My computer is experiencing massive malware. The symptoms are constant popups and programs automatically starting that I did not install. They eat up my computer memory and make it so that it is barely usable. I ran FRST and generated the FRST.txt and Addition.txt files. The FRST.txt is too large to post in the message box. Per the instructions of the website I have attached the FRST.txt file. If there is a preferred method other than this to communicate the file, please advise. Here is the Addition.txt file:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2015 01
Ran by Max at 2015-05-08 18:42:52
Running from C:\Users\Max\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3369700690-3850376273-3648611264-500 - Administrator - Disabled)
Guest (S-1-5-21-3369700690-3850376273-3648611264-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3369700690-3850376273-3648611264-1003 - Limited - Enabled)
Max (S-1-5-21-3369700690-3850376273-3648611264-1001 - Administrator - Enabled) => C:\Users\Max
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ActiveState Komodo Edit 8.5.4 (HKLM-x32\...\{E65B87D8-30C4-4FB0-8C24-AFD64950A881}) (Version: 8.5.4 - ActiveState Software Inc.)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AnySend (HKLM-x32\...\ASPackage) (Version: 1.0.0.0 - CMI Limited) <==== ATTENTION!
Apple Application Support (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
BlockAndSurf (HKLM-x32\...\0BB5A864-B491-0C48-FE83-83E19A81C14D) (Version: - BlockAndSurf-software) <==== ATTENTION
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BubbleSound (HKLM\...\BubbleSound) (Version: 1.0 - BubbleSound) <==== ATTENTION!
Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
Chart Subtraction (HKLM-x32\...\wincheck) (Version: 1.0.0.0 - Chart Subtraction)
CinemaPlus-3.2cV27.04 (HKLM-x32\...\CinemaPlus-3.2cV27.04) (Version: 1.36.01.22 - Cinema PlusV27.04) <==== ATTENTION
CloudScout Parental Control version 1.3 (HKLM-x32\...\{E1527582-8509-4011-B922-29E3FB548882}_is1) (Version: 1.3 - www.CloudGuard.me) <==== ATTENTION
Command LAN (HKLM-x32\...\ConvertAd) (Version: 1.0.0.0 - Command LAN) <==== ATTENTION
Consumer Input (remove only) (HKLM-x32\...\Consumer Input Installer) (Version: - Compete Inc.) <==== ATTENTION
Consumer Input Update Helper (x32 Version: 1.3.25.307 - Compete Inc.) Hidden <==== ATTENTION
Crossbrowse (HKLM-x32\...\Crossbrowse) (Version: 39.5.2171.95 - The Crossbrowse Authors) <==== ATTENTION!
FlashBeat (HKLM-x32\...\FlashBeat) (Version: - ) <==== ATTENTION!
GamesDesktop 025.493 (HKLM-x32\...\gmsd_us_493_is1) (Version: - GAMESDESKTOP) <==== ATTENTION
GUPlayer (remove only) (HKLM-x32\...\GUPlayer) (Version: - )
Infonaut 1.10.0.14 (HKLM-x32\...\Infonaut_1.10.0.14) (Version: 1.10.0.14 - Infonaut)
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Lights Cinema 1.3betaV16.04 (HKLM-x32\...\Lights Cinema 1.3betaV16.04) (Version: 1.36.01.22 - Cinema PlusV16.04)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 37.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 en-US)) (Version: 37.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.0.3 - Mozilla)
MSS version 1.02 (HKLM-x32\...\{365C5DC2-679A-4A5D-B40B-5096A49087A8}_is1) (Version: 1.02 - )
MyPC Backup (HKLM-x32\...\OLBPre) (Version: - MyPC Backup) <==== ATTENTION
News Alert (HKLM-x32\...\BreakingNewsAlert) (Version: 2.7.64 - Useful Technology)
OneSoftPerDay 025.1014 (HKLM-x32\...\ospd_us_1014_is1) (Version: - ONESOFTPERDAY)
Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.3.1.7 - PCUtilities Software Limited) <==== ATTENTION
Papas Pizzeria (HKLM-x32\...\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}) (Version: - ) <==== ATTENTION
PepperZip 2.0 (HKLM-x32\...\PepperZip) (Version: 2.0 - PepperWare Co.Ltd.) <==== ATTENTION
PriceLeSs (HKLM-x32\...\{75F9BF4A-AF67-A478-A37B-31D73186D3F3}) (Version: - ) <==== ATTENTION
Quick Ref 1.10.0.12 (HKLM-x32\...\QuickRef_1.10.0.12) (Version: 1.10.0.12 - Quick Ref) <==== ATTENTION!
