Recent Posts

Pages: [1] 2 3 ... 10
1
Are you using a wired connection? If not can you try?
2
THANX! ! ! ! !     tried it in safe mode - still get the message 'cannot update the virus signature database  --  make sure your computer is connected to the internet'  ????????  other thoughts ???????  THANX
3
Try rebooting your computer to safe mode with networking. Then see if you can run the scan. But once the update is done and the scan starts, make sure to disconnect from the internet.
4
well, we are trying - - - - - I can download 'eset' on a another PC(the good PC) and take the flash drive to the 'infected PC' and try to run the 'ESET_online_scanner' but it starts then tries to download the virus definition and can't find the page even though it is connected to the internet . . . . . any suggestions  . . . . . THANX
5
OK, you are having some serious issues with your computer, as well as your current AV scanner. So the first thing to do is to go to https://www.eset.com/us/home/online-scanner/ and click the scan now button. A file will be downloaded, as soon as it is done, run it.  You want to enable detection of possible unwanted applications, and then click the scan button.  When the scan is done there is an option to copy to clipboard, paste the log here, then clean what it finds. Next download CCleaner from ccleaner.com and install it. When it is installed go ahead and start it. Click the analyze button and then once the scan is done click the run cleaner button.

Test out your system and let me know how it works.
6
let me add some to this - in addition to the 'guce' problem - some websites work okay (eg - yahoo.com (not mail, just the yahoo home page)), some websites work but pictures don't display on the page (eg - foxnews.com), most websites get a message(we're having trouble finding that site, even though they spelled correctly).  Additionally, I use use MOZY for a backup, but it hasn't run in several days, the MOZY-log says no internet connection could be found, even though it is connected!!!   THANX for the help. You're dealing with a real PC rookie here.
7
Well it looks as if you have cleaned up your computer some. But what you are experiencing appears to be an error on the part of Verizon, not malware. Read this thread, https://forums.att.com/t5/AT-T-Internet-Email-Security/strange-yahoo-login-with-quot-guce-quot/td-p/5461535

You may still have malware installed, I did not look at your log. Let me know if you want to still go thru the process.
8
Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 12/6/18
Scan Time: 8:07 PM
Log File: cf40bd34-f9c4-11e8-808c-2089848a4259.json

-Software Information-
Version: 3.6.1.2711
Components Version: 1.0.482
Update Package Version: 1.0.7469
License: Free

-System Information-
OS: Windows 10 (Build 17134.407)
CPU: x64
File System: NTFS
User: GARYSPC\gary

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 298366
Threats Detected: 89
Threats Quarantined: 89
Time Elapsed: 10 min, 56 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 1
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe, Quarantined, [2905], [331449],1.0.7469

Module: 1
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe, Quarantined, [2905], [331449],1.0.7469

Registry Key: 27
PUP.Optional.DriverUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\DRIVERUPDATE STARTUP, Quarantined, [2905], [335439],1.0.7469
PUP.Optional.DriverUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B9E5ED0F-2AD2-4BD1-9B60-FADE08CCE700}, Quarantined, [2905], [335439],1.0.7469
PUP.Optional.DriverUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{B9E5ED0F-2AD2-4BD1-9B60-FADE08CCE700}, Quarantined, [2905], [335439],1.0.7469
PUP.Optional.GetSavin, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\getsav-in, Quarantined, [91], [251821],1.0.7469
PUP.Optional.InstallCore, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\InstallCore, Quarantined, [401], [239563],1.0.7469
PUP.Optional.Amonetize, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\UpdaterEX, Quarantined, [448], [348112],1.0.7469
PUP.Optional.DynConIE, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\DynConIE.DLL, Quarantined, [6805], [238002],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\PFKFDLCDBAJAMKLBNEFLFBCMFGDDMPAE, Quarantined, [261], [235607],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\PFKFDLCDBAJAMKLBNEFLFBCMFGDDMPAE, Quarantined, [261], [235607],1.0.7469
PUP.Optional.Astromenda, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pfkfdlcdbajamklbneflfbcmfgddmpae, Quarantined, [261], [235607],1.0.7469
PUP.Optional.OptimizerPro, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\OPTIMIZER PRO, Quarantined, [786], [241445],1.0.7469
PUP.Optional.SuperOptimizer, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, Quarantined, [1492], [243667],1.0.7469
PUP.Optional.GetSavin, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\APPDATALOW\SOFTWARE\getsav-in, Quarantined, [91], [251820],1.0.7469
PUP.Optional.DynConIE, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\DynConIE.DLL, Quarantined, [6805], [238002],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}, Quarantined, [261], [235608],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}, Quarantined, [261], [235608],1.0.7469
PUP.Optional.Astromenda, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}, Quarantined, [261], [235608],1.0.7469
PUP.Optional.W3i, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{7FC9DD38-2535-4731-971E-58D525805FCF}, Quarantined, [6849], [362630],1.0.7469
PUP.Optional.SuperOptimizer, HKU\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, Quarantined, [1492], [243667],1.0.7469
PUP.Optional.ClearThink, HKU\S-1-5-18\SOFTWARE\ClearThink, Quarantined, [52], [236601],1.0.7469
PUP.Optional.DynConIE, HKLM\SOFTWARE\CLASSES\APPID\DynConIE.DLL, Quarantined, [6805], [238002],1.0.7469
PUP.Optional.SuperOptimizer, HKLM\SOFTWARE\WOW6432NODE\{1146AC44-2F03-4431-B4FD-889BC837521F}, Quarantined, [1492], [243671],1.0.7469
PUP.Optional.SuperOptimizer, HKLM\SOFTWARE\WOW6432NODE\{6791A2F3-FC80-475C-A002-C014AF797E9C}, Quarantined, [1492], [243672],1.0.7469
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}, Quarantined, [3124], [493347],1.0.7469
PUP.Optional.DynConIE, HKLM\SOFTWARE\CLASSES\APPID\{384997EE-E3BE-49C4-9ECA-C62B7C08128A}, Quarantined, [6805], [167932],1.0.7469
PUP.Optional.DynConIE, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{384997EE-E3BE-49C4-9ECA-C62B7C08128A}, Quarantined, [6805], [167932],1.0.7469
PUP.Optional.DynConIE, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{384997EE-E3BE-49C4-9ECA-C62B7C08128A}, Quarantined, [6805], [167932],1.0.7469

