Go Back   Cyber Tech Help Support Forums > Software > Malware Removal

Notices

Malware Removal Discussion about Trojans, viruses, hoaxes, firewalls, spyware, and general Security issues. If you suspect your PC is infected with a virus, trojan or spyware app please include any supporting documentation or logs

Reply
 
Topic Tools
  #1  
Old November 3rd, 2022, 03:15 AM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Cool Pop-up Mania

So, in the past couple of months, I've started seeing a series of pop-ups any time I start up Google Chrome to browse the Internet. My presumption is that my girlfriend clicked on something she shouldn't have and, voila, here they are!!! I'm using Windows 7 Home Premium, 16gb memory, 64-bit operating system with an AMD Athlon II X2, 3.10 ghz 255 processor.

I do not have any malware removal software installed on my PC and I use AVG Free Antivirus protection.

These things are driving me nuts...any and ALL help will be greatly appreciated!!!

Thom H
Reply With Quote
  #2  
Old November 28th, 2022, 10:10 PM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 52,284
Do you still need help?
Reply With Quote
  #3  
Old December 2nd, 2022, 06:54 AM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Cool Pop-Mania

Yes, I still need help...many thanks for any assistance you can provide!!
Reply With Quote
  #4  
Old December 3rd, 2022, 02:47 PM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 52,284
Let's take a look.

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
Reply With Quote
  #5  
Old December 5th, 2022, 05:06 PM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Thanks for the help. I've downloaded a version...now to see if it works on my PC!
I will attach the requested texts as soon as possible.

Thom
Reply With Quote
  #6  
Old December 6th, 2022, 07:23 AM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Cool Farbar Recovery Texts - FRST Text only

Here are the copies of the two texts you asked me to post in my next response. Please let me know where we go from here...Thanks a TON!

FRST Text:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-12-2022
Ran by Plyler (administrator) on THOM-GUYS-PUTER (Hewlett-Packard p6633w) (05-12-2022 11:07:44)
Running from C:\Users\Plyler\Downloads
Loaded Profiles: Plyler
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Default browser: IE
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files (x86)\Garmin\Express\express.exe ->) (The CefSharp Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.ex e <2>
(C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Windows\Temp\OfficeClickToRun.exe.bak ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe <2>
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe <4>
(explorer.exe ->) (DVDFab Software Inc. -> ) C:\Program Files\DVDFab\DVDFab 12\updateTemp\LiveUpdate.exe
(explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (MiTAC International Corporation -> MiTAC) C:\Users\Plyler\AppData\Roaming\MiTAC Digital Corporation\mgnContentManager\3.0.0.00\mgnContentM anager.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Plantronics Inc -> Plantronics, Inc.) C:\Program Files (x86)\Plantronics\Spokes3G\PLTHub.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (Eastman Kodak Company -> Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\Center\ekdiscovery.exe
(services.exe ->) (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(services.exe ->) (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\OfficeClickToRun.exe.bak
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Containe r.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(services.exe ->) (PDF Complete -> PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(services.exe ->) (Plantronics Inc -> Plantronics, Inc.) C:\Program Files (x86)\Plantronics\Spokes3G\SpokesUpdateService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Sonic Solutions -> CinemaNow, Inc.) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MU I.exe [2045440 2010-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1882048 2017-03-27] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [249080 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe [5417880 2022-10-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [333784 2021-03-31] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MU I.exe [2045440 2010-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw (No File)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [324976 ] (Flexera Software, Inc. -> Flexera Software, Inc.)
HKLM-x32\...\Run: [PLTHub.exe] => C:\Program Files (x86)\Plantronics\Spokes3G\PLTHub.exe [2980096 2022-03-08] (Plantronics Inc -> Plantronics, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\...\Run: [Magellan Update Manager] => C:\Users\Plyler\AppData\Roaming\MiTAC Digital Corporation\mgnContentManager\3.0.0.00\mgnContentM anager.exe [2705672 2016-01-20] (MiTAC International Corporation -> MiTAC)
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\...\Run: [cdloader] => C:\Users\Plyler\AppData\Roaming\mjusbsp\cdloader2. exe [51592 2014-07-04] (magicJack, L.P. -> magicJack L.P.)
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\...\Run: [8a79325d96fa7854028b7313db93c02c] => C:\Program Files (x86)\DVDFab\DVDFab 12\LiveUpdate.exe [4549960 2022-11-25] (DVDFab Software Inc. -> )
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\...\Run: [611dd93a9b5c578be68b17d997792402] => C:\Program Files\DVDFab\DVDFab 12\LiveUpdate.exe [5343048 2022-11-30] (DVDFab Software Inc. -> )
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31314832 2022-05-19] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\KODAK EASYSHARE All-in-One Printer: C:\Windows\System32\spool\prtprocs\x64\EKIJ5000PPR .dll [232960 2010-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company)
HKLM\...\Windows x64\Print Processors\sugo1PC: C:\Windows\System32\spool\prtprocs\x64\sugo1pc.dll [33792 2007-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Print\Monitors\HP 7012 Status Monitor: C:\Windows\system32\hpinksts7012LM.dll [328704 2013-08-10] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet Pro 8620): C:\Windows\system32\HPDiscoPM7012.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\KODAK EASYSHARE All-in-One Printer: C:\Windows\system32\EKIJ5000MON.dll [612352 2010-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company)
HKLM\...\Print\Monitors\PDFC: C:\Windows\system32\pdfc_port.dll [19464 2009-10-14] (PDF Complete -> PDF Complete, Inc.)
HKLM\...\Print\Monitors\sugo1 Langmon: C:\Windows\system32\sugo1l6.dll [22016 2007-01-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\107.0.5304.123\Ins taller\chrmstp.exe [2022-11-30] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Insta ller\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2022-09-28] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\Users\Plyler\AppData\Roaming\Microsoft\Windows\ Start Menu\Programs\Startup\Monitor Ink Alerts - HP Officejet Pro 8620.lnk [2022-11-09]
ShortcutAndArgument: Monitor Ink Alerts - HP Officejet Pro 8620.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet Pro 8620\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN41CB6116;CONNECTION=USB;MONITOR=1;
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00703FCC-DD14-42EC-8F6C-BEC489BC96E9} - System32\Tasks\HPCustParticipation HP Officejet Pro 8620 => C:\Program Files\HP\HP Officejet Pro 8620\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {018B5A55-A707-4186-9CAD-46C53DB775DE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24614304 2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {033F1EE2-BF99-4581-8948-FB945E8B263E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [647616 2017-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {051F777E-D044-4C92-892B-BDA05BCD76E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {05646168-5CA0-45BC-8A13-3E80BB0D42B9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAge ntLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158752 2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D23EB7D-D9DC-443B-978E-2BA51462EBB4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160664 2022-11-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {283FD750-702D-479D-B79A-BA8BB5C7C359} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2013-11-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {2BA81144-FA64-4B6D-B3D7-33B34AC4E967} - System32\Tasks\SoftUpdateLogon => C:\Users\Plyler\AppData\Local\SoftUpdate\SoftUpdat e.exe (No File)
Task: {305232D7-8F4C-46E8-B857-070320759703} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [492480 2017-04-26] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck .log
Task: {4336C17E-EB9B-4304-9F4F-3D8180ED23C1} - System32\Tasks\ServicePlan => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-05-25] (Hewlett-Packard Company -> )
Task: {44E0345D-2270-4328-8B1F-471FDD490DD2} - System32\Tasks\{5F63A069-F3F3-4769-9861-1EE2D07D7028} => C:\Program Files (x86)\AVG\AVG2014\avgui.exe (No File)
Task: {483A867D-81A6-4D7F-AF35-777A3E9E9ECA} - System32\Tasks\AVG\AVG Driver Updater Update => C:\Program Files\Common Files\AVG\Icarus\avg-du\icarus.exe [6827776 2022-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {48978CB4-CEE0-4B93-8389-B8283D62DE68} - System32\Tasks\AVG\AVG Driver Updater BugReport => C:\Program Files\AVG\Driver Updater\AvBugReport.exe [4738968 2022-10-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 149 --programpath "C:\Program Files\AVG\Driver Updater\Setup\.." --configpath "C:\Program Files\AVG\Driver Updater\Setup" --path "C:\ProgramData\AVG\Driver Updater\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid 89dc7883-521e-422d-a5c9-faefd599e237
Task: {4B0A2585-F17A-4814-9187-5892B21382A6} - System32\Tasks\{81E5A1D1-EBB7-4674-B451-17488579F613} => C:\Program Files (x86)\AVG\AVG2014\avgui.exe (No File)
Task: {52616C2E-8076-4B77-8FE8-0331AA34BD4A} - System32\Tasks\{C5BFEF8E-ED6B-46E0-A251-911BFCFAB783} => C:\Windows\system32\pcalua.exe -a E:\polaroid\runsetup.exe -d E:\polaroid
Task: {5631E1A9-9438-459D-A79D-C37043EF788E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [647616 2017-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6022207F-1359-468F-ABCB-281C9E3A1831} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2287472 2022-05-24] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {649B80E8-90F1-4422-9614-19D7706DC515} - System32\Tasks\{4C52F6D3-FB86-4053-B9E7-AD5088AAB913} => C:\Program Files (x86)\AVG\AVG2014\avgui.exe (No File)
Task: {6F0BBE22-2A22-4CDC-92E2-274AD33143D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChec ker.exe [1061752 2018-06-28] (HP Inc. -> HP Inc.)
Task: {7080FE3C-0A24-47AE-B7F0-0EDA8FA63782} - System32\Tasks\HPCeeScheduleForPlyler => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [95800 2011-07-15] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {7B0547E8-4D86-4500-9FF1-E5706B591820} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {7D1664E5-0567-4D82-9E38-24483A07A34B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAge ntFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158752 2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7F39D77A-84D1-4FBB-9545-449F3F8754C5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [12344 2014-04-08] (Hewlett-Packard Company -> Microsoft)
Task: {81BEB585-2552-46E2-BED8-5C2DF4711E8F} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [720320 2017-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {982358F2-C041-48F1-9D91-111F4C213382} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe /ua /installsource scheduler (No File)
Task: {A2DFA01F-8CBF-4ECE-BACA-343C2AB0A700} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {A55D13B1-8E20-4EDB-AD8E-8B71E3FAC6FF} - System32\Tasks\SoftUpdateDaily => C:\Users\Plyler\AppData\Local\SoftUpdate\SoftUpdat e.exe (No File)
Task: {AA8C571E-3D04-4CD0-A4C6-83C5B753A108} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24614304 2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {AAAA9E48-9488-408E-9896-48F47A6F285C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AF929B8F-E7CE-488E-B04E-4C1B23CD1434} - System32\Tasks\{FDBD18DE-21E9-496A-83D8-2A957F6C47BF} => C:\Program Files (x86)\AVG\AVG2014\avgui.exe (No File)
Task: {B3A14C95-A072-4F5B-9BFA-F613D88D0413} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [28048 2022-05-19] (Garmin International, Inc. -> )
Task: {BB6E6AC2-A312-4E8D-9229-A5EE49EABD95} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [1234000 2013-01-17] (AVG Technologies -> )
Task: {BE252804-8073-497C-A1C1-0B416C76FD54} - System32\Tasks\{D3A814CF-C92A-40E8-ABB2-BD9E91A5ECF0} => C:\Program Files (x86)\AVG\AVG2014\avgui.exe (No File)
Task: {C440816D-82A1-47A8-A5B4-55E7BC5404A5} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [4973816 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {CB5DB1AB-FD6E-478D-9629-C86D228606B3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2013-11-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {CC95B410-8576-4100-9CD8-1EBFF2AB3750} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {CE37644F-D006-4237-B026-C4663CC24BC6} - System32\Tasks\0814avtUpdateInfo => C:\ProgramData\Avg_Update_0814avt\0814avt_AVG-Secure-Search-Update.exe [2774040 2014-08-19] (AVG Technologies -> )
Task: {D3624055-4B0B-4EAC-A82E-90AD93F9C315} - System32\Tasks\{28091A93-4AAE-43FD-86F7-B769445C390B} => C:\Program Files (x86)\AVG\AVG2014\avgui.exe (No File)
Task: {D69EFD44-4B60-48B8-966A-F79C3B160C68} - System32\Tasks\1015avUpdateInfo => C:\ProgramData\Avg_Update_1015av\1015av_AVG-Secure-Search-Update.exe [2782096 2015-10-11] (AVG Technologies CZ, s.r.o. -> )
Task: {DB253699-1ABF-4BF1-98FF-188B30E90848} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [946112 2017-03-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E34B2CF1-8A10-4291-9826-0101190F05EE} - System32\Tasks\{EAD30B7A-0ADB-43E9-B0BE-4B3C7C869676} => C:\Windows\system32\pcalua.exe -a C:\Users\Plyler\AppData\Local\Temp\jre-8u91-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {EC514F39-6088-4B4D-A4BD-F114D03D9564} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe /c (No File)
Task: {EF4FB8B7-3F6F-4A74-BCED-91D1825FD9B6} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2287472 2022-05-24] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {F5A8EB08-1229-4A61-A05D-46222C965221} - System32\Tasks\{5D1012FD-2312-42F7-8F44-0F47E1C9684C} => C:\Program Files (x86)\AVG\AVG2014\avgui.exe (No File)
Task: {F7D28AEB-7294-4557-8611-6AA0C2BF189C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160664 2022-11-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {F80470B8-371F-4C15-B80D-18991BD5CB2A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [720320 2017-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA18EF06-8A64-46FA-B05E-B8D8A73CA1E1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [630584 2014-05-12] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {FA89BE80-5DB0-4611-B5C4-A4F8815F9E74} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\0814avtUpdateInfo.job => C:\ProgramData\Avg_Update_0814avt\0814avt_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\1015avUpdateInfo.job => C:\ProgramData\Avg_Update_1015av\1015av_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\HPCeeScheduleForPlyler.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:50147;https=127.0.0.1:50147
Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{A4135E6D-F80C-4278-9AEC-01D3729E9F36}: [DhcpNameServer] 192.168.40.1

