FreeFixer v1.10 log
http://www.freefixer.com/
Operating system: Windows 7 Service Pack 1
Log dated 2014-04-22 21:18


AppInit_DLLs
============
32-bit,  (file is missing)

Browser Helper Objects (10 whitelisted)
=======================================
32-bit, {0055C089-8582-441B-A0BF-17B458C2A3A8}, IDMIEHlprObj Class, C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll

Internet Explorer toolbars (1 whitelisted)
==========================================
HKLM\..\Toolbar\10 -  - (no file specified)
HKCU\..\Toolbar\WebBrowser\{47833539-D0C5-4125-9FA8-0819E2EAAC93} -  - (no file specified)
HKLM\..Wow6432Node..\Toolbar\10 -  - (no file specified)

Internet Explorer extensions
============================
HKLM\..\Extensions\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - Lync Click to Call
HKLM\..\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Skype Click to Call
HKLM\..Wow6432Node..\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Skype Click to Call

Basic Internet Explorer settings
================================
HKCU\..\Main, Start Page = http://www.search.ask.com/?o=APN10640A&gct=hp&d=473-103&v=a12281-152&t=4

Internet Explorer Search Providers
==================================
HKLM\..\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473} - Ask.com - http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=103&systemid=473&v=a12281-152&apn_uid=3323155918674911&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
HKLM\..Wow6432Node..\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473} - Ask.com - http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=103&systemid=473&v=a12281-152&apn_uid=3323155918674911&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
HKCU\..\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473} - Ask.com - http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=103&systemid=473&v=a12281-152&apn_uid=3323155918674911&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms}

Registry Startups (12 whitelisted)
==================================
HKLM\..\Run, ShadowPlay = C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\..Wow6432Node..\Run, (default) = (no file specified)
HKLM\..Wow6432Node..\Run, SwitchBoard = C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
HKLM\..Wow6432Node..\Run, QuickTime Task = "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
HKLM\..Wow6432Node..\Run, PWRISOVM.EXE = C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
HKCU\..\Run, AdobeBridge = (no file specified)
HKCU\..\Run, CCleaner Monitoring = "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

Scheduled tasks (58 whitelisted)
================================
AutoKMS, C:\Windows\AutoKMS\AutoKMS.exe 
CCleanerSkipUAC, "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
FreeFixer background scan, C:\Program Files\FreeFixer\freefixer.exe -bgscan
Origin, C:\Users\Algert Guri\AppData\Roaming\Origin\update.vbe (file is missing)
ParetoLogic Registration, C:\Windows\system32\rundll32.exe "C:\Program Files (x86)\Common Files\ParetoLogic\UUS2\UUS.dll" RunUns (file is missing)
{791C2022-1955-4B3C-B32C-1DA3147206AD}, C:\Games\FIFA 14\Game\fifasetup\fifaconfig.exe  (file is missing)

Autostart shortcuts
===================
Dropbox.lnk, Dropbox - Sync your files online and across computers, C:\Users\Algert Guri\AppData\Roaming\Dropbox\bin\Dropbox.exe
Samsung Magician.lnk, , C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe

Processes (60 whitelisted)
==========================
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
C:\Users\Algert Guri\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\Program Files\FreeFixer\freefixer.exe

Services (51 whitelisted)
=========================
c2cautoupdatesvc, Skype Click to Call Updater, c:\program files (x86)\skype\toolbars\autoupdate\skypec2cautoupdatesvc.exe
c2cpnrsvc, Skype Click to Call PNR Service, c:\program files (x86)\skype\toolbars\pnrsvc\skypec2cpnrsvc.exe
clr_optimization_v4.0.30319_32, Microsoft .NET Framework NGEN v4.0.30319_X86, c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe
clr_optimization_v4.0.30319_64, Microsoft .NET Framework NGEN v4.0.30319_X64, c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe
SkypeUpdate, Skype Updater, c:\program files (x86)\skype\updater\updater.exe
TeamViewer9, TeamViewer 9, c:\program files (x86)\teamviewer\version9\teamviewer_service.exe

Explorer.exe Modules (193 whitelisted)
======================================
C:\Users\Algert Guri\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll

Firefox Extensions
==================
uTorrentControl_v6b , c:\users\algert guri\appdata\roaming\mozilla\firefox\profiles\8i4wnjxf.default\extensions\{8f6846ea-ddff-459b-8c78-469b34d90a49}\install.rdf
MEGA, c:\users\algert guri\appdata\roaming\mozilla\firefox\profiles\8i4wnjxf.default\extensions\firefox@mega.co.nz.xpi
Gmail Notifier (restartless), c:\users\algert guri\appdata\roaming\mozilla\firefox\profiles\8i4wnjxf.default\extensions\jid0-gjwrpchs3ugt7xydvqvk4dqk8ls@jetpack.xpi
eCleaner, c:\users\algert guri\appdata\roaming\mozilla\firefox\profiles\8i4wnjxf.default\extensions\{c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpi
Skype Click to Call, c:\program files (x86)\mozilla firefox\browser\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}.xpi
IDM CC, c:\users\algert guri\appdata\roaming\idm\idmmzcc3\install.rdf