Registry Value: 15
PUP.Optional.Astromenda, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|PFKFDLCDBAJAMKLBNEFLFBCMFGDDMPAE, Quarantined, [261], [235607],1.0.7469
PUP.Optional.OptimizerPro, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\OPTIMIZER PRO|ADSBUYNOWURL, Quarantined, [786], [241445],1.0.7469
PUP.Optional.Astromenda, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|URL, Quarantined, [261], [235608],1.0.7469
PUP.Optional.Astromenda, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|TOPRESULTURLFALLBACK, Quarantined, [261], [235608],1.0.7469
PUP.Optional.Astromenda, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|FAVICONPATH, Quarantined, [261], [235608],1.0.7469
PUP.Optional.Astromenda, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|, Quarantined, [261], [235608],1.0.7469
PUP.Optional.Astromenda, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|DISPLAYNAME, Quarantined, [261], [235608],1.0.7469
PUP.Optional.W3i, HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{7FC9DD38-2535-4731-971E-58D525805FCF}|URL, Quarantined, [6849], [362630],1.0.7469
PUP.Optional.DriverUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B9E5ED0F-2AD2-4BD1-9B60-FADE08CCE700}|PATH, Quarantined, [2905], [335436],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|APPPATH, Quarantined, [261], [235613],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|URL, Quarantined, [261], [235614],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|TOPRESULTURLFALLBACK, Quarantined, [261], [235614],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|FAVICONPATH, Quarantined, [261], [235614],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|, Quarantined, [261], [235614],1.0.7469
PUP.Optional.Astromenda, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{64B554ED-B514-4522-B50B-8C02891CE874}|DISPLAYNAME, Quarantined, [261], [235614],1.0.7469

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 13
Rogue.Multiple, C:\PROGRAMDATA\374311380, Quarantined, [661], [170100],1.0.7469
PUP.Optional.VisiCoupons, C:\USERS\GARY\APPDATA\LOCAL\VISI_COUPON, Quarantined, [3650], [244561],1.0.7469
PUP.Optional.UpdateProc, C:\Users\gary\AppData\Roaming\UpdaterEX\UpdateProc, Quarantined, [3742], [244360],1.0.7469
PUP.Optional.UpdateProc, C:\USERS\GARY\APPDATA\ROAMING\UpdaterEX, Quarantined, [3742], [244360],1.0.7469
PUP.Optional.DriverUpdate, C:\PROGRAM FILES (X86)\DRIVERUPDATE, Quarantined, [2905], [331449],1.0.7469
PUP.Optional.DriverUpdate, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\DRIVERUPDATE, Quarantined, [2905], [331462],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Firefox\chrome\content, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Firefox\chrome, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Firefox, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\IE, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\PROGRAM FILES (X86)\SEARCHDONKEY, Quarantined, [3268], [363016],1.0.7469