Edge:
=======
Edge Profile: C:\Users\Plyler\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-29]

FireFox:
========
FF ProfilePath: C:\Users\Plyler\AppData\Roaming\Mozilla\Firefox\Pr ofiles\n2cgeacx.default-1534608051811 [2022-11-30]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfeeŽ WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2022-03-31] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=1.6.0_33 -> C:\Windows\system32\npdeployJava1.dll [2013-01-19] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1 .dll [2022-11-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2022-11-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1261503980-111145729-2002240722-1000: @hulu.com/Hulu Desktop -> C:\Windows\..\Users\Default\AppData\Local\HuluDesk top\instances\0.9.13.1\npHDPlg.dll [] (Hulu -> Hulu LLC)
FF Plugin HKU\S-1-5-21-1261503980-111145729-2002240722-1000: magellangps.com/mgnContentManager -> C:\Users\Plyler\AppData\Roaming\MiTAC Digital Corporation\mgnContentManager\3.0.0.00\npmgnConten tManager.dll [2016-01-20] (MiTAC International Corporation -> MiTAC Digital Corp.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Default [2022-12-05]
CHR Notifications: Default -> hxxps://butterwithasideofbread.com; hxxps://care.siriusxm.com; hxxps://chatsupport.apple.com; hxxps://drfone.wondershare.com; hxxps://en.softonic.com; hxxps://hibid.com; hxxps://internationalliving.com; hxxps://mg.mail.yahoo.com; hxxps://mystore1.store; hxxps://searchmanuals.net; hxxps://us.letgo.com; hxxps://www.allrecipes.com; hxxps://www.bhphotovideo.com; hxxps://www.buycarparts.co.uk; hxxps://www.dvdfab.cn; hxxps://www.facebook.com; hxxps://www.macworld.com; hxxps://www.proozy.com; hxxps://www.reddit.com; hxxps://www.thelegacyreport.com; hxxps://www.thestreet.com; hxxps://www.yahoo.com; hxxps://www2.intelius.com
CHR HomePage: Default -> hxxp://www.yahoo.com/
CHR StartupUrls: Default -> "hxxp://www.yahoo.com/"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee&type=E210US91088G0&p={searchTerms }
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://us.search.yahoo.com/sugg/gossip/gossip-us-partner?output=fxjson&appid=mca&source=yahoo_mcafe e_searchassist&command={searchTerms}
CHR Extension: (Yahoo Partner) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaffhmecfaelkngcbnfdkcckmi llnoki [2020-09-27]
CHR Extension: (Google Docs Offline) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdl olhkhi [2022-12-01]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccm gmieda [2021-01-29]
CHR Profile: C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-03-02]
CHR Profile: C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-10-15]
CHR HomePage: Profile 1 -> hxxp://www.yahoo.com/
CHR StartupUrls: Profile 1 -> "hxxp://www.bc3.edu"
CHR DefaultSearchURL: Profile 1 -> hxxps://search.yahoo.com/search?fr=mcafee&type=E211US662G0&p={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> mcafee
CHR DefaultSuggestURL: Profile 1 -> hxxps://us.search.yahoo.com/sugg/gossip/gossip-us-partner?output=fxjson&appid=mca&source=yahoo_mcafe e_searchassist&command={searchTerms}
CHR Extension: (McAfeeŽ WebAdvisor) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-10-15]
CHR Extension: (Google Docs Offline) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-15]
CHR Extension: (Google Calendar) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2021-03-20]
CHR Extension: (Save to Google Drive) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2022-02-25]
CHR Extension: (Grammarly: Grammar Checker and Writing App) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2022-10-15]
CHR Extension: (Google Play) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2021-03-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-20]
CHR Extension: (Office) - C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2021-03-20]
CHR Profile: C:\Users\Plyler\AppData\Local\Google\Chrome\User Data\System Profile [2022-03-02]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aaffhmecfaelkngcbnfdkcckmillnoki]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [628984 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe [628984 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [8575536 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [109480 2021-06-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 CinemaNow Service; C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe [400368 2010-06-12] (Sonic Solutions -> CinemaNow, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11138952 2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 DriverUpdSvc; C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe [7702424 2022-10-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-05-19] (Hewlett-Packard Company) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [972936 2022-03-31] (McAfee, LLC -> McAfee, LLC)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [635416 2009-10-14] (PDF Complete -> PDF Complete Inc)
R2 PlantronicsUpdateService; C:\Program Files (x86)\Plantronics\Spokes3G\SpokesUpdateService.exe [2101504 2022-03-08] (Plantronics Inc -> Plantronics, Inc.)
S3 RoxMediaDBVHS; C:\Program Files (x86)\Common Files\Roxio Shared\VHStoDVD\SharedCOM\RoxMediaDBVHS.exe [1089536 2019-06-30] (Corel Corporation) [File not signed]
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
S2 Avg; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /svc [X]
S3 avgm; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /medsvc [X]
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.lo g" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [42416 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [238288 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [382568 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [306200 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [106520 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [48648 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [276632 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [564416 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2020-06-19] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [114632 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [90120 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [863104 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [672440 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [222120 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [328040 2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 CSRBC; C:\Windows\System32\Drivers\csrbcx64.sys [38400 2022-03-08] (Microsoft Windows Hardware Compatibility Publisher -> CSR plc.)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-10-16] (Corel Corporation -> Corel Corporation)
R0 PxHlpa64; C:\Windows\SysWOW64\drivers\PxHlpa64.sys [64480 2015-09-17] (Corel Corporation -> Corel Corporation)
S3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA64A.sys [738328 2012-05-04] (Kworld Computer Co., Ltd. -> eMPIA Technology, Inc.)
S3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM64A.sys [1226136 2012-05-04] (Kworld Computer Co., Ltd. -> eMPIA Technology, Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-12-05 11:07 - 2022-12-05 11:09 - 000039254 _____ C:\Users\Plyler\Downloads\FRST.txt
2022-12-05 11:07 - 2022-12-05 11:08 - 000000000 ____D C:\FRST
2022-12-05 11:03 - 2022-12-05 11:03 - 002375680 _____ (Farbar) C:\Users\Plyler\Downloads\FRST64.exe
2022-12-05 03:58 - 2022-12-05 03:58 - 000000000 ____H C:\Users\Plyler\BIT21AB.tmp
2022-11-30 01:14 - 2022-11-30 01:14 - 000000000 ____D C:\Users\Plyler\AppData\Roaming\3216
2022-11-13 00:11 - 2022-11-13 00:11 - 000000000 ____D C:\1Pittsburgh_Casting_photos

