Error during windows load

Can any one please help me in that error?  I am using windows 7.

Thanks

screenshot2.png
mustish1Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

*** Hopeleonie ***IT ManagerCommented:
Download Autoruns for Windows v13.4:
https://technet.microsoft.com/en-us/sysinternals/bb963902.aspx

Start it as an Administrator, search for DinerComp.dll and uncheck it from the start.

I also recommend to run Malwarebytes Anti-Malware Free  and HitmanPro Trial after.

Example:
http://malwaretips.com/blogs/backgroundcontainer-dll-virus-removal/
0
mustish1Author Commented:
I have Norton 360 and I think my computer has still viruses.
0
*** Hopeleonie ***IT ManagerCommented:
So you got a virus alert from Norton?
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

mustish1Author Commented:
Can you please tell me what I do next?

screenshot2.png
0
*** Hopeleonie ***IT ManagerCommented:
Note proper Malware removal will need a lot of time, so your patient’s is asked. If this is a corporate environment I strongly recommend to reimage or reinstall your client as nobody can give 100% guarantee that all Malware is removed.

Download Farbar Recovery Scan Tool (FRST) .
 
Click on the 32-bit version or 64-bit version button. Note it depends on the bit type of your Windows version.

Now run a FRST Scan with the default settings .
Please upload both log's (as txt files) on your next reply.
0
mustish1Author Commented:
it cant detect it
0
mustish1Author Commented:
its my home personal computer.
0
*** Hopeleonie ***IT ManagerCommented:
it cant detect it

The problem was that you must wait till the scan is finished.

Problem
0
mustish1Author Commented:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-09-2015
Ran by mkhan (administrator) on KATHYPC (26-09-2015 11:11:01)
Running from C:\Users\mkhan\Downloads
Loaded Profiles: mkhan & sapadm & MSSQL$SQLEXPRESS (Available Profiles: mkhan & nspadm & sqdnsp & sapadm & MSSQL$SQLEXPRESS & DefaultAppPool)
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files\PdaNet for Android\PdaNetPC.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\NSBU.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
(SAP AG) C:\Program Files\SAP\hostctrl\exe\saphostexec.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(SAP AG) D:\sapdb\programs\pgm\serv.exe
(SAP AG) D:\sapdb\NSP\db\pgm\serv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\NSBU.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(SAP AG) C:\Program Files\SAP\hostctrl\exe\sapstartsrv.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(SAP AG) C:\Program Files\SAP\hostctrl\exe\saposcol.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_19_0_0_185_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157968 2015-08-13] (Apple Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\Run: [pronto] => "C:\Program Files\Blackboard\Blackboard IM\blackboardim.exe"
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\RunOnce: [Application Restart #0] => C:\Program Files\Google\Chrome\Application\chrome.exe  --keep-alive-for-test --silent-launch --disable-breakpad --force-fieldtrials --load-component-extension="C:\Users\mkhan\AppData\Local\Diner Comp\ (the data entry has 75 more characters).
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\MountPoints2: E - E:\LaunchU3.exe -a
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\MountPoints2: {2f65e208-f26c-11e2-a6dd-bcaec546a0f8} - E:\Setup.exe
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\MountPoints2: {33513014-4f53-11e1-b7fb-bcaec546a0f8} - E:\LaunchU3.exe -a
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\MountPoints2: {66bf04f1-aaa0-11e2-9a0b-bcaec546a0f8} - E:\setup.exe -a
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\MountPoints2: {993c12e8-2fe6-11e4-94ca-b9aeee18189c} - E:\MotoCastSetup.exe -a
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\MountPoints2: {b21ac6ce-8478-11e3-80e5-ec9ae6948d98} - E:\MotoCastSetup.exe -a
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\MountPoints2: {e158b21e-f4e3-11e2-afd7-bcaec546a0f8} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\MountPoints2: {e158b21f-f4e3-11e2-afd7-bcaec546a0f8} - F:\TL-Bootstrap.exe
HKU\S-1-5-21-2713061054-3956502825-1562889460-1025\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\AsusScreensaver.scr [265136 2010-09-07] (AsusTek Computer Inc.)
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\RunOnce: [Reboot] => C:\Windows\Reboot.exe [92096 2010-12-12] (AsusTek Computer Inc.)
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\RunOnce: [IconPatch] => C:\Windows\AP\IconPatch.cmd
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\RunOnce: [AskScreensaver] => C:\Program Files\Asus\AsusScreensaver\AsusScreensaver.exe [797104 2010-09-07] (AsusTek Computer Inc.)
AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => No File
AppInit_DLLs:  c:\progra~2\bitguard\271769~1.27\{c16c1~1\bitguard.dll => No File
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2013-11-20]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\mkhan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk [2014-08-29]
ShortcutTarget: PdaNet Desktop.lnk -> C:\Program Files\PdaNet for Android\PdaNetPC.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{D2922BD5-949E-4DEB-9C87-2253522ACA1F}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yahoo.com/?ilc=8
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yahoo.com/?ilc=8
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=NSBU&pvid=22.5.2.15
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=NSBU&pvid=22.5.2.15
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=NSBU&pvid=22.5.2.15
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=nsbu&pvid=22.5.2.15
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://eeepc.asus.com
HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=C070002637BD3942&affID=119351&tsp=4947
HKU\S-1-5-21-2713061054-3956502825-1562889460-1025\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=NSBU&pvid=22.5.2.15
HKU\S-1-5-21-2713061054-3956502825-1562889460-1025\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
HKU\S-1-5-21-2713061054-3956502825-1562889460-1025\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://eeepc.asus.com
HKU\S-1-5-21-2713061054-3956502825-1562889460-1025\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://eeepc.asus.com
HKU\S-1-5-21-2713061054-3956502825-1562889460-1025\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/1me10IE10ENUS/MCM_WCP
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=NSBU&pvid=22.5.2.15
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://eeepc.asus.com
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://eeepc.asus.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://start.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10042&barid={CFE7527E-E4FB-11E2-AA4D-BCAEC546A0F8}
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKU\.DEFAULT -> {e4a1ece8-ed94-4f93-80ea-75f978ceaf24} URL = 
SearchScopes: HKU\S-1-5-19 -> {e4a1ece8-ed94-4f93-80ea-75f978ceaf24} URL = 
SearchScopes: HKU\S-1-5-20 -> {e4a1ece8-ed94-4f93-80ea-75f978ceaf24} URL = 
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {374DB3D7-F05E-4467-8E11-0F0ADF390E74} URL = hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=C070002637BD3942&affID=119351&tsp=4946
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {4CB8FDE1-CAD7-4D2C-8CF3-1E17A02BF333} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3272718&CUI=UN31437777207623204
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {7C38B0B8-41BE-41BD-BBC9-6D63124001AE} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=TV&apn_dtid=OSJ000YYUS&apn_uid=257C85E5-20D1-4961-83AA-CDACEC3CF067&apn_sauid=DABBFC8E-AA41-406D-9DAF-2DFFEFCFD966
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {9E7BD896-0606-49CF-BF39-9C5851E37588} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3300018&SearchSource=45&UM=2&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NSBU&chn=retail&geo=US&ver=22&locale=en_US&gct=kwd&qsrc=2869
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {B5C59859-4B5C-4365-A6AE-7360D27DD0F5} URL = hxxp://search.zonealarm.com/search?src=sp&tbid=base2013&Lan=en&q={searchTerms}&gu=13664dc988f34034910a451cac59fae5&tu=11JL000952B000s&sku=&tstsId=&ver=&&r=930
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=mkg028
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> {e4a1ece8-ed94-4f93-80ea-75f978ceaf24} URL = 
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1025 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2713061054-3956502825-1562889460-1025 -> {e4a1ece8-ed94-4f93-80ea-75f978ceaf24} URL = 
SearchScopes: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133 -> {e4a1ece8-ed94-4f93-80ea-75f978ceaf24} URL = 
BHO: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} ->  No File
BHO: Unit -> {2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} -> C:\Users\mkhan\AppData\Local\UnitLayers\temp.dat No File
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\coIEPlg.dll [2015-07-09] (Symantec Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2014-11-24] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2010-09-23] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-24] (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\coIEPlg.dll [2015-07-09] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} -  No File
Toolbar: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\coIEPlg.dll [2015-07-09] (Symantec Corporation)
Handler: saphtmlp - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files\sap\frontend\sapgui\saphtmlp.dll [2014-02-27] (SAP, Walldorf)
Handler: sapr3 - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files\sap\frontend\sapgui\saphtmlp.dll [2014-02-27] (SAP, Walldorf)