File: 32
PUP.Optional.MultiExtension, C:\USERS\GARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\chrome-extension_igjjkeeamkpihpncmmbgdkhdnjpcfmfb_0.localstorage, Quarantined, [4984], [240941],1.0.7469
PUP.Optional.MultiExtension, C:\USERS\GARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\chrome-extension_igjjkeeamkpihpncmmbgdkhdnjpcfmfb_0.localstorage-journal, Quarantined, [4984], [240941],1.0.7469
PUP.Optional.VisiCoupons, C:\USERS\GARY\APPDATA\LOCAL\VISI_COUPON\MERCHANTS.DAT2, Quarantined, [3650], [244561],1.0.7469
PUP.Optional.UpdateProc, C:\USERS\GARY\APPDATA\ROAMING\UpdaterEX\UPDATEPROC\prod.dat, Quarantined, [3742], [244360],1.0.7469
PUP.Optional.UpdateProc, C:\Users\gary\AppData\Roaming\UpdaterEX\UpdateProc\config.dat, Quarantined, [3742], [244360],1.0.7469
PUP.Optional.UpdateProc, C:\Users\gary\AppData\Roaming\UpdaterEX\UpdateProc\STTL.DAT, Quarantined, [3742], [244360],1.0.7469
PUP.Optional.UpdateProc, C:\Users\gary\AppData\Roaming\UpdaterEX\UpdateProc\trz573D.tmp, Quarantined, [3742], [244360],1.0.7469
PUP.Optional.UpdateProc, C:\Users\gary\AppData\Roaming\UpdaterEX\UpdateProc\TTL.DAT, Quarantined, [3742], [244360],1.0.7469
PUP.Optional.DriverUpdate, C:\WINDOWS\TASKS\DRIVERUPDATE STARTUP.job, Quarantined, [2905], [335439],1.0.7469
PUP.Optional.DriverUpdate, C:\WINDOWS\SYSTEM32\TASKS\DRIVERUPDATE STARTUP, Quarantined, [2905], [335439],1.0.7469
PUP.Optional.Astromenda, C:\USERS\GARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, [261], [235607],1.0.7469
PUP.Optional.DriverUpdate, C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe, Quarantined, [2905], [331449],1.0.7469
PUP.Optional.DriverUpdate, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverUpdate\DriverUpdate Help.lnk, Quarantined, [2905], [331462],1.0.7469
PUP.Optional.DriverUpdate, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverUpdate\DriverUpdate.lnk, Quarantined, [2905], [331462],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\announce.js, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\background.html, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\common.js, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\contentscript.js, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\icon.png, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\icon128.png, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\icon16.png, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\icon48.png, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\unzip\manifest.json, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Chrome\common.crx, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Firefox\chrome\content\main.js, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Firefox\chrome\content\overlay.xul, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Firefox\chrome.manifest, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\Firefox\install.rdf, Quarantined, [3268], [363016],1.0.7469
Adware.PullUpdate, C:\Program Files (x86)\SearchDonkey\SearchDonkey.ico, Quarantined, [3268], [363016],1.0.7469
PUP.Optional.Astromenda, C:\USERS\GARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [261], [455058],1.0.7469
PUP.Optional.Astromenda, C:\USERS\GARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [261], [455058],1.0.7469
PUP.Optional.Astromenda, C:\USERS\GARY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [261], [455058],1.0.7469

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)






Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01.12.2018 01
Ran by gary (07-12-2018 19:26:40)
Running from F:\
Windows 10 Home Version 1803 17134.407 (X64) (2018-06-12 16:31:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2190094937-3161699157-1982157624-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2190094937-3161699157-1982157624-503 - Limited - Disabled)
gary (S-1-5-21-2190094937-3161699157-1982157624-1001 - Administrator - Enabled) => C:\Users\gary
Guest (S-1-5-21-2190094937-3161699157-1982157624-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2190094937-3161699157-1982157624-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Out of date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Out of date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Disabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM-x32\...\7-Zip 9.20) (Version:  - )
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.5.2302 - AVAST Software)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version:  - )
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - ‎Canon Inc.‬)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.3.1.4 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 5.2.0 - Canon Inc.)
Canon MG3000 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3000_series) (Version: 1.01 - Canon Inc.)
Canon MG3000 series On-screen Manual (HKLM-x32\...\Canon MG3000 series On-screen Manual) (Version: 1.0.0 - Canon Inc.)
Canon MG3000 series User Registration (HKLM-x32\...\Canon MG3000 series User Registration) (Version:  - Canon Inc.)
Canon MG3200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3200_series) (Version: 1.01 - Canon Inc.)
Canon MG3200 series On-screen Manual (HKLM-x32\...\Canon MG3200 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon MG3200 series User Registration (HKLM-x32\...\Canon MG3200 series User Registration) (Version:  - Canon Inc.‎)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.5.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.5.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.1 - Canon Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.224.0 - Conexant Systems)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
DriverUpdate (HKLM-x32\...\{FBCB20AB-4C45-44DE-A40B-88BD4D0F5BD0}) (Version: 2.2.29726 - SlimWare Utilities, Inc.)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo)
Free Spider Solitaire 2016 v5.2 (HKLM-x32\...\Free Spider_is1) (Version:  - TreeCardGames)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.110 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP Product Detection (HKLM-x32\...\{A34CC51D-C2FF-4E0E-9F27-28B0249A15DD}) (Version: 11.15.0007 - HP)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.15.0414.1 - Vimicro)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0333}) (Version: 1.12.824.1 - Vimicro)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.0828 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.0828 - CyberLink Corp.)
Lenovo Photos (HKLM-x32\...\Lenovo Photos) (Version: 4.8.5 - CEWE COLOR AG u Co. OHG)
Lenovo PowerDVD10 (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4331.52 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4331.52 - CyberLink Corp.)
Lenovo YouCam (HKLM-x32\...\{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.) Hidden
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.)
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Memeo AutoSync (HKLM-x32\...\{75B7F766-7998-44d8-A202-F1EC76A121BA}) (Version:  - Memeo Inc.)
Memeo Instant Backup (HKLM-x32\...\{8E666407-AC41-46a2-9692-6C7BFCBFDD37}) (Version: 4.60.0.7923 - Memeo Inc.)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 63.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 63.0.3 (x64 en-US)) (Version: 63.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 63.0.3.6892 - Mozilla)
MozyHome (HKLM\...\{A8EB7589-A923-9F69-5877-17BF3D9DB3AE}) (Version: 2.38.2.674 - Mozy, Inc.)
Nitro Pro 8 (HKLM\...\{FEB91DE4-3B51-4CB2-9CC4-E14577A85976}) (Version: 8.0.7.3 - Nitro)
Opera Stable 56.0.3051.104 (HKLM-x32\...\Opera 56.0.3051.104) (Version: 56.0.3051.104 - Opera Software)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
SafeZone Stable 3.55.2393.609 (HKLM-x32\...\SafeZone 3.55.2393.609) (Version: 3.55.2393.609 - Avast Software) Hidden
Seagate Dashboard (HKLM-x32\...\{C3A11907-930D-41AC-A135-CC3B12F92011}) (Version: 1.1.0.1421 - Memeo Inc.)
SearchDonkey (HKLM-x32\...\SearchDonkey) (Version: 2.6.17 - WebAppTech Coding, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SPFLite (HKLM-x32\...\SPFLite) (Version: 7.0.3217 - SPFLite)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
TurboTax 2013 (HKLM-x32\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc)
TurboTax 2014 (HKLM-x32\...\TurboTax 2014) (Version: 2014.0 - Intuit, Inc)
TurboTax 2015 (HKLM-x32\...\TurboTax 2015) (Version: 2015.0 - Intuit, Inc)
TurboTax 2016 (HKLM-x32\...\TurboTax 2016) (Version: 2016.0 - Intuit, Inc)
TurboTax 2017 (HKLM-x32\...\TurboTax 2017) (Version: 2017.0 - Intuit, Inc)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
UserGuide (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo) Hidden
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
Windows Driver Package - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version:  - )
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version:  - Yahoo! Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-03] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-03] (AVAST Software)
