Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Cannot load FRST - getting svchost issues
Message
<blockquote data-quote="cmany" data-source="post: 405866" data-attributes="member: 37601"><p>This is the addition.txt file</p><p></p><p>Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01</p><p>Ran by cmany at 2015-07-02 11:58:30</p><p>Running from C:\Users\cmany\Downloads</p><p>Boot Mode: Normal</p><p>==========================================================</p><p></p><p></p><p>==================== Accounts: =============================</p><p></p><p>Administrator (S-1-5-21-2123845491-2313268984-385980148-500 - Administrator - Disabled)</p><p>cmany (S-1-5-21-2123845491-2313268984-385980148-1002 - Administrator - Enabled) => C:\Users\cmany</p><p>Guest (S-1-5-21-2123845491-2313268984-385980148-501 - Limited - Disabled)</p><p>HomeGroupUser$ (S-1-5-21-2123845491-2313268984-385980148-1006 - Limited - Enabled)</p><p>James (S-1-5-21-2123845491-2313268984-385980148-1004 - Limited - Enabled) => C:\Users\James</p><p>Ryan (S-1-5-21-2123845491-2313268984-385980148-1007 - Limited - Enabled) => C:\Users\Ryan</p><p></p><p>==================== Security Center ========================</p><p></p><p>(If an entry is included in the fixlist, it will be removed.)</p><p></p><p>AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}</p><p>AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}</p><p>AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}</p><p>AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}</p><p>FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}</p><p></p><p>==================== Installed Programs ======================</p><p></p><p>(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)</p><p></p><p>4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)</p><p>Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.)</p><p>AMD Catalyst Install Manager (HKLM\...\{CB4C08E3-800F-65F6-9C00-06814A6B7CE7}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)</p><p>Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)</p><p>Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)</p><p>Build-a-lot 4 - Power Source (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden</p><p>Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)</p><p>CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.)</p><p>CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.5.3416 - CyberLink Corp.)</p><p>CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6.4319 - CyberLink Corp.)</p><p>CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2.3603 - CyberLink Corp.)</p><p>D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden</p><p>Dropbox (HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)</p><p>Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)</p><p>Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>FATE: The Cursed King (x32 Version: 2.2.0.97 - WildTangent) Hidden</p><p>Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden</p><p>FlatOut 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)</p><p>Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)</p><p>Google Drive (HKLM-x32\...\{CBC9F5FD-5CFA-4A33-81CD-369EAB77E3A6}) (Version: 1.22.9403.0223 - Google, Inc.)</p><p>Google Talk Plugin (HKLM-x32\...\{C77CC230-7417-3F01-B70D-52583DC9FEC9}) (Version: 5.40.2.0 - Google)</p><p>Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)</p><p>Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden</p><p>Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden</p><p>Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden</p><p>Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden</p><p>Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden</p><p>HP Documentation (HKLM-x32\...\{AE986BF5-B6E3-4F8D-B412-A3DD90DF5146}) (Version: 1.1.1.0 - Hewlett-Packard)</p><p>HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent)</p><p>HP MyRoom (HKLM-x32\...\{47DB754E-FC61-4EAE-A933-6708CF466BB0}) (Version: 9.5.0314 - Hewlett-Packard)</p><p>HP Quick Launch (HKLM-x32\...\{4ED7050C-9332-4FB2-AB07-E94F25A53D39}) (Version: 3.0.3 - Hewlett-Packard Company)</p><p>HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)</p><p>HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)</p><p>HP Software Framework (HKLM-x32\...\{675D093B-815D-47FD-AB2C-192EC751E8E2}) (Version: 4.6.10.1 - Hewlett-Packard Company)</p><p>HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)</p><p>HP Support Solutions Framework (HKLM-x32\...\{348A1F5B-07B3-4436-9A47-FFE44EFE856E}) (Version: 11.51.0004 - Hewlett-Packard Company)</p><p>HP Utility Center (HKLM-x32\...\{0C57987A-A03A-4B95-A309-D23F78F406CA}) (Version: 1.0.7 - Hewlett-Packard)</p><p>HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)</p><p>Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)</p><p>Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)</p><p>Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden</p><p>Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden</p><p>Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Mahjongg Dimensions Deluxe: Tiles in Time (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)</p><p>Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)</p><p>Microsoft OneDrive (HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\OneDriveSetup.exe) (Version: 17.3.5860.0512 - Microsoft Corporation)</p><p>Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)</p><p>Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)</p><p>Mortimer Beckett and the Crimson Thief Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden</p><p>Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)</p><p>Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)</p><p>Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)</p><p>Peggle (HKLM-x32\...\11231247) (Version: - Oberon Media)</p><p>Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)</p><p>Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden</p><p>Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)</p><p>Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.29070 - Realtek Semiconductor Corp.)