Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
How to remove vuze remote toolbar
Message
<blockquote data-quote="david freter" data-source="post: 309944" data-attributes="member: 31456"><p>Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-12-2014</p><p>Ran by charlee at 2014-12-04 16:06:06</p><p>Running from C:\Users\charlee\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EVSSQBTI</p><p>Boot Mode: Normal</p><p>==========================================================</p><p></p><p>==================== Security Center ========================</p><p>(If an entry is included in the fixlist, it will be removed.)</p><p>AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}</p><p>AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}</p><p>AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}</p><p>FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}</p><p>==================== Installed Programs ======================</p><p>(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)</p><p>64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden</p><p>Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)</p><p>Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden</p><p>ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.2 - Hewlett-Packard) Hidden</p><p>Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.)</p><p>Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.239 - Adobe Systems Incorporated)</p><p>Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)</p><p>AVerMedia MCE Encoder x64 3.0.1.5 (HKLM-x32\...\AVerMedia MCE Encoder x64) (Version: 3.0.1.5 - AVerMedia Technologies, Inc.)</p><p>BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden</p><p>C309n-s (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden</p><p>CCleaner (HKLM\...\CCleaner) (Version: 4.01 - Piriform)</p><p>ConvertXtoDVD 4.1.19.365 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.19.365 - )</p><p>CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2326 - CyberLink Corp.)</p><p>D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden</p><p>Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden</p><p>DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden</p><p>DigitalPersona Personal 4.11 (HKLM\...\{3F5D0650-63D7-4850-A87E-9A934962511C}) (Version: 4.11.3805 - DigitalPersona, Inc.)</p><p>ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE)</p><p>ESU for Microsoft Vista (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)</p><p>Fax (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden</p><p>GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden</p><p>Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)</p><p>Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden</p><p>GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden</p><p>HP Active Support Library (HKLM-x32\...\{CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}) (Version: 3.1.9.1 - Hewlett-Packard)</p><p>HP Customer Experience Enhancements (HKLM-x32\...\{57A5AEC1-97FC-474D-92C4-908FCC2253D4}) (Version: 5.7.0.2664 - Hewlett-Packard)</p><p>HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)</p><p>HP Doc Viewer (HKLM-x32\...\{082702D5-5DD8-4600-BCE5-48B15174687F}) (Version: 1.01.0005 - Hewlett-Packard)</p><p>HP Help and Support (HKLM-x32\...\{0054A0F6-00C9-4498-B821-B5C9578F433E}) (Version: 2.1.3.0 - Hewlett-Packard Company)</p><p>HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)</p><p>HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3309 - Hewlett-Packard)</p><p>HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard)</p><p>HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3316 - Hewlett-Packard)</p><p>HP MediaSmart SlingPlayer (HKLM-x32\...\{1747DF05-6890-440B-B094-2146F5DC50E0}) (Version: 3.0.1.64 - Sling Media, Inc.)</p><p>HP MediaSmart SmartMenu (HKLM\...\{F1568AA6-5982-4AFB-A871-C68E4328BC3B}) (Version: 2.1.7 - Hewlett-Packard)</p><p>HP MediaSmart TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 2.2.1622 - Hewlett-Packard)</p><p>HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.2018 - Hewlett-Packard)</p><p>HP MiniCard Hybrid TV 1.3.64.69 (HKLM-x32\...\HP MiniCard Hybrid TV) (Version: 1.3.64.69 - AVerMedia TECHNOLOGIES, Inc.)