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-12-05 11:08 - 2010-09-01 20:47 - 000000000 ____D C:\ProgramData\PDFC
2022-12-05 10:51 - 2012-08-24 00:15 - 000000000 ____D C:\Program Files (x86)\Google
2022-12-05 10:33 - 2009-07-13 23:45 - 000022256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-12-05 10:33 - 2009-07-13 23:45 - 000022256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-12-05 03:58 - 2022-03-01 15:57 - 000003192 _____ C:\Windows\system32\Tasks\HPCeeScheduleForPlyler
2022-12-05 03:58 - 2022-03-01 15:57 - 000000336 _____ C:\Windows\Tasks\HPCeeScheduleForPlyler.job
2022-12-05 03:58 - 2010-10-31 21:56 - 000000000 ____D C:\Users\Plyler
2022-12-04 23:09 - 2016-08-01 09:37 - 000000000 ____D C:\Users\Plyler\Documents\DVDFab
2022-12-04 12:25 - 2016-04-04 18:00 - 000000000 ____D C:\ProgramData\NVIDIA
2022-12-01 04:04 - 2009-07-14 00:13 - 000006230 _____ C:\Windows\system32\PerfStringBackup.INI
2022-11-30 16:52 - 2012-08-24 00:18 - 000002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-30 01:13 - 2018-06-17 18:49 - 000000000 ____D C:\ProgramData\boost_interprocess
2022-11-28 02:01 - 2020-10-14 14:20 - 000000000 ____D C:\1Comics
2022-11-17 21:45 - 2022-06-06 15:54 - 000003554 _____ C:\Windows\system32\Tasks\GarminUpdaterTask
2022-11-17 21:45 - 2019-12-18 18:18 - 000003630 _____ C:\Windows\system32\Tasks\HPCustParticipation HP Officejet Pro 8620
2022-11-17 21:45 - 2017-12-19 14:25 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2022-11-17 21:45 - 2017-03-17 10:13 - 000004174 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2022-11-17 21:45 - 2016-12-19 09:57 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily _{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-17 21:45 - 2016-12-06 01:04 - 000003852 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-17 21:45 - 2016-12-06 01:04 - 000003738 _____ C:\Windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-17 21:45 - 2016-12-06 01:04 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B 2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-17 21:45 - 2016-12-06 01:04 - 000003730 _____ C:\Windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-17 21:45 - 2016-12-06 01:04 - 000003554 _____ C:\Windows\system32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-17 21:45 - 2016-12-06 01:04 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-17 21:45 - 2015-11-08 19:00 - 000002460 _____ C:\Windows\system32\Tasks\1015avUpdateInfo
2022-11-17 21:45 - 2015-11-08 19:00 - 000000338 _____ C:\Windows\Tasks\1015avUpdateInfo.job
2022-11-17 21:45 - 2014-12-29 22:54 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-11-17 21:45 - 2014-08-29 08:03 - 000002446 _____ C:\Windows\system32\Tasks\0814avtUpdateInfo
2022-11-17 21:45 - 2014-08-29 08:03 - 000000324 _____ C:\Windows\Tasks\0814avtUpdateInfo.job
2022-11-17 21:45 - 2012-08-24 00:15 - 000003334 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineU A
2022-11-17 21:45 - 2012-08-24 00:15 - 000003206 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineC ore
2022-11-17 21:45 - 2010-10-31 22:51 - 000003246 _____ C:\Windows\system32\Tasks\SidebarExecute
2022-11-17 16:51 - 2022-10-13 00:02 - 000002061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2022-11-14 15:15 - 2019-01-17 03:34 - 000382568 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys
2022-11-13 10:32 - 2014-07-28 13:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-13 10:31 - 2009-07-13 22:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2022-11-13 10:28 - 2016-05-29 01:11 - 000000000 ____D C:\Program Files\Microsoft Office
2022-11-13 00:10 - 2016-06-22 07:55 - 001550336 ___SH C:\Users\Plyler\Downloads\Thumbs.db
2022-11-09 09:48 - 2010-11-22 22:14 - 000000000 ____D C:\ProgramData\Kodak
2022-11-09 09:47 - 2009-07-14 00:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-11-09 03:15 - 2013-08-14 20:48 - 000000000 ____D C:\Windows\system32\MRT
2022-11-09 03:01 - 2010-12-02 22:25 - 146960040 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-11-05 09:31 - 2014-10-15 23:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-11-05 09:31 - 2014-10-15 23:04 - 000000000 ____D C:\Program Files (x86)\Java
2022-11-05 09:29 - 2014-10-15 23:04 - 000168096 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

==================== Files in the root of some directories ========

2017-04-21 12:49 - 2017-04-01 11:54 - 000000087 _____ () C:\Users\Plyler\AppData\Roaming\1de0de73-de3e-46c6-81b0-f6455f081644
2017-12-10 22:40 - 2017-12-10 22:40 - 000000171 _____ () C:\Users\Plyler\AppData\Roaming\1eb766f2-fed1-4d33-9c39-2c8a972fd11f
2017-12-10 22:40 - 2018-09-15 11:51 - 000000904 _____ () C:\Users\Plyler\AppData\Roaming\4e93aa11-2d46-4980-a421-0a4ac759e5bf
2019-05-22 21:15 - 2019-05-22 21:15 - 000000171 _____ () C:\Users\Plyler\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2017-12-10 22:40 - 2017-12-10 22:40 - 000000175 _____ () C:\Users\Plyler\AppData\Roaming\fc19ece2-6b3f-4f22-8758-9651ab9ca388
2016-10-15 10:47 - 2016-10-15 10:47 - 000099384 _____ () C:\Users\Plyler\AppData\Roaming\inst.exe
2016-10-15 10:47 - 2016-10-15 10:47 - 000007859 _____ () C:\Users\Plyler\AppData\Roaming\pcouffin.cat
2016-10-15 10:47 - 2016-10-15 10:47 - 000001167 _____ () C:\Users\Plyler\AppData\Roaming\pcouffin.inf
2016-10-15 10:49 - 2016-10-15 10:49 - 000000034 _____ () C:\Users\Plyler\AppData\Roaming\pcouffin.log
2016-10-15 10:47 - 2016-10-15 10:47 - 000082816 _____ (VSO Software) C:\Users\Plyler\AppData\Roaming\pcouffin.sys
2014-06-07 23:38 - 2014-06-07 23:38 - 000000041 _____ () C:\Users\Plyler\AppData\Roaming\WB.CFG
2014-05-03 21:44 - 2016-03-21 15:41 - 000090572 _____ () C:\Users\Plyler\AppData\Local\installer.log
2019-04-15 11:37 - 2020-11-13 11:19 - 000007619 _____ () C:\Users\Plyler\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2022-12-03 00:55
==================== End of FRST.txt==================
Reply With Quote
  #7  
Old December 6th, 2022, 07:31 AM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Cool Farbar Recovery Texts - Addition Text Only - Too Large

For the Addition Text report, I get the following error message:

The text that you have entered is too long (81689 characters). Please shorten it to 50000 characters long.

What should I delete from the Addition Text to make what I copy and paste fit?? Should I copy the first part of it until I hit a mid-way point and then paste and post that and then do the same with the second half???