ShellIconOverlayIdentifiers: [mozy] -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll [2018-10-17] (Mozy, Inc.)
ShellIconOverlayIdentifiers: [mozy2] -> {747E722C-CB46-4a9d-BDFE-192AAD5099B1} => C:\Program Files\MozyHome\mozyshell.dll [2018-10-17] (Mozy, Inc.)
ShellIconOverlayIdentifiers: [mozy3] -> {EE6F5A00-7898-40f7-AB77-51FF9D6DEB20} => C:\Program Files\MozyHome\mozyshell.dll [2018-10-17] (Mozy, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers1-x32: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-03] (AVAST Software)
ContextMenuHandlers1-x32: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Common Files\Nitro\Pro\8.0\NPShellExtension64.dll [2012-11-18] (Nitro PDF)
ContextMenuHandlers1-x32: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ContextMenuHandlers2: [mozy] -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll [2018-10-17] (Mozy, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-03] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers3: [mozy] -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll [2018-10-17] (Mozy, Inc.)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers4-x32: [mozy] -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll [2018-10-17] (Mozy, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers5: [mozy] -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll [2018-10-17] (Mozy, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-03] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [mozy] -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll [2018-10-17] (Mozy, Inc.)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A8A110E-CFB1-4A88-A846-DAE86C8293E6} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {1AB19CDC-B354-4F7E-A952-A8D91E4F90AA} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3D6F9273-04EF-429F-80B0-44A5EC66EC27} - System32\Tasks\SafeZone scheduled Autoupdate 1468562667 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-06-13] (Avast Software)
Task: {418137EE-4BD7-419A-AA2D-E78937A64253} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-05] (Adobe Systems Incorporated)
Task: {44FF9EA0-5812-4CA2-B5F9-3C8381979139} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {475292C5-EA2D-413D-AE9C-4D0D141C164A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4ABEFB27-3975-48A9-8B95-A4BDB9556F61} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2018-10-29] (AVAST Software)
Task: {4C0E28FA-1A6C-4E7C-9EFB-9297EB75D858} - System32\Tasks\Opera scheduled Autoupdate 1531025918 => c:\program files\opera\launcher.exe [2018-11-14] (Opera Software)
Task: {4C7662EE-478E-467E-8E42-7859B84D8B6A} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {4F1624F1-600C-4C80-8673-8E90B1F2AE38} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {51E5BF5C-229D-40A8-8847-6143E05246D2} - \WPD\SqmUpload_S-1-5-21-2190094937-3161699157-1982157624-1001 -> No File <==== ATTENTION
Task: {570F8263-E156-411A-83D7-70C6594E6C0F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-05] (Adobe Systems Incorporated)
Task: {5CFF0576-9527-4DA0-AB10-DADCA9D68FB3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {630DA636-D502-4B25-AFE9-4A304F377152} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {6D16C955-3A2F-4663-9F35-AD21C082713A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-08-26] (AVAST Software)
Task: {7266CCD3-612B-44DD-9DBF-F6CBD150D0FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {75F4EE63-72D8-4B9E-8049-A1124D0CE908} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {7E4166ED-54DA-40FB-ADB9-3FFD337CAD2C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {8365AC74-F241-4AFA-8D41-EA7210D46B49} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {8768C0E3-21DD-4A0C-8619-AC9713455EE0} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {8B5F4A5C-FEC9-4EE5-817C-B2784CB62EFF} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A55B8F07-BF0B-4DEF-8386-4DEEABBC4838} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {A8A594CD-A052-4E32-BD14-469695F5C885} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {AC425993-3897-45CF-9464-188E65C9D994} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {BA94EFEE-28F2-463A-B527-52F8DA4C31ED} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C328C959-D634-474C-8ADE-5DE98E493E27} - System32\Tasks\avastBCLRestartS-1-5-21-2190094937-3161699157-1982157624-1001 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Task: {D563ED76-BC0E-41D0-821A-FC0BEBFE6B35} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {E7736BBA-2175-463D-B347-AF64B59DF006} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27] (CyberLink)
Task: {EDE19835-DE01-44F7-A205-3E541E1D10B9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-04-11 17:34 - 2018-04-11 17:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2016-10-21 20:31 - 2016-02-04 10:53 - 000387144 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2018-12-06 19:53 - 2018-10-18 09:44 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2014-05-08 22:07 - 2014-05-08 22:07 - 000159768 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\loggingserver.exe
2017-12-18 16:41 - 2017-12-18 16:41 - 000070656 _____ () C:\Program Files\MozyHome\zlib1.dll
2018-04-11 17:34 - 2018-04-11 17:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 17:34 - 2018-04-11 17:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-11-13 20:10 - 2018-11-01 00:55 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-12-04 22:50 - 2018-12-04 22:50 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2017-03-09 00:16 - 2017-03-09 00:16 - 000112264 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-05-04 15:10 - 2011-05-04 15:10 - 000325344 _____ () C:\Program Files (x86)\Memeo\AutoBackup\InstantBackup.exe