</p><p>HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)</p><p>HP Photosmart Prem-Web C309n-s All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{4D12EB25-2908-4204-BB98-06BD9C588E28}) (Version: 14.0 - HP)</p><p>HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.5.1 - Hewlett-Packard)</p><p>HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)</p><p>HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)</p><p>HP Total Care Advisor (HKLM-x32\...\{154A4184-1A3D-4BF9-A5AE-4FA1660445F3}) (Version: 2.4.5991.2847 - Hewlett-Packard)</p><p>HP Total Care Advisor (HKLM-x32\...\{F31E534B-4199-4552-8154-5C130710D68E}) (Version: 2.4.6651.2902 - Hewlett-Packard)</p><p>HP Total Care Setup (HKLM-x32\...\{95A747E0-DF19-46CB-A622-20A0107201BD}) (Version: 1.1.2413.2876 - Hewlett-Packard Company)</p><p>HP Update (HKLM-x32\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard)</p><p>HP User Guides 0115 (HKLM-x32\...\{834903BF-7B6E-4C97-891C-AC1AECA91CEC}) (Version: 1.04.0000 - Hewlett-Packard)</p><p>HP Wireless Assistant (HKLM-x32\...\{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}) (Version: 3.00 K2 - Hewlett-Packard)</p><p>HPAsset component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden</p><p>HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden</p><p>HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden</p><p>HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden</p><p>HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden</p><p>IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6047.5 - IDT)</p><p>Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.220 - Sun Microsystems, Inc.)</p><p>JMicron JMB38X Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.00.20.07 - JMicron Technology Corp.)</p><p>Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden</p><p>LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1118 - CyberLink Corp.)</p><p>LabelPrint (x32 Version: 2.5.1118 - CyberLink Corp.) Hidden</p><p>LightScribe System Software (HKLM-x32\...\{4A9849CA-E11C-4F24-8BB1-97C717A1C898}) (Version: 1.18.1.1 - LightScribe)</p><p>Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)</p><p>MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden</p><p>McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 12.8.992 - McAfee, Inc.)</p><p>McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.154 - McAfee, Inc.)</p><p>Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)</p><p>Microsoft Live Search Toolbar (HKLM-x32\...\{6A370610-3778-44AF-9AAC-69B2FD1A3356}) (Version: 3.0.541.0 - Microsoft Corporation)</p><p>Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)</p><p>Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)</p><p>Microsoft Office Excel 2007 (HKLM-x32\...\EXCEL) (Version: 12.0.6612.1000 - Microsoft Corporation)</p><p>Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)</p><p>Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)</p><p>Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)</p><p>Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)</p><p>Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)</p><p>Mouse Suite (HKLM\...\MouseSuite98) (Version: - )</p><p>MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)</p><p>MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)</p><p>muvee Reveal (HKLM-x32\...\{EB38CD55-04F8-4130-B505-6658A5C27538}) (Version: 7.0.35.7660 - muvee Technologies Pte Ltd)</p><p>Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden</p><p>Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden</p><p>NVIDIA GeForce Experience 1.7.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.7.1 - NVIDIA Corporation)</p><p>NVIDIA Graphics Driver 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.82 - NVIDIA Corporation)</p><p>NVIDIA HD Audio Driver 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)</p><p>NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)</p><p>NVIDIA Virtual Audio 1.2.9 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.9 - NVIDIA Corporation)</p><p>Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.2325 - CyberLink Corp.)</p><p>Power2Go (x32 Version: 6.0.2325 - CyberLink Corp.) Hidden</p><p>PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.2317 - CyberLink Corp.)</p><p>PowerDirector (x32 Version: 7.0.2317 - CyberLink Corp.) Hidden</p><p>ProtectSmart Hard Drive Protection (HKLM\...