FireFox:
========
FF ProfilePath: C:\Users\mkhan\AppData\Roaming\Mozilla\Firefox\Profiles\zfs5pocx.default-1375371539186
FF NewTab: hxxp://search.conduit.com/?ctid=CT3321972&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1&UM=5&UP=SPE93EA31D-B8D5-44F1-BF1B-A90F23663D9C
FF DefaultSearchUrl: hxxp://search.yahoo.com/search?fr=mkg030&p=
FF SearchEngineOrder.1: Delta Search
FF SelectedSearchEngine: Trovi search
FF Homepage: hxxp://www.google.com/
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=mkg030&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-22] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\windows\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-11-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-11-24] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2014-10-16] (globalUpdate)
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2014-10-16] (globalUpdate)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems)
FF user.js: detected! => C:\Users\mkhan\AppData\Roaming\Mozilla\Firefox\Profiles\zfs5pocx.default-1375371539186\user.js [2014-09-02]
FF SearchPlugin: C:\Users\mkhan\AppData\Roaming\Mozilla\Firefox\Profiles\zfs5pocx.default-1375371539186\searchplugins\trovi-search.xml [2014-07-08]
FF Extension: fun4us - C:\Users\mkhan\AppData\Roaming\Mozilla\Firefox\Profiles\zfs5pocx.default-1375371539186\Extensions\3cPl9t@gmail.com [2015-04-03]
FF Extension: idmeabinecom - C:\Users\mkhan\AppData\Roaming\Mozilla\Firefox\Profiles\zfs5pocx.default-1375371539186\Extensions\idme@abine.com [2015-04-03]
FF Extension: Yahoo! Toolbar - C:\Users\mkhan\AppData\Roaming\Mozilla\Firefox\Profiles\zfs5pocx.default-1375371539186\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2015-03-12]
FF HKLM\...\Firefox\Extensions: [{7D4F1959-3F72-49d5-8E59-F02F8AA6815D}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.5.2.15\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.5.2.15\coFFPlgn [2015-09-26]
FF HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\Firefox\Extensions: [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}] - C:\Program Files\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\Exts\Chrome.crx [2015-08-01]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pbofibgamhkgoonaocfgemncghhadmgb] - C:\Users\mkhan\AppData\Local\CRE\pbofibgamhkgoonaocfgemncghhadmgb.crx [2013-02-04]
CHR HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pbofibgamhkgoonaocfgemncghhadmgb] - C:\Users\mkhan\AppData\Local\CRE\pbofibgamhkgoonaocfgemncghhadmgb.crx [2013-02-04]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2010-02-02] (Microsoft Corporation)
S3 fussvc; C:\Program Files\Windows Kits\8.1\App Certification Kit\fussvc.exe [140800 2014-02-19] (Microsoft Corporation) [File not signed]
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-10-16] (globalUpdate) [File not signed] <==== ATTENTION
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-10-16] (globalUpdate) [File not signed] <==== ATTENTION
R2 IpOverUsbSvc; C:\Program Files\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\windows\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [File not signed]
R2 NSBU; C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\NSBU.exe [282016 2015-07-16] (Symantec Corporation)
R2 Pml Driver HPZ12; C:\windows\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [File not signed]
R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [6324208 2015-08-19] (Reimage®)
S3 SAP DBTech-.M780118; D:\sapdb\NSP\db\pgm\kernel.exe [13340672 2010-11-23] (SAP AG) [File not signed]
S3 SAP DBTech-.M780118 (slow); D:\sapdb\NSP\db\pgm\slowknl.exe [25300992 2010-11-23] (SAP AG) [File not signed]
S3 SAP DBTech-NSP; D:\sapdb\NSP\db\pgm\kernel.exe [13340672 2010-11-23] (SAP AG) [File not signed]
S3 SAP DBTech-NSP (slow); D:\sapdb\NSP\db\pgm\slowknl.exe [25300992 2010-11-23] (SAP AG) [File not signed]
R3 SAPHostControl; C:\Program Files\SAP\hostctrl\exe\sapstartsrv.exe [7972144 2010-11-21] (SAP AG)
R2 SAPHostExec; C:\Program Files\SAP\hostctrl\exe\saphostexec.exe [828720 2010-11-21] (SAP AG)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 Te.Service; C:\Program Files\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [91136 2013-08-21] (Microsoft Corporation) [File not signed]
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [73360 2014-07-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-26] (Microsoft Corporation)
R2 XServer; D:\sapdb\programs\pgm\serv.exe [696320 2010-11-23] (SAP AG) [File not signed]
R2 XServer-7200; D:\sapdb\NSP\db\pgm\serv.exe [696320 2010-11-23] (SAP AG) [File not signed]
S2 AsusService; C:\Windows\System32\AsusService.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsUpIO; C:\windows\System32\drivers\AsUpIO.sys [11520 2010-03-30] ()
R1 BHDrvx86; C:\Program Files\Norton Security with Backup\NortonData\22.5.2.15\Definitions\BASHDefs\20150921.003\BHDrvx86.sys [1181936 2015-07-23] (Symantec Corporation)
R1 ccSet_NSBU; C:\windows\system32\drivers\NSBU\1605020.00F\ccSetx86.sys [137456 2015-07-10] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [389456 2015-08-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [122192 2015-07-27] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton Security with Backup\NortonData\22.5.2.15\Definitions\IPSDefs\20150925.001\IDSvix86.sys [582376 2015-09-22] (Symantec Corporation)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 msloop; C:\windows\System32\DRIVERS\loop.sys [5632 2009-07-13] (Microsoft Corporation)
R3 NAVENG; C:\Program Files\Norton Security with Backup\NortonData\22.5.2.15\Definitions\VirusDefs\20150925.008\NAVENG.SYS [104440 2015-08-15] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Norton Security with Backup\NortonData\22.5.2.15\Definitions\VirusDefs\20150925.008\NAVEX15.SYS [1645432 2015-08-15] (Symantec Corporation)
S3 NWUSBPort2; C:\windows\System32\DRIVERS\nwusbser2.sys [174720 2009-06-03] (Novatel Wireless Inc.)
R3 pneteth; C:\windows\System32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.)
S3 pnetmdm; C:\windows\System32\DRIVERS\pnetmdm.sys [9472 2006-09-28] (June Fabrics Technology)
R0 PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [45968 2011-11-03] (Rovi Corporation)
S4 RsFx0200; C:\windows\System32\DRIVERS\RsFx0200.sys [268888 2012-02-11] (Microsoft Corporation)
R1 SRTSP; C:\windows\system32\drivers\NSBU\1605020.00F\SRTSP.SYS [711408 2015-07-10] (Symantec Corporation)
R1 SRTSPX; C:\windows\system32\drivers\NSBU\1605020.00F\SRTSPX.SYS [44792 2015-07-10] (Symantec Corporation)
R0 SymEFASI; C:\windows\System32\drivers\NSBU\1605020.00F\SYMEFASI.SYS [1286896 2015-07-10] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT.SYS [103152 2015-08-01] (Symantec Corporation)
R1 SymIRON; C:\windows\system32\drivers\NSBU\1605020.00F\Ironx86.SYS [234744 2015-07-10] (Symantec Corporation)
R1 SymNetS; C:\windows\system32\drivers\NSBU\1605020.00F\SYMNETS.SYS [429816 2015-07-10] (Symantec Corporation)
S3 btwampfl; system32\drivers\btwampfl.sys [X]
S3 btwaudio; system32\drivers\btwaudio.sys [X]
S3 btwavdt; \SystemRoot\system32\DRIVERS\btwavdt.sys [X]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; \SystemRoot\system32\DRIVERS\btwrchid.sys [X]
S3 L1C; system32\DRIVERS\L1C62x86.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-26 11:11 - 2015-09-26 11:13 - 00027977 _____ C:\Users\mkhan\Downloads\FRST.txt
2015-09-26 11:06 - 2015-09-26 11:11 - 00000000 ____D C:\FRST
2015-09-26 11:01 - 2015-09-26 11:01 - 01695744 _____ (Farbar) C:\Users\mkhan\Downloads\FRST.exe
2015-09-26 10:37 - 2015-09-26 10:37 - 00000000 ____D C:\Users\mkhan\Desktop\file
2015-09-26 10:35 - 2015-09-26 10:35 - 00593693 _____ C:\Users\mkhan\Downloads\Autoruns.zip
2015-09-25 19:33 - 2015-09-25 19:33 - 00002212 _____ C:\Users\Public\Desktop\HP DeskJet 2130 series.lnk
2015-09-25 19:33 - 2015-09-25 19:33 - 00001159 _____ C:\Users\Public\Desktop\Shop for Supplies - HP DeskJet 2130 series.lnk
2015-09-25 19:11 - 2015-09-25 19:11 - 00000078 _____ C:\lxdd.log
2015-09-25 18:03 - 2015-09-25 18:15 - 00000000 ____D C:\Users\mkhan\Desktop\HP
2015-09-25 17:56 - 2015-09-25 17:56 - 00000000 ____D C:\Program Files\Hewlett-Packard
2015-09-25 17:52 - 2015-09-25 17:52 - 00001953 _____ C:\Users\Public\Desktop\HP Photo Creations.lnk
2015-09-25 17:52 - 2015-09-25 17:52 - 00000000 ____D C:\ProgramData\Visan
2015-09-25 17:52 - 2015-09-25 17:52 - 00000000 ____D C:\ProgramData\HP Photo Creations
2015-09-25 17:52 - 2015-09-25 17:52 - 00000000 ____D C:\Program Files\HP Photo Creations
2015-09-25 17:50 - 2015-09-25 17:50 - 00000000 ____D C:\Users\mkhan\AppData\Roaming\HpUpdate
2015-09-25 17:48 - 2015-09-25 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-09-25 17:42 - 2015-09-25 19:32 - 00000000 ____D C:\ProgramData\HP
2015-09-25 17:39 - 2015-09-25 18:32 - 00000000 ____D C:\Program Files\HP
2015-09-25 17:36 - 2015-09-25 17:36 - 00000057 _____ C:\ProgramData\Ament.ini
2015-09-25 17:35 - 2015-09-25 18:00 - 00000000 ____D C:\Users\mkhan\AppData\Local\HP
2015-09-21 23:13 - 2015-09-21 23:13 - 00000017 _____ C:\windows\system32\shortcut_ex.dat
2015-09-20 12:19 - 2015-09-21 09:18 - 00002036 _____ C:\Users\mkhan\Desktop\words.txt
2015-09-19 21:05 - 2015-09-19 21:06 - 00000000 ____D C:\Users\mkhan\Desktop\LexmarkX2500
2015-09-17 16:51 - 2015-09-18 11:55 - 00000000 ____D C:\Users\mkhan\Desktop\GRE
2015-09-09 21:57 - 2015-09-26 09:24 - 00000000 ___HD C:\$Windows.~BT
2015-09-08 22:55 - 2015-09-01 19:48 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2015-09-08 22:55 - 2015-09-01 19:48 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-09-08 22:55 - 2015-09-01 19:48 - 00026624 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2015-09-08 22:55 - 2015-09-01 19:48 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2015-09-08 22:55 - 2015-09-01 18:36 - 02384896 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-09-08 22:55 - 2015-09-01 18:33 - 00299520 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-09-08 22:55 - 2015-08-27 10:58 - 01391104 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2015-09-08 22:55 - 2015-08-27 10:58 - 01241088 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2015-09-08 22:55 - 2015-08-27 10:51 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2015-09-08 22:55 - 2015-08-27 10:51 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2015-09-08 22:55 - 2015-07-22 10:57 - 03989952 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2015-09-08 22:55 - 2015-07-22 10:57 - 03934656 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-09-08 22:55 - 2015-07-22 10:57 - 00137664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-09-08 22:55 - 2015-07-22 10:57 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-09-08 22:55 - 2015-07-22 10:54 - 01308160 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 01061376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00937984 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00655360 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00641536 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00635392 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-09-08 22:55 - 2015-07-22 10:53 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-09-08 22:55 - 2015-07-22 10:52 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-09-08 22:55 - 2015-07-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-09-08 22:55 - 2015-07-22 10:52 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-09-08 22:55 - 2015-07-22 10:52 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-09-08 22:55 - 2015-07-22 10:47 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-09-08 22:55 - 2015-07-22 10:46 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-09-08 22:55 - 2015-07-22 10:42 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-09-08 22:55 - 2015-07-22 10:42 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-09-08 22:55 - 2015-07-22 09:38 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2015-09-08 22:55 - 2015-07-22 09:34 - 00225792 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2015-09-08 22:55 - 2015-07-22 09:34 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2015-09-08 22:55 - 2015-07-22 09:33 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2015-09-08 22:54 - 2015-08-05 10:40 - 00216064 _____ (Microsoft Corporation) C:\windows\system32\InkEd.dll