</p><p>Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)</p><p>Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)</p><p>Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden</p><p>Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.13.1 - Synaptics Incorporated)</p><p>Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden</p><p>Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden</p><p>Vacation Quest™ - Australia (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p>Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)</p><p>Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)</p><p>WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)</p><p>WildTangent Games App for HP (x32 Version: 4.0.10.25 - WildTangent) Hidden</p><p>Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)</p><p>Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden</p><p></p><p>==================== Custom CLSID (Whitelisted): ==========================</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\cmany\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileSyncApi64.dll (Microsoft Corporation)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)</p><p></p><p>==================== Restore Points =========================</p><p></p><p>10-06-2015 12:07:02 Windows Update</p><p>18-06-2015 10:58:13 Scheduled Checkpoint</p><p>25-06-2015 14:00:53 Windows Update</p><p></p><p>==================== Hosts content: ===============================</p><p></p><p>(If needed Hosts: directive could be included in the fixlist to reset Hosts.)</p><p></p><p>2013-08-22 07:25 - 2013-08-22 07:25 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts</p><p></p><p>==================== Scheduled Tasks (Whitelisted) =============</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>Task: {12A0D01E-ACE0-4F89-B453-B14B754EB0F8} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink)</p><p>Task: {19ED4324-99F3-41AF-9101-1E835196733C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-06-08] (Hewlett-Packard)</p><p>Task: {20DE3A25-1F60-4D4F-A627-65E558917948} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)</p><p>Task: {2142A8FF-8070-4449-A429-5869A0378112} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1002Core => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-24] (Google Inc.)</p><p>Task: {2904DE61-3034-4AE5-9FB4-BC9B1CBABB17} - \GeniusBox No Task File <==== ATTENTION</p><p>Task: {39C9CDC1-5278-456F-BC75-3E5976888C0A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)</p><p>Task: {4059ABC1-BBF8-40AA-A119-54C53878E56C} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2123845491-2313268984-385980148-1002 => %localappdata%\Microsoft\OneDrive\OneDrive.exe</p><p>Task: {53B02643-AB54-4FD5-BEBE-D8EBC1324CBD} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2013-12-03] (CyberLink Corp.)</p><p>Task: {608805E0-5FF1-4478-96E3-736C09800541} - System32\Tasks\HPCeeScheduleForcmany => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)</p><p>Task: {66A287AE-6002-4F5D-B2EC-DD72AF1B947D} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-10] (Synaptics Incorporated)</p><p>Task: {697A5465-09D2-46BA-8161-923741460FDE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1002UA => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-24] (Google Inc.)</p><p>Task: {6F0DEB2A-A0B6-4237-9359-3F9B6F9BA683} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1007Core => C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-31] (Google Inc.)</p><p>Task: {7262756C-E5C7-482B-AB80-1F7DC58BCD74} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-06-08] (Hewlett-Packard)</p><p>Task: {74026C79-BAB0-4908-BCC9-0AF55D52A32B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-09] (Google Inc.)</p><p>Task: {75A8807F-23F8-43D4-8CBE-5F486EA16AB5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-09] (Google Inc.)</p><p>Task: {801B415D-1591-47D3-A13F-8EF4A5113A61} - System32\Tasks\avastBCLRestartS-1-5-21-2123845491-2313268984-385980148-1002 => Chrome.exe</p><p>Task: {8736ADB5-104B-42EB-85DD-4A21093EBD2A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-25] (Adobe Systems Incorporated)</p><p>Task: {8EF8F6F9-F13D-4BD3-8828-8E80E56AC5BE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)</p><p>Task: {8F948875-EF32-4F8C-9433-EAC180387172} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1007UA => C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-31] (Google Inc.)</p><p>Task: {9B80C332-BE3D-4AF6-A22E-AA59A1515502} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)</p><p>Task: {A114F463-70F0-4967-9143-702E68A57786} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-12-25] (Realtek Semiconductor)</p><p>Task: {B7E8F5F5-9A38-4AEC-A557-E79DF72034C8} - System32\Tasks\Java(TM) Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-02-10] (Oracle Corporation)</p><p>Task: {C18525AE-CB9F-4710-98DE-578405712CBC} - System32\Tasks\Google Update => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-24] (Google Inc.)</p><p>Task: {D0462F9B-00AB-4CA8-9AAB-534B25CE227C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)</p><p>Task: {E5114A26-FA2F-4DC7-BAD3-F3E0C05763B5} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-06-10] (Microsoft Corporation)</p><p>Task: {FBA3DC8D-CA4C-4F52-B273-DDBB47BC7E83} - System32\Tasks\Validate Installation => C:\Program Files (x86)\user extensions\updater.exe <==== ATTENTION</p><p>Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe</p><p>Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe</p><p>Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe</p><p>Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1002Core.job => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe</p><p>Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1002UA.job => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe</p><p>Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1007Core.job => C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe</p><p>Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1007UA.job => C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe</p><p>Task: C:\WINDOWS\Tasks\HPCeeScheduleForcmany.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe</p><p></p><p>==================== Loaded Modules (Whitelisted) ==============</p><p></p><p>2015-05-07 09:11 - 2015-05-07 09:11 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll</p><p>2015-05-07 09:11 - 2015-05-07 09:11 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll</p><p>2015-07-02 09:48 - 2015-07-02 09:48 - 02955264 _____ () C:\Program Files\AVAST Software\Avast\defs\15070202\algo.dll</p><p>2014-01-16 15:27 - 2013-08-05 01:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll</p><p>2013-08-05 16:48 - 2013-08-05 16:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll</p><p>2015-03-30 14:46 - 2015-03-30 14:46 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll</p><p>2015-06-22 12:13 - 2015-06-19 23:46 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libglesv2.dll</p><p>2015-06-22 12:13 - 2015-06-19 23:46 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libegl.dll</p><p>2015-06-22 12:13 - 2015-06-19 23:46 - 15003976 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\PepperFlash\pepflashplayer.dll</p><p></p><p>==================== Alternate Data Streams (Whitelisted) =========</p><p></p><p>(If an entry is included in the fixlist, only the ADS will be removed.)