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
SafeGuard (HKLM-x32\...\SafeGuard) (Version: 1.0.2.45 - SafeGuard)
SDU version 3.8 (HKLM-x32\...\{A23B547D-36B0-4B85-B68A-AADF6C9A723B}_is1) (Version: 3.8 - )
Search module (HKLM-x32\...\Search module) (Version: - Goobzo)
Search Module Plus (HKLM-x32\...\Search Module Plus) (Version: - Goobzo)
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.22.26.1 - Client Connect LTD) <==== ATTENTION
shopperz 2.0.0.457 (HKLM\...\{5081D2D4-1637-404c-B74F-50526718257D}_is1) (Version: 2.0.0.457 - shopperz) <==== ATTENTION
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SmartWeb (HKLM-x32\...\SmartWeb) (Version: 8.0.9 - SoftBrain Technologies Ltd.) <==== ATTENTION
Software Version Updater (HKU\S-1-5-21-3369700690-3850376273-3648611264-1001\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.4.2 - ) <==== ATTENTION
Tweaking.com - Registry Backup (HKLM-x32\...\Tweaking.com - Registry Backup) (Version: 2.1.1 - Tweaking.com)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WAN Telephone System (HKLM-x32\...\igsc) (Version: 1.0.0.0 - WAN Telephone System)
Web Bar 2.0.5527.25142 (HKLM\...\{0BCE8B0A-1E76-44E5-9909-3CF804D92E4D}_is1) (Version: 2.0.5527.25142 - Web Bar Media) <==== ATTENTION!
Wide Area Network Cyan Magenta Yellow Black (HKLM-x32\...\SoftwareUpdater) (Version: 1.0.0.0 - Wide Area Network Cyan Magenta Yellow Black)
WinPrograms (HKLM-x32\...\WebWatcherInstall) (Version: - )
WinPrograms (HKLM-x32\...\WinPrograms) (Version: - )
WSE_Taplika (HKLM-x32\...\WSE_Taplika) (Version: - WSE_Taplika) <==== ATTENTION!
XAMPP (HKLM-x32\...\xampp) (Version: 5.6.3-0 - Bitnami)
youtubeadblocker (HKLM-x32\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version: - ) <==== ATTENTION
YTDownloader (HKLM-x32\...\YTDownloader) (Version: - YTDownloader) <==== ATTENTION
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
03-04-2015 20:20:40 Windows Update
11-04-2015 13:10:25 Scheduled Checkpoint
14-04-2015 20:17:53 Windows Update
21-04-2015 05:13:45 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 06:25 - 2013-08-22 06:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {08325276-8D21-41CC-8899-0ECFF4243760} - System32\Tasks\Installer_geforce => C:\Users\Max\AppData\Local\Installer\Installgeforce_5348\DCytdkietut_tutdk_setup.exe [2015-05-08] ()
Task: {118F322B-7EB0-42F4-A42B-A486AE0987D4} - System32\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-5_user => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-5.exe [2015-04-27] (Cinema PlusV27.04) <==== ATTENTION
Task: {1FA9B445-350F-4835-BF2C-96AF95425380} - System32\Tasks\SysHealth_Controller_Mon => C:\WINDOWS\SysFilesController\SysFiles_backup.exe [2015-04-14] ()
Task: {22BFBADB-0EDF-4ACD-929C-738D55B49BC5} - System32\Tasks\avaavaevy => C:\Users\Max\AppData\Local\avaavaevy\avaavaevy.exe [2015-04-12] () <==== ATTENTION
Task: {25F4624A-5E02-4FC2-849C-651C18964FDB} - System32\Tasks\ConsumerInputUpdateTaskMachineUA => C:\Program Files (x86)\Consumer Input\Update\ConsumerInputUpdate.exe [2015-04-16] (ConsumerInput) <==== ATTENTION
Task: {35DB4975-C9FE-4426-825A-478EF2510D46} - System32\Tasks\SMW_UpdateTask_Time_3134393136333034302d23787845322a5b3434322d57 => Wscript.exe //B "C:\ProgramData\SearchModulePlus\smhe.js" smu.exe /invoke /f:check_services /l:0 <==== ATTENTION
Task: {389410C7-397E-4EC4-9B17-E03F997868F5} - System32\Tasks\SMWUpd => C:\Program Files\Common Files\Goobzo\GBUpdate\updater.exe [2015-05-08] (Goobzo) <==== ATTENTION
Task: {3B00FEA5-0535-4A1B-BA5D-B1073D2621B7} - System32\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-1-7 => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-1-7.exe [2015-04-16] (Cinema PlusV16.04) <==== ATTENTION
Task: {3DF3D58B-A67E-4D8B-A4B9-925801587DD9} - System32\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-4 => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-4.exe [2015-04-27] (Cinema PlusV27.04) <==== ATTENTION
Task: {42625468-6C7A-4750-B778-1DF66BCE37D8} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)
Task: {4450DD31-BBE3-4245-9874-4DDC82D278F4} - System32\Tasks\NetEngine => C:\ProgramData\NetEngine\bin\D10\netengine.exe [2015-05-08] () <==== ATTENTION
Task: {45CE87FF-3B4F-482A-AB8B-FC161C90290D} - System32\Tasks\WebBarLaunchTask => C:\Program Files\WebBar\wbsvc.exe [2015-02-18] (Web Bar Media)
Task: {53580A58-E892-4F88-9B0D-5A628EF58968} - System32\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-1-6 => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-1-6.exe [2015-04-16] (Cinema PlusV16.04) <==== ATTENTION
