/2014 11:29:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Search Module Update service failed to start due to the following error: %%2 Error: (08/29/2014 11:28:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Computer Backup (MyPC Backup) service failed to start due to the following error: %%1053 Error: (08/29/2014 11:28:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the Computer Backup (MyPC Backup) service to connect. Error: (08/29/2014 11:26:38 AM) (Source: Service Control Manager) (EventID: 7011) (User: )Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LavasoftAdAwareService11 service. Error: (08/28/2014 03:40:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Search Module Update service failed to start due to the following error: %%2 Microsoft Office Sessions:=========================Error: (09/02/2014 09:27:24 AM) (Source: VSS) (EventID: 13) (User: )Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x800705aa, Insufficient system resources exist to complete the requested service. Error: (09/02/2014 09:17:03 AM) (Source: Application Hang) (EventID: 1002) (User: )Description: Signup Wizard.exe1.0.0.0178c01cfc65af465ff461190C:\Program Files (x86)\MyPC Backup\Signup Wizard.exee9f5b547-32a2-11e4-8288-001f16edfac7 Error: (09/02/2014 07:25:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 20875149 Error: (09/02/2014 07:25:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 20875149 Error: (09/02/2014 07:25:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/02/2014 07:25:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 20874151 Error: (09/02/2014 07:25:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 20874151 Error: (09/02/2014 07:25:14 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/02/2014 07:25:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 20873027 Error: (09/02/2014 07:25:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 20873027 ==================== Memory info =========================== Processor: Pentium® Dual-Core CPU T4300 @ 2.10GHzPercentage of memory in use: 40%Total physical RAM: 3003.19 MBAvailable physical RAM: 1774.7 MBTotal Pagefile: 6004.56 MBAvailable Pagefile: 4132.12 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.83 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.66 GB) (Free:76.39 GB) NTFSDrive g: () (Removable) (Total:14.8 GB) (Free:8.31 GB) FAT32 ==================== MBR & Partition Table ================== ========================================================Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 5555F993)Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ========================================================Disk: 1 (Size: 14.8 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ==================== End Of Log ============================
  2. I put this PC together 2 years ago and despite OLD hardware, it's been running great. Switched from AVG to McAfee about 10 days ago. Not sure if this caused the problem. Please see my attached logs. attach.txt dds.txt