2015-09-08 22:54 - 2015-08-05 10:40 - 00019968 _____ (Microsoft Corporation) C:\windows\system32\jnwmon.dll
2015-09-08 22:54 - 2015-07-14 19:54 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2015-09-08 22:54 - 2015-07-09 10:42 - 01372160 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2015-09-08 22:54 - 2015-07-09 10:42 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2015-09-08 22:53 - 2015-08-04 10:48 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2015-09-08 22:53 - 2015-08-04 10:47 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2015-09-08 22:53 - 2015-08-04 10:47 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2015-09-08 22:53 - 2015-08-04 10:46 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2015-09-08 22:53 - 2015-08-04 10:46 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2015-09-08 22:53 - 2015-08-04 09:53 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2015-09-08 22:49 - 2015-08-05 10:41 - 00751104 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2015-09-08 22:48 - 2015-08-17 18:14 - 00344168 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-09-08 22:48 - 2015-08-14 23:06 - 19856896 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-09-08 22:48 - 2015-08-14 22:53 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-09-08 22:48 - 2015-08-14 22:53 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-09-08 22:48 - 2015-08-14 22:40 - 00504832 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-09-08 22:48 - 2015-08-14 22:40 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-09-08 22:48 - 2015-08-14 22:39 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-09-08 22:48 - 2015-08-14 22:39 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-09-08 22:48 - 2015-08-14 22:38 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-09-08 22:48 - 2015-08-14 22:35 - 02279424 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-09-08 22:48 - 2015-08-14 22:33 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-09-08 22:48 - 2015-08-14 22:32 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-09-08 22:48 - 2015-08-14 22:30 - 00479232 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-09-08 22:48 - 2015-08-14 22:29 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-09-08 22:48 - 2015-08-14 22:29 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-09-08 22:48 - 2015-08-14 22:29 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-09-08 22:48 - 2015-08-14 22:24 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-09-08 22:48 - 2015-08-14 22:21 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-09-08 22:48 - 2015-08-14 22:16 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-09-08 22:48 - 2015-08-14 22:14 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-09-08 22:48 - 2015-08-14 22:12 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-09-08 22:48 - 2015-08-14 22:11 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-09-08 22:48 - 2015-08-14 22:04 - 12857344 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-09-08 22:48 - 2015-08-14 22:02 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-09-08 22:48 - 2015-08-14 22:02 - 00685568 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-09-08 22:48 - 2015-08-14 22:01 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-09-08 22:48 - 2015-08-14 22:01 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-09-08 22:48 - 2015-08-14 21:43 - 01951232 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-09-08 22:48 - 2015-08-14 21:39 - 01310720 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-09-08 22:48 - 2015-08-14 21:37 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-09-08 22:47 - 2015-08-14 22:29 - 00665600 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-09-08 22:47 - 2015-08-14 22:10 - 04520448 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-09-08 22:40 - 2015-06-25 02:48 - 00105408 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2015-09-08 22:40 - 2015-06-25 02:44 - 01805824 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2015-09-08 22:40 - 2015-06-25 02:44 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2015-09-08 22:38 - 2015-08-26 10:56 - 02953728 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2015-09-08 22:38 - 2015-08-26 10:56 - 02061824 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2015-09-08 22:38 - 2015-08-26 10:56 - 00566784 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2015-09-08 22:38 - 2015-08-26 10:56 - 00173056 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2015-09-08 22:38 - 2015-08-26 10:56 - 00093184 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2015-09-08 22:38 - 2015-08-26 10:56 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2015-09-08 22:38 - 2015-08-26 10:56 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2015-09-08 22:38 - 2015-08-26 10:55 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2015-09-08 22:38 - 2015-08-26 10:55 - 00073728 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2015-09-08 22:38 - 2015-08-26 10:55 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2015-09-08 22:38 - 2015-08-26 10:55 - 00011776 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2015-09-08 03:03 - 2015-09-08 03:03 - 00000000 ____D C:\Users\mkhan\AppData\Local\Component Touch
2015-09-07 21:11 - 2015-09-07 21:11 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-09-07 21:11 - 2015-09-07 21:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-09-07 21:09 - 2015-09-07 21:09 - 00000000 ____D C:\Program Files\iPod
2015-09-07 21:08 - 2015-09-07 21:11 - 00000000 ____D C:\Program Files\iTunes
2015-09-07 20:24 - 2015-09-07 20:24 - 00145136 _____ C:\windows\Minidump\090715-50263-01.dmp
2015-09-04 15:59 - 2015-09-19 01:33 - 00000055 _____ C:\Users\mkhan\Desktop\wmrt.txt
2015-09-03 15:24 - 2015-09-23 09:09 - 00001486 _____ C:\Users\mkhan\Desktop\Mechanic.txt
2015-09-02 09:18 - 2015-09-19 11:54 - 00000058 _____ C:\Users\mkhan\Desktop\qrn.txt
2015-08-30 21:31 - 2015-08-30 21:31 - 00000243 _____ C:\Users\mkhan\Desktop\uee.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-26 11:03 - 2015-04-03 21:03 - 00001278 _____ C:\windows\Tasks\fun4us_notification_service.job
2015-09-26 10:50 - 2014-02-15 19:43 - 00000000 ____D C:\Users\mkhan\AppData\Local\CrashDumps
2015-09-26 10:37 - 2012-05-30 20:50 - 00000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-09-26 10:26 - 2009-07-13 21:34 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-26 10:26 - 2009-07-13 21:34 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-26 10:24 - 2011-11-10 04:59 - 00000000 ____D C:\Users\mkhan\AppData\Local\Adobe
2015-09-26 10:23 - 2011-11-10 04:52 - 01093762 _____ C:\windows\WindowsUpdate.log
2015-09-26 10:07 - 2015-04-03 21:03 - 00000992 _____ C:\windows\Tasks\mbAJPAdah7.job
2015-09-26 10:07 - 2015-04-03 21:03 - 00000640 _____ C:\windows\Tasks\fun4us_updating_service.job
2015-09-26 10:07 - 2014-10-16 14:57 - 00000898 _____ C:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-09-26 10:06 - 2009-07-13 21:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-09-26 10:06 - 2009-07-13 21:39 - 00244540 _____ C:\windows\setupact.log
2015-09-26 10:01 - 2015-08-02 00:55 - 00000000 ____D C:\Program Files\Google
2015-09-26 10:01 - 2013-02-05 08:56 - 00000000 ____D C:\Users\mkhan\AppData\Local\Google
2015-09-26 09:02 - 2014-10-16 14:57 - 00000902 _____ C:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-09-26 04:07 - 2009-07-26 14:40 - 00000000 ____D C:\windows\panther
2015-09-25 19:32 - 2009-07-13 21:52 - 00000000 ____D C:\windows\twain_32
2015-09-25 19:15 - 2012-05-30 20:06 - 00938260 _____ C:\windows\PFRO.log
2015-09-25 19:12 - 2012-05-30 21:02 - 00000000 ____D C:\Program Files\Lexmark Toolbar
2015-09-25 18:55 - 2009-07-13 21:33 - 03838152 _____ C:\windows\system32\FNTCACHE.DAT
2015-09-25 15:39 - 2009-07-26 14:56 - 00999724 _____ C:\windows\system32\PerfStringBackup.INI
2015-09-25 09:17 - 2014-10-27 20:40 - 00114761 _____ C:\windows\system32\ScanResults.xml
2015-09-25 08:52 - 2014-10-18 19:31 - 00000464 _____ C:\windows\system32\ScannerSettings
2015-09-22 16:40 - 2012-05-30 20:50 - 00780488 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-09-22 16:40 - 2011-11-10 08:54 - 00142536 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-09-21 09:21 - 2015-08-25 16:56 - 00000630 _____ C:\Users\mkhan\Desktop\UEWeek.txt
2015-09-19 01:31 - 2014-07-21 12:34 - 00000000 ____D C:\Users\mkhan\Desktop\Resumes
2015-09-16 16:12 - 2015-08-02 01:05 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-09-10 00:10 - 2015-01-21 22:21 - 00000000 ____D C:\Users\mkhan\AppData\Roaming\StPrsSW
2015-09-09 23:59 - 2015-03-31 01:14 - 00000385 _____ C:\Users\mkhan\AppData\Roaming\mbAJPAdah7
2015-09-09 10:38 - 2009-07-13 19:37 - 00000000 ____D C:\windows\Microsoft.NET
2015-09-09 10:14 - 2014-08-13 11:13 - 00000000 ____D C:\Users\mkhan\AppData\Local\NPE
2015-09-09 09:14 - 2014-08-13 11:20 - 00000000 ____D C:\NPE
2015-09-09 02:27 - 2009-07-14 00:49 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 00:06 - 2013-07-13 18:42 - 00000000 ____D C:\windows\system32\MRT
2015-09-08 23:24 - 2012-06-11 15:57 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-07 21:09 - 2012-06-27 22:44 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-09-07 21:07 - 2014-06-30 13:28 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2015-09-07 20:24 - 2013-09-01 13:59 - 00000000 ____D C:\windows\Minidump
2015-08-29 18:53 - 2014-06-18 01:55 - 00000000 ____D C:\ProgramData\Yahoo!