\{2F97CE84-9C33-4631-821B-85EA371EA254}) (Version: 3.10.1.7 - Hewlett-Packard)</p><p>PS_AIO_06_C309n-s_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden</p><p>QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden</p><p>QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden</p><p>Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)</p><p>RPS CRT (x32 Version: 8.0.27 - Verizon) Hidden</p><p>RPS CRT (x32 Version: 9.0.25 - Verizon) Hidden</p><p>Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden</p><p>Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)</p><p>SHIELD Streaming (Version: 1.6.53 - NVIDIA Corporation) Hidden</p><p>Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)</p><p>Slingbox - Watch Your TV Anywhere (HKLM-x32\...\{7B798B31-2F33-4DC8-BDA4-D36488E86636}) (Version: 1.0.0 - Sling Media)</p><p>SlingPlayer (HKLM-x32\...\InstallShield_{004B0DCB-4C60-465B-8F01-44B0A4111187}) (Version: 1.04.0206 - Sling Media)</p><p>SlingPlayer (x32 Version: 1.04.0206 - Sling Media) Hidden</p><p>SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden</p><p>SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden</p><p>Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden</p><p>SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 1.3 - Krzysztof Kowalczyk)</p><p>Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.2.0.0 - Synaptics)</p><p>Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden</p><p>TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden</p><p>Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)</p><p>Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)</p><p>Validity Sensors DDK (HKLM\...\{62A20ECA-920E-4052-BF77-88C78DD20FAA}) (Version: 3.1.374 - Validity Sensors, Inc.)</p><p>Validity Sensors software (HKLM\...\{F65B8208-5221-43D9-AA12-DDEA64EC4AF6}) (Version: 2.8.109 - Validity Sensors, Inc.)</p><p>Verizon Servicepoint 3.7.44 (HKLM-x32\...\RadialpointClientGateway_is1) (Version: 3.7.44 - Verizon)</p><p>Vuze Remote Toolbar v10.0 (HKLM-x32\...\{2A567123-6435-476E-9529-54F5F9A9F4E0}) (Version: 10.0 - Spigot, Inc.) <==== ATTENTION</p><p>Vz In Home Agent (HKLM-x32\...\{E3D4F451-5F04-4082-BE21-1C0C1ADF5014}) (Version: 7.03.31 - Verizon)</p><p>WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden</p><p>Wi-Fi Connect (HKLM-x32\...\{C29CE41A-3268-4A5C-8B29-5799906785E9}) (Version: 2.20.0229.0817 - Verizon Business Global LLC)</p><p>Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)</p><p>Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)</p><p>WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - )</p><p>Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version: - )</p><p>==================== Custom CLSID (selected items): ==========================</p><p>(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)</p><p></p><p>==================== Restore Points =========================</p><p>26-07-2014 09:33:56 Windows Update</p><p>30-07-2014 09:56:50 Windows Update</p><p>09-08-2014 08:13:43 Windows Update</p><p>12-08-2014 11:45:59 Windows Update</p><p>16-08-2014 10:01:15 Windows Update</p><p>17-08-2014 10:37:41 Windows Update</p><p>26-08-2014 10:17:23 Windows Update</p><p>29-08-2014 10:27:38 Windows Update</p><p>03-09-2014 03:57:25 Windows Update</p><p>06-09-2014 18:17:23 Windows Update</p><p>06-09-2014 21:02:15 Language Pack Removal</p><p>10-09-2014 10:29:41 Windows Update</p><p>12-09-2014 09:36:22 Windows Update</p><p>17-09-2014 09:39:37 Windows Update</p><p>21-09-2014 19:23:11 Windows Update</p><p>29-09-2014 18:05:13 Windows Update</p><p>01-10-2014 08:43:49 Windows Update</p><p>02-10-2014 22:01:17 Windows Update</p><p>08-10-2014 09:20:42 Windows Update</p><p>16-10-2014 10:37:02 Windows Update</p><p>16-10-2014 10:59:34 Windows Update</p><p>22-10-2014 09:01:21 Windows Update</p><p>25-10-2014 10:57:54 Windows Update</p><p>28-10-2014 12:37:36 Windows Update</p><p>02-11-2014 17:14:56 Windows Update</p><p>07-11-2014 23:35:34 Windows Update</p><p>11-11-2014 11:00:00 Windows Update</p><p>14-11-2014 13:48:54 Windows Update</p><p>19-11-2014 01:13:51 Windows Update</p><p>22-11-2014 04:14:24 Windows Update</p><p>04-12-2014 19:32:05 zoek.exe restore point</p><p>04-12-2014 20:36:34 zoek.exe restore point</p><p>==================== Hosts content: ==========================</p><p>(If needed Hosts: directive could be included in the fixlist to reset Hosts.)