2018-10-15 22:25 - 2018-10-15 22:26 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-04 22:50 - 2018-12-04 22:50 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-07-11 16:49 - 2018-07-11 16:50 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-11-13 23:56 - 2018-11-13 23:56 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-13 23:56 - 2018-11-13 23:56 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-11-09 16:46 - 2018-11-09 16:47 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2017-11-17 22:12 - 2017-11-17 22:14 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-09 16:46 - 2018-11-09 16:47 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-11-09 16:46 - 2018-11-09 16:47 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-16 21:35 - 2018-08-16 21:36 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-16 21:35 - 2018-08-16 21:36 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-03-29 17:52 - 2018-03-29 17:54 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-11-13 23:56 - 2018-11-13 23:56 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-09 16:46 - 2018-11-09 16:47 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-11-13 23:56 - 2018-11-13 23:56 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-28 17:26 - 2018-08-28 17:28 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 17:27 - 2018-07-27 17:28 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-06 21:06 - 2018-12-06 21:06 - 004220928 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe
2018-12-06 21:05 - 2018-12-06 21:05 - 004380232 _____ () C:\Program Files\WindowsApps\Microsoft.UI.Xaml.2.0_2.1810.18003.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2014-05-08 22:07 - 2014-05-08 22:07 - 000519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\log4cplusU.dll
2013-04-02 08:02 - 2012-06-25 11:41 - 001198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2017-07-03 21:29 - 2017-07-03 21:29 - 000170224 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-08-07 21:31 - 2017-08-07 21:31 - 001038952 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-07-03 21:29 - 2017-07-03 21:29 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-07-03 21:29 - 2017-07-03 21:29 - 000192664 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-07-03 21:29 - 2017-07-03 21:29 - 000224256 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-07-03 21:28 - 2017-07-03 21:28 - 000292920 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-07-03 21:29 - 2017-07-03 21:29 - 000689272 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2011-05-04 15:10 - 2011-05-04 15:10 - 002896608 _____ () C:\Program Files (x86)\Memeo\AutoBackup\Memeo.Client.UI.dll
2011-05-04 15:10 - 2011-05-04 15:10 - 000027360 _____ () C:\Program Files (x86)\Memeo\AutoBackup\Memeo.Client.DriveDetection.dll
2010-03-22 16:59 - 2010-03-22 16:59 - 000504293 _____ () C:\Program Files (x86)\Memeo\AutoBackup\sqlite3.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 07:25 - 2017-01-21 23:36 - 000000826 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2190094937-3161699157-1982157624-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\gary\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\lenovowallpaper.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B8C7EDB3-9612-4854-BB2B-115996F483D1}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{C7563F83-2F35-4EC9-A3C2-1A0A135175A0}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{A128A6CE-6C0E-4011-99B4-A3A4AED4997B}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{16277D5D-426D-4F3C-9900-B7CD45503DAF}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{1F249ED6-6E4A-457F-865C-396D6884CED7}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{33EE4AAE-20A5-4392-8EEA-C63BAC31E881}] => (Allow) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdater.exe
FirewallRules: [{30E253F3-9953-4055-9B54-7A23E22CA746}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{AFC939A5-21F3-42DA-BC84-555099C17F24}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1FE690F1-B3C3-4442-BAEF-FEBE3A1ED55E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{512E2A39-8FBA-4A29-94CA-6F172BE279B3}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{63ED0234-6B1B-49CC-AAB9-90CA392CBB43}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{733799DC-0789-4600-96B6-5C47075A0BBE}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{A64588E3-402A-4E64-851B-26499558AF63}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{2C4405D1-55EE-443A-868E-F1999D3757B1}] => (Allow) C:\Program Files (x86)\Seagate\Seagate Dashboard\HipServAgent\HipServAgent.exe
FirewallRules: [{A60CB7E3-A236-4DB2-95EE-1A69F57EAE4B}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{22348A36-A403-4B9D-9966-C621B1DF0C34}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{2EA370AC-C302-4E93-A79C-1DD199032BDF}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{04D2BEF0-039A-4849-A25C-968F436853C5}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609_0\SZBrowser.exe
FirewallRules: [{DA3A74FF-20F5-471A-980C-0941947EE40D}] => (Allow) c:\program files\opera\56.0.3051.99\opera.exe
FirewallRules: [{F8DA6B19-3D7E-40CA-9B34-4E4DFF2BDBC3}] => (Allow) c:\program files\opera\56.0.3051.104\opera.exe
FirewallRules: [{824A70B4-6FEA-4A2B-B040-19C6CA84B2E6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