==================== Files in the root of some directories =======

2014-10-23 15:01 - 2014-10-23 15:01 - 6000640 _____ () C:\Program Files\GUTF671.tmp
2013-08-13 17:38 - 2013-08-13 17:38 - 0003005 _____ () C:\Program Files\WebCakeLayers.crx
2015-03-31 01:14 - 2015-03-31 01:14 - 0004387 _____ () C:\Users\mkhan\AppData\Roaming\M1WTLKKk4MU2kup
2015-03-31 01:14 - 2015-09-09 23:59 - 0000385 _____ () C:\Users\mkhan\AppData\Roaming\mbAJPAdah7
2015-09-25 17:36 - 2015-09-25 17:36 - 0000057 _____ () C:\ProgramData\Ament.ini
2010-12-21 02:32 - 2010-03-02 16:59 - 0131984 _____ () C:\ProgramData\FullRemove.exe
2012-08-10 19:23 - 2012-09-14 13:15 - 0000361 _____ () C:\ProgramData\lxdd

Some files in TEMP:
====================
C:\Users\mkhan\AppData\Local\Temp\npp.6.7.4.Installer.exe
C:\Users\mkhan\AppData\Local\Temp\npp.6.7.7.Installer.exe
C:\Users\mkhan\AppData\Local\Temp\npp.6.8.1.Installer.exe
C:\Users\mkhan\AppData\Local\Temp\rtbrm.exe
C:\Users\mkhan\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-06 06:50

==================== End of FRST.txt ============================

Open in new window


Additional scan result of Farbar Recovery Scan Tool (x86) Version:23-09-2015
Ran by mkhan (2015-09-26 11:15:31)
Running from C:\Users\mkhan\Downloads
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) (2011-11-10 11:58:56)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2713061054-3956502825-1562889460-500 - Administrator - Disabled)
Guest (S-1-5-21-2713061054-3956502825-1562889460-501 - Limited - Disabled)
mkhan (S-1-5-21-2713061054-3956502825-1562889460-1000 - Administrator - Enabled) => C:\Users\mkhan
nspadm (S-1-5-21-2713061054-3956502825-1562889460-1021 - Administrator - Enabled) => C:\Users\nspadm
sapadm (S-1-5-21-2713061054-3956502825-1562889460-1025 - Administrator - Enabled) => C:\Users\sapadm
SAPServiceNSP (S-1-5-21-2713061054-3956502825-1562889460-1020 - Limited - Enabled)
sqdnsp (S-1-5-21-2713061054-3956502825-1562889460-1022 - Limited - Enabled) => C:\Users\sqdnsp

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security with Backup (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security with Backup (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Security with Backup (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