</p><p></p><p>AlternateDataStreams: C:\ProgramData\Temp:1AE68282</p><p>AlternateDataStreams: C:\Users\cmany\SkyDrive:ms-properties</p><p>AlternateDataStreams: C:\Users\cmany\SkyDrive.old:ms-properties</p><p>AlternateDataStreams: C:\Users\James\SkyDrive:ms-properties</p><p>AlternateDataStreams: C:\Users\Ryan\SkyDrive:ms-properties</p><p>AlternateDataStreams: C:\Users\Ryan\SkyDrive.old:ms-properties</p><p></p><p>==================== Safe Mode (Whitelisted) ===================</p><p></p><p>(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)</p><p></p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VOTw8 => ""="Driver"</p><p></p><p>==================== EXE Association (Whitelisted) ===============</p><p></p><p>(If an entry is included in the fixlist, the registry item will be restored to default or removed.)</p><p></p><p></p><p>==================== Internet Explorer trusted/restricted ===============</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry.)</p><p></p><p></p><p>==================== Other Areas ============================</p><p></p><p>(Currently there is no automatic fix for this section.)</p><p></p><p>HKU\S-1-5-21-2123845491-2313268984-385980148-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Hewlett-Packard Backgrounds\backgroundDefault.jpg</p><p>DNS Servers: 192.168.0.1 - 38.8.82.2</p><p></p><p>==================== MSCONFIG/TASK MANAGER disabled items ==</p><p></p><p>(Currently there is no automatic fix for this section.)</p><p></p><p>MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3</p><p>MSCONFIG\Services: AERTFilters => 2</p><p>MSCONFIG\Services: AMD External Events Utility => 2</p><p>MSCONFIG\Services: AMD FUEL Service => 2</p><p>MSCONFIG\Services: Bonjour Service => 2</p><p>MSCONFIG\Services: GamesAppIntegrationService => 2</p><p>MSCONFIG\Services: GamesAppService => 3</p><p>MSCONFIG\Services: gupdate => 2</p><p>MSCONFIG\Services: gupdatem => 3</p><p>MSCONFIG\Services: gusvc => 3</p><p>MSCONFIG\Services: HP Support Assistant Service => 2</p><p>MSCONFIG\Services: hpqwmiex => 3</p><p>MSCONFIG\Services: HPWMISVC => 2</p><p>MSCONFIG\Services: MozillaMaintenance => 3</p><p>MSCONFIG\Services: RtkAudioService => 2</p><p>MSCONFIG\Services: vToolbarUpdater18.4.0 => 2</p><p>MSCONFIG\Services: WtuSystemSupport => 2</p><p>HKLM\...\StartupApproved\Run: => "EKIJ5000StatusMonitor"</p><p>HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"</p><p>HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\StartupApproved\StartupFolder: => "Dropbox.lnk"</p><p>HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\StartupApproved\Run: => "Power2GoExpress8"</p><p>HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\StartupApproved\Run: => "Google Update"</p><p>HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\StartupApproved\Run: => "msnmsgr"</p><p></p><p>==================== FirewallRules (Whitelisted) ===============</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139</p><p>FirewallRules: [{DB1E6CAD-BA80-468D-8744-5EBC4C0E1F2E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE</p><p>FirewallRules: [{9EC512C4-B13C-45B2-B9E1-BD7F275F63DB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe</p><p>FirewallRules: [{3C915BFC-A7B3-4429-8BEB-5568F2C5EE70}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe</p><p>FirewallRules: [{8154691B-9156-44A2-86AD-C43DA8321FAA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe</p><p>FirewallRules: [{A75CE455-05A2-410B-B31F-56FEA80367B7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe</p><p>FirewallRules: [{B4522328-08C3-4E6A-AF72-50032CA7E761}] => (Allow) C:\Users\cmany\AppData\Roaming\Dropbox\bin\Dropbox.exe</p><p>FirewallRules: [{427F688D-5A15-42A1-B500-9F2910D03F1F}] => (Allow) C:\Users\cmany\AppData\Roaming\Dropbox\bin\Dropbox.exe</p><p>FirewallRules: [TCP Query User{EB71A5CA-9CC9-44E5-9927-50E0CB31CC19}C:\users\cmany\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\cmany\appdata\roaming\dropbox\bin\dropbox.exe</p><p>FirewallRules: [UDP Query User{D8B15FCB-B276-4802-ADAB-F1B098C08E84}C:\users\cmany\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\cmany\appdata\roaming\dropbox\bin\dropbox.exe</p><p>FirewallRules: [{0C682F09-50A4-43A8-A1C8-46380DB7DD0F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe</p><p>FirewallRules: [{99CB8013-ABA3-48AB-9559-587166A14FFA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe</p><p>FirewallRules: [{E6B4F33A-5E86-41A7-B1AB-9E710F1906D0}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe</p><p>FirewallRules: [{02CB014F-AC50-4E12-B461-136EE799FD68}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe</p><p>FirewallRules: [{7BF68963-B5D9-41CD-8F26-B6CBFFCC834B}] => (Allow) C:\Users\cmany\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe</p><p>FirewallRules: [{E2E93D07-78A3-4B44-8754-4BC4EF068250}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe</p><p>FirewallRules: [{847BA100-CB2A-4A74-968A-65820F2B9EF9}] => (Allow) LPort=2869</p><p>FirewallRules: [{E8C9B0C1-B4C7-4AFF-B3EE-C52953E4392B}] => (Allow) LPort=1900</p><p>FirewallRules: [{B85732C7-EE33-44E4-9DC8-159D2A04AD5D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe</p><p>FirewallRules: [TCP Query User{7BEF647E-5865-459C-BC6B-F0217D1A3163}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe</p><p>FirewallRules: [UDP Query User{010B0FB9-FEAE-43AC-9B88-1219812D54CB}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe</p><p>FirewallRules: [{6CD7C493-9D66-4627-B8BA-0292456EF2FC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe</p><p>FirewallRules: [{BC9B2F55-A94F-4817-B49E-3F88CDEC3EFC}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe</p><p>FirewallRules: [{61631CAF-7856-4AA3-9D15-42D1F65D3E9D}] => (Allow) C:\Program Files (x86)\PremierOpinion\pmropn.exe</p><p>FirewallRules: [{0C55206D-46BE-4A14-B17C-BF01D379394D}] => (Allow) C:\Program Files (x86)\PremierOpinion\pmropn.exe</p><p></p><p>==================== Faulty Device Manager Devices =============</p><p></p><p></p><p>==================== Event log errors: =========================</p><p></p><p>Application errors:</p><p>==================</p><p>Error: (07/02/2015 11:08:51 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: The program wwahost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.