27-11-2018 21:59:36 Scheduled Checkpoint
04-12-2018 18:42:05 Windows Update

==================== Faulty Device Manager Devices =============

Name: USB Mass Storage Device
Description: USB Mass Storage Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Compatible USB storage device
Service: USBSTOR
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/01/2018 10:39:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program opera.exe version 56.0.3051.104 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1394

Start Time: 01d489f6f0eb724a

Termination Time: 4294967295

Application Path: C:\Program Files\Opera\56.0.3051.104\opera.exe

Report Id: 7170393f-7cf5-443e-998c-cda3d0781d53

Faulting package full name:

Faulting package-relative application ID:

Error: (12/01/2018 08:02:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program opera.exe version 56.0.3051.104 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1f9c

Start Time: 01d489e2d9714e78

Termination Time: 4294967295

Application Path: C:\Program Files\Opera\56.0.3051.104\opera.exe

Report Id: 67afea29-4b16-4f40-bfda-b86c0bb9341c

Faulting package full name:

Faulting package-relative application ID:

Error: (11/28/2018 10:11:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program opera.exe version 56.0.3051.104 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1914

Start Time: 01d48798d0e33412

Termination Time: 4294967295

Application Path: C:\Program Files\Opera\56.0.3051.104\opera.exe

Report Id: d4c3c4dc-f773-4840-8d4c-bd84e7f7389d

Faulting package full name:

Faulting package-relative application ID:

Error: (11/27/2018 12:51:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Taskmgr.exe, version: 10.0.17134.1, time stamp: 0xe3592b68
Faulting module name: Taskmgr.exe, version: 10.0.17134.1, time stamp: 0xe3592b68
Exception code: 0xc0000409
Fault offset: 0x0000000000018961
Faulting process id: 0x960
Faulting application start time: 0x01d484754cfb8966
Faulting application path: C:\Windows\System32\Taskmgr.exe
Faulting module path: C:\Windows\System32\Taskmgr.exe
Report Id: 4098fb8b-7ceb-4ccf-96ec-7671434624c0
Faulting package full name:
Faulting package-relative application ID:

Error: (11/26/2018 12:00:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program opera.exe version 56.0.3051.104 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: a8

Start Time: 01d4854d0ea4074a

Termination Time: 4294967295

Application Path: C:\Program Files\Opera\56.0.3051.104\opera.exe

Report Id: a436ba52-be4c-4702-abd7-75ce46821d14

Faulting package full name:

Faulting package-relative application ID:

Error: (11/18/2018 11:52:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SPFLite.exe version 7.0.0.3217 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 32fc

Start Time: 01d47fca3bbd6a9e

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\SPFLite\SPFLite.exe

Report Id: cb126164-ffaa-4f6c-a5d2-23f0922aceca

Faulting package full name:

Faulting package-relative application ID:

Error: (11/04/2018 06:10:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program firefox.exe version 63.0.0.6865 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 974

Start Time: 01d47004075a2c03

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: bab267ef-cecc-4d27-af98-f0080048aa33

Faulting package full name:

Faulting package-relative application ID:

Error: (10/10/2018 10:06:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program firefox.exe version 62.0.3.6848 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 468

Start Time: 01d46117c207d263

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: 840a57c1-6997-4b0b-a0c1-ab48052971b5

Faulting package full name:

Faulting package-relative application ID:


System errors:
=============
Error: (12/07/2018 06:34:22 PM) (Source: DCOM) (EventID: 10001) (User: GARYSPC)
Description: Unable to start a DCOM Server: E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8!App.AppX6v65ke6xy52mzp48tbdgqddy15h0mcbk.mca as Unavailable/Unavailable. The error:
"5"
Happened while starting this command:
"C:\WINDOWS\SysWOW64\backgroundTaskHost.exe" -ServerName:App.AppXeswb5ba1hz6dgh65e6kd4vazsqwqzdcn.mca

Error: (12/07/2018 06:34:22 PM) (Source: DCOM) (EventID: 10001) (User: GARYSPC)
Description: Unable to start a DCOM Server: E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8!App.AppX1222w7mnscdhak8wye3bynztq2t5x6q9.mca as Unavailable/Unavailable. The error:
"5"
Happened while starting this command:
"C:\WINDOWS\SysWOW64\backgroundTaskHost.exe" -ServerName:App.AppXeswb5ba1hz6dgh65e6kd4vazsqwqzdcn.mca

Error: (12/07/2018 03:57:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (12/07/2018 03:47:39 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (12/07/2018 03:45:16 PM) (Source: DCOM) (EventID: 10016) (User: GARYSPC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 to the user Garyspc\gary SID (S-1-5-21-2190094937-3161699157-1982157624-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.