</p><p>2006-11-02 07:34 - 2014-11-22 22:52 - 00000768 ____N C:\Windows\system32\Drivers\etc\hosts</p><p>127.0.0.1 localhost</p><p>==================== Scheduled Tasks (whitelisted) =============</p><p>(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)</p><p>Task: {18FAAFD3-76CC-438E-BA13-06E6D2E5945F} - System32\Tasks\{0177A108-999C-4F38-9CB2-03846AFAD2A8} => C:\Program Files (x86)\Skype\Phone\Skype.exe</p><p>Task: {22BE3F89-B14E-4E8E-BB59-70608FB9BF18} - System32\Tasks\HP Health Check => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard)</p><p>Task: {328ABC1E-BA15-498F-B3ED-67B72AE1E4AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-02] (Google Inc.)</p><p>Task: {3C280811-1B4B-4EF2-A0EE-AEC592EFDB99} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-09-09] (CyberLink Corp.)</p><p>Task: {712C6861-2B14-4E72-92BA-22B6921FE2B7} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\Windows\system32\gatherWiredInfo.vbs</p><p>Task: {7E9A78FE-CE14-49B7-9965-445AD663DDAC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3223491886-3315611203-1768561930-1000</p><p>Task: {8E9825A1-4753-4CC5-A99A-46A9B5E2B4A0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-25] (Adobe Systems Incorporated)</p><p>Task: {A9DDA13F-CF5D-4002-B791-EF49A59047A3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-02] (Google Inc.)</p><p>Task: {D62D43F6-D4C9-41D1-93FD-E24FC517CF4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd)</p><p>Task: {E61A0B8B-9F20-4AB8-963E-98A178A89D46} - System32\Tasks\{C17351F4-DE9C-4B9E-95DB-A3F32A0F23EA} => C:\Users\CHARLES WEHRHEIM\Downloads\uninstall_flash_player.exe</p><p>Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs</p><p>Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe</p><p>Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe</p><p>Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe</p><p>==================== Loaded Modules (whitelisted) =============</p><p>2014-01-06 19:18 - 2013-11-11 10:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll</p><p>2009-02-06 11:02 - 2008-12-17 19:11 - 00365952 _____ () C:\Program Files (x86)\SMINST\BLService.exe</p><p>2009-02-06 09:35 - 2008-09-15 09:13 - 00241734 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe</p><p>2009-04-22 21:53 - 2009-04-22 21:53 - 00296320 _____ () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe</p><p>2009-04-22 21:53 - 2009-04-22 21:53 - 00116104 _____ () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe</p><p>2009-07-01 15:44 - 2009-07-01 15:44 - 00632888 _____ () C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe</p><p>2009-02-06 11:02 - 2008-12-17 19:11 - 00132480 _____ () C:\Program Files (x86)\SMINST\STWmiM.dll</p><p>2009-04-22 21:53 - 2009-04-22 21:53 - 00267656 _____ () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapEngine.dll</p><p>2009-04-22 21:53 - 2009-04-22 21:53 - 00038184 _____ () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapSvcps.dll</p><p>2011-02-21 22:44 - 2011-01-10 11:47 - 00158208 _____ () C:\Program Files (x86)\Verizon\VSP\Windows7Features.dll</p><p>==================== Alternate Data Streams (whitelisted) =========</p><p>(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)</p><p>AlternateDataStreams: C:\ProgramData\Temp:561568A4</p><p>AlternateDataStreams: C:\ProgramData\Temp:996104FC</p><p>==================== Safe Mode (whitelisted) ===================</p><p>(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ServicepointService => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ServicepointService => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"</p><p>==================== EXE Association (whitelisted) =============</p><p>(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)</p><p></p><p>==================== MSCONFIG/TASK MANAGER disabled items =========</p><p>(Currently there is no automatic fix for this section.)