</p><p></p><p>Process ID: 358</p><p></p><p>Start Time: 01d0b4e89f503b9e</p><p></p><p>Termination Time: 4294967295</p><p></p><p>Application Path: C:\WINDOWS\syswow64\wwahost.exe</p><p></p><p>Report Id: eec903c4-20dc-11e5-bf4e-a0481cbb707d</p><p></p><p>Faulting package full name: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c</p><p></p><p>Faulting package-relative application ID: App</p><p></p><p>Error: (07/02/2015 10:51:39 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: The program wwahost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.</p><p></p><p>Process ID: 1590</p><p></p><p>Start Time: 01d0b4e686c77147</p><p></p><p>Termination Time: 4294967295</p><p></p><p>Application Path: C:\WINDOWS\syswow64\wwahost.exe</p><p></p><p>Report Id: 7f190a8c-20da-11e5-bf4e-a0481cbb707d</p><p></p><p>Faulting package full name: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c</p><p></p><p>Faulting package-relative application ID: App</p><p></p><p>Error: (07/02/2015 09:49:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTINEPC)</p><p>Description: Activation of app Microsoft.NetworkSpeedTest_8wekyb3d8bbwe!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.</p><p></p><p>Error: (07/02/2015 09:49:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: CHRISTINEPC)</p><p>Description: App Microsoft.NetworkSpeedTest_1.0.0.23_x64__8wekyb3d8bbwe+App did not launch within its allotted time.</p><p></p><p>Error: (07/02/2015 09:46:35 AM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: Faulting application name: pmservice.exe, version: 1.1.23.141, time stamp: 0x53f257cf</p><p>Faulting module name: pmservice.exe, version: 1.1.23.141, time stamp: 0x53f257cf</p><p>Exception code: 0xc0000005</p><p>Fault offset: 0x0000d54b</p><p>Faulting process id: 0x93c</p><p>Faulting application start time: 0xpmservice.exe0</p><p>Faulting application path: pmservice.exe1</p><p>Faulting module path: pmservice.exe2</p><p>Report Id: pmservice.exe3</p><p>Faulting package full name: pmservice.exe4</p><p>Faulting package-relative application ID: pmservice.exe5</p><p></p><p>Error: (07/02/2015 04:48:58 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)</p><p>Description: There was an error with the Windows Location Provider database</p><p></p><p>Error: (07/01/2015 09:38:03 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2007) (User: NT AUTHORITY)</p><p>Description: There was an error communicating to the Orion inference server</p><p></p><p>Error: (06/30/2015 11:21:33 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.</p><p></p><p>Process ID: 170c</p><p></p><p>Start Time: 01d0b35884375366</p><p></p><p>Termination Time: 4294967295</p><p></p><p>Application Path: C:\WINDOWS\syswow64\backgroundTaskHost.exe</p><p></p><p>Report Id: 72cb0605-1f4c-11e5-bf4c-a0481cbb707d</p><p></p><p>Faulting package full name: Microsoft.MicrosoftSudoku_1.2.1406.2005_x86__8wekyb3d8bbwe</p><p></p><p>Faulting package-relative application ID: App</p><p></p><p>Error: (06/30/2015 11:21:33 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.</p><p></p><p>Process ID: 1140</p><p></p><p>Start Time: 01d0b358816a1d69</p><p></p><p>Termination Time: 4294967295</p><p></p><p>Application Path: C:\WINDOWS\syswow64\backgroundTaskHost.exe</p><p></p><p>Report Id: 723d6b1d-1f4c-11e5-bf4c-a0481cbb707d</p><p></p><p>Faulting package full name: Microsoft.MicrosoftMahjong_2.4.1412.2202_x86__8wekyb3d8bbwe</p><p></p><p>Faulting package-relative application ID: MicrosoftMahjong</p><p></p><p>Error: (06/30/2015 05:45:28 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.</p><p></p><p>Process ID: 1250</p><p></p><p>Start Time: 01d0b32a37e76525</p><p></p><p>Termination Time: 4294967295</p><p></p><p>Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe</p><p></p><p>Report Id: 78eb259f-1f1d-11e5-bf4c-a0481cbb707d</p><p></p><p>Faulting package full name: Farlex.581429F59E1D8_2.1.0.18_x64__wyegy4e46y996</p><p></p><p>Faulting package-relative application ID: App</p><p></p><p></p><p>System errors:</p><p>=============</p><p>Error: (07/02/2015 11:17:31 AM) (Source: Service Control Manager) (EventID: 7023) (User: )</p><p>Description: The HP Network Devices Support service terminated with the following error:</p><p>%%126</p><p></p><p>Error: (07/02/2015 09:52:58 AM) (Source: Service Control Manager) (EventID: 7034) (User: )</p><p>Description: The PremierOpinion service terminated unexpectedly. It has done this 1 time(s).</p><p></p><p>Error: (07/02/2015 09:50:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: )</p><p>Description: The HP Network Devices Support service terminated with the following error:</p><p>%%126</p><p></p><p>Error: (07/02/2015 04:54:32 AM) (Source: Service Control Manager) (EventID: 7011) (User: )</p><p>Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the gpsvc service.</p><p></p><p>Error: (07/02/2015 04:54:02 AM) (Source: Service Control Manager) (EventID: 7011) (User: )</p><p>Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wuauserv service.</p><p></p><p>Error: (07/02/2015 04:53:32 AM) (Source: Service Control Manager) (EventID: 7011) (User: )</p><p>Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service.</p><p></p><p>Error: (07/01/2015 11:06:23 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTINEPC)</p><p>Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}</p><p></p><p>Error: (07/01/2015 11:06:23 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTINEPC)</p><p>Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}</p><p></p><p>Error: (07/01/2015 11:06:23 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTINEPC)</p><p>Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}</p><p></p><p>Error: (07/01/2015 11:06:23 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTINEPC)</p><p>Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}</p><p></p><p></p><p>Microsoft Office:</p><p>=========================</p><p>Error: (07/02/2015 11:08:51 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: wwahost.exe6.3.9600.1741535801d0b4e89f503b9e4294967295C:\WINDOWS\syswow64\wwahost.exeeec903c4-20dc-11e5-bf4e-a0481cbb707dMicrosoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5cApp</p><p></p><p>Error: (07/02/2015 10:51:39 