%SQL_PRODUCT_SHORT_NAME% Data Tools - BI for Visual Studio 2013 (Version: 12.0.2430.0 - Microsoft Corporation) Hidden
%SQL_PRODUCT_SHORT_NAME% SSIS 64Bit For SSDTBI (Version: 12.0.2430.0 - Microsoft Corporation) Hidden
32 Bit HP CIO Components Installer (Version: 1.1.0 - Hewlett-Packard) Hidden
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
ActiveState Komodo IDE 8.5.4 (HKLM\...\{F55999C1-E7CA-405D-8A62-66EE1ABB22AE}) (Version: 8.5.4 - ActiveState Software Inc.)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 16.0.0.273 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
Adobe Photoshop CS6 (HKLM\...\{D586BF67-0A61-4572-BE25-07B40C4CEDA1}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)
Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
AOL Toolbar (HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\AOL Toolbar) (Version:  - )
Apple Application Support (32-bit) (HKLM\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{538227C6-C74B-4A74-99E1-2C0B4F9DA5E1}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Insights Tools for Visual Studio 2013 (Version: 2.4 - Microsoft Corporation) Hidden
AsusScreensaver (HKLM\...\{99E77016-BCF2-48C8-9119-43ECF5815F65}) (Version: 1.04 - AsusTek Computer Inc.)
ASUSUpdate for Eee PC (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.04.01 - ASUSTeK Computer Inc.)
AsusVibe2.0 (HKLM\...\Asus Vibe2.0) (Version: 2.0.9.157 - ASUSTEK)
AVG 2013 (Version: 13.0.3222 - AVG Technologies) Hidden
AzureTools.Notifications (Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
Behaviors SDK (Windows Phone) for Visual Studio 2013 (Version: 12.0.50716.0 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (Version: 12.0.50429.0 - Microsoft Corporation) Hidden
Bing Bar (HKLM\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
bl (Version: 1.0.0 - Your Company Name) Hidden
Blend for Visual Studio 2013 (Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 ENU resources (Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Wireless Network Adapter (HKLM\...\{4FCBCF89-1823-4D97-A6F2-0E8DD66E273A}) (Version: 1.00.0000 - AzureWave)
Build Tools - x86 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Complément Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Component Touch (HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\...\{9563BC59-9556-4805-8CD4-886781779D8D}) (Version: 1.6.0 - Experience Form corp)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Dotfuscator and Analytics Community Edition (Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dotfuscator Software Services - Community Edition (HKLM\...\{1AA5BD63-6614-44B2-88A7-605191EDB835}) (Version: 5.0.2500.0 - PreEmptive Solutions)
E-Cam (HKLM\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.2.5 - )
EeeSplendid (HKLM\...\{6333FC29-BFE5-4024-AC78-958A1A7555D1}) (Version: 5.1.2.0011 - ASUS)
EeeSplendid (Version: 5.1.2.0011 - ASUS) Hidden
eMule (HKLM\...\eMule) (Version:  - )
enterprise 1.1 (HKLM\...\enterprise 1.1) (Version: 1.35.9.29 - Marketi)
Entity Framework 6.1.1 Tools  for Visual Studio 2013 (HKLM\...\{85253F13-EE42-4850-A3A5-79B90E92D7AC}) (Version: 12.0.30610.0 - Microsoft Corporation)
FontResizer (HKLM\...\InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}) (Version: 1.01.0011 - ASUSTek)
FontResizer (Version: 1.01.0011 - ASUSTek) Hidden
FTP Explorer (HKLM\...\FTP Explorer) (Version:  - )
Galerie de photos Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GlassFish Server Open Source Edition 4.1 (HKLM\...\nbi-glassfish-mod-4.1.0.13.0) (Version:  - )
Google Update Helper (Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
Hotfix 2430 for SQL Server 2014 (KB2999197) (HKLM\...\KB2999197) (Version: 12.0.2430.0 - Microsoft Corporation)
HP DeskJet 2130 series Basic Device Software (HKLM\...\{3C352028-CAB5-493F-A581-40AEF30082F2}) (Version: 35.0.60.52855 - Hewlett-Packard Co.)
HP DeskJet 2130 series Help (HKLM\...\{1CDFD3C9-BDF8-4DDC-BDA2-EBC53F938B5F}) (Version: 35.0.0 - Hewlett Packard)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
IIS 8.0 Express (HKLM\...\{B8FFB7D6-6ABD-47C3-8BAD-86FF5D8F3EDC}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2117 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.4.1002 - Intel Corporation)
iTunes (HKLM\...\{025E78AC-BD91-4E9E-B165-3C09D4084BA4}) (Version: 12.2.2.25 - Apple Inc.)
Java 7 Update 76 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217076FF}) (Version: 7.0.760 - Oracle)
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Java SE Development Kit 8 Update 25 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180250}) (Version: 8.0.250.18 - Oracle Corporation)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kit SDK de vérification de Visual Studio 2012 - fra (Version: 12.0.30501 - Microsoft Corporation) Hidden
LG Burning Tool (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.5218a - CyberLink Corp.)
LG Burning Tool (Version: 6.2.5218a - CyberLink Corp.) Hidden
LG CyberLink LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
LG CyberLink LabelPrint (Version: 2.5.3624 - CyberLink Corp.) Hidden
LG CyberLink Media Suite (HKLM\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2808 - CyberLink Corp.)
LG CyberLink Media Suite (Version: 8.0.2808 - CyberLink Corp.) Hidden
LG CyberLink PowerBackup (HKLM\...\{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.5.6023 - CyberLink Corp.)
LG CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3718 - CyberLink Corp.)
LG CyberLink YouCam (Version: 2.0.3718 - CyberLink Corp.) Hidden
LG ODD Auto Firmware Update (HKLM\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - )
LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.22 - AsusTek Computer Inc.)
LocaleMe (HKLM\...\{F58C1D44-4AC9-48E8-9049-7A6CDFCB415C}) (Version: 1.3 - ASUS)
LocalESPC (Version: 8.59.29989 - Microsoft Corporation) Hidden
LocalESPC Dev12 (Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us Dev12 (Version: 8.100.25984 - Microsoft) Hidden
Magic ISO Maker v5.5 (build 0281) (HKLM\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )
Memory Profiler (Version: 12.0.31101 - Microsoft Corporation) Hidden
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft AS OLE DB Provider for SQL Server 2014 (HKLM\...\{B45D9421-3CF6-4BF3-B167-BA51E1E3D347}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{61B8DEBB-4F3F-446A-A42F-B6ECD369E868}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Office 2010 (HKLM\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft redistributable runtime DLLs VS2005 SP1(x86) (HKLM\...\{CEC7A786-A9C8-4EF7-BB59-6518E3B3C878}) (Version: 8.0.50727.4053 - SAP)
Microsoft redistributable runtime DLLs VS2008 SP1(x86) (HKLM\...\{A47A9101-6EB5-4314-BDA1-297880FBB908}) (Version: 9.0 - SAP AG)
Microsoft redistributable runtime DLLs VS2010 SP1 (x86) (HKLM\...\{2385C070-EC26-4AB9-8718-E605C977C0ED}) (Version: 10.0.40219.1 - SAP)
Microsoft Report Viewer 2014 Runtime (HKLM\...\{327E9C0D-1687-414F-923E-F5979E549548}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK (HKLM\...\{05855322-BE43-41FE-B583-D3AE0C326D58}) (Version: 4.0.50826.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{8F72E2D4-1E48-4534-8DB8-1E8E012899C6}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (HKLM\...\Microsoft SQL Server SQLServer2012) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{5EF1EBC5-4A40-4D1C-B02E-0C54BC93FD06}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{FE939060-416C-4ECD-890E-13776E2707C4}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{56D02735-B1E4-4102-A8C6-98F31C51A1B2}) (Version: 11.1.3407.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{FEC535DD-0EB2-4709-87BD-1708C6364EB6}) (Version: 11.1.3128.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{E7654811-38F9-4225-9688-827FDA716582}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2014 (HKLM\...\Microsoft SQL Server SQLServer2014) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{4A1DEB7A-341B-453E-A3AF-7EA9902F9711}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C43E156A-06DC-4AD2-BDDD-68A033074D82}) (Version: 12.0.2430.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL Compiler Service  (HKLM\...\{E9C3861A-B0E6-4A1A-983B-E1938C01224A}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{20A514E6-FC1B-4C74-B894-4BC7558AD5B6}) (Version: 12.0.2430.0 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 ENU (HKLM\...\{773AC1E4-5F27-4DF6-A932-7FDDE35C069D}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data-Tier Application Framework (HKLM\...\{7F57A376-35C0-4283-B7B8-27F1C87C0570}) (Version: 12.0.1294.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x86) (HKLM\...\{C6DD625F-4B61-4561-8286-87CA0275CEA1}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 (HKLM\...\{97CE8B73-AA5A-4987-A1BE-50DD1A187478}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x86) (HKLM\...\{F990B526-8F7C-46E0-B1F1-6C893A8B478F}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x86) (HKLM\...\{DC3D6AFB-78B4-489F-81D7-30B66E0C2417}) (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{4AEB505C-95E1-4964-9B64-8D27F3186D30}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visio Professional 2002 [English] (HKLM\...\{90510409-6D54-11D4-BEE3-00C04F990354}) (Version: 10.0.525 - Microsoft Corporation)
Microsoft Visual Basic 6.0 Enterprise Edition (HKLM\...\Visual Basic 6.0 Enterprise Edition) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2012 Shell (Integrated) (HKLM\...\{55b160d2-8221-45fd-ab30-4388c69c0f3b}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2012 Shell (Isolated) (HKLM\...\{d2e0df0f-bf0a-4a89-9530-ebf93842c393}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2013 Shell (Isolated) (HKLM\...\{dd77c2ff-db69-44f7-9e5c-63aa540dfe07}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Visual Studio Community 2013 with Update 4 (HKLM\...\{96a8b90c-0a91-4e76-ab34-730c23923d11}) (Version: 12.0.31101 - Microsoft Corporation)
Microsoft Visual Studio Professional 2013 with Update 4 (HKLM\...\{c96467b4-e480-4218-8fde-db83bf9d47d1}) (Version: 12.0.31101 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM\...\{e20d88d6-6150-4602-b4ef-49e138467d4d}) (Version: 11.0.51108 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 Language Support (HKLM\...\{44774b10-3e2b-443c-899b-56c46b370aa7}) (Version: 11.0.50727.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications x86 Runtime 3.0 (HKLM\...\{191A6F65-6878-398D-A272-EF011B80F371}) (Version: 10.0.40220 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{59C8A9FB-D230-4718-B4D8-9671D823526F}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{D58573E7-F82D-41E4-B10B-3041202A51D2}) (Version: 3.1237.1763 - Microsoft Corporation)
Microsoft Web Platform Installer 5.0 (HKLM\...\{1D39E015-C3D2-45DE-B070-A69C5F2FB309}) (Version: 5.0.50430.0 - Microsoft Corporation)
Microsoft Web Publishing Wizard 1.53 (HKLM\...\WebPost) (Version:  - )
Mobile Broadband Generic Drivers (HKLM\...\Mobile Broadband Generic Drivers) (Version: 2.03.06.002.14 - Novatel Wireless)
Mobile Broadband Generic Drivers (Version: 2.03.06.002.14 - Novatel Wireless) Hidden
Mocha TN5250 for Windows 7 (HKLM\...\{1B6FE3E2-5A3D-4349-ACBE-2605200B55A5}) (Version: 2.4.0 - MochaSoft)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MSXML4.0 redistributable (HKLM\...\{44D66AD9-AE19-4AFD-BE7E-A1B44C856697}) (Version: 4.0.0.0 - SAP)
NetBeans IDE 8.0.1 (HKLM\...\nbi-nb-base-8.0.1.0.201408251540) (Version: 8.0.1 - NetBeans.org)
Norton Security with Backup (HKLM\...\NSBU) (Version: 22.5.2.15 - Symantec Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
Open XML SDK 2.5 for Microsoft Office (Version: 2.5.5631 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 Design-Time - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
PdaNet+ for Android 4.15 (HKLM\...\PdaNet_is1) (Version:  - June Fabrics Technology Inc)
PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (Version: 1.0.0 - Your Company Name) Hidden
PowreShellIntegration.Notifications (Version: 2.5.21003.1603 - Microsoft Corporation) Hidden
PreEmptive Analytics Visual Studio Components (Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT  (HKLM\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Product Improvement Study for HP DeskJet 2130 series (HKLM\...\{B03DF598-F21A-41F2-AEF7-DF221FD36AB4}) (Version: 35.0.60.52855 - Hewlett-Packard Co.)
Python Tools Redirection Template (Version: 1.3 - Microsoft Corporation) Hidden
Raccolta foto di Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ralink RT2860 Wireless LAN Card (HKLM\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 1.2.0.1 - Ralink)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6186 - Realtek Semiconductor Corp.)
SAP Application Server for System NSP (HKLM\...\SAP Server NSP) (Version:  - SAP AG)
SAP Business Explorer (HKLM\...\SAPBI) (Version: 7.30 - SAP AG)
SAP GUI for Windows 7.30 (Patch 8) (HKLM\...\SAPGUI710) (Version: 7.30 Compilation 3 - SAP AG)
SAP Host Agent (HKLM\...\SAP HostAgent) (Version:  - SAP AG)
SAP JNet (HKLM\...\SAP_JNet) (Version:  - SAP AG)
SAP MMC SnapIn (HKLM\...\{B0621FC5-0F3B-4DDB-B0D1-F6B79A0B893B}) (Version: 7.20.30071 - SAP AG)
SDK de comprobación de Visual Studio 2012 - esn (Version: 12.0.30501 - Microsoft Corporation) Hidden
Secure Download Manager (HKLM\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.)
SharePoint Client Components (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 16.0.2617.1200 - Microsoft Corporation) Hidden
SQL Server 2012 Common Files (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
SQL Server 2014 Data Tools - BI for Visual Studio 2013 (Version: 12.0.2430.0 - Microsoft Corporation) Hidden
SQL Server 2014 SQL Data Quality Common (Version: 12.0.2000.8 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Explorer for Microsoft Visual Studio 2013 (Version: 12.0.21005 - Microsoft Corporation) Hidden
tn5250 0.17.3 (HKLM\...\tn5250_is1) (Version:  - The Linux Tn5250 Project)
Trend Micro Titanium (Version: 1.0 - Trend Micro Inc.) Hidden
TypeScript Power Tool (Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2013 (Version: 1.0.5.0 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Verizon Wireless USB720-V740 Firmware Updates (HKLM\...\{51E7609E-F086-4ECA-9870-5B9E4E5096BD}) (Version: 1.0.1 - Smith Micro Software, Inc.)
Verizon Wireless USB727 Firmware Updates (HKLM\...\{7B35D327-0607-4EED-A2E9-1312D10FD5EC}) (Version: 1.0.0 - Smith Micro Software, Inc.)
Visual Studio 2013 Update 4 (KB2829760) (HKLM\...\{53d408db-eb91-43fb-9d8f-167681c19763}) (Version: 12.0.31101 - Microsoft Corporation)
VS Update core components (Version: 12.0.31101 - Microsoft Corporation) Hidden
WCF Data Services 5.6.0 Runtime (Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinZip (HKLM\...\WinZip) (Version:  - )
Workflow Manager Client 1.0 (Version: 2.0.40131.0 - Microsoft Corporation) Hidden
XAMPP (HKLM\...\xampp) (Version: 1.8.3-3 - Bitnami)
Пакет Visual Studio 2012 Verification SDK - rus (Version: 12.0.30501 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для среды разработки набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000_Classes\CLSID\{112EA537-7AB9-4e22-8BFB-7FD5FCB19849}\localserver32 -> "C:\Program Files\Globalscape\CuteFTP\ftpte.exe" No File
CustomCLSID: HKU\S-1-5-21-2713061054-3956502825-1562889460-1000_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Users\mkhan\AppData\Local\Google\Update\1.3.21.111\psuser.dll No File

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:04 - 2015-03-23 14:39 - 00000878 ____N C:\windows\system32\Drivers\etc\hosts
127.0.0.1 practivate.adobe.com
10.10.0.10 Netweaver