</p><p>MSCONFIG\startupreg: HP Health Check Scheduler => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe</p><p>MSCONFIG\startupreg: HPAdvisor => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe autorun=AUTORUN</p><p>MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start</p><p>MSCONFIG\startupreg: SmartMenu => %ProgramFiles%\Hewlett-Packard\HP MediaSmart\SmartMenu.exe</p><p>========================= Accounts: ==========================</p><p>Administrator (S-1-5-21-3223491886-3315611203-1768561930-500 - Administrator - Disabled)</p><p>charlee (S-1-5-21-3223491886-3315611203-1768561930-1005 - Administrator - Enabled) => C:\Users\charlee</p><p>CHARLES WEHRHEIM (S-1-5-21-3223491886-3315611203-1768561930-1000 - Administrator - Enabled) => C:\Users\CHARLES WEHRHEIM</p><p>Guest (S-1-5-21-3223491886-3315611203-1768561930-501 - Limited - Disabled)</p><p>HomeGroupUser$ (S-1-5-21-3223491886-3315611203-1768561930-1002 - Limited - Enabled)</p><p>Katie (S-1-5-21-3223491886-3315611203-1768561930-1004 - Administrator - Enabled) => C:\Users\Katie</p><p>UpdatusUser (S-1-5-21-3223491886-3315611203-1768561930-1003 - Limited - Enabled) => C:\Users\UpdatusUser</p><p>==================== Faulty Device Manager Devices =============</p><p></p><p>==================== Event log errors: =========================</p><p>Application errors:</p><p>==================</p><p>Error: (12/04/2014 03:49:30 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p>Error: (12/04/2014 03:10:37 PM) (Source: AVLogEvent) (EventID: 5004) (User: NT AUTHORITY)</p><p>Description: McShield crashed.</p><p>Error Code:c0000005</p><p>Error: (12/04/2014 03:10:36 PM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: Faulting application name: mcshield.exe, version: 1.1.3.178, time stamp: 0x53d17f6f</p><p>Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24</p><p>Exception code: 0xc0000005</p><p>Fault offset: 0x000000000004e4e4</p><p>Faulting process id: 0x90c</p><p>Faulting application start time: 0xmcshield.exe0</p><p>Faulting application path: mcshield.exe1</p><p>Faulting module path: mcshield.exe2</p><p>Report Id: mcshield.exe3</p><p>Error: (12/04/2014 03:10:35 PM) (Source: AVLogEvent) (EventID: 5004) (User: NT AUTHORITY)</p><p>Description: McShield crashed.</p><p>Error Code:c0000005</p><p>Error: (12/04/2014 03:07:20 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p>Error: (12/04/2014 01:59:26 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p>Error: (12/04/2014 00:36:22 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p>Error: (12/03/2014 04:12:54 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p>Error: (12/02/2014 10:29:51 AM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p>Error: (12/02/2014 07:46:58 AM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>System errors:</p><p>=============</p><p>Error: (12/04/2014 03:53:01 PM) (Source: DCOM) (EventID: 10010) (User: )</p><p>Description: {209500FC-6B45-4693-8871-6296C4843751}</p><p>Error: (12/04/2014 03:11:40 PM) (Source: DCOM) (EventID: 10010) (User: )</p><p>Description: {209500FC-6B45-4693-8871-6296C4843751}</p><p>Error: (12/04/2014 03:11:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )</p><p>Description: The McAfee Anti-Malware Core service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.</p><p>Error: (12/04/2014 03:09:39 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY)</p><p>Description: CBS Client initialization failed. Last error: 0x8007041d</p><p>Error: (12/04/2014 03:09:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )</p><p>Description: The Windows Modules Installer service failed to start due to the following error: </p><p>%%1053</p><p>Error: (12/04/2014 03:09:39 PM) (Source: Service Control Manager) (EventID: 7009) (User: )</p><p>Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Modules Installer service to connect.</p><p>Error: (12/04/2014 03:09:39 PM) (Source: DCOM) (EventID: 10005) (User: )</p><p>Description: 1053TrustedInstaller{752073A1-23F2-4396-85F0-8FDB879ED0ED}</p><p>Error: (12/04/2014 03:02:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )</p><p>Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.</p><p>Error: (12/04/2014 03:02:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )</p><p>Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.</p><p>Error: (12/04/2014 03:02:43 PM) (Source: Service Control Manager) (EventID: 7030) (User: )</p><p>Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.