Thanks,

THom
Reply With Quote
  #8  
Old December 7th, 2022, 07:52 PM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 52,284
For the Addition.txt, split it in half, then post the first half, then the second half.
Reply With Quote
  #9  
Old December 8th, 2022, 07:38 AM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Cool Farbar Recovery - Addition Text, Part 1

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-12-2022
Ran by Plyler (05-12-2022 11:09:34)
Running from C:\Users\Plyler\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X64) (2010-11-01 02:56:49)
Boot Mode: Normal
================================================== ========


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1261503980-111145729-2002240722-500 - Administrator - Disabled)
Guest (S-1-5-21-1261503980-111145729-2002240722-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1261503980-111145729-2002240722-1003 - Limited - Enabled)
Plyler (S-1-5-21-1261503980-111145729-2002240722-1000 - Administrator - Enabled) => C:\Users\Plyler

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: AVG Antivirus (Enabled - Up to date) {A3C8941D-8036-3856-D9BB-709D4A2A7EAC}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 16.04 (HKLM-x32\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 22.003.20282 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
aiofw (HKLM-x32\...\{DE6B7599-D3EF-4436-8836-BAA0B0D7768D}) (Version: 4.2.6.0 - Eastman Kodak Company) Hidden
aioprnt (HKLM\...\{0645A454-AD44-4F0D-99CF-6B762735AD1F}) (Version: 5.3.1.0 - Eastman Kodak Company) Hidden
aioscnnr (HKLM-x32\...\{FE24086F-3B0C-4C47-A874-97A7B8E2FBBE}) (Version: 4.2.6.0 - Your Company Name) Hidden
ANT Drivers Installer x64 (HKLM\...\{209ECC4B-2A73-48FD-80C9-CDFFA9CA528D}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{74CC99EB-7DC0-4CB0-847A-F8C2FE39690C}) (Version: 14.5.0.7 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{7C7A5A92-046C-A38C-AE0F-8F9CCA0F67A8}) (Version: 3.0.774.0 - ATI Technologies, Inc.)
Audacity 2.1.2 (HKLM-x32\...\AudacityÂŽ_is1) (Version: 2.1.2 - Audacity Team)
AVG AntiVirus FREE (HKLM\...\AVG Antivirus) (Version: 22.10.3258 - AVG Technologies)
AVG Driver Updater (HKLM\...\AVG Driver Updater) (Version: 22.3.2560.7842 - AVG)
AVS Audio Converter 8.1.1 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 8.1.1.549 - Online Media Technologies Ltd.)
AVS Audio Editor 8.1.1 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 8.1.1.506 - Online Media Technologies Ltd.)
AVS Disc Creator 5.2.5 (HKLM-x32\...\AVS Disc Creator_is1) (Version: 5.2.5.536 - Online Media Technologies Ltd.)
AVS Document Converter 3.0.2 (HKLM-x32\...\AVS Document Converter_is1) (Version: 3.0.2.238 - Online Media Technologies Ltd.)
AVS Image Converter 4.0.2 (HKLM-x32\...\AVS Image Converter_is1) (Version: 4.0.2.281 - Online Media Technologies Ltd.)
AVS Media Player 4.3.1 (HKLM-x32\...\AVS Media Player_is1) (Version: 4.3.1.114 - Online Media Technologies Ltd.)
AVS Photo Editor 2.3.4 (HKLM-x32\...\AVS Photo Editor_is1) (Version: 2.3.4.148 - Online Media Technologies Ltd.)
AVS Registry Cleaner 3.0.3 (HKLM-x32\...\AVS Registry Cleaner_is1) (Version: 3.0.3.272 - Online Media Technologies Ltd.)
AVS Video Converter 9.2.1 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 9.2.1.579 - Online Media Technologies Ltd.)
AVS Video Editor 9.2.2 (HKLM-x32\...\AVS Video Editor_is1) (Version: 9.2.2.350 - Online Media Technologies Ltd.)
AVS Video ReMaker 6.3.1 (HKLM-x32\...\AVS Video ReMaker_is1) (Version: 6.3.1.230 - Online Media Technologies Ltd.)
Bejeweled 2 Deluxe (HKLM-x32\...\WT087428) (Version: 2.2.0.95 - WildTangent) Hidden
Blackhawk Striker 2 (HKLM-x32\...\WT087328) (Version: 2.2.0.95 - WildTangent) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build-a-lot 2 (HKLM-x32\...\WT087335) (Version: 2.2.0.95 - WildTangent) Hidden
C4USelfUpdater (HKLM-x32\...\{48B41C3A-9A92-4B81-B653-C97FEB85C910}) (Version: 1.00.0000 - Your Company Name) Hidden
Catalyst Control Center - Branding (HKLM-x32\...\{22139F5D-9405-455A-BDEB-658B1A4E4861}) (Version: 1.00.0000 - ATI) Hidden
center (HKLM-x32\...\{56BA241F-580C-43D2-8403-947241AAE633}) (Version: 5.0.0.0 - Eastman Kodak Company) Hidden
Chuzzle Deluxe (HKLM-x32\...\WT087453) (Version: 2.2.0.95 - WildTangent) Hidden
CinemaNow Media Manager (HKLM-x32\...\{6C122441-1861-4CD7-B1C5-A163A6984E12}) (Version: 1.9.1.105 - CinemaNow, Inc.)
CyberLink DVD Suite Deluxe (HKLM-x32\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2823 - CyberLink Corp.) Hidden
CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2823 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dazzle Video Capture DVC100 X64 Driver 1.06 (HKLM-x32\...\{BFF23267-1D19-444E-93E2-E5059BE805EA}) (Version: 1.06.0000 - Pinnacle) Hidden
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
Diner Dash 2 Restaurant Rescue (HKLM-x32\...\WT087536) (Version: 2.2.0.95 - WildTangent) Hidden
DirectX 9 Runtime (HKLM-x32\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B2}) (Version: 1.00.0000 - Sonic Solutions) Hidden
Dora's Carnival Adventure (HKLM-x32\...\WT087342) (Version: 2.2.0.95 - WildTangent) Hidden
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.1.4030 - Hewlett-Packard) Hidden
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.1.4030 - Hewlett-Packard)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DVDFab 12 (HKLM-x32\...\DVDFab 12) (Version: 12.0.9.3 - DVDFab Software Inc.)
DVDFab 12 (x64) (HKLM-x32\...\DVDFab 12 (x64)) (Version: 12.0.9.3 - DVDFab Software Inc.)
Elevated Installer (HKLM-x32\...\{3213DBEF-7413-4CC2-A3EA-2FB78177482B}) (Version: 7.13.1.0 - Garmin Ltd or its subsidiaries) Hidden
Escape Rosecliff Island (HKLM-x32\...\WT087360) (Version: 2.2.0.95 - WildTangent) Hidden
FATE (HKLM-x32\...\WT087361) (Version: 2.2.0.95 - WildTangent) Hidden
FileZilla Client 3.43.0 (HKLM-x32\...\FileZilla Client) (Version: 3.43.0 - Tim Kosse)
Final Drive Nitro (HKLM-x32\...\WT087362) (Version: 2.2.0.95 - WildTangent) Hidden
Garmin Express (HKLM-x32\...\{dfe973c2-d1c7-4563-8c84-595f13f8792d}) (Version: 7.13.1.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{FDE5F9F5-0C9B-4A7A-811B-C7E32195CC2B}) (Version: 7.13.1.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.123 - Google LLC)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Heroes of Hellas 2 - Olympia (HKLM-x32\...\WT087372) (Version: 2.2.0.95 - WildTangent) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
honestech VHS to DVD 5.0 (HKLM-x32\...\{44FF002B-5AB3-4447-8F98-614387B63EE6}) (Version: 5.0 - honestech)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.4.12850.3526 - Hewlett-Packard)
HP Customer Experience Enhancements (HKLM-x32\...\{07FA4960-B038-49EB-891B-9F95930AA544}) (Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Game Console (HKLM-x32\...\My HP Game Console) (Version: - WildTangent) Hidden
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.1.3 - WildTangent)
HP MediaSmart CinemaNow 2.0 (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)
HP MediaSmart DVD (HKLM-x32\...\{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 4.1.4229 - Hewlett-Packard) Hidden
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 4.1.4229 - Hewlett-Packard)
HP MediaSmart Music (HKLM-x32\...\{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}) (Version: 4.1.4301 - Hewlett-Packard) Hidden
HP MediaSmart Music (HKLM-x32\...\InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}) (Version: 4.1.4301 - Hewlett-Packard)
HP MediaSmart Photo (HKLM-x32\...\{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}) (Version: 4.1.4211 - Hewlett-Packard) Hidden
HP MediaSmart Photo (HKLM-x32\...\InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}) (Version: 4.1.4211 - Hewlett-Packard)
HP MediaSmart SmartMenu (HKLM\...\{5B08AF35-B699-4A44-BB89-3E51E70611E8}) (Version: 3.1.1.12 - Hewlett-Packard)
HP MediaSmart Video (HKLM-x32\...\{D12E3E7F-1B13-4933-A915-16C7DD37A095}) (Version: 4.1.4214 - Hewlett-Packard) Hidden
HP MediaSmart Video (HKLM-x32\...\InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}) (Version: 4.1.4214 - Hewlett-Packard)
HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{BDDA1E1E-204E-4368-B0C2-737F16B76307}) (Version: 1.0.3.0 - Hewlett-Packard)
HP Officejet Pro 8620 Basic Device Software (HKLM\...\{A977D10D-989A-40D4-B0B1-450954516543}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
HP Officejet Pro 8620 Help (HKLM-x32\...\{9A4D71AB-9C68-4702-A4A2-A4DB7B0FE270}) (Version: 32.0.0 - Hewlett Packard)
HP Setup (HKLM-x32\...\{72D90DB3-A16A-4545-B555-868471101833}) (Version: 8.1.4186.3400 - Hewlett-Packard)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.1.2.27173 - Hewlett-Packard)
Hulu Desktop (HKU\S-1-5-21-1261503980-111145729-2002240722-1000\...\HuluDesktop) (Version: 0.9.13 - Hulu LLC)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
iTunes (HKLM\...\{E6FF3475-A35E-481F-8A8E-3D73CF3A30A1}) (Version: 12.10.11.2 - Apple Inc.)