Firefox Search Engines
======================
Amazon.com, http://www.amazon.com/exec/obidos/external-search/, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazondotcom.xml, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazondotcom.xml
Ask.com, http://dts.search.ask.com/sr?src=ffb&gct=ds&appid=103&systemid=473&v=a12281-152&apn_ptnrs=AG1&o=APN10640&apn_dtid=BND101&apn_uid=3323155918674911&q={searchTerms}, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\Ask.xml, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\Ask.xml
Bing, http://www.bing.com/search, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
eBay, http://rover.ebay.com/rover/1/711-47294-18009-3/4, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay.xml, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay.xml
Google, https://www.google.com/search, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
Twitter, https://twitter.com/search, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml
Wikipedia (en), http://en.wikipedia.org/wiki/Special:Search, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia.xml, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia.xml
Yahoo, http://search.yahoo.com/search, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml
Ask.com, http://dts.search.ask.com/sr?src=ffb&gct=ds&appid=103&systemid=473&v=a12281-152&apn_ptnrs=AG1&o=APN10640&apn_dtid=BND101&apn_uid=3323155918674911&q={searchTerms}, C:\Users\Algert Guri\AppData\Roaming\Mozilla\Firefox\Profiles\8i4wnjxf.default\searchplugins\Ask.xml, C:\Users\Algert Guri\AppData\Roaming\Mozilla\Firefox\Profiles\8i4wnjxf.default\searchplugins\Ask.xml

Recently created/modified files
===============================
23 minutes, c:\Program Files\FreeFixer\Uninstall.exe
24 minutes, c:\Users\Algert Guri\Desktop\freefixersetup.exe
50 minutes, c:\Users\Algert Guri\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmphhojdq.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_pt_PT.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_ru_RU.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_pt_BR.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_pl_PL.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_nl_NL.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_it_IT.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_hu_HU.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_es_MX.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_fr_FR.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_es_ES.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_en_US.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_de_DE.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_en_GB.dll
51 minutes, c:\Games\FIFA 13\GDFBinary_cs_CZ.dll
52 minutes, c:\Games\FIFA 13\Game\rldea.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\ru-RU\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\pt-PT\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\pt-BR\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\pl-PL\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\no\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\nl-NL\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\ko-KR\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\ja-JP\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\it-IT\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\hu-HU\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\fr-FR\fifaconfig.resources.dll
52 minutes, c:\Games\FIFA 13\Game\fifasetup\fifaconfig.exe

Csrss.exe virtual memory files (249 whitelisted)
================================================
C:\Windows\AutoKMS\AutoKMS.exe
C:\Games\FIFA 13\Game\fifa13.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\Skype\Updater\Updater.exe
C:\Users\Algert Guri\Desktop\freefixersetup.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\Program Files (x86)\WinRAR\rarext64.dll
C:\Program Files (x86)\QuickTime\QTTask.exe
C:\Program Files (x86)\Samsung Magician\Logger32.dll
C:\Program Files (x86)\Samsung Magician\SAMSUNG_SSD.dll
C:\Program Files (x86)\Samsung Magician\SMINI.dll
C:\Users\Algert Guri\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
C:\Program Files (x86)\UNIVERSAL\Call of Duty - World at War\CoDWaW.exe
Failed to calculate hash for 'C:\Program Files (x86)\UNIVERSAL\Call of Duty - World at War\CoDWaW.exe' using 'CryptCATAdminCalcHashFromFileHandle' while verifying trust. System error message: %1 is not a valid Win32 application. Error code: 2147942593.
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Algert Guri\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ahclient.dll
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
C:\Users\Algert Guri\AppData\Roaming\Dropbox\bin\libcef.dll
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
C:\Program Files (x86)\Adobe\Adobe Content Viewer\Adobe Content Viewer.exe
C:\Games\Battlefield 3\bf3.exe
C:\Program Files\FreeFixer\freefixer.exe
H:\CG P E E R S\FIFA 14 PC game ^^nosTEAM^^\FIFA 14 nosTEAM.part1.exe
C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe
C:\Program Files (x86)\Samsung Magician\SATA.dll
C:\Program Files (x86)\Samsung Magician\SAT.dll
C:\Program Files (x86)\Samsung Magician\PAL.dll
C:\Program Files\Update Management Tool\UMT.exe
C:\Program Files (x86)\Samsung Magician\SAS.dll
C:\Users\Algert Guri\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe

Errors
======
Problems opening folder 'c:\Users\Algert Guri\AppData\Roaming\Adobe\After Effects\?12.0' to enumerate files. FindFirstFile failed. System error message: The filename, directory name, or volume label syntax is incorrect. Error code: 123.
Problems opening folder 'c:\Users\Algert Guri\Dropbox\+ fonts\different fonts maj 2013\??????' to enumerate files. FindFirstFile failed. System error message: The filename, directory name, or volume label syntax is incorrect. Error code: 123.
Problems opening folder 'c:\Windows\System32\LogFiles\WMI\RtBackup' to enumerate files. FindFirstFile failed. System error message: Access is denied. Error code: 5.
Problems opening folder 'i:\+ fonts\different fonts maj 2013\??????' to enumerate files. FindFirstFile failed. System error message: The filename, directory name, or volume label syntax is incorrect. Error code: 123.

End of FreeFixer log