</p><p></p><p>Microsoft Office Sessions:</p><p>=========================</p><p>CodeIntegrity Errors:</p><p>===================================</p><p> Date: 2010-01-11 20:24:46.928</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2010-01-11 20:24:46.882</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2010-01-11 20:24:46.850</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2010-01-11 20:24:46.804</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2010-01-11 20:24:46.694</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2009-12-26 22:53:11.050</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_0f6c030d3823f645\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2009-12-26 22:53:10.941</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_0f8c6d1f380baafd\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2009-12-26 22:53:10.816</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_0f32e3e61ecadee9\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2009-12-26 22:53:10.707</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_0efecf2c1ef1a5d7\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p> Date: 2009-12-26 22:53:10.613</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c\tcpip.sys because the set of per-page image hashes could not be found on the system.</p><p></p><p>==================== Memory info ===========================</p><p>Processor: Intel(R) Core(TM)2 Duo CPU P7550 @ 2.26GHz</p><p>Percentage of memory in use: 42%</p><p>Total physical RAM: 4063.2 MB</p><p>Available physical RAM: 2332.42 MB</p><p>Total Pagefile: 8124.57 MB</p><p>Available Pagefile: 5922.53 MB</p><p>Total Virtual: 8192 MB</p><p>Available Virtual: 8191.82 MB</p><p>==================== Drives ================================</p><p>Drive c: () (Fixed) (Total:287.58 GB) (Free:124.09 GB) NTFS ==>[Drive with boot components (obtained from BCD)]</p><p>Drive d: (RECOVERY) (Fixed) (Total:10.51 GB) (Free:1.76 GB) NTFS ==>[System with boot components (obtained from reading drive)]</p><p>==================== MBR & Partition Table ==================</p><p>========================================================</p><p>Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 30224A71)</p><p>Partition 1: (Active) - (Size=287.6 GB) - (Type=07 NTFS)</p><p>Partition 2: (Not Active) - (Size=10.5 GB) - (Type=07 NTFS)</p><p>==================== End Of Log ============================</p></blockquote><p></p>
[QUOTE="david freter, post: 309944, member: 31456"] Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-12-2014 Ran by charlee at 2014-12-04 16:06:06 Running from C:\Users\charlee\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EVSSQBTI Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892} AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated) Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.2 - Hewlett-Packard) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.) Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.239 - Adobe Systems Incorporated) Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated) AVerMedia MCE Encoder x64 3.0.1.5 (HKLM-x32\...\AVerMedia MCE Encoder x64) (Version: 3.0.1.5 - AVerMedia Technologies, Inc.) BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden C309n-s (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.01 - Piriform) ConvertXtoDVD 4.1.19.365 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.19.365 - ) CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2326 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden DigitalPersona Personal 4.11 (HKLM\...\{3F5D0650-63D7-4850-A87E-9A934962511C}) (Version: 4.11.3805 - DigitalPersona, Inc.) ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE) ESU for Microsoft Vista (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard) Fax (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden HP Active Support Library (HKLM-x32\...\{CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}) (Version: 3.1.9.1 - Hewlett-Packard) HP Customer Experience Enhancements (HKLM-x32\...\{57A5AEC1-97FC-474D-92C4-908FCC2253D4}) (Version: 5.7.0.2664 - Hewlett-Packard) HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Doc Viewer (HKLM-x32\...\{082702D5-5DD8-4600-BCE5-48B15174687F}) (Version: 1.01.0005 - Hewlett-Packard) HP Help and Support (HKLM-x32\...