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {023DE66F-383F-4F97-BEFE-92F90BAE8C2D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {088C7C15-6DE7-43D7-9073-8EB0038A499B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {1454E315-5242-4DB3-BE19-B60F02CC176A} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2015-08-19] (Reimage®) <==== ATTENTION
Task: {23CD3BF3-CF58-4351-969D-E94568646C46} - \Driver Support-RTMScan -> No File <==== ATTENTION
Task: {27697890-A33C-4F7A-B72C-5ED1E39E91F3} - System32\Tasks\Adobe online update program => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {28729D24-4CE4-4108-B7FC-B9A9E64590B2} - System32\Tasks\0 => Iexplore.exe  <==== ATTENTION
Task: {2BA7475D-2FA5-41AD-90F2-B45DA5B9DAD3} - System32\Tasks\{7D032E76-5ADE-4016-A6AD-CE9CE29FC70A} => pcalua.exe -a C:\Users\mkhan\Downloads\VZAM_7.2.1_2420b_Novatel.exe -d "C:\Program Files\Mozilla Firefox"
Task: {2C2987FE-36A4-433F-8193-4C6228570CAD} - \Driver Support-RTMRules -> No File <==== ATTENTION
Task: {2C3D0346-C1B1-4298-BF61-FA8F87B9217D} - System32\Tasks\fun4us_notification_service => C:\Program Files\fun4us\fun4us_notification_service.exe <==== ATTENTION
Task: {352510C9-4DA0-4B13-82B2-F03181F6072E} - System32\Tasks\{4AFE7EA3-80AC-42E0-97D5-A74655DCEEDB} => pcalua.exe -a "C:\Program Files\Microsoft SQL Server\110\Setup Bootstrap\SQLServer2012\x86\SetupARP.exe" -c /X86
Task: {4058C395-77A5-4B14-B150-4353C3E7E066} - System32\Tasks\mbAJPAdah7 => C:\Users\mkhan\AppData\Roaming\mbAJPAdah7.exe <==== ATTENTION
Task: {47E259C4-2DA1-40F8-BEAD-2DCAB18BDF96} - \EPUpdater -> No File <==== ATTENTION
Task: {4D3C3AC5-9E3C-48C9-A0C7-44DEF63019A3} - System32\Tasks\Norton Security with Backup\Norton Error Processor => C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\SymErr.exe [2015-05-19] (Symantec Corporation)
Task: {4E501DCF-2A84-4E05-A2F1-FA9775B6EE60} - System32\Tasks\BitGuard => Sc.exe start BitGuard <==== ATTENTION
Task: {4E8D34C9-2572-4128-9EED-62D5F425AA78} - System32\Tasks\Smlupd => C:\Users\mkhan\AppData\Roaming\Smlupd\smlupd.exe [2015-02-13] (Geo Builder)
Task: {6A3F55D4-D9BD-444E-867E-47903AEB30D9} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-10-07] (Oracle Corporation)
Task: {6EA57D4F-EB90-46C6-B852-F8B4DAFC742A} - System32\Tasks\fun4us_updating_service => C:\Program Files\fun4us\fun4us_updating_service.exe <==== ATTENTION
Task: {76C6F0F4-5502-4276-9016-5DD09D6C8588} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-22] (Adobe Systems Incorporated)
Task: {777D3B6D-8F74-43A6-86C1-23A42670EEF1} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\WSCStub.exe [2015-07-16] (Symantec Corporation)
Task: {8A8E841F-EF5F-44F4-BDDE-F022EBD5E563} - System32\Tasks\{9AE9B379-2581-497F-9C3C-4769EA735D90} => pcalua.exe -a "D:\Seagate Crystal Report Pro v6.0\WIN32\X86\DISK1\SETUP.EXE" -d "D:\Seagate Crystal Report Pro v6.0\WIN32\X86\DISK1"
Task: {8FFA2D84-DC0C-40ED-80E6-80024921D532} - \Driver Support-RTMUpdater -> No File <==== ATTENTION
Task: {93BAF5BD-7A14-450E-8B23-33A7DA0243CA} - System32\Tasks\{0CF03B09-25F1-439C-A83C-4A15B5869D4C} => pcalua.exe -a C:\Users\mkhan\Downloads\virusscan87i(1).exe -d C:\Users\mkhan\Downloads
Task: {9C29F7A1-9BE5-4C00-AFD9-11457DB6FA46} - System32\Tasks\AdobeAAMUpdater-1.0-KATHYPC-mkhan => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {9F856C5B-DB5D-4008-8571-2A8116EC989E} - System32\Tasks\4708 => Wscript.exe C:\Users\mkhan\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
Task: {A56E93F6-AA5F-45A8-AC0F-536B161BDF1B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {A870B241-5EC1-457C-BCA7-81190C492384} - System32\Tasks\HPCustParticipation HP DeskJet 2130 series => C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPCustPartic.exe [2014-12-16] (Hewlett-Packard Development Company, LP)
Task: {BD0A973A-2E9C-4D73-8C28-3A89ABD05A13} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2015-07-27] (Symantec Corporation)
Task: {C2730EF3-0350-4D0D-AB9E-56EC1E99D6B6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: {C3462FEB-4EC8-4038-A97A-611F3E01E1E3} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-10-16] (globalUpdate) <==== ATTENTION
Task: {D32378B6-68FA-49E6-9EC1-1ABC3F62B5DC} - System32\Tasks\Norton Security with Backup\Norton Error Analyzer => C:\Program Files\Norton Security with Backup\Engine\22.5.2.15\SymErr.exe [2015-05-19] (Symantec Corporation)
Task: {D4EF8EE7-730B-49F7-990F-665BE3A026D3} - System32\Tasks\Component Touch => Rundll32.exe "C:\Users\mkhan\AppData\Local\Component Touch\Bin\ComponentTouch.dll",#3
Task: {D598FECA-C311-4C41-B7A4-6C5D2F0535A4} - System32\Tasks\{C5D6BE2F-11A3-43E2-83F5-D6CC8504B3A2} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&amp;ver=6.21.0.104&amp;LastError=12029
Task: {D665EA02-9157-42C0-956F-A565B1F6E059} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {E60D52DF-2F8D-4355-8055-C889F22FD20B} - System32\Tasks\Diner Comp => Rundll32.exe "C:\Users\mkhan\AppData\Local\Diner Comp\Bin\DinerComp.dll",#3
Task: {E8D84C7D-F48E-4B0B-97F0-D82C6846D17F} - System32\Tasks\{415D8FC1-2865-49BE-934A-91A68C65FC25} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&amp;ver=6.21.0.104&amp;LastError=12029
Task: {EDB9929A-F1F8-4EA8-9C57-B890A3570FF5} - \Driver Support-RTMScanRunOnce -> No File <==== ATTENTION
Task: {F2E7CED4-1ADD-43AB-B6A2-10D3FF47B7FF} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-10-16] (globalUpdate) <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\fun4us_notification_service.job => C:\Program Files\fun4us\fun4us_notification_service.exeǢ/url='http:/cdn.selectbestopt.com/notf_sys/index.html' /crregname='fun4us' /appid='73143' /srcid='2913' /bic='ed3e6392ec5d555e092caa516519145b' /verifier='f0cf890d856659acf5101583fdef2ba5' /installerversion='1.50.3.10' /statsdomain='http:/stats.buildomserv.com/data.gif?' /errorsdomain='http:/stats.buildomserv.com/data.gif?' /monetizationdomain='http:/logs.buildomserv.com/monetization.gif <==== ATTENTION
Task: C:\windows\Tasks\fun4us_updating_service.job => C:\Program Files\fun4us\fun4us_updating_service.exe§ /campid=2913 /verid=1 /url=http:/cdn.buildomserv.com/txt/@CAMPID@/@VER@/file.txt /appid=73143 /taskname=fun4us_updating_service /funurl=http:/stats.buildomserv.com <==== ATTENTION
Task: C:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\windows\Tasks\mbAJPAdah7.job => C:\Users\mkhan\AppData\Roaming\mbAJPAdah7.exe <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:27 - 2015-05-15 16:27 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-01-09 20:18 - 2010-01-09 20:18 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-01-21 01:34 - 2010-01-21 01:34 - 08793952 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2013-09-25 15:40 - 1998-10-17 07:00 - 00033792 _____ () C:\Program Files\WinZip\WZSHLEXT.DLL
2015-04-15 13:13 - 2015-04-15 13:13 - 00260608 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2015-09-08 03:03 - 2015-09-08 03:03 - 00033280 _____ () C:\Users\mkhan\AppData\Local\Component Touch\Bin\ComponentTouch.dll
2015-09-08 03:03 - 2015-09-08 03:03 - 00011776 _____ () C:\Users\mkhan\AppData\Local\Component Touch\Bin\vwr.dll
2014-01-23 15:20 - 2014-01-07 16:30 - 01054432 _____ () C:\Program Files\PdaNet for Android\PdaNetPC.exe
2015-03-23 20:48 - 2010-11-23 10:13 - 01200128 _____ () D:\sapdb\programs\pgm\sapni.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\windows\system32\msln.exe:419f301ff9ac3dccdcc7ceadb8da5dda