Java 8 Update 351 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180351F0}) (Version: 8.0.3510.10 - Oracle Corporation)
Jewel Quest 3 (HKLM-x32\...\WT087373) (Version: 2.2.0.95 - WildTangent) Hidden
Jewel Quest Solitaire 2 (HKLM-x32\...\WT087379) (Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KODAK AiO Home Center (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 5.4.6.4 - Eastman Kodak Company)
ksDIP (HKLM-x32\...\{10934A28-0CC6-4B98-A14F-76B3546003AF}) (Version: 3.20.0000.0001 - Eastman Kodak Company) Hidden
LabelCreator (HKLM-x32\...\{B8C23400-237A-40F2-854C-9846DF568075}) (Version: 1.00.0000 - Corel Corporation) Hidden
LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2823 - CyberLink Corp.) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2823 - CyberLink Corp.)
LightScribe System Software (HKLM-x32\...\{46BA053F-57B3-4153-BDB6-D37EEC8B12D7}) (Version: 1.18.15.1 - LightScribe)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
magicJack (HKU\S-1-5-21-1261503980-111145729-2002240722-1000\...\magicJack) (Version: 4.1.7574.5297 - magicJack L.P.)
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Default Manager (HKLM-x32\...\{B95B1BA9-F887-4B3C-8D3A-CCD4C4675120}) (Version: 2.1.55.0 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.12527.22253 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1261503980-111145729-2002240722-1000\...\OneDriveSetup.exe) (Version: 17.3.6281.1202 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Hidden
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.1.4030 - Hewlett-Packard) Hidden
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.1.4030 - Hewlett-Packard)
Mozilla Firefox 25.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 25.0 (x86 en-US)) (Version: 25.0 - Mozilla)
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.5.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.5.0.70 - NVIDIA Corporation)
NVIDIA Graphics Driver 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (HKLM-x32\...\NVIDIAStereo) (Version: 7.17.13.7500 - NVIDIA Corporation) Hidden
NVIDIA Update 24.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 24.0.0.0 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4631.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4631.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4631.1004 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.22253 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.22253 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12527.22253 - Microsoft Corporation) Hidden
OldMHUUninstaller (HKLM-x32\...\{c44fe2c9-d90e-430f-a2ce-ae3f84a21825}) (Version: 3.2.0.0 - Plantronics, Inc.) Hidden
OldMHUUninstallerMSI (HKLM-x32\...\{8F2FFE14-A917-4B2A-A449-CE6537A35F2F}) (Version: 3.2.0.0 - Plantronics, Inc.) Hidden
OpenOffice 4.1.0 (HKLM-x32\...\{C87EF11D-36E9-479D-9898-7541EA1E8A6A}) (Version: 4.10.9764 - Apache Software Foundation)
PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 3.5.111 - PDF Complete, Inc)
Penguins! (HKLM-x32\...\WT087394) (Version: 2.2.0.95 - WildTangent) Hidden
PhotoNow! (HKLM-x32\...\{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.) Hidden
PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
Plantronics Hub Software (HKLM\...\{8C6ECAA2-D401-4F4B-A4F1-0DE427AF59B2}) (Version: 3.24.53524.36336 - Plantronics, Inc.) Hidden
Plantronics Hub Software (HKLM-x32\...\{28b4b465-8fc2-4598-8f73-7abad4728a70}) (Version: 3.24.53524.36336 - Plantronics, Inc.)
Plants vs. Zombies (HKLM-x32\...\WT087501) (Version: 2.2.0.95 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (HKLM-x32\...\WT087395) (Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (HKLM-x32\...\WT087396) (Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (HKLM-x32\...\WT087397) (Version: 2.2.0.95 - WildTangent) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4022 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4022 - CyberLink Corp.)
PowerDirector (HKLM-x32\...\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2906 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2906 - CyberLink Corp.)
PreReq (HKLM-x32\...\{DA5BDB2A-12F0-4343-8351-21AAEB293990}) (Version: 6.0.5.2 - Eastman Kodak Company) Hidden
PressReader (HKLM-x32\...\{912CED74-88D3-4C5B-ACB0-13231864975D}) (Version: 5.10.621.0 - NewspaperDirect Inc.)
Product Improvement Study for HP Officejet Pro 8620 (HKLM\...\{99039186-EBEB-4127-BFA2-18B10A05ACE2}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6196 - Realtek Semiconductor Corp.)
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.2926 - CyberLink Corp.) Hidden
Roxio CinemaNow 2.0 (HKLM-x32\...\{120262A6-7A4B-4889-AE85-F5E5688D3683}) (Version: 1.0.284 - Hewlett-Packard) Hidden
Roxio CinePlayer Decoder Pack (HKLM-x32\...\{44B23220-E68E-4FBC-B02C-1A89AC0C8C5F}) (Version: 4.3.0 - Roxio) Hidden
Roxio Easy VHS to DVD Plus (HKLM-x32\...\{08C44A04-23B0-4399-A3EC-24C5D2091A52}) (Version: 4.0.194 - Roxio) Hidden
Roxio Easy VHS to DVD Plus (HKLM-x32\...\{532D3949-121B-43C1-8C29-783683525F1B}) (Version: 4.0 - Roxio)
Roxio MyDVD (HKLM\...\{8E67EEF1-B9D0-42D0-B259-72EF1D4BE4E4}) (Version: 3.0.114.0 - Corel Corporation) Hidden
Roxio MyDVD (HKLM-x32\...\{2AB256B6-DD96-4982-AD46-5DC7B20BA7EF}) (Version: 3.0 - Corel)
Roxio VHS Capture Driver (HKLM-x32\...\{EE008D2E-2747-413A-A4B1-1CA4078E1E7D}) (Version: 1.05.0000 - Corel) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.)
SmartGPS Eco (HKLM-x32\...\{F0DF2A34-80D0-477C-8718-7E665341FA55}) (Version: 3.0.0.00 - MiTAC Digital Corp.)
SUABnR (HKLM-x32\...\{2485354C-6B65-4978-BB91-CCE61442377B}) (Version: 1.1.0.13103_1 - Samsung Electronics Co., Ltd.) Hidden
SUABnR (HKLM-x32\...\InstallShield_{2485354C-6B65-4978-BB91-CCE61442377B}) (Version: 1.1.0.13103_1 - Samsung Electronics Co., Ltd.)
Virtual Families (HKLM-x32\...\WT087414) (Version: 2.2.0.95 - WildTangent) Hidden
Virtual Villagers - The Secret City (HKLM-x32\...\WT087513) (Version: 2.2.0.95 - WildTangent) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VSO Inspector 2.0.2 (HKLM-x32\...\VSO Inspector_is1) (Version: - VSO-Software SARL)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WebAdvisor by McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.691 - McAfee, LLC)
Wheel of Fortune 2 (HKLM-x32\...\WT087415) (Version: 2.2.0.95 - WildTangent) Hidden
Windows Driver Package - Cambridge Silicon Radio (CSRBC) USB (10/26/2012 2.4.0.0) (HKLM\...\20C7EDA3129B3FF8F72F9BF59252B718B554FBDC ) (Version: 10/26/2012 2.4.0.0 - Cambridge Silicon Radio)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46 ) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Plantronics, Inc. (usbser.ntamd64) Ports (04/21/2009 5.1) (HKLM\...\07AFE62D73C8799E9E5689F86FB9F48389717BA3 ) (Version: 04/21/2009 5.1 - Plantronics, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2 ) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Communications Platform (HKLM-x32\...\{D45240D3-B6B3-4FF9-B243-54ECE3E10066}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{1B8ABA62-74F0-47ED-B18C-A43128E591B8}) (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (HKLM-x32\...\{0B0F231F-CE6A-483D-AA23-77B364F75917}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (HKLM\...\{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{9D56775A-93F3-44A3-8092-840E3826DE30}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{C66824E4-CBB3-4851-BB3F-E8CFD6350923}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{80956555-A512-4190-9CAD-B000C36D6B6B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{EB4DF488-AAEF-406F-A341-CB2AAA315B90}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (HKLM\...\{DA54F80E-261C-41A2-A855-549A144F2F59}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{19BA08F7-C728-469C-8A35-BFBD3633BE08}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (HKLM-x32\...\{92EA4134-10D1-418A-91E1-5A0453131A38}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{D436F577-1695-4D2F-8B44-AC76C99E0002}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{3336F667-9049-4D46-98B6-4C743EEBC5B1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (HKLM-x32\...\{34F4D9A4-42C2-4348-BEF4-E553C84549E7}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{682B3E4F-696A-42DE-A41C-4C07EA1678B4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{200FEC62-3C34-4D60-9CE8-EC372E01C08F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (HKLM-x32\...\{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{A726AE06-AAA3-43D1-87E3-70F510314F04}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{AAF454FC-82CA-4F29-AB31-6A109485E76E}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version: - Yahoo Inc.)
Zinio Reader 4 (HKLM-x32\...\{2CE4119A-FF7F-3EE6-42A4-EB53C6057FFE}) (Version: 4.0.2811 - Zinio LLC) Hidden
Zinio Reader 4 (HKLM-x32\...\ZinioReader4.9310D8F796442B71068C511E15D70 529A702D19D.1) (Version: 4.0.2811 - Zinio LLC)
Zuma Deluxe (HKLM-x32\...\WT087533) (Version: 2.2.0.95 - WildTangent) Hidden