Task: {578EE582-7222-4E19-9504-C327F1587FEE} - System32\Tasks\ConsumerInputUpdateTaskMachineCore => C:\Program Files (x86)\Consumer Input\Update\ConsumerInputUpdate.exe [2015-04-16] (ConsumerInput) <==== ATTENTION
Task: {5A0F9FCA-6AF3-49C0-8BC5-0E0DFAC32CCE} - System32\Tasks\Inst_Rep => C:\Users\Max\AppData\Local\Installer\Install_18256\DCytdkietut_tutdk_setup.exe [2015-05-08] ()
Task: {5C077C66-CDAF-4194-9A58-5F56EE2A758A} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {5E1108CC-B5F4-4408-B7E0-E326E247299A} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro 3.84\OptProLauncher.exe [2015-04-22] () <==== ATTENTION
Task: {5FF35EF8-6D15-4142-AC6D-56932ACA1076} - System32\Tasks\LKVYT => C:\Users\Max\AppData\Roaming\LKVYT.exe [2015-04-16] (Cinema PlusV16.04) <==== ATTENTION
Task: {63EF171F-C123-437E-A670-5CAE712A55B1} - System32\Tasks\CIMT_daily_S-1-5-21-3369700690-3850376273-3648611264-1001 => C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe [2015-04-16] () <==== ATTENTION
Task: {683E56B8-60CC-405C-AABE-AB4541659A46} - System32\Tasks\KCXOIF => C:\ProgramData\e29c40da53af42a3895e10c22c3d76c2\e29c40da53af42a3895e10c22c3d76c2.exe [2015-04-17] ()
Task: {68A8FEA5-C698-4719-9D53-848A32EF868D} - System32\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-10_user => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-10.exe [2015-04-16] (Cinema PlusV16.04) <==== ATTENTION
Task: {691B35C8-3301-4848-A522-EECA18C017DF} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {6B371B9D-DE0B-432A-ACDE-846094D996E7} - System32\Tasks\gtaUpt => C:\Program Files\shopperz\zaeed.bat [2015-03-11] ()
Task: {71973511-334E-4A5A-998C-3A31D522AD4E} - System32\Tasks\XBNK => C:\Users\Max\AppData\Roaming\XBNK.exe [2015-04-16] (Cinema PlusV16.04) <==== ATTENTION
Task: {749570B1-796B-476C-B4E8-F8F89CF24E6F} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe [2015-04-27] () <==== ATTENTION
Task: {761E9CBB-B539-47C7-AB79-6E95C5DF3E51} - System32\Tasks\Wse_taplika => C:\Users\Max\AppData\Roaming\Wse_taplika\UpdateProc\UpdateTask.exe [2015-04-27] () <==== ATTENTION
Task: {7B13B1BA-03E2-49FA-9A67-93041B98F21C} - System32\Tasks\CloudHIDEAWAY => C:\Program Files (x86)\CloudScout Parental Control\CloudHIDEAWAY.exe [2015-03-08] ()
Task: {7CA556BF-3A8A-4CEB-B69C-6435DE8019DE} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe [2015-04-27] () <==== ATTENTION
Task: {880E7CC5-36C0-44E7-87CC-BA550116CBF8} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {8984CCE4-F86D-4938-AA33-72661817CF0C} - System32\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-5_user => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-5.exe [2015-04-16] (Cinema PlusV16.04) <==== ATTENTION
Task: {8B25951E-3EC5-4527-AE08-AD1F2EC3F1FC} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {8D8F4DCF-EAE9-4358-A6E4-86DFA2CA8EF9} - System32\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-10_user => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-10.exe [2015-04-27] (Cinema PlusV27.04) <==== ATTENTION
Task: {8FF29747-2FFD-42C3-AA03-27ED381A69BA} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-23] (Microsoft Corporation)
Task: {90768D5C-3928-40B9-A61A-FDDCE4221F88} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION
Task: {92ED8193-5D55-4A64-A03D-5A91F545BF67} - System32\Tasks\Taplika mite => Wscript.exe "C:\ProgramData\{3807D0C4-6885-0142-D903-71C00981A24E}\1.9.3.1\fiber.js" "433a2f50726f6772616d446174612f7b33383037443043342d363838352d303134322d443930332d3731433030393831413234457d2f312e392e332e312f6d6974652e646c6c" "687474703a2f2f73616f2e7461627072742e636f6d2f" "--IsErIk"
Task: {9DC8F47F-9272-41C9-B558-9666AE4CF0A1} - System32\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-1-6 => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-1-6.exe [2015-04-27] (Cinema PlusV27.04) <==== ATTENTION
Task: {9EF88750-90BA-47CD-B799-4418E5EC397E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-04-14] (Microsoft Corporation)
Task: {A5D574D8-2AB1-4CB0-8776-43439A0DF7CE} - System32\Tasks\WebBarUpdateTask => C:\Program Files\WebBar\wbsvc.exe [2015-02-18] (Web Bar Media)
Task: {A932EA87-1084-42E7-A3C9-B366E167068A} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe [2015-01-08] (Goobzo) <==== ATTENTION
Task: {B2A0D649-6085-43D2-A49D-28EBEC418A1D} - System32\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-1-7 => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-1-7.exe [2015-04-27] (Cinema PlusV27.04) <==== ATTENTION
Task: {B62FABBB-6CBC-43B1-A905-6DE985B0F639} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B96BE206-1758-463F-931B-12753036172D} - System32\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-5 => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-5.exe [2015-04-16] (Cinema PlusV16.04) <==== ATTENTION