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2713061054-3956502825-1562889460-1000\Control Panel\Desktop\\Wallpaper -> 
HKU\S-1-5-21-2713061054-3956502825-1562889460-1025\Control Panel\Desktop\\Wallpaper -> C:\Users\sapadm\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^mkhan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PdaNet Desktop.lnk => C:\windows\pss\PdaNet Desktop.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ASUSPRP => C:\Program Files\ASUS\APRP\APRP.EXE
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CLMLServer => "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: HotKeysCmds => C:\windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\windows\system32\igfxtray.exe
MSCONFIG\startupreg: LGODDFU => "C:\Program Files\lg_fwupdate\lgfw.exe" blrun
MSCONFIG\startupreg: lxddamon => "C:\Program Files\Lexmark 2500 Series\lxddamon.exe"
MSCONFIG\startupreg: lxddmon.exe => "C:\Program Files\Lexmark 2500 Series\lxddmon.exe"
MSCONFIG\startupreg: McAfeeUpdaterUI => "C:\Program Files\McAfee\Common Framework\udaterui.exe" /StartedFromRunKey
MSCONFIG\startupreg: Persistence => C:\windows\system32\igfxpers.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
MSCONFIG\startupreg: ShStatEXE => "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: SynAsusAcpi => %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: UCam_Menu => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\pre_install_eula.html" "DEF" "DEF" "DEF"
MSCONFIG\startupreg: vProt => "C:\Program Files\AVG SafeGuard toolbar\vprot.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FB22C415-8DED-46FB-A769-35AB8895E699}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{DE774EB5-8CD3-4EAB-9C1E-0A0389FF70A6}] => (Allow) LPort=2869
FirewallRules: [{AE5687E3-19A2-4BB9-8689-37F0EA08FB4C}] => (Allow) LPort=1900
FirewallRules: [{58D2B290-FFCF-4758-80C3-E7E29C07A09E}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{3865BBED-9560-4BF7-B592-A709B9E588AC}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe
FirewallRules: [{505581D2-95FF-4FED-8C8C-F91EBF9EB84B}] => (Allow) LPort=5353
FirewallRules: [{8918B0FF-62FD-49A7-9229-E9E4094D8737}] => (Allow) LPort=8182
FirewallRules: [TCP Query User{86E134F7-5265-438A-BC7D-708B9B86CD17}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
FirewallRules: [UDP Query User{8DF1BDA6-0961-4B69-8648-FDE026FF2BB4}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
FirewallRules: [TCP Query User{FD505264-F912-437B-B877-39EE26596834}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0004.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0004.tmp\lmi_rescue.exe
FirewallRules: [UDP Query User{DAC9927F-46D6-4C1A-87FF-6175891BAFE3}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0004.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0004.tmp\lmi_rescue.exe
FirewallRules: [TCP Query User{B77D87D0-3226-45B0-8215-6AEBAFC8790F}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0005.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0005.tmp\lmi_rescue.exe
FirewallRules: [UDP Query User{6E88C7D5-2BED-41F6-96CE-3C51C8C63C1E}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0005.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0005.tmp\lmi_rescue.exe
FirewallRules: [{CF1F29B8-C75E-416C-95E3-5435445C378B}] => (Allow) C:\Windows\System32\lxddcoms.exe
FirewallRules: [{8E3AF0FA-0A2F-4A38-8416-690C56244447}] => (Allow) C:\Windows\System32\lxddcoms.exe
FirewallRules: [{09A2EEBD-948F-4488-805D-B2A6F32C9328}] => (Allow) C:\Program Files\Lexmark 2500 Series\lxddamon.exe
FirewallRules: [{611AB910-535C-4143-ABCD-B846D7E5C18E}] => (Allow) C:\Program Files\Lexmark 2500 Series\lxddamon.exe
FirewallRules: [{AC8B7F5C-D2C4-463A-B0FE-0B2A7A59B711}] => (Allow) C:\Program Files\Lexmark 2500 Series\App4R.exe
FirewallRules: [{77FF84ED-5E5E-4962-B78F-A0A0CCAB3BD5}] => (Allow) C:\Program Files\Lexmark 2500 Series\App4R.exe
FirewallRules: [{1DB9C898-A0DF-42B5-96F8-7E2B600C65EF}] => (Allow) C:\Program Files\Lexmark 2500 Series\lxddmon.exe
FirewallRules: [{8E393152-8B61-498F-A8C5-F6D299F86D38}] => (Allow) C:\Program Files\Lexmark 2500 Series\lxddmon.exe
FirewallRules: [{AA76D0CF-CCF1-41E5-ADDC-33E44A55D04C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{432BA97D-E6C3-4D2B-80CB-F95E31F442D4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{EF5700BE-9C09-4C10-AB8B-791DB244EFDD}C:\program files\lexmark 2500 series\app4r.exe] => (Allow) C:\program files\lexmark 2500 series\app4r.exe
FirewallRules: [UDP Query User{3EEECD30-D581-4A6B-B92A-EF61035AB675}C:\program files\lexmark 2500 series\app4r.exe] => (Allow) C:\program files\lexmark 2500 series\app4r.exe
FirewallRules: [TCP Query User{9AD97D0E-9BEF-4AA2-9ABD-26CB0DADF609}C:\webserver\babyweb.exe] => (Allow) C:\webserver\babyweb.exe
FirewallRules: [UDP Query User{2A76D780-5277-4254-83CC-78BD9DFB2FA7}C:\webserver\babyweb.exe] => (Allow) C:\webserver\babyweb.exe
FirewallRules: [TCP Query User{62AF6A23-CF34-4AF0-A785-C5C078B6E6F5}C:\program files\lexmark 2500 series\lxddamon.exe] => (Allow) C:\program files\lexmark 2500 series\lxddamon.exe
FirewallRules: [UDP Query User{9AD3207C-7A97-413A-B460-B29A10AB599B}C:\program files\lexmark 2500 series\lxddamon.exe] => (Allow) C:\program files\lexmark 2500 series\lxddamon.exe
FirewallRules: [TCP Query User{84E284C9-ADB6-410B-B067-EC954031596F}C:\program files\mozilla firefox\plugin-container.exe] => (Allow) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{646773D2-6140-4BB0-85D9-213EF2574208}C:\program files\mozilla firefox\plugin-container.exe] => (Allow) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [{179039CC-9859-4F0D-A23C-2A5E0395E385}] => (Allow) C:\Program Files\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{A56A082A-FE5C-4522-820D-C45A22EABBDD}] => (Allow) C:\Program Files\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{9482EE77-36EA-4E19-B824-48CA21101F5D}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{3F390845-C485-4814-B2EF-11DD45B074A7}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{7AA308CF-A7C7-4383-97AA-9EA9E4A8FAE3}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{604F9AB3-422C-4305-9561-B869A20E54CF}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{F7DA5BE0-9E6A-48D3-8D5D-3873F12EA0E2}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{A2A343D9-4BBC-45C5-84A6-88131C6B8858}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{635A9D7F-733D-4272-A7FE-8AEA83CDFB1B}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{21997F0B-3DA8-45BE-A989-6C2FDF903618}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{4CD36895-4DED-4398-B543-CE94BE9E3966}] => (Allow) C:\Program Files\McAfee\Common Framework\FrameworkService.exe
FirewallRules: [{CB9334D6-70B5-4429-A935-00BAAB95C3CE}] => (Allow) C:\Program Files\McAfee\Common Framework\FrameworkService.exe
FirewallRules: [{D625F67C-E932-4981-AEBF-94FFB9E16C6D}] => (Allow) C:\Program Files\McAfee\Common Framework\FrameworkService.exe
FirewallRules: [{5E48F79B-4DDC-459E-8CA3-B2B0DFDDBB59}] => (Allow) C:\Program Files\McAfee\Common Framework\FrameworkService.exe
FirewallRules: [TCP Query User{7BAF8FB2-8EFD-4369-8CA2-8D6B079264A5}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
FirewallRules: [UDP Query User{CFD5D9E7-8570-4545-98EC-360EDA0AB113}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
FirewallRules: [TCP Query User{98BDB8C2-C106-4042-BF3D-1342E77E9A78}C:\users\mkhan\appdata\local\temp\keygen.exe] => (Allow) C:\users\mkhan\appdata\local\temp\keygen.exe
FirewallRules: [UDP Query User{E0E64C9F-E4D0-45B4-BD32-D210F33A34CA}C:\users\mkhan\appdata\local\temp\keygen.exe] => (Allow) C:\users\mkhan\appdata\local\temp\keygen.exe
FirewallRules: [TCP Query User{D1F4B61B-78FD-4239-8A08-7CE5F503F879}C:\users\mkhan\appdata\local\temp\keygen.exe] => (Allow) C:\users\mkhan\appdata\local\temp\keygen.exe
FirewallRules: [UDP Query User{3FE6EBC1-7000-4E18-A0EF-15C4D54C032D}C:\users\mkhan\appdata\local\temp\keygen.exe] => (Allow) C:\users\mkhan\appdata\local\temp\keygen.exe
FirewallRules: [{93EA9B85-A988-4A1C-B870-898650FB5E49}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\lxddpswx.exe
FirewallRules: [{3330E54D-D98F-4DC4-B240-87D102807289}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\lxddpswx.exe
FirewallRules: [{565F69A1-4FF3-462B-B622-940E82D37A05}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\lxddjswx.exe
FirewallRules: [{AF933F93-1598-4CFA-99C2-D8AD7D763984}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\lxddjswx.exe
FirewallRules: [{FA6FF04B-EDDF-4649-9F4C-5CF7C4B4030A}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\lxddtime.exe
FirewallRules: [{DD2D8D14-83ED-4CCE-96B8-B07DDAAC616B}] => (Allow) C:\Windows\System32\spool\drivers\w32x86\3\lxddtime.exe
FirewallRules: [TCP Query User{80884501-CD89-4BC6-8777-C387FA7D8DF9}C:\program files\ftp explorer\ftpx.exe] => (Allow) C:\program files\ftp explorer\ftpx.exe
FirewallRules: [UDP Query User{EBDC8F75-A686-4576-9EA9-37207077D71B}C:\program files\ftp explorer\ftpx.exe] => (Allow) C:\program files\ftp explorer\ftpx.exe
FirewallRules: [TCP Query User{AA9A33E5-E901-4AF1-82AA-A8ADC0AAE64C}C:\program files\globalscape\cuteftp\ftpte.exe] => (Allow) C:\program files\globalscape\cuteftp\ftpte.exe
FirewallRules: [UDP Query User{9FDA3F8C-6797-4B69-9AEC-0EB2AA7BA929}C:\program files\globalscape\cuteftp\ftpte.exe] => (Allow) C:\program files\globalscape\cuteftp\ftpte.exe
FirewallRules: [TCP Query User{CD5A3FD7-536D-413D-8375-DCA0337A0057}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0004.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0004.tmp\lmi_rescue.exe
FirewallRules: [UDP Query User{C9CFA8AC-BA7C-4C4D-B84B-FFC22BD0931E}C:\users\mkhan\appdata\local\logmein rescue applet\lmir0004.tmp\lmi_rescue.exe] => (Allow) C:\users\mkhan\appdata\local\logmein rescue applet\lmir0004.tmp\lmi_rescue.exe
FirewallRules: [{03AEA0D5-97A5-43E5-A9BE-7466E1EF2EC6}] => (Allow) LPort=3306
FirewallRules: [{8413D3CA-27EC-4055-A979-28B23ED78C40}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{A712E909-907C-454C-B0FB-E9AFE113498B}] => (Allow) C:\Program Files\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{17EEAB29-7D51-4738-B3F1-39E9A6653A3E}] => (Allow) C:\Program Files\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{F4E773EF-C9F0-4D2E-ADFA-B93E6EE8197A}] => (Allow) LPort=7935
FirewallRules: [{82F0474D-9802-4A7E-8240-F8F2F08203EA}] => (Allow) C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{D6ED36D4-B259-42DC-9BBD-8E5AB83BBF8C}] => (Allow) C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{C66063A6-F938-454C-8DCE-6C9A246265E8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1025DF38-E8F4-4620-B661-285196592B98}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4B5BCCE4-6E71-45B6-9D34-BFB6566D52A2}] => (Allow) LPort=3306
FirewallRules: [TCP Query User{AE04ECA7-5B4B-453B-A4BA-C831669705C6}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{C7718A53-0DEA-426D-BC4A-34766681033D}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{879BDB18-D82B-4A91-8D20-C5B8FC0FF463}C:\program files\java\jdk1.8.0_25\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_25\bin\java.exe
FirewallRules: [UDP Query User{6D504CD6-D062-4CC3-BBAD-438996AD95C1}C:\program files\java\jdk1.8.0_25\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_25\bin\java.exe
FirewallRules: [TCP Query User{08520DF9-5DD0-4172-8658-9A6B184FB92C}C:\users\mkhan\appdata\local\temp\sapinst_exe.4744.1427157063\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4744.1427157063\sapinst.exe
FirewallRules: [UDP Query User{CECCAAB7-2216-4401-913C-6C127148EB0B}C:\users\mkhan\appdata\local\temp\sapinst_exe.4744.1427157063\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4744.1427157063\sapinst.exe
FirewallRules: [TCP Query User{0A8B5F6A-991A-4825-9B74-472972E0A4FE}C:\users\mkhan\appdata\local\temp\sapinst_exe.4744.1427157063\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4744.1427157063\jre\bin\java.exe
FirewallRules: [UDP Query User{A65AB6BB-5581-485C-BC68-DB9A7FCDF304}C:\users\mkhan\appdata\local\temp\sapinst_exe.4744.1427157063\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4744.1427157063\jre\bin\java.exe
FirewallRules: [TCP Query User{C3902E7B-63CA-491A-A390-24F690C20089}C:\users\mkhan\appdata\local\temp\sapinst_exe.3876.1427165181\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.3876.1427165181\sapinst.exe
FirewallRules: [UDP Query User{CB0D6C98-AB25-4B2B-B4EE-572888634767}C:\users\mkhan\appdata\local\temp\sapinst_exe.3876.1427165181\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.3876.1427165181\sapinst.exe
FirewallRules: [TCP Query User{F5251FD2-96AF-4E9E-9ED0-2A90C5BC22C0}C:\users\mkhan\appdata\local\temp\sapinst_exe.3876.1427165181\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.3876.1427165181\jre\bin\java.exe
FirewallRules: [UDP Query User{D16C203C-F027-476B-A60B-3CA96558BED9}C:\users\mkhan\appdata\local\temp\sapinst_exe.3876.1427165181\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.3876.1427165181\jre\bin\java.exe
FirewallRules: [TCP Query User{F45A1B74-BAF0-4F11-A372-C8B5CEAAF936}C:\users\mkhan\appdata\local\temp\sapinst_exe.4136.1427165406\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4136.1427165406\sapinst.exe
FirewallRules: [UDP Query User{6BD2126D-AD78-42AF-82DD-50D38B31012D}C:\users\mkhan\appdata\local\temp\sapinst_exe.4136.1427165406\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4136.1427165406\sapinst.exe
FirewallRules: [TCP Query User{43ED8A19-8C89-496F-80C2-C1990FE85E0D}C:\users\mkhan\appdata\local\temp\sapinst_exe.4136.1427165406\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4136.1427165406\jre\bin\java.exe
FirewallRules: [UDP Query User{67DF7543-4D30-48A2-B91E-047765CAC31C}C:\users\mkhan\appdata\local\temp\sapinst_exe.4136.1427165406\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4136.1427165406\jre\bin\java.exe
FirewallRules: [TCP Query User{448D971C-1DEE-486E-8A26-9393F0AE4DBE}C:\users\mkhan\appdata\local\temp\sapinst_exe.4528.1427166349\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4528.1427166349\sapinst.exe
FirewallRules: [UDP Query User{49DDB6B4-AF8B-4F16-9470-74F6CF9CCEB0}C:\users\mkhan\appdata\local\temp\sapinst_exe.4528.1427166349\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4528.1427166349\sapinst.exe
FirewallRules: [TCP Query User{9F72D297-BEA9-4A88-9932-F84AFC480DB4}C:\users\mkhan\appdata\local\temp\sapinst_exe.4528.1427166349\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4528.1427166349\jre\bin\java.exe
FirewallRules: [UDP Query User{01D546B7-9BAD-473D-AFBA-0061C2B8BB75}C:\users\mkhan\appdata\local\temp\sapinst_exe.4528.1427166349\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.4528.1427166349\jre\bin\java.exe
FirewallRules: [TCP Query User{54DE5304-8584-4914-B9EB-70C98AA6899D}C:\users\mkhan\appdata\local\temp\sapinst_exe.5404.1427167145\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.5404.1427167145\sapinst.exe
FirewallRules: [UDP Query User{6E9A487B-0631-4716-B860-AABF9A24A31E}C:\users\mkhan\appdata\local\temp\sapinst_exe.5404.1427167145\sapinst.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.5404.1427167145\sapinst.exe
FirewallRules: [TCP Query User{C74D1274-6678-4236-AA80-161FD9D825DE}C:\users\mkhan\appdata\local\temp\sapinst_exe.5404.1427167145\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.5404.1427167145\jre\bin\java.exe
FirewallRules: [UDP Query User{27E6570C-B459-45DB-8F5A-88FF60DB6FB6}C:\users\mkhan\appdata\local\temp\sapinst_exe.5404.1427167145\jre\bin\java.exe] => (Allow) C:\users\mkhan\appdata\local\temp\sapinst_exe.5404.1427167145\jre\bin\java.exe
FirewallRules: [{D68C855E-733F-4A63-9CC4-3371C01F3CEC}] => (Allow) C:\Program Files\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe
FirewallRules: [{21FAE42A-9301-48B0-A2EA-BE85BDBADF28}] => (Allow) C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{991CAEB7-777C-4003-9AD2-976107EDD7DE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A87C481C-F377-4363-906E-456C0625DB77}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{31C8A2BC-7E81-4C26-B881-A3FA1EDD43FA}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\USBSetup.exe
FirewallRules: [{6BCAEDDA-FEA4-421E-A66D-AF7061D8C67D}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPNetworkCommunicatorCom.exe

==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Ethernet Controller
Description: Ethernet Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/26/2015 10:49:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Autoruns.exe, version: 13.40.0.0, time stamp: 0x556228a1
Faulting module name: Autoruns.exe, version: 13.40.0.0, time stamp: 0x556228a1
Exception code: 0xc0000005
Fault offset: 0x0001b9af
Faulting process id: 0x9a0
Faulting application start time: 0xAutoruns.exe0
Faulting application path: Autoruns.exe1
Faulting module path: Autoruns.exe2
Report Id: Autoruns.exe3

Error: (09/26/2015 06:34:21 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {08487cca-b3d9-4645-83d4-4567ce66937b}

Error: (09/26/2015 06:14:48 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {08487cca-b3d9-4645-83d4-4567ce66937b}

Error: (09/25/2015 07:28:09 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: The server name or address could not be resolved

Error: (09/25/2015 06:19:22 PM) (Source: MsiInstaller) (EventID: 10005) (User: KATHYPC)
Description: Product: HP DeskJet 2130 series Basic Device Software -- Error 25000. Please disconnect the USB cable from your 'HP DeskJet 2130 series' device to complete the uninstallation.

Error: (09/25/2015 06:00:46 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {9c0f5ee6-1c3f-491a-bc86-c9c7322b3e1d}

Error: (09/25/2015 04:47:25 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {9c0f5ee6-1c3f-491a-bc86-c9c7322b3e1d}

Error: (09/23/2015 10:10:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.18015, time stamp: 0x55cec14a
Faulting module name: jp2ssv.dll, version: 11.25.2.18, time stamp: 0x5434638b
Exception code: 0xc0000417
Fault offset: 0x0000ee25
Faulting process id: 0x1344
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (09/23/2015 09:49:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.18015, time stamp: 0x55cec14a
Faulting module name: SYMHTML.DLL, version: 10.0.0.224, time stamp: 0x554e6e08
Exception code: 0xc0000005
Fault offset: 0x000a8d1a
Faulting process id: 0x1048
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (09/23/2015 12:58:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.18015, time stamp: 0x55cec14a
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0xc39275b9
Faulting process id: 0x10e4
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (09/26/2015 10:24:03 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 43. The internal error state is 252.

Error: (09/26/2015 10:24:03 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 43. The internal error state is 252.

Error: (09/26/2015 10:09:18 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom

Error: (09/26/2015 10:06:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Asus Launcher Service service failed to start due to the following error: 
%%2

Error: (09/26/2015 10:02:16 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068

Error: (09/26/2015 10:02:16 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068

Error: (09/26/2015 10:02:16 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068

Error: (09/26/2015 10:02:16 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068

Error: (09/26/2015 10:02:16 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068

Error: (09/26/2015 10:02:16 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068


==================== Memory info =========================== 

Processor: Intel(R) Atom(TM) CPU N550 @ 1.50GHz
Percentage of memory in use: 88%
Total physical RAM: 1014.12 MB
Available physical RAM: 111.68 MB
Total Virtual: 2422.11 MB
Available Virtual: 307.05 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100 GB) (Free:21.45 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:117.86 GB) (Free:24.8 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 5E4B1D7C)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=15 GB) - (Type=1B)
Partition 3: (Not Active) - (Size=117.9 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=26 MB) - (Type=EF)

==================== End of Addition.txt ============================

Open in new window

0
mustish1Author Commented:
screenshot2.png
0
*** Hopeleonie ***IT ManagerCommented:
uncheck all with File not found

Note: Do not delete them.
0
mustish1Author Commented:
I am getting error on some of the files. I uninstalled google chrome.

screenshot2.png
0
mustish1Author Commented:
screenshot2.png
0
*** Hopeleonie ***IT ManagerCommented:
If you restart do you still get the error now?
0
mustish1Author Commented:
after uncheck what I do next?
0
*** Hopeleonie ***IT ManagerCommented:
If you restart the computer do you still get the error?
0
mustish1Author Commented:
no I did not restart the computer. My question is just leave it like that only uncheck the files and restart the computer or do I need to delete something from their?
0
*** Hopeleonie ***IT ManagerCommented:
Yes you can leave it, as they are unchecked now.

1.

Restart the computer

2.

Do you still get the error?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
mustish1Author Commented:
Everything looks like normal now. I am not understanding that? I just uncheck files from their
0
mustish1Author Commented:
Also that error is gone.
0
*** Hopeleonie ***IT ManagerCommented:
Everything looks like normal now. I am not understanding that? I just uncheck files from their

You should not do it alone. It is only for Experts. I was glad to help you. Have a nice day.
0
mustish1Author Commented:
Thanks.
0
*** Hopeleonie ***IT ManagerCommented:
In the both logs you posted I see you have some more Malware. If you want to clean them please open a new question in this topic:
http://www.experts-exchange.com/topics/anti-virus-apps/
0
mustish1Author Commented:
I was just wondering if I can download chrome again, as it wont allow me to uncheck those files where it shows google chrome.
0
*** Hopeleonie ***IT ManagerCommented:
Try to download and install Chrome.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows 7

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.