\{0054A0F6-00C9-4498-B821-B5C9578F433E}) (Version: 2.1.3.0 - Hewlett-Packard Company) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3309 - Hewlett-Packard) HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard) HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3316 - Hewlett-Packard) HP MediaSmart SlingPlayer (HKLM-x32\...\{1747DF05-6890-440B-B094-2146F5DC50E0}) (Version: 3.0.1.64 - Sling Media, Inc.) HP MediaSmart SmartMenu (HKLM\...\{F1568AA6-5982-4AFB-A871-C68E4328BC3B}) (Version: 2.1.7 - Hewlett-Packard) HP MediaSmart TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 2.2.1622 - Hewlett-Packard) HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.2018 - Hewlett-Packard) HP MiniCard Hybrid TV 1.3.64.69 (HKLM-x32\...\HP MiniCard Hybrid TV) (Version: 1.3.64.69 - AVerMedia TECHNOLOGIES, Inc.) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife) HP Photosmart Prem-Web C309n-s All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{4D12EB25-2908-4204-BB98-06BD9C588E28}) (Version: 14.0 - HP) HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.5.1 - Hewlett-Packard) HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Total Care Advisor (HKLM-x32\...\{154A4184-1A3D-4BF9-A5AE-4FA1660445F3}) (Version: 2.4.5991.2847 - Hewlett-Packard) HP Total Care Advisor (HKLM-x32\...\{F31E534B-4199-4552-8154-5C130710D68E}) (Version: 2.4.6651.2902 - Hewlett-Packard) HP Total Care Setup (HKLM-x32\...\{95A747E0-DF19-46CB-A622-20A0107201BD}) (Version: 1.1.2413.2876 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard) HP User Guides 0115 (HKLM-x32\...\{834903BF-7B6E-4C97-891C-AC1AECA91CEC}) (Version: 1.04.0000 - Hewlett-Packard) HP Wireless Assistant (HKLM-x32\...\{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}) (Version: 3.00 K2 - Hewlett-Packard) HPAsset component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6047.5 - IDT) Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.220 - Sun Microsystems, Inc.) JMicron JMB38X Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.00.20.07 - JMicron Technology Corp.) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1118 - CyberLink Corp.) LabelPrint (x32 Version: 2.5.1118 - CyberLink Corp.) Hidden LightScribe System Software (HKLM-x32\...\{4A9849CA-E11C-4F24-8BB1-97C717A1C898}) (Version: 1.18.1.1 - LightScribe) Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 12.8.992 - McAfee, Inc.) McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.154 - McAfee, Inc.) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Live Search Toolbar (HKLM-x32\...\{6A370610-3778-44AF-9AAC-69B2FD1A3356}) (Version: 3.0.541.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Excel 2007 (HKLM-x32\...\EXCEL) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Mouse Suite (HKLM\...\MouseSuite98) (Version: - ) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) muvee Reveal (HKLM-x32\...\{EB38CD55-04F8-4130-B505-6658A5C27538}) (Version: 7.0.35.7660 - muvee Technologies Pte Ltd) Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden NVIDIA GeForce Experience 1.7.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.7.1 - NVIDIA Corporation) NVIDIA Graphics Driver 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.82 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation) NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation) NVIDIA Virtual Audio 1.2.9 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.9 - NVIDIA Corporation) Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.2325 - CyberLink Corp.) Power2Go (x32 Version: 6.0.2325 - CyberLink Corp.) Hidden PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.2317 - CyberLink Corp.) PowerDirector (x32 Version: 7.0.2317 - CyberLink Corp.) Hidden ProtectSmart Hard Drive Protection (HKLM\...\{2F97CE84-9C33-4631-821B-85EA371EA254}) (Version: 3.10.1.7 - Hewlett-Packard) PS_AIO_06_C309n-s_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek) RPS CRT (x32 Version: 8.0.27 - Verizon) Hidden RPS CRT (x32 Version: 9.0.25 - Verizon) Hidden Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) SHIELD Streaming (Version: 1.6.53 - NVIDIA Corporation) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) Slingbox - Watch Your TV Anywhere (HKLM-x32\...\{7B798B31-2F33-4DC8-BDA4-D36488E86636}) (Version: 1.0.0 - Sling Media) SlingPlayer (HKLM-x32\...