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2015-04-06] (Online Media Technologies Ltd. -> Online Media Technologies Ltd.) [File not signed]
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-05-11] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2022-11-02] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-11-27 03:38 - 2020-11-27 03:38 - 000961536 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.Co re.dll
2020-11-27 03:38 - 2020-11-27 03:38 - 001446400 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.Core.dll
2022-05-19 17:21 - 2022-05-19 17:21 - 000073216 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\FixBootSector.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000325632 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\GpsImgWrapper.dll
2020-11-18 09:14 - 2020-11-18 09:14 - 117340672 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libcef.dll
2020-11-18 07:40 - 2020-11-18 07:40 - 000323072 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libegl.dll
2020-11-18 07:40 - 2020-11-18 07:40 - 005441536 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libglesv2.dll
2022-03-08 13:31 - 2022-03-08 13:31 - 063799296 _____ () [File not signed] C:\Program Files (x86)\Plantronics\Spokes3G\libcef.dll
2010-05-11 23:46 - 2010-05-11 23:46 - 000873984 _____ (Advanced Micro Devices, Inc.) [File not signed] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
2010-05-11 23:45 - 2010-05-11 23:45 - 000003584 _____ (Advanced Micro Devices, Inc.) [File not signed] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamenu.dll
2022-05-19 17:21 - 2022-05-19 17:21 - 001976832 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Garmin\Express\XercesLib.dll
2022-05-19 17:29 - 2022-05-19 17:29 - 000234496 _____ (Dynastream Innovations Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\ANT_WrappedLib.dll
2010-11-22 23:16 - 2010-11-22 23:16 - 000153088 _____ (Eastman Kodak Company) [File not signed] [File is in use] C:\Windows\assembly\GAC_32\Inkjet.Hardware\5.4.6.4 __5cc7ad8abd921325\Inkjet.Hardware.dll
2010-11-22 23:16 - 2010-11-22 23:16 - 000031744 _____ (Eastman Kodak Company) [File not signed] [File is in use] C:\Windows\assembly\GAC_32\Inkjet.Statistics\5.4.6 .4__5cc7ad8abd921325\Inkjet.Statistics.dll
2010-11-22 23:16 - 2010-11-22 23:16 - 000067072 _____ (Eastman Kodak Company) [File not signed] [File is in use] C:\Windows\assembly\GAC_32\Inkjet.Utilities\5.4.6. 4__5cc7ad8abd921325\Inkjet.Utilities.dll
2010-11-22 23:16 - 2010-11-22 23:16 - 000058368 _____ (Eastman Kodak Company) [File not signed] [File is in use] C:\Windows\assembly\GAC_MSIL\Inkjet.Automation\5.4 .6.4__5cc7ad8abd921325\Inkjet.Automation.dll
2010-11-22 23:16 - 2010-11-22 23:16 - 000036864 _____ (Eastman Kodak Company) [File not signed] [File is in use] C:\Windows\assembly\GAC_MSIL\Inkjet.Diagnostics\5. 4.6.4__5cc7ad8abd921325\Inkjet.Diagnostics.dll
2010-11-22 23:16 - 2010-11-22 23:16 - 000121856 _____ (Eastman Kodak Company) [File not signed] [File is in use] C:\Windows\assembly\GAC_MSIL\Inkjet.Localization\5 .4.6.4__5cc7ad8abd921325\Inkjet.Localization.dll
2010-06-21 13:14 - 2010-06-21 13:14 - 000075264 _____ (Eastman Kodak Company) [File not signed] C:\Program Files (x86)\Kodak\AiO\Center\Logger.dll
2022-05-19 17:21 - 2022-05-19 17:21 - 002711552 _____ (Garmin International) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\legacyio.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000343552 _____ (Garmin International, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\IMG_GPSMAP.dll
2022-05-19 17:21 - 2022-05-19 17:21 - 000425472 _____ (Garmin) [File not signed] C:\Program Files (x86)\Garmin\Express\XMLdll.dll
2010-05-19 12:44 - 2010-05-19 12:44 - 000033792 _____ (Hewlett-Packard Company) [File not signed] c:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
2010-05-19 12:44 - 2010-05-19 12:44 - 000110592 _____ (Hewlett-Packard Company) [File not signed] c:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-core-file-l1-2-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-core-file-l2-1-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
Reply With Quote
  #10  
Old December 8th, 2022, 07:39 AM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Farbar Recovery - Addition Text, Part 2

2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-convert-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-environment-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-heap-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-locale-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-math-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-string-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-time-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\api-ms-win-crt-utility-l1-1-0.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\msvcp140.d ll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\MSVCP140.dll
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\ucrtbase.d ll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\ucrtb ase.DLL
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\ucrtbase.d ll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\ucrtbase.DLL
2021-11-17 23:47 - 2021-11-17 23:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\vcruntime1 40.dll] C:\Program Files (x86)\AVG\Antivirus\1033\avg.local_vc142.crt\VCRUN TIME140.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\vcruntime1 40.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\VCRUNTIME140.dll
2022-12-05 08:54 - 2022-12-05 08:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files (x86)\AVG\Antivirus\avg.local_vc142.crt\vcruntime1 40_1.dll] C:\Program Files (x86)\AVG\Antivirus\defs\22120504\avg.local_vc142. crt\VCRUNTIME140_1.dll
2017-12-10 03:05 - 2017-10-27 11:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSyste m\NvStereo\_nvstapisvr64.dll
2022-03-08 13:48 - 2022-03-08 13:48 - 000158208 _____ (Plantronics, Inc.) [File not signed] C:\Program Files (x86)\Plantronics\Spokes3G\PLTLyncInterface.dll
2022-05-19 17:25 - 2022-05-19 17:25 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\DSI_SiUSBXp_3_1.DLL
2020-11-18 07:39 - 2020-11-18 07:39 - 000843264 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\chrome_elf.dll
2022-05-07 23:55 - 2022-09-06 03:11 - 001245184 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\platforms\qwindows.dll
2022-05-07 23:55 - 2022-09-06 03:12 - 005686784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\Qt5Core.dll
2022-05-07 23:55 - 2022-09-06 03:12 - 006005760 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\Qt5Gui.dll
2022-05-07 23:55 - 2022-09-06 03:12 - 001070080 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\Qt5Network.dll
2022-05-07 23:55 - 2022-09-06 03:12 - 005506048 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\Qt5Widgets.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Min imal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Net work\avgSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yahoo.com/
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK/1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {38D3E3F9-E6E0-4F73-8033-CF549EE8D56D} URL = hxxp://www.ask.com/web?q={searchterms}&l=dis&o=ushpd
SearchScopes: HKLM -> {8865D0A7-BB75-46CE-A2C2-9301BAAF026D} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM -> {E95D2289-746A-411F-B7BB-1DC5FBD42FF7} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {38D3E3F9-E6E0-4F73-8033-CF549EE8D56D} URL = hxxp://www.ask.com/web?q={searchterms}&l=dis&o=ushpd
SearchScopes: HKLM-x32 -> {8865D0A7-BB75-46CE-A2C2-9301BAAF026D} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 -> {E95D2289-746A-411F-B7BB-1DC5FBD42FF7} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKU\S-1-5-21-1261503980-111145729-2002240722-1000 -> {38D3E3F9-E6E0-4F73-8033-CF549EE8D56D} URL = hxxp://www.ask.com/web?q={searchterms}&l=dis&o=ushpd
SearchScopes: HKU\S-1-5-21-1261503980-111145729-2002240722-1000 -> {8865D0A7-BB75-46CE-A2C2-9301BAAF026D} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKU\S-1-5-21-1261503980-111145729-2002240722-1000 -> {8C373531-B3EF-488A-9C77-443B14FE0725} URL = hxxps://search.yahoo.com/search?p={searchTerms}&intl=us&fr=yset_ie_syc_orac le&type=orcl_default&partnerexternal-oracle=external-oracle
SearchScopes: HKU\S-1-5-21-1261503980-111145729-2002240722-1000 -> {E95D2289-746A-411F-B7BB-1DC5FBD42FF7} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> No File
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-22] (Google Inc -> Google Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2022-03-31] (McAfee, LLC -> McAfee, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckP luginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\ssv.dll [2022-11-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-22] (Google Inc -> Google Inc.)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2022-03-31] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\jp2ssv.dll [2022-11-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckP lugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-22] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-22] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-1261503980-111145729-2002240722-1000 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: HKLM-x32 {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: HKLM-x32 {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: HKLM-x32 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - No CLSID Value
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-10-16] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2018-12-03 11:54 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\J ava\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Windows\system32;C:\Windows;C:\Windows\Sys tem32\Wbem;C:\Windows\System32\WindowsPowerShell\v 1.0\;c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;c:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;c:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;c:\Program Files (x86)\Common Files\Roxio Shared\12.0\DLLShared\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\VHStoDVD\DLLShared\;C:\Program Files (x86)\Plantronics\Spokes3G\
HKU\S-1-5-21-1261503980-111145729-2002240722-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Plyler\AppData\Roaming\Microsoft\Windows\ Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.40.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Pol icies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)