Task: {C0A321E4-5A68-4E11-BDBF-EA712E2914CE} - System32\Tasks\BlockAndSurf Update => C:\Program Files (x86)\version42BlockAndSurf\J4BlockAndSurfJ52.exe [2015-04-27] () <==== ATTENTION
Task: {C1984A02-6B05-4D50-A915-128DF686119F} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {C5F5F02D-7F3D-48A2-AB87-3AEF76AC1AB9} - System32\Tasks\PcMb9sgy4Hax8V4w => C:\Users\Max\AppData\Roaming\PcMb9sgy4Hax8V4w.exe [2015-04-20] () <==== ATTENTION
Task: {CCAF45E6-C007-439C-87CC-F016BF96494C} - System32\Tasks\Installer_shopperpro => C:\Users\Max\AppData\Local\Installer\Installshopperpro_5348\DCytdkietut_tutdk_setup.exe [2015-05-08] () <==== ATTENTION
Task: {D2FB8B1F-1BD0-48EA-BE42-6DBDBED781C6} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {D3808EC4-2C0B-43BC-A3F9-CDA7969ECDBE} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: {D5A01595-9C66-4FC6-A12B-F92B802F61FE} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-04-27] (globalUpdate) <==== ATTENTION
Task: {DC9C3B8C-773C-4273-81DF-27A837BBD50D} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {E2CB4DC1-1097-48A2-B9A2-4FA239302E00} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {E3E97E17-8ACA-4E0D-86C7-16AF9A5456A7} - System32\Tasks\SMWPUpd => C:\Program Files\Common Files\Goobzo\GBUpdatePlus\updater.exe [2015-04-07] (Goobzo) <==== ATTENTION
Task: {E5B57F3B-6FF5-46BC-8E43-15F1BA8FB6A6} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-04-27] (globalUpdate) <==== ATTENTION
Task: {E9B8999A-CF2E-4998-9AD9-3768B2A87910} - System32\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-4 => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-4.exe [2015-04-16] (Cinema PlusV16.04) <==== ATTENTION
Task: {EE4F79D5-3D1C-4212-9462-FBEF64CAE645} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [2015-04-15] (YTDownloader) <==== ATTENTION
Task: {F6E8B35B-F2D4-470A-ADB1-A4248C571CB7} - System32\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-5 => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-5.exe [2015-04-27] (Cinema PlusV27.04) <==== ATTENTION
Task: {F76CD251-7173-421F-BCBC-8215640FF70D} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {F9F38DA5-909A-4BA3-97D2-6DF36925CDAC} - System32\Tasks\CIMT_S-1-5-21-3369700690-3850376273-3648611264-1001 => C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe [2015-04-16] () <==== ATTENTION
Task: C:\WINDOWS\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-1-6.job => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-1-7.job => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-10_user.job => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-4.job => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-5.job => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\3cbeff34-7ffd-46c4-8208-b17f0452902a-5_user.job => C:\Program Files (x86)\Lights Cinema 1.3betaV16.04\3cbeff34-7ffd-46c4-8208-b17f0452902a-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-1-6.job => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-1-7.job => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-10_user.job => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-4.job => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-5.job => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\88e2d631-cef4-4b3b-959f-542c0d09b78a-5_user.job => C:\Program Files (x86)\CinemaPlus-3.2cV27.04\88e2d631-cef4-4b3b-959f-542c0d09b78a-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\BlockAndSurf Update.job => C:\Program Files (x86)\version42BlockAndSurf\J4BlockAndSurfJ52.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\CIMT_daily_S-1-5-21-3369700690-3850376273-3648611264-1001.job => C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\CIMT_S-1-5-21-3369700690-3850376273-3648611264-1001.job => C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ConsumerInputUpdateTaskMachineCore.job => C:\Program Files (x86)\Consumer Input\Update\ConsumerInputUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ConsumerInputUpdateTaskMachineUA.job => C:\Program Files (x86)\Consumer Input\Update\ConsumerInputUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\LKVYT.job => C:\Users\Max\AppData\Roaming\LKVYT.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\PcMb9sgy4Hax8V4w.job => C:\Users\Max\AppData\Roaming\PcMb9sgy4Hax8V4w.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Taplika mite.job => Wscript.exe C:\ProgramData\{3807D0C4-6885-0142-D903-71C00981A24E}\1.9.3.1\fiber.js 433a2f50726f6772616d446174612f7b33383037443043342d363838352d303134322d443930332d3731433030393831413234457d2f312e392e332e312f6d6974652e646c6c 687474703a2f2f73616f2e7461627072742e636f6d2f --IsErIk.LEV