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: wwahost.exe6.3.9600.17415159001d0b4e686c771474294967295C:\WINDOWS\syswow64\wwahost.exe7f190a8c-20da-11e5-bf4e-a0481cbb707dMicrosoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5cApp</p><p></p><p>Error: (07/02/2015 09:49:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTINEPC)</p><p>Description: Microsoft.NetworkSpeedTest_8wekyb3d8bbwe!App-2144927142</p><p></p><p>Error: (07/02/2015 09:49:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: CHRISTINEPC)</p><p>Description: Microsoft.NetworkSpeedTest_1.0.0.23_x64__8wekyb3d8bbwe+App</p><p></p><p>Error: (07/02/2015 09:46:35 AM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: pmservice.exe1.1.23.14153f257cfpmservice.exe1.1.23.14153f257cfc00000050000d54b93c01d0b4de36d4a5e8C:\Program Files (x86)\PremierOpinion\pmservice.exeC:\Program Files (x86)\PremierOpinion\pmservice.exe8458b5b7-20d1-11e5-bf4e-a0481cbb707d</p><p></p><p>Error: (07/02/2015 04:48:58 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)</p><p>Description: -2147024883</p><p></p><p>Error: (07/01/2015 09:38:03 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2007) (User: NT AUTHORITY)</p><p>Description: -2143485946</p><p></p><p>Error: (06/30/2015 11:21:33 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: backgroundTaskHost.exe6.3.9600.17415170c01d0b358843753664294967295C:\WINDOWS\syswow64\backgroundTaskHost.exe72cb0605-1f4c-11e5-bf4c-a0481cbb707dMicrosoft.MicrosoftSudoku_1.2.1406.2005_x86__8wekyb3d8bbweApp</p><p></p><p>Error: (06/30/2015 11:21:33 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: backgroundTaskHost.exe6.3.9600.17415114001d0b358816a1d694294967295C:\WINDOWS\syswow64\backgroundTaskHost.exe723d6b1d-1f4c-11e5-bf4c-a0481cbb707dMicrosoft.MicrosoftMahjong_2.4.1412.2202_x86__8wekyb3d8bbweMicrosoftMahjong</p><p></p><p>Error: (06/30/2015 05:45:28 AM) (Source: Application Hang) (EventID: 1002) (User: )</p><p>Description: backgroundTaskHost.exe6.3.9600.17415125001d0b32a37e765254294967295C:\WINDOWS\system32\backgroundTaskHost.exe78eb259f-1f1d-11e5-bf4c-a0481cbb707dFarlex.581429F59E1D8_2.1.0.18_x64__wyegy4e46y996App</p><p></p><p></p><p>CodeIntegrity Errors:</p><p>===================================</p><p> Date: 2015-06-29 21:02:24.709</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:23.709</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:21.858</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:20.863</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:19.848</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:18.778</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:17.768</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:16.716</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:15.692</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2015-06-29 21:02:14.672</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p></p><p>==================== Memory info ===========================</p><p></p><p>Processor: AMD E-300 APU with Radeon(tm) HD Graphics</p><p>Percentage of memory in use: 50%</p><p>Total physical RAM: 3682.26 MB</p><p>Available physical RAM: 1831.95 MB</p><p>Total Pagefile: 5346.26 MB</p><p>Available Pagefile: 3151.96 MB</p><p>Total Virtual: 131072 MB</p><p>Available Virtual: 131071.8 MB</p><p></p><p>==================== Drives ================================</p><p></p><p>Drive c: () (Fixed) (Total:273.59 GB) (Free:182.79 GB) NTFS ==>[System with boot components (obtained from reading drive)]</p><p>Drive d: (RECOVERY) (Fixed) (Total:23.39 GB) (Free:2.78 GB) NTFS ==>[System with boot components (obtained from reading drive)]</p><p></p><p>==================== MBR & Partition Table ==================</p><p></p><p>========================================================</p><p>Disk: 0 (Size: 298.1 GB) (Disk ID: 1E1F4777)</p><p></p><p>Partition: GPT Partition Type.</p><p></p><p>==================== End of log ============================</p></blockquote><p></p>
[QUOTE="cmany, post: 405866, member: 37601"] This is the addition.txt file Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01 Ran by cmany at 2015-07-02 11:58:30 Running from C:\Users\cmany\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2123845491-2313268984-385980148-500 - Administrator - Disabled) cmany (S-1-5-21-2123845491-2313268984-385980148-1002 - Administrator - Enabled) => C:\Users\cmany Guest (S-1-5-21-2123845491-2313268984-385980148-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2123845491-2313268984-385980148-1006 - Limited - Enabled) James (S-1-5-21-2123845491-2313268984-385980148-1004 - Limited - Enabled) => C:\Users\James Ryan (S-1-5-21-2123845491-2313268984-385980148-1007 - Limited - Enabled) => C:\Users\Ryan ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.) AMD Catalyst Install Manager (HKLM\...\{CB4C08E3-800F-65F6-9C00-06814A6B7CE7}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.) Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software) Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Build-a-lot 4 - Power Source (x32 Version: 2.2.0.98 - WildTangent) Hidden Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.) CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.5.3416 - CyberLink Corp.) CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6.4319 - CyberLink Corp.) CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2.3603 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dropbox (HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.) Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard) Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden FATE: The Cursed King (x32 Version: 2.2.0.97 - WildTangent) Hidden Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden FlatOut 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.) Google Drive (HKLM-x32\...\{CBC9F5FD-5CFA-4A33-81CD-369EAB77E3A6}) (Version: 1.22.9403.0223 - Google, Inc.) Google Talk Plugin (HKLM-x32\...\{C77CC230-7417-3F01-B70D-52583DC9FEC9}) (Version: 5.40.2.0 - Google) Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden HP Documentation (HKLM-x32\...\{AE986BF5-B6E3-4F8D-B412-A3DD90DF5146}) (Version: 1.1.1.0 - Hewlett-Packard) HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent) HP MyRoom (HKLM-x32\...\{47DB754E-FC61-4EAE-A933-6708CF466BB0}) (Version: 9.5.0314 - Hewlett-Packard) HP Quick Launch (HKLM-x32\...\{4ED7050C-9332-4FB2-AB07-E94F25A53D39}) (Version: 3.0.3 - Hewlett-Packard Company) HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard) HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard) HP Software Framework (HKLM-x32\...