BITS: {BF772853-F3FB-4613-8C3F-5B62EA25CD28} - (HPCeeConnect) -> [NotifyCmdLine: C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe "C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe" HPCeeConnect (null)] [files:http://ceement.rssx.hp.com/CeementWA/index.jsp -> C:\Users\Plyler\hpTemp.txt]
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{116D6E2D-DC5E-4587-96A9-5B986FE55A6C}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector\PDR8.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{3643A19C-2654-42EC-A1D2-88F92513B441}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\CinemaNow\CinemaNow.exe (Sonic Solutions -> Sonic Solutions)
FirewallRules: [{83E4B018-729B-4CF5-A817-5E29CE4D3F2F}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\CinemaNow\CinemaNow.exe (Sonic Solutions -> Sonic Solutions)
FirewallRules: [{C42F13F8-DFD0-4D70-B967-EA3D0EF08A1A}] => (Allow) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe (Sonic Solutions -> CinemaNow Inc.)
FirewallRules: [{61372E4E-3CD9-4233-A01C-E39633D9595F}] => (Allow) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe (Sonic Solutions -> CinemaNow Inc.)
FirewallRules: [{58B944BF-A361-46BB-A539-F4FD955EB731}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartMusic.exe => No File
FirewallRules: [{AB8FA229-8839-4693-BFC6-7660F152FC77}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartPhoto.exe => No File
FirewallRules: [{FE5B613B-22E7-42A1-BAA4-E634862F9234}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartVideo.exe => No File
FirewallRules: [{3753A977-BDF6-4365-9134-875F596AE29E}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\TSMAgent.exe => No File
FirewallRules: [{3954AA24-1911-4A99-934B-D2D582F644EC}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\CLML\CLMLSvc.exe => No File
FirewallRules: [{859CEAA6-7CBC-4ACB-B7C5-EDB40A664F20}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{85D3C6E7-2DA3-441C-BB29-1597EB929E2A}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\Photo\HPMediaSmartPhoto.exe (CyberLink -> CyberLink Corp.) [File not signed]
FirewallRules: [{CC80DE17-F8E7-4774-9241-CD4A8ACA97A1}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\Video\HPMediaSmartVideo.exe (CyberLink -> CyberLink Corp.) [File not signed]
FirewallRules: [{8EA0C838-FB18-4C33-82FB-197DF76F3CDA}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\HPTouchSmartMusic.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{B249ABB5-93C8-4845-BE7D-D55B427D198E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1A9305A2-3C1F-4E81-864B-9A75F82BCAD6}] => (Allow) C:\Windows\system32\svchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{17BDBFDF-D0B1-4C9C-B921-0EA79F9A0CAD}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0D3D4ED3-37B6-4D6E-B70E-C84824AF181E}] => (Allow) C:\Program Files (x86)\AVG\AVG10\avgmfapx.exe => No File
FirewallRules: [{8B0E23A7-F51E-44F6-B6E2-E4D71737CC27}] => (Allow) C:\Program Files (x86)\AVG\AVG10\avgmfapx.exe => No File
FirewallRules: [{9D08147B-3AC4-42ED-AD52-2F231B1AB4D0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8C2D2C11-8FEF-44B7-8B50-62C97CFD194B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0CCCBCC8-DC2A-4481-9992-C5762EA75CB3}] => (Allow) LPort=9322
FirewallRules: [{08162A3B-08D3-4DD0-A140-03DC82942B40}] => (Allow) LPort=5353
FirewallRules: [{8C01264F-8E76-4D81-BCDF-0AC2252F3428}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E2011BFA-C902-4EC7-91F5-522398154CAB}] => (Allow) LPort=2869
FirewallRules: [{7EE6DDDA-0D03-4635-B2AE-6C1A5C11EE0F}] => (Allow) LPort=1900
FirewallRules: [{6E9C8EA3-2028-4B95-AF0E-1AF944B7CA61}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe => No File
FirewallRules: [{58F0B44D-3252-460C-9F12-AC718051533D}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe => No File
FirewallRules: [{650526B9-E649-4B56-A7C8-029EA559301C}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChec ker.exe (HP Inc. -> HP Inc.)
FirewallRules: [{5E1263F2-646E-44C1-AD1B-73615DB44797}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe => No File
FirewallRules: [{84B3B6E2-5FEC-4D04-9F60-43887D32EEAA}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe => No File
FirewallRules: [{F106FE14-6589-42FF-A693-2F3C4C997699}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe => No File
FirewallRules: [{C4227E63-8695-4E0D-8B8A-961AB0BEFBE4}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe => No File
FirewallRules: [{C4D37FF8-7554-457A-B7B9-E449CC284FFF}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe => No File
FirewallRules: [{DF09BF65-6051-4DD6-AF64-8B54D89B3E65}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe => No File
FirewallRules: [{54681544-87D3-489E-B248-672D38D4CD11}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe => No File
FirewallRules: [{DC86C9B4-9F89-4DE0-8799-832E0F551098}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe => No File
FirewallRules: [{958FF716-1E1E-439A-ADF8-48557419F1A8}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe => No File
FirewallRules: [{24ED8A21-DD0B-475E-9E28-EA0F8F394EC7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe => No File
FirewallRules: [{6910E761-BDEF-46B9-B7C2-6D5A5D5F4886}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe => No File
FirewallRules: [{1063B2F4-A753-4D3C-B010-AF53AFA424D9}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe => No File
FirewallRules: [{C91EB4BC-C7AE-436F-893E-429EAE9ACD85}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe => No File
FirewallRules: [{25DF00F9-C8E4-48F3-9456-E51B9FA76A82}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8620\bin\FaxApplications.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{D0E59823-39B3-4D81-8A1F-E3C041F78976}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8620\bin\DigitalWizards.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{73C767C2-06DB-4F83-BA29-D51986C4CBED}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8620\bin\SendAFax.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{5B9A0EAC-4AF8-472A-B8AB-AFC15D13AF2A}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8620\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{29AF9167-F580-48BE-A764-DB8834D0AB07}] => (Allow) LPort=5357
FirewallRules: [{0010CFD3-F06F-4422-BA29-E0F3E508277F}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8620\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{2C83C760-4CFA-4826-B740-219820540C8E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FAAE84FD-E02D-494D-AFBD-1FDFBEEA01E2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{97990460-B0A1-4258-90B5-21BEFB894CD2}] => (Allow) LPort=9322
FirewallRules: [{17BF6C57-DCF1-412C-AF45-D3559BB10E0B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C412B042-B62C-4555-BFFA-75506EAC942A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1BF50079-1A2E-4327-9699-81E1389CCC67}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{531F8F1D-F826-4E08-BF9B-A738B4DA405D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{201094B7-D16F-44DD-AD70-D072BE37CCCB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe => No File
FirewallRules: [{ECC953FE-23EC-4DC9-9BEB-45BA53394F20}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe => No File
FirewallRules: [{87F832DB-7696-4DBC-9E11-9CFC832B3A6D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D926BCE8-6CA3-4685-95BB-3CEDC5ED4FD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{38F564BD-8D6C-4F33-B386-0CAA9C673E49}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{69468E7A-EECD-4EF5-91C7-D0CFF65A49A9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{15CB8D1D-6B93-4E7C-BBA8-EF45B78713B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{D2EBDFE8-ADC7-4E12-BCED-9B92B1F92770}C:\program files (x86)\dvdfab 10\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab 10\dvdfab.exe => No File
FirewallRules: [UDP Query User{55BF365A-5201-413C-83C5-6822E87B0495}C:\program files (x86)\dvdfab 10\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab 10\dvdfab.exe => No File
FirewallRules: [TCP Query User{2A7B7335-F9B3-41C1-B5DE-6B98CB9F7E4C}C:\program files (x86)\webshots\wallpaper\webshots.exe] => (Allow) C:\program files (x86)\webshots\wallpaper\webshots.exe (Webshots) [File not signed]
FirewallRules: [UDP Query User{DA9C894B-9F5C-4AAC-B69D-7C52C6842B4A}C:\program files (x86)\webshots\wallpaper\webshots.exe] => (Allow) C:\program files (x86)\webshots\wallpaper\webshots.exe (Webshots) [File not signed]
FirewallRules: [{656E6BCD-93B8-47FB-B2AC-37425C8A376B}] => (Allow) C:\Users\Plyler\AppData\Roaming\mjusbsp\magicJack. exe (magicJack, L.P. -> magicJack L.P.)
FirewallRules: [{ED09AAF8-A839-4CBD-B189-434E5B17E6AE}] => (Allow) C:\Users\Plyler\AppData\Roaming\mjusbsp\magicJack. exe (magicJack, L.P. -> magicJack L.P.)
FirewallRules: [{5B48AB42-15BD-4DC6-BC31-898FAD9C6DA2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{31C60868-DBF0-4AF6-AACB-714EEEC72458}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS632B\HPDiagn osticCoreUI.exe => No File
FirewallRules: [{985408E5-0E75-4CF7-B15B-4128C0CC4B69}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS632B\HPDiagn osticCoreUI.exe => No File
FirewallRules: [TCP Query User{7ADCB4E6-8120-4FEA-BEB7-FB8115AE6588}C:\program files (x86)\dvdfab 11\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab 11\dvdfab.exe => No File
FirewallRules: [UDP Query User{B7CBE728-7CF7-49EF-8D08-03B0FE3E37F7}C:\program files (x86)\dvdfab 11\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab 11\dvdfab.exe => No File
FirewallRules: [{752EFCA8-B4E5-493F-BB3A-8D0FDD7D1CFA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A035B6AC-A1A6-4F53-98EF-602A564B4998}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7E1F404F-E072-431D-9B6B-8523FF04CFA4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{957664B6-2860-4A20-A4A7-F448F4F2273F}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS2B98\HPDiagn osticCoreUI.exe => No File
FirewallRules: [{DDADBFD6-EFA0-4079-84C4-54D757D4DBE3}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS2B98\HPDiagn osticCoreUI.exe => No File
FirewallRules: [{F982546E-FAAF-4162-9178-D7B30CBCE87C}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS2D74\HPDiagn osticCoreUI.exe => No File
FirewallRules: [{8065AAD8-39AC-4D37-8599-131B3048EE21}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS2D74\HPDiagn osticCoreUI.exe => No File
FirewallRules: [{4CA14E32-E249-44B4-B41F-F583315A537E}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS2DB3\HPDiagn osticCoreUI.exe => No File
FirewallRules: [{C4B75127-9F03-47D7-B0E3-4B79A8A6A97C}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS2DB3\HPDiagn osticCoreUI.exe => No File
FirewallRules: [TCP Query User{C4BA5396-0845-486E-A499-9D339CF86130}C:\program files (x86)\dvdfab\dvdfab 12\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab\dvdfab 12\dvdfab.exe (DVDFab Software Inc. -> DVDFab.cn)
FirewallRules: [UDP Query User{E72A8001-4569-48AA-ABC6-CE23757BCBBC}C:\program files (x86)\dvdfab\dvdfab 12\dvdfab.exe] => (Allow) C:\program files (x86)\dvdfab\dvdfab 12\dvdfab.exe (DVDFab Software Inc. -> DVDFab.cn)
FirewallRules: [{2ABE27EF-5A8F-4E8D-8BE2-FF52871BB563}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{B1F39137-CA34-4909-B712-B8D36A90092C}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{047C8E2C-5DE1-4B44-A286-86033EDBF546}] => (Allow) C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{41729388-AEA2-432B-BCD7-68497C7B0E56}] => (Allow) C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{E04BB3F1-DEBE-4DD8-9CB6-3B79BF0A51B5}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{E8158695-161C-44C1-A99B-B60D2376612E}C:\program files\dvdfab\dvdfab 12\dvdfab64.exe] => (Allow) C:\program files\dvdfab\dvdfab 12\dvdfab64.exe (DVDFab Software Inc. -> DVDFab.cn)
FirewallRules: [UDP Query User{6394AADE-6CF2-4992-A857-F5F2E2413E80}C:\program files\dvdfab\dvdfab 12\dvdfab64.exe] => (Allow) C:\program files\dvdfab\dvdfab 12\dvdfab64.exe (DVDFab Software Inc. -> DVDFab.cn)
FirewallRules: [{4AD27272-B894-4898-B17F-912B59F0BB45}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS274D\HPDiagn osticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{FA27EB76-6664-4EEE-A8F0-7CB63DA57382}] => (Allow) C:\Users\Plyler\AppData\Local\Temp\7zS274D\HPDiagn osticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{9319FA1E-A0EB-4275-BEFF-3EECA46FC141}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{AD22C055-477A-4049-BF22-36385C5D2874}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{50FB380C-703F-4696-A3B6-B5CB10EE834A}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetect ion3.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
FirewallRules: [{B3A9AACF-DAD1-4915-85C8-79E2F7A06C62}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