Task: C:\WINDOWS\Tasks\Wse_taplika.job => C:\Users\Max\AppData\Roaming\WSE_TA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\XBNK.job => C:\Users\Max\AppData\Roaming\XBNK.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) ==============
2015-01-08 11:12 - 2015-01-08 11:12 - 02264576 _____ () C:\Program Files\BubbleSound\BubbleSound.dll
2015-04-27 20:28 - 2015-03-11 11:28 - 00282488 _____ () C:\Program Files\shopperz\grunt.exe
2015-04-27 20:28 - 2015-03-11 11:28 - 00294776 _____ () C:\Program Files\shopperz\krios64.dll
2014-12-25 04:49 - 2014-12-25 04:49 - 00121344 _____ () C:\Program Files (x86)\PepperZip\shell\PPZShellExtension_x64.dll
2015-04-27 21:03 - 2015-04-27 21:03 - 00603136 _____ () C:\Program Files (x86)\version42BlockAndSurf\J4BlockAndSurfJ52.exe
2015-04-27 20:32 - 2015-04-22 16:56 - 00422952 _____ () C:\Program Files (x86)\Optimizer Pro 3.84\OptProSmartScan.exe
2015-04-27 20:32 - 2015-04-22 16:56 - 00892968 _____ () C:\Program Files (x86)\Optimizer Pro 3.84\OptProReminder.exe
2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-04-15 02:57 - 2015-04-15 02:57 - 00112560 _____ () C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe
2015-04-27 20:28 - 2015-03-11 11:28 - 01446264 _____ () C:\Program Files\shopperz\csrcc.exe
2015-04-16 20:45 - 2015-04-17 01:44 - 00317440 _____ () C:\ProgramData\FlashBeat\FlashBeat.exe
2015-04-27 20:28 - 2015-04-27 20:28 - 00417792 _____ () c:\windows\lah.exe
2015-04-27 20:28 - 2015-04-27 20:28 - 00408576 _____ () c:\windows\mlah.exe
2015-04-27 20:30 - 2015-04-27 20:30 - 00108544 _____ () C:\Users\Max\AppData\Roaming\00000000-1430191811-0000-0000-6C626DB6DAC3\jnsp89F0.tmp
2015-04-16 21:04 - 2015-04-16 21:04 - 00117248 _____ () C:\Users\Max\AppData\Roaming\00000000-1429243423-0000-0000-6C626DB6DAC3\jnsiF0DB.tmp
2015-04-27 20:30 - 2015-04-27 20:30 - 00139776 _____ () C:\Users\Max\AppData\Roaming\00000000-1430191811-0000-0000-6C626DB6DAC3\nsr4204.tmpfs
2015-04-27 20:28 - 2015-03-11 11:28 - 00170360 _____ () C:\Program Files\shopperz\nseven.exe
2015-04-16 21:03 - 2015-04-16 21:03 - 00137728 _____ () C:\Users\Max\AppData\Roaming\00000000-1429243423-0000-0000-6C626DB6DAC3\nsaB737.tmpfs
2015-04-27 20:28 - 2015-03-11 11:28 - 00430456 _____ () C:\Program Files\shopperz\wrex.exe
2015-04-27 20:28 - 2015-03-11 11:28 - 00461176 _____ () C:\Program Files\shopperz\wrex64.exe
2015-04-27 20:28 - 2015-03-11 11:28 - 00621432 _____ () C:\Program Files\shopperz\tsoni64.dll
2015-04-27 20:28 - 2015-03-11 11:28 - 00273784 _____ () C:\Program Files\shopperz\liara64.dll
2015-04-27 20:28 - 2015-03-11 11:28 - 00333688 _____ () C:\Program Files\shopperz\kasumi64.dll
2015-04-27 21:03 - 2015-04-27 21:03 - 00199168 _____ () C:\Program Files (x86)\version42BlockAndSurf\BlockAndSurf.exe
2015-04-16 21:01 - 2015-04-10 16:41 - 03308488 _____ () C:\Users\Max\AppData\Local\ospd_us_1014\upospd_us_1014.exe
2015-04-16 21:01 - 2015-04-10 16:41 - 03981256 _____ () C:\Program Files (x86)\ospd_us_1014\ospd_us_1014.exe
2015-04-27 20:43 - 2015-04-24 19:14 - 03980744 _____ () C:\Program Files (x86)\gmsd_us_493\gmsd_us_493.exe
2015-05-08 18:35 - 2015-05-08 18:36 - 00235013 _____ () C:\Users\Max\AppData\Local\Temp\nsf3C56.tmp
2015-04-01 11:30 - 2015-04-01 11:30 - 01537552 _____ () C:\Program Files (x86)\SafeGuard\SafeGuardApp.exe
2015-04-27 19:57 - 2015-04-27 19:57 - 01283584 _____ () C:\Program Files (x86)\OLBPre\OLBPre.exe
2015-04-27 19:55 - 2015-04-27 19:55 - 00060928 _____ () C:\Program Files (x86)\OLBPre\LinqBridge.dll
2015-04-16 20:56 - 2015-02-13 15:37 - 00808960 _____ () C:\Program Files\WebBar\2.0.5527.25142\ISightSDK_x64.dll
2015-04-16 07:09 - 2015-04-16 07:09 - 01179168 _____ () C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe
2015-05-08 18:38 - 2015-05-08 18:38 - 00231960 _____ () C:\Users\Max\AppData\Local\Temp\nsq4706.tmp
2015-05-08 18:40 - 2015-05-08 18:40 - 00082184 _____ () C:\ProgramData\Browser\prompt.exe
2015-05-08 18:40 - 2015-05-08 18:40 - 00075776 _____ () C:\ProgramData\NetEngine\bin\D10\netengine.exe
2015-05-08 18:40 - 2015-05-08 18:40 - 00003072 _____ () C:\Users\Max\AppData\Local\Temp\isdkckxTWgwl\ISightHost.exe
2015-05-08 18:40 - 2015-02-13 15:37 - 00808960 _____ () C:\Users\Max\AppData\Local\Temp\isdkckxTWgwl\ISightSDK.DLL
2015-05-08 18:41 - 2015-05-08 18:41 - 00708096 _____ () C:\Users\Max\AppData\Local\Temp\is-6QUVK.tmp\package_priceless_p_installer_multilang.tmp