\{675D093B-815D-47FD-AB2C-192EC751E8E2}) (Version: 4.6.10.1 - Hewlett-Packard Company) HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{348A1F5B-07B3-4436-9A47-FFE44EFE856E}) (Version: 11.51.0004 - Hewlett-Packard Company) HP Utility Center (HKLM-x32\...\{0C57987A-A03A-4B95-A309-D23F78F406CA}) (Version: 1.0.7 - Hewlett-Packard) HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation) Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden Mahjongg Dimensions Deluxe: Tiles in Time (x32 Version: 2.2.0.98 - WildTangent) Hidden Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\OneDriveSetup.exe) (Version: 17.3.5860.0512 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Mortimer Beckett and the Crimson Thief Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla) Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Peggle (HKLM-x32\...\11231247) (Version: - Oberon Media) Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.29070 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.) Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.13.1 - Synaptics Incorporated) Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Vacation Quest™ - Australia (x32 Version: 2.2.0.98 - WildTangent) Hidden Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent) WildTangent Games App for HP (x32 Version: 4.0.10.25 - WildTangent) Hidden Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\cmany\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\cmany\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileSyncApi64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2123845491-2313268984-385980148-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\cmany\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ==================== Restore Points ========================= 10-06-2015 12:07:02 Windows Update 18-06-2015 10:58:13 Scheduled Checkpoint 25-06-2015 14:00:53 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 07:25 - 2013-08-22 07:25 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {12A0D01E-ACE0-4F89-B453-B14B754EB0F8} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink) Task: {19ED4324-99F3-41AF-9101-1E835196733C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-06-08] (Hewlett-Packard) Task: {20DE3A25-1F60-4D4F-A627-65E558917948} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.) Task: {2142A8FF-8070-4449-A429-5869A0378112} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1002Core => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-24] (Google Inc.) Task: {2904DE61-3034-4AE5-9FB4-BC9B1CBABB17} - \GeniusBox No Task File <==== ATTENTION Task: {39C9CDC1-5278-456F-BC75-3E5976888C0A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company) Task: {4059ABC1-BBF8-40AA-A119-54C53878E56C} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2123845491-2313268984-385980148-1002 => %localappdata%\Microsoft\OneDrive\OneDrive.exe Task: {53B02643-AB54-4FD5-BEBE-D8EBC1324CBD} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2013-12-03] (CyberLink Corp.) Task: {608805E0-5FF1-4478-96E3-736C09800541} - System32\Tasks\HPCeeScheduleForcmany => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard) Task: {66A287AE-6002-4F5D-B2EC-DD72AF1B947D} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-10] (Synaptics Incorporated) Task: {697A5465-09D2-46BA-8161-923741460FDE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1002UA => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-24] (Google Inc.) Task: {6F0DEB2A-A0B6-4237-9359-3F9B6F9BA683} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1007Core => C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-31] (Google Inc.) Task: {7262756C-E5C7-482B-AB80-1F7DC58BCD74} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-06-08] (Hewlett-Packard) Task: {74026C79-BAB0-4908-BCC9-0AF55D52A32B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-09] (Google Inc.) Task: {75A8807F-23F8-43D4-8CBE-5F486EA16AB5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-09] (Google Inc.) Task: {801B415D-1591-47D3-A13F-8EF4A5113A61} - System32\Tasks\avastBCLRestartS-1-5-21-2123845491-2313268984-385980148-1002 => Chrome.exe Task: {8736ADB5-104B-42EB-85DD-4A21093EBD2A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-25] (Adobe Systems Incorporated) Task: {8EF8F6F9-F13D-4BD3-8828-8E80E56AC5BE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) Task: {8F948875-EF32-4F8C-9433-EAC180387172} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1007UA => C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-31] (Google Inc.) Task: {9B80C332-BE3D-4AF6-A22E-AA59A1515502} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.) Task: {A114F463-70F0-4967-9143-702E68A57786} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-12-25] (Realtek Semiconductor) Task: {B7E8F5F5-9A38-4AEC-A557-E79DF72034C8} - System32\Tasks\Java(TM) Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-02-10] (Oracle Corporation) Task: {C18525AE-CB9F-4710-98DE-578405712CBC} - System32\Tasks\Google Update => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-24] (Google Inc.) Task: {D0462F9B-00AB-4CA8-9AAB-534B25CE227C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company) Task: {E5114A26-FA2F-4DC7-BAD3-F3E0C05763B5} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-06-10] (Microsoft Corporation) Task: {FBA3DC8D-CA4C-4F52-B273-DDBB47BC7E83} - System32\Tasks\Validate Installation => C:\Program Files (x86)\user extensions\updater.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1002Core.job => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1002UA.job => C:\Users\cmany\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1007Core.job => C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2123845491-2313268984-385980148-1007UA.job => C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForcmany.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Loaded Modules (Whitelisted) ============== 2015-05-07 09:11 - 2015-05-07 09:11 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-05-07 09:11 - 2015-05-07 09:11 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-07-02 09:48 - 2015-07-02 09:48 - 02955264 _____ () C:\Program Files\AVAST Software\Avast\defs\15070202\algo.dll 2014-01-16 15:27 - 2013-08-05 01:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll 2013-08-05 16:48 - 2013-08-05 16:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll 2015-03-30 14:46 - 2015-03-30 14:46 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-06-22 12:13 - 2015-06-19 23:46 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libglesv2.dll 2015-06-22 12:13 - 2015-06-19 23:46 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libegl.dll 2015-06-22 12:13 - 2015-06-19 23:46 - 15003976 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\Temp:1AE68282 AlternateDataStreams: C:\Users\cmany\SkyDrive:ms-properties AlternateDataStreams: C:\Users\cmany\SkyDrive.old:ms-properties AlternateDataStreams: C:\Users\James\SkyDrive:ms-properties AlternateDataStreams: C:\Users\Ryan\SkyDrive:ms-properties AlternateDataStreams: C:\Users\Ryan\SkyDrive.old:ms-properties ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VOTw8 => ""="Driver" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2123845491-2313268984-385980148-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Hewlett-Packard Backgrounds\backgroundDefault.jpg DNS Servers: 192.168.0.1 - 38.8.82.2 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AERTFilters => 2 MSCONFIG\Services: AMD External Events Utility => 2 MSCONFIG\Services: AMD FUEL Service => 2 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: GamesAppIntegrationService => 2 MSCONFIG\Services: GamesAppService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: gusvc => 3 MSCONFIG\Services: HP Support Assistant Service => 2 MSCONFIG\Services: hpqwmiex => 3 MSCONFIG\Services: HPWMISVC => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: RtkAudioService => 2 MSCONFIG\Services: vToolbarUpdater18.4.0 => 2 MSCONFIG\Services: WtuSystemSupport => 2 HKLM\...\StartupApproved\Run: => "EKIJ5000StatusMonitor" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\StartupApproved\StartupFolder: => "Dropbox.lnk" HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\StartupApproved\Run: => "Power2GoExpress8" HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\StartupApproved\Run: => "Google Update" HKU\S-1-5-21-2123845491-2313268984-385980148-1002\...\StartupApproved\Run: => "msnmsgr" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{DB1E6CAD-BA80-468D-8744-5EBC4C0E1F2E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE FirewallRules: [{9EC512C4-B13C-45B2-B9E1-BD7F275F63DB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{3C915BFC-A7B3-4429-8BEB-5568F2C5EE70}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{8154691B-9156-44A2-86AD-C43DA8321FAA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{A75CE455-05A2-410B-B31F-56FEA80367B7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{B4522328-08C3-4E6A-AF72-50032CA7E761}] => (Allow) C:\Users\cmany\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{427F688D-5A15-42A1-B500-9F2910D03F1F}] => (Allow) C:\Users\cmany\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{EB71A5CA-9CC9-44E5-9927-50E0CB31CC19}C:\users\cmany\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\cmany\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{D8B15FCB-B276-4802-ADAB-F1B098C08E84}C:\users\cmany\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\cmany\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{0C682F09-50A4-43A8-A1C8-46380DB7DD0F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{99CB8013-ABA3-48AB-9559-587166A14FFA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E6B4F33A-5E86-41A7-B1AB-9E710F1906D0}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{02CB014F-AC50-4E12-B461-136EE799FD68}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{7BF68963-B5D9-41CD-8F26-B6CBFFCC834B}] => (Allow) C:\Users\cmany\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{E2E93D07-78A3-4B44-8754-4BC4EF068250}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{847BA100-CB2A-4A74-968A-65820F2B9EF9}] => (Allow) LPort=2869 FirewallRules: [{E8C9B0C1-B4C7-4AFF-B3EE-C52953E4392B}] => (Allow) LPort=1900 FirewallRules: [{B85732C7-EE33-44E4-9DC8-159D2A04AD5D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [TCP Query User{7BEF647E-5865-459C-BC6B-F0217D1A3163}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{010B0FB9-FEAE-43AC-9B88-1219812D54CB}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{6CD7C493-9D66-4627-B8BA-0292456EF2FC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{BC9B2F55-A94F-4817-B49E-3F88CDEC3EFC}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [{61631CAF-7856-4AA3-9D15-42D1F65D3E9D}] => (Allow) C:\Program Files (x86)\PremierOpinion\pmropn.exe FirewallRules: [{0C55206D-46BE-4A14-B17C-BF01D379394D}] => (Allow) C:\Program Files (x86)\PremierOpinion\pmropn.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/02/2015 11:08:51 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program wwahost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 358 Start Time: 01d0b4e89f503b9e Termination Time: 4294967295 Application Path: C:\WINDOWS\syswow64\wwahost.exe Report Id: eec903c4-20dc-11e5-bf4e-a0481cbb707d Faulting package full name: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c Faulting package-relative application ID: App Error: (07/02/2015 10:51:39 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program wwahost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 1590 Start Time: 01d0b4e686c77147 Termination Time: 4294967295 Application Path: C:\WINDOWS\syswow64\wwahost.exe Report Id: 7f190a8c-20da-11e5-bf4e-a0481cbb707d Faulting package full name: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c Faulting package-relative application ID: App Error: (07/02/2015 09:49:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTINEPC) Description: Activation of app Microsoft.NetworkSpeedTest_8wekyb3d8bbwe!