17-11-2022 00:00:03 Scheduled Checkpoint
25-11-2022 00:00:01 Scheduled Checkpoint
02-12-2022 00:00:01 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/01/2022 04:04:07 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (12/01/2022 04:04:07 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (11/13/2022 12:00:24 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (11/13/2022 12:00:24 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (11/12/2022 11:52:21 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (11/12/2022 11:52:21 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (11/10/2022 09:33:46 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(HP\032Officejet\032Pro\0328620\0 32[D22930]._scanner._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (11/10/2022 09:33:46 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(HP\032Officejet\032Pro\0328620\0 32[D22930]._pdl-datastream._tcp.local.) active for over two minutes. This places considerable burden on the network.


System errors:
=============
Error: (12/05/2022 11:13:20 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} did not register with DCOM within the required timeout.

Error: (11/17/2022 04:50:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (11/17/2022 04:50:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (11/09/2022 11:08:42 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk8\DR8.

Error: (11/09/2022 09:55:05 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Windows Search service hung on starting.

Error: (11/09/2022 09:52:51 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanmanServer service.

Error: (11/09/2022 09:52:21 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AVG Antivirus service.

Error: (11/09/2022 09:51:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The %1!s! Update Service (avg) service failed to start due to the following error:
The system cannot find the file specified.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 6.02 07/21/2010
Motherboard: FOXCONN 2AB1
Processor: AMD Athlon(tm) II X2 255 Processor
Percentage of memory in use: 57%
Total physical RAM: 16383.28 MB
Available physical RAM: 6950.94 MB
Total Virtual: 32764.7 MB
Available Virtual: 23520.32 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:584.11 GB) (Free:232.66 GB) (Model: Hitachi HDS721064CLA332 SATA Disk Device) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:11.96 GB) (Free:1.4 GB) (Model: Hitachi HDS721064CLA332 SATA Disk Device) NTFS ==>[system with boot components (obtained from drive)]
Drive g: (Thom's New HD) (Fixed) (Total:931.51 GB) (Free:834.57 GB) (Model: WD Elements 1042 USB Device) NTFS
Drive n: (Thom's New 2) (Fixed) (Total:3725.9 GB) (Free:3716.79 GB) (Model: Seagate BUP BK USB Device) NTFS
Drive o: (Elements) (Fixed) (Total:9313.97 GB) (Free:7952.47 GB) (Model: WD Elements 25A3 USB Device) NTFS

\\?\Volume{758168c2-e5b6-11df-b5c6-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

================================================== ========
Disk: 0 (Size: 596.2 GB) (Disk ID: 6F2BE2A0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=584.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12 GB) - (Type=07 NTFS)

================================================== ========
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 0002846E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

================================================== ========
Disk: 7 (Size: 9314 GB) (Disk ID: 16F2A91F)

Partition: GPT.

================================================== ========
Disk: 8 (Size: 3726 GB) (Disk ID: A3A61706)

Partition: GPT.

==================== End of Addition.txt =======================
Reply With Quote
  #11  
Old February 26th, 2023, 07:06 AM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
I posted the split files you requested...I imagine you are swamped, but any ideas yet???

Many thanks,

The Thom-Guy
Reply With Quote
  #12  
Old March 6th, 2023, 05:37 PM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
I've done the stuff you requested...had any time to take a look??? Thanks a ton!
Reply With Quote
  #13  
Old March 6th, 2023, 05:57 PM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 52,284
Hi again,

Sorry, delayed because I had a stent put in my heart, which required blood thinners, which led to a serious stroke, and I was diagnosed and have been receiving treatment for lung cancer, and be darned if I also don't have macular degeneration, which will eventually cause me to go blind, so so good so far. But my skills at malware removal have suffered too.

Reviewing your logs, the only negative item I see is McAfee Web Advisor, which is a form of aware. So go ahead and uninstall it, being sure to reboot after.
Reply With Quote
  #14  
Old March 9th, 2023, 07:27 PM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Dude - damn!!! So sorry to hear about your health issues!!! I know how some of that stuff goes (I gotta stent too) and have had a heart attack and triple bypass surgery...but all that additional stuff??? Sheesh...thanks for getting back to me...I'll uninstall the McAfee and see if that helps after reboot...I'll let you know...again, thanks a ton for getting back to me...take care and feel better...
Reply With Quote
  #15  
Old March 11th, 2023, 07:57 AM
ThomGuy ThomGuy is offline
Senior Member
 
Join Date: Apr 2004
Posts: 228
Welp, unfortunately uninstalling the McAfee Web Advisor did NOT help with my pop-ups...SIGH...oh well.....thanks anyhow!!! Appreciate your effort, that's for sure...take care of yourself...I'll live with the pop-ups...they're just a little aggravating...
Reply With Quote
Reply

Bookmarks

Topic Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 05:30 AM.