2015-05-08 18:41 - 2015-05-08 18:41 - 02357248 _____ () C:\Users\Max\AppData\Local\Temp\is-BGP8Q.tmp\priceless_p_soft_partner.exe
2014-05-08 18:41 - 2014-05-08 18:41 - 02357248 _____ () C:\Users\Max\AppData\Local\Temp\BFF8\temp\priceless_p_soft_partner.exe
2015-05-08 18:41 - 2015-05-08 18:41 - 01212904 _____ () C:\Users\Max\AppData\Local\Temp\nso5FB4.tmp\DCytdkietut_tutdk_setup.exe
2015-04-27 20:32 - 2015-04-27 20:32 - 01752104 _____ () c:\Program Files (x86)\Optimizer Pro 3.84\OptProMon.dll
2015-05-08 18:34 - 2015-05-08 18:34 - 00307200 _____ () C:\WINDOWS\TEMP\mrtC40B.tmp\MMFS2.dll
2015-05-08 18:34 - 2015-05-08 18:34 - 00021504 _____ () C:\WINDOWS\TEMP\mrtC40B.tmp\Get.mfx
2015-05-08 18:34 - 2015-05-08 18:34 - 00059392 _____ () C:\WINDOWS\TEMP\mrtC40B.tmp\Yaso.mfx
2015-04-27 20:28 - 2015-03-11 11:28 - 00288632 _____ () C:\Program Files\shopperz\krios.dll
2015-04-27 20:28 - 2015-03-11 11:28 - 00611192 _____ () C:\Program Files\shopperz\tsoni.dll
2015-04-27 20:28 - 2015-03-11 11:28 - 00238968 _____ () C:\Program Files\shopperz\liara.dll
2015-04-27 20:28 - 2015-03-11 11:28 - 00309112 _____ () C:\Program Files\shopperz\kasumi32.dll
2015-04-27 21:03 - 2015-03-16 11:13 - 01070592 _____ () C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.5.2171.95\libglesv2.dll
2015-04-27 21:03 - 2015-03-16 11:13 - 00204800 _____ () C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.5.2171.95\libegl.dll
2015-04-27 21:03 - 2015-03-16 11:13 - 09002496 _____ () C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.5.2171.95\pdf.dll
2015-04-27 21:03 - 2015-03-16 11:13 - 00896512 _____ () C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.5.2171.95\ffmpegsumo.dll
2015-05-08 18:36 - 2015-05-08 18:36 - 00011264 _____ () C:\Users\Max\AppData\Local\Temp\nssA754.tmp\System.dll
2015-05-08 18:38 - 2015-05-08 18:38 - 00011264 _____ () C:\Users\Max\AppData\Local\Temp\nst66B6.tmp\System.dll
2015-05-08 18:38 - 2015-05-08 18:38 - 00009728 _____ () C:\Users\Max\AppData\Local\Temp\nst66B6.tmp\nsDialogs.dll
2015-05-08 18:38 - 2015-05-08 18:38 - 00025088 _____ () C:\Users\Max\AppData\Local\Temp\nst66B6.tmp\registry.dll
2015-05-08 18:38 - 2015-05-08 18:38 - 00067584 _____ () C:\Users\Max\AppData\Local\Temp\nst66B6.tmp\Math.dll
2015-05-08 18:38 - 2015-05-08 18:38 - 00069120 _____ () C:\Users\Max\AppData\Local\Temp\nst66B6.tmp\nsPage_LoadOffer.dll
2015-05-08 18:41 - 2014-11-13 08:16 - 00205312 _____ () C:\Users\Max\AppData\Local\Temp\is-BGP8Q.tmp\itdownload.dll
2015-04-12 01:32 - 2015-04-12 01:32 - 02135552 _____ () C:\Users\Max\AppData\Local\avaavaevy\avaavaevy.exe
2015-05-08 18:42 - 2015-05-08 18:42 - 02374144 _____ () C:\Users\Max\AppData\Local\Temp\BFF8\temp\TyHelpTFUO.xyz.exe
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Max\OneDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Gambali => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WebWatcherProxy => ""="service"
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, the associated entry will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3369700690-3850376273-3648611264-1001\...\skillwsa.com -> hxxps://www.skillwsa.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3369700690-3850376273-3648611264-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Max\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\4a81fefa200c5c1935c8fca37911a403-d389tgc.jpg
DNS Servers: 31.168.228.251 - 82.166.96.251
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKU\S-1-5-21-3369700690-3850376273-3648611264-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3369700690-3850376273-3648611264-1001\...\StartupApproved\Run: => "Search Protection"
==================== FirewallRules (whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{6AD978BC-82F6-4609-80F5-B3F33BB3FC77}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8275DCCF-64B5-4CBE-8C89-2CF90462C757}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{85975536-523C-428D-9FD6-AC966550EF75}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{75AB1DA5-7998-4FAE-A265-6DF2EF235328}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5371B7D4-35F3-4060-9CB7-0545A9911017}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6DB016FA-7FC4-43F0-A24C-2FF97C04A767}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{1582D62F-A029-439D-95EB-5CD1ACC2CE14}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{21802013-5F97-4405-8A11-74DE6FB8DAB7}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{934E1972-4E17-4F36-A272-68F36A1BB754}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{101BA77D-7DCA-4BFF-A39B-3890285DF586}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{4C3061B6-38F3-4819-BE51-C98B72D27FE2}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{14CDA4D8-9F86-4156-BFB4-3AE542551E5D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{9D591C37-4373-47B7-BBEE-09E7B8418A0A}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{957E4CCD-1C26-41C1-849C-6061275E07DE}] => (Allow) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/08/2015 06:39:22 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database