Error: (12/07/2018 03:45:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (12/07/2018 03:44:50 PM) (Source: DCOM) (EventID: 10001) (User: GARYSPC)
Description: Unable to start a DCOM Server: E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8!App.AppX6v65ke6xy52mzp48tbdgqddy15h0mcbk.mca as Unavailable/Unavailable. The error:
"5"
Happened while starting this command:
"C:\WINDOWS\SysWOW64\backgroundTaskHost.exe" -ServerName:App.AppXeswb5ba1hz6dgh65e6kd4vazsqwqzdcn.mca

Error: (12/07/2018 03:44:50 PM) (Source: DCOM) (EventID: 10001) (User: GARYSPC)
Description: Unable to start a DCOM Server: E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8!App.AppX1222w7mnscdhak8wye3bynztq2t5x6q9.mca as Unavailable/Unavailable. The error:
"5"
Happened while starting this command:
"C:\WINDOWS\SysWOW64\backgroundTaskHost.exe" -ServerName:App.AppXeswb5ba1hz6dgh65e6kd4vazsqwqzdcn.mca


Windows Defender:
===================================
Date: 2018-06-27 22:38:56.774
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.251.1371.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.14104.0
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2018-06-27 22:38:56.774
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.251.1371.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.14104.0
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2018-06-27 22:38:56.774
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.251.1371.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.14104.0
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2018-06-27 22:38:56.333
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.251.1371.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.14104.0
Error code: 0x800704cf
Error description: The network location cannot be reached. For information about network troubleshooting, see Windows Help.

CodeIntegrity:
===================================

Date: 2018-12-06 20:38:42.274
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\afwServ.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aavm4h.dll that did not meet the security requirements for Shared Sections.

Date: 2018-12-01 18:41:04.119
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\afwServ.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aavm4h.dll that did not meet the security requirements for Shared Sections.

Date: 2018-11-24 22:12:47.264
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\afwServ.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aavm4h.dll that did not meet the security requirements for Shared Sections.

Date: 2018-11-24 19:23:59.662
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\afwServ.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aavm4h.dll that did not meet the security requirements for Shared Sections.

Date: 2018-11-24 16:12:59.705
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\Setup\instup.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aavm4h.dll that did not meet the security requirements for Shared Sections.

Date: 2018-11-24 16:09:46.804
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\Setup\instup.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aavm4h.dll that did not meet the security requirements for Shared Sections.

Date: 2018-11-24 02:44:46.938
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\Setup\instup.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aavm4h.dll that did not meet the security requirements for Shared Sections.

Date: 2018-11-24 02:44:19.699
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\Setup\instup.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aavm4h.dll that did not meet the security requirements for Shared Sections.

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 65%
Total physical RAM: 3959.77 MB
Available physical RAM: 1362.1 MB
Total Virtual: 6135.77 MB
Available Virtual: 3283.9 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:417.5 GB) (Free:358.67 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.06 GB) NTFS
Drive f: (USB20FD) (Removable) (Total:15.1 GB) (Free:15 GB) FAT32

\\?\Volume{a85515c4-3707-4d7b-ab3b-5d55a14cbde7}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.52 GB) NTFS
\\?\Volume{beabe8b9-5c70-47e0-9e44-9635113a7a79}\ () (Fixed) (Total:0.93 GB) (Free:0.45 GB) NTFS
\\?\Volume{9e748acf-d7fa-4d60-8b19-7ce459265d20}\ (PBR_DRV) (Fixed) (Total:20 GB) (Free:12.27 GB) NTFS
\\?\Volume{f687a117-fcf1-4f84-bc53-be3715046ade}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 48C9588B)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 15.1 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=15.1 GB) - (Type=0C)





esult o
9
Current News / Verizon/AOL helped advertisers track kids online
« Last post by Bugbatter on December 05, 2018, 09:05:12 AM »

Verizon/AOL helped advertisers track kids online, must now pay $5M fine
AOL knowingly violated children's privacy law with billions of targeted ads.

"The Attorney General's Office found that AOL conducted billions of auctions for ad space on hundreds of websites the company knew were directed to children under the age of 13," Underwood's announcement said. "Through these auctions, AOL collected, used, and disclosed personal information from the websites' users in violation of COPPA [Children's Online Privacy Protection Act], enabling advertisers to track and serve targeted ads to young children."

In addition to paying the largest-ever fine for violating COPPA, the Verizon-owned company "has agreed to adopt comprehensive reforms to protect children from improper tracking," the announcement said.

https://arstechnica.com/tech-policy/2018/12/verizonaol-helped-advertisers-track-kids-online-must-now-pay-5m-fine/
10
Current News / Quora.com admits data breach affecting 100 million accounts
« Last post by Bugbatter on December 05, 2018, 08:37:33 AM »

"...Data accessed included private information such as name, email address and encrypted (hashed) passwords, and any data imported from linked networks as authorised by account holders..."


Complete article:
https://nakedsecurity.sophos.com/2018/12/05/quora-com-admits-data-breach-affecting-100-million-accounts/
Pages: [1] 2 3 ... 10