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (07/02/2015 09:49:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: CHRISTINEPC) Description: App Microsoft.NetworkSpeedTest_1.0.0.23_x64__8wekyb3d8bbwe+App did not launch within its allotted time. Error: (07/02/2015 09:46:35 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: pmservice.exe, version: 1.1.23.141, time stamp: 0x53f257cf Faulting module name: pmservice.exe, version: 1.1.23.141, time stamp: 0x53f257cf Exception code: 0xc0000005 Fault offset: 0x0000d54b Faulting process id: 0x93c Faulting application start time: 0xpmservice.exe0 Faulting application path: pmservice.exe1 Faulting module path: pmservice.exe2 Report Id: pmservice.exe3 Faulting package full name: pmservice.exe4 Faulting package-relative application ID: pmservice.exe5 Error: (07/02/2015 04:48:58 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY) Description: There was an error with the Windows Location Provider database Error: (07/01/2015 09:38:03 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2007) (User: NT AUTHORITY) Description: There was an error communicating to the Orion inference server Error: (06/30/2015 11:21:33 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 170c Start Time: 01d0b35884375366 Termination Time: 4294967295 Application Path: C:\WINDOWS\syswow64\backgroundTaskHost.exe Report Id: 72cb0605-1f4c-11e5-bf4c-a0481cbb707d Faulting package full name: Microsoft.MicrosoftSudoku_1.2.1406.2005_x86__8wekyb3d8bbwe Faulting package-relative application ID: App Error: (06/30/2015 11:21:33 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 1140 Start Time: 01d0b358816a1d69 Termination Time: 4294967295 Application Path: C:\WINDOWS\syswow64\backgroundTaskHost.exe Report Id: 723d6b1d-1f4c-11e5-bf4c-a0481cbb707d Faulting package full name: Microsoft.MicrosoftMahjong_2.4.1412.2202_x86__8wekyb3d8bbwe Faulting package-relative application ID: MicrosoftMahjong Error: (06/30/2015 05:45:28 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 1250 Start Time: 01d0b32a37e76525 Termination Time: 4294967295 Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe Report Id: 78eb259f-1f1d-11e5-bf4c-a0481cbb707d Faulting package full name: Farlex.581429F59E1D8_2.1.0.18_x64__wyegy4e46y996 Faulting package-relative application ID: App System errors: ============= Error: (07/02/2015 11:17:31 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The HP Network Devices Support service terminated with the following error: %%126 Error: (07/02/2015 09:52:58 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The PremierOpinion service terminated unexpectedly. It has done this 1 time(s). Error: (07/02/2015 09:50:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The HP Network Devices Support service terminated with the following error: %%126 Error: (07/02/2015 04:54:32 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the gpsvc service. Error: (07/02/2015 04:54:02 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wuauserv service. Error: (07/02/2015 04:53:32 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service. Error: (07/01/2015 11:06:23 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTINEPC) Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} Error: (07/01/2015 11:06:23 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTINEPC) Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} Error: (07/01/2015 11:06:23 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTINEPC) Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} Error: (07/01/2015 11:06:23 PM) (Source: DCOM) (EventID: 10010) (User: CHRISTINEPC) Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} Microsoft Office: ========================= Error: (07/02/2015 11:08:51 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: wwahost.exe6.3.9600.1741535801d0b4e89f503b9e4294967295C:\WINDOWS\syswow64\wwahost.exeeec903c4-20dc-11e5-bf4e-a0481cbb707dMicrosoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5cApp Error: (07/02/2015 10:51:39 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: wwahost.exe6.3.9600.17415159001d0b4e686c771474294967295C:\WINDOWS\syswow64\wwahost.exe7f190a8c-20da-11e5-bf4e-a0481cbb707dMicrosoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5cApp Error: (07/02/2015 09:49:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTINEPC) Description: Microsoft.NetworkSpeedTest_8wekyb3d8bbwe!App-2144927142 Error: (07/02/2015 09:49:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: CHRISTINEPC) Description: Microsoft.NetworkSpeedTest_1.0.0.23_x64__8wekyb3d8bbwe+App Error: (07/02/2015 09:46:35 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: pmservice.exe1.1.23.14153f257cfpmservice.exe1.1.23.14153f257cfc00000050000d54b93c01d0b4de36d4a5e8C:\Program Files (x86)\PremierOpinion\pmservice.exeC:\Program Files (x86)\PremierOpinion\pmservice.exe8458b5b7-20d1-11e5-bf4e-a0481cbb707d Error: (07/02/2015 04:48:58 AM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY) Description: -2147024883 Error: (07/01/2015 09:38:03 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2007) (User: NT AUTHORITY) Description: -2143485946 Error: (06/30/2015 11:21:33 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: backgroundTaskHost.exe6.3.9600.17415170c01d0b358843753664294967295C:\WINDOWS\syswow64\backgroundTaskHost.exe72cb0605-1f4c-11e5-bf4c-a0481cbb707dMicrosoft.MicrosoftSudoku_1.2.1406.2005_x86__8wekyb3d8bbweApp Error: (06/30/2015 11:21:33 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: backgroundTaskHost.exe6.3.9600.17415114001d0b358816a1d694294967295C:\WINDOWS\syswow64\backgroundTaskHost.exe723d6b1d-1f4c-11e5-bf4c-a0481cbb707dMicrosoft.MicrosoftMahjong_2.4.1412.2202_x86__8wekyb3d8bbweMicrosoftMahjong Error: (06/30/2015 05:45:28 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: backgroundTaskHost.exe6.3.9600.17415125001d0b32a37e765254294967295C:\WINDOWS\system32\backgroundTaskHost.exe78eb259f-1f1d-11e5-bf4c-a0481cbb707dFarlex.581429F59E1D8_2.1.0.18_x64__wyegy4e46y996App CodeIntegrity Errors: =================================== Date: 2015-06-29 21:02:24.709 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:23.709 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:21.858 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:20.863 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:19.848 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:18.778 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:17.768 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:16.716 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:15.692 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. Date: 2015-06-29 21:02:14.672 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: AMD E-300 APU with Radeon(tm) HD Graphics Percentage of memory in use: 50% Total physical RAM: 3682.26 MB Available physical RAM: 1831.95 MB Total Pagefile: 5346.26 MB Available Pagefile: 3151.96 MB Total Virtual: 131072 MB Available Virtual: 131071.8 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:273.59 GB) (Free:182.79 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (RECOVERY) (Fixed) (Total:23.39 GB) (Free:2.78 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: 1E1F4777) Partition: GPT Partition Type. ==================== End of log ============================ [/QUOTE]
Insert quotes…
Verification
Post reply
Top