Error: (05/08/2015 06:37:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CCC.exe, version: 4.5.0.0, time stamp: 0x53ad0dcc
Faulting module name: amdmantle64.dll, version: 9.1.10.34, time stamp: 0x5417637b
Exception code: 0xc0000005
Fault offset: 0x000000000040cfa6
Faulting process id: 0x1258
Faulting application start time: 0xCCC.exe0
Faulting application path: CCC.exe1
Faulting module path: CCC.exe2
Report Id: CCC.exe3
Faulting package full name: CCC.exe4
Faulting package-relative application ID: CCC.exe5
Error: (05/08/2015 06:35:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.3.9600.17415, time stamp: 0x54503c68
Faulting module name: ntdll.dll, version: 6.3.9600.17736, time stamp: 0x550f42c2
Exception code: 0xc0000008
Fault offset: 0x0003c6cc
Faulting process id: 0x1140
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3
Faulting package full name: svchost.exe4
Faulting package-relative application ID: svchost.exe5
Error: (04/27/2015 08:36:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SmartWebApp.exe, version: 8.0.9.2, time stamp: 0x54e31eaf
Faulting module name: SmartWebApp.exe, version: 8.0.9.2, time stamp: 0x54e31eaf
Exception code: 0xc0000005
Fault offset: 0x0000dd80
Faulting process id: 0x393c
Faulting application start time: 0xSmartWebApp.exe0
Faulting application path: SmartWebApp.exe1
Faulting module path: SmartWebApp.exe2
Report Id: SmartWebApp.exe3
Faulting package full name: SmartWebApp.exe4
Faulting package-relative application ID: SmartWebApp.exe5
Error: (04/27/2015 08:28:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 37.0.1.5570, time stamp: 0x551e23ee
Faulting module name: mozalloc.dll, version: 37.0.1.5570, time stamp: 0x551e1536
Exception code: 0x80000003
Fault offset: 0x00001aa1
Faulting process id: 0x30c8
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5
Error: (04/27/2015 08:24:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 37.0.1.5570, time stamp: 0x551e23ee
Faulting module name: mozalloc.dll, version: 37.0.1.5570, time stamp: 0x551e1536
Exception code: 0x80000003
Fault offset: 0x00001aa1
Faulting process id: 0x3c08
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5
Error: (04/27/2015 08:23:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 37.0.1.5570, time stamp: 0x551e23ee
Faulting module name: mozalloc.dll, version: 37.0.1.5570, time stamp: 0x551e1536
Exception code: 0x80000003
Fault offset: 0x00001aa1
Faulting process id: 0x22f8
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5
Error: (04/27/2015 08:22:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SmartWebApp.exe, version: 8.0.9.2, time stamp: 0x54e31eaf
Faulting module name: SmartWebApp.exe, version: 8.0.9.2, time stamp: 0x54e31eaf
Exception code: 0xc000041d
Fault offset: 0x0000da5e
Faulting process id: 0x238c
Faulting application start time: 0xSmartWebApp.exe0
Faulting application path: SmartWebApp.exe1
Faulting module path: SmartWebApp.exe2
Report Id: SmartWebApp.exe3
Faulting package full name: SmartWebApp.exe4
Faulting package-relative application ID: SmartWebApp.exe5
Error: (04/27/2015 08:22:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SmartWebApp.exe, version: 8.0.9.2, time stamp: 0x54e31eaf
Faulting module name: SmartWebApp.exe, version: 8.0.9.2, time stamp: 0x54e31eaf
Exception code: 0xc0000005
Fault offset: 0x0000da5e
Faulting process id: 0x238c
Faulting application start time: 0xSmartWebApp.exe0
Faulting application path: SmartWebApp.exe1
Faulting module path: SmartWebApp.exe2
Report Id: SmartWebApp.exe3
Faulting package full name: SmartWebApp.exe4
Faulting package-relative application ID: SmartWebApp.exe5
Error: (04/27/2015 08:19:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CCC.exe, version: 4.5.0.0, time stamp: 0x53ad0dcc
Faulting module name: amdmantle64.dll, version: 9.1.10.34, time stamp: 0x5417637b
Exception code: 0xc0000005
Fault offset: 0x000000000040cfa6
Faulting process id: 0x12d0
Faulting application start time: 0xCCC.exe0
Faulting application path: CCC.exe1
Faulting module path: CCC.exe2
Report Id: CCC.exe3
Faulting package full name: CCC.exe4
Faulting package-relative application ID: CCC.exe5
System errors:
=============
Error: (05/08/2015 06:43:23 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:43:23 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:43:13 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:43:12 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:43:02 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:43:02 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:42:52 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:42:51 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:42:41 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (05/08/2015 06:42:41 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Microsoft Office Sessions:
=========================
Error: (05/08/2015 06:39:22 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: -2147024883
Error: (05/08/2015 06:37:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe4.5.0.053ad0dccamdmantle64.dll9.1.10.345417637bc0000005000000000040cfa6125801d089f88820a50eC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\WINDOWS\SYSTEM32\amdmantle64.dlle97b8940-f5eb-11e4-be89-6c626db6dac3
Error: (05/08/2015 06:35:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe6.3.9600.1741554503c68ntdll.dll6.3.9600.17736550f42c2c00000080003c6cc114001d089f85a1d18ebC:\WINDOWS\SysWOW64\svchost.exeC:\WINDOWS\SYSTEM32\ntdll.dlla3738e71-f5eb-11e4-be89-6c626db6dac3
Error: (04/27/2015 08:36:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SmartWebApp.exe8.0.9.254e31eafSmartWebApp.exe8.0.9.254e31eafc00000050000dd80393c01d0816294bf76b7C:\Users\Max\AppData\Local\SmartWeb\SmartWebApp.exeC:\Users\Max\AppData\Local\SmartWeb\SmartWebApp.exebcc3b460-ed57-11e4-be88-6c626db6dac3
Error: (04/27/2015 08:28:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe37.0.1.5570551e23eemozalloc.dll37.0.1.5570551e15368000000300001aa130c801d081634ebed59aC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dlla51d10c8-ed56-11e4-be88-6c626db6dac3
Error: (04/27/2015 08:24:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe37.0.1.5570551e23eemozalloc.dll37.0.1.5570551e15368000000300001aa13c0801d08162cf8e565aC:\PROGRA~2\MOZILL~1\plugin-container.exeC:\PROGRA~2\MOZILL~1\mozalloc.dll21453d03-ed56-11e4-be88-6c626db6dac3
Error: (04/27/2015 08:23:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe37.0.1.5570551e23eemozalloc.dll37.0.1.5570551e15368000000300001aa122f801d08162465b7cb7C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll0078002c-ed56-11e4-be88-6c626db6dac3
Error: (04/27/2015 08:22:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SmartWebApp.exe8.0.9.254e31eafSmartWebApp.exe8.0.9.254e31eafc000041d0000da5e238c01d0816205b1ab2dC:\Users\Max\AppData\Local\SmartWeb\SmartWebApp.exeC:\Users\Max\AppData\Local\SmartWeb\SmartWebApp.execce41fa6-ed55-11e4-be88-6c626db6dac3
Error: (04/27/2015 08:22:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SmartWebApp.exe8.0.9.254e31eafSmartWebApp.exe8.0.9.254e31eafc00000050000da5e238c01d0816205b1ab2dC:\Users\Max\AppData\Local\SmartWeb\SmartWebApp.exeC:\Users\Max\AppData\Local\SmartWeb\SmartWebApp.exec9f09e44-ed55-11e4-be88-6c626db6dac3
Error: (04/27/2015 08:19:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe4.5.0.053ad0dccamdmantle64.dll9.1.10.345417637bc0000005000000000040cfa612d001d0816209f70308C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\WINDOWS\SYSTEM32\amdmantle64.dll5e924fc0-ed55-11e4-be88-6c626db6dac3
CodeIntegrity Errors:
===================================
Date: 2015-04-27 21:06:36.468
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:06:36.343
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:06:36.205
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:04:30.153
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:04:29.965
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:03:34.211
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:03:34.086
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:03:33.945
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:03:33.820
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-27 21:03:33.610
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7 CPU 960 @ 3.20GHz
Percentage of memory in use: 21%
Total physical RAM: 14327.11 MB
Available physical RAM: 11294.17 MB
Total Pagefile: 16503.11 MB
Available Pagefile: 12822.54 MB
Total Virtual: 131072 MB
Available Virtual: 131071.75 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:805.33 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 931.5 GB) (Disk ID: FA7C697B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Thank you for your assistance.
Very respectfully,
Max