\InstallShield_{004B0DCB-4C60-465B-8F01-44B0A4111187}) (Version: 1.04.0206 - Sling Media) SlingPlayer (x32 Version: 1.04.0206 - Sling Media) Hidden SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 1.3 - Krzysztof Kowalczyk) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.2.0.0 - Synaptics) Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Validity Sensors DDK (HKLM\...\{62A20ECA-920E-4052-BF77-88C78DD20FAA}) (Version: 3.1.374 - Validity Sensors, Inc.) Validity Sensors software (HKLM\...\{F65B8208-5221-43D9-AA12-DDEA64EC4AF6}) (Version: 2.8.109 - Validity Sensors, Inc.) Verizon Servicepoint 3.7.44 (HKLM-x32\...\RadialpointClientGateway_is1) (Version: 3.7.44 - Verizon) Vuze Remote Toolbar v10.0 (HKLM-x32\...\{2A567123-6435-476E-9529-54F5F9A9F4E0}) (Version: 10.0 - Spigot, Inc.) <==== ATTENTION Vz In Home Agent (HKLM-x32\...\{E3D4F451-5F04-4082-BE21-1C0C1ADF5014}) (Version: 7.03.31 - Verizon) WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden Wi-Fi Connect (HKLM-x32\...\{C29CE41A-3268-4A5C-8B29-5799906785E9}) (Version: 2.20.0229.0817 - Verizon Business Global LLC) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation) Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation) WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - ) Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version: - ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 26-07-2014 09:33:56 Windows Update 30-07-2014 09:56:50 Windows Update 09-08-2014 08:13:43 Windows Update 12-08-2014 11:45:59 Windows Update 16-08-2014 10:01:15 Windows Update 17-08-2014 10:37:41 Windows Update 26-08-2014 10:17:23 Windows Update 29-08-2014 10:27:38 Windows Update 03-09-2014 03:57:25 Windows Update 06-09-2014 18:17:23 Windows Update 06-09-2014 21:02:15 Language Pack Removal 10-09-2014 10:29:41 Windows Update 12-09-2014 09:36:22 Windows Update 17-09-2014 09:39:37 Windows Update 21-09-2014 19:23:11 Windows Update 29-09-2014 18:05:13 Windows Update 01-10-2014 08:43:49 Windows Update 02-10-2014 22:01:17 Windows Update 08-10-2014 09:20:42 Windows Update 16-10-2014 10:37:02 Windows Update 16-10-2014 10:59:34 Windows Update 22-10-2014 09:01:21 Windows Update 25-10-2014 10:57:54 Windows Update 28-10-2014 12:37:36 Windows Update 02-11-2014 17:14:56 Windows Update 07-11-2014 23:35:34 Windows Update 11-11-2014 11:00:00 Windows Update 14-11-2014 13:48:54 Windows Update 19-11-2014 01:13:51 Windows Update 22-11-2014 04:14:24 Windows Update 04-12-2014 19:32:05 zoek.exe restore point 04-12-2014 20:36:34 zoek.exe restore point ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 07:34 - 2014-11-22 22:52 - 00000768 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {18FAAFD3-76CC-438E-BA13-06E6D2E5945F} - System32\Tasks\{0177A108-999C-4F38-9CB2-03846AFAD2A8} => C:\Program Files (x86)\Skype\Phone\Skype.exe Task: {22BE3F89-B14E-4E8E-BB59-70608FB9BF18} - System32\Tasks\HP Health Check => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard) Task: {328ABC1E-BA15-498F-B3ED-67B72AE1E4AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-02] (Google Inc.) Task: {3C280811-1B4B-4EF2-A0EE-AEC592EFDB99} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-09-09] (CyberLink Corp.) Task: {712C6861-2B14-4E72-92BA-22B6921FE2B7} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\Windows\system32\gatherWiredInfo.vbs Task: {7E9A78FE-CE14-49B7-9965-445AD663DDAC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3223491886-3315611203-1768561930-1000 Task: {8E9825A1-4753-4CC5-A99A-46A9B5E2B4A0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-25] (Adobe Systems Incorporated) Task: {A9DDA13F-CF5D-4002-B791-EF49A59047A3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-02] (Google Inc.) Task: {D62D43F6-D4C9-41D1-93FD-E24FC517CF4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd) Task: {E61A0B8B-9F20-4AB8-963E-98A178A89D46} - System32\Tasks\{C17351F4-DE9C-4B9E-95DB-A3F32A0F23EA} => C:\Users\CHARLES WEHRHEIM\Downloads\uninstall_flash_player.exe Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2014-01-06 19:18 - 2013-11-11 10:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2009-02-06 11:02 - 2008-12-17 19:11 - 00365952 _____ () C:\Program Files (x86)\SMINST\BLService.exe 2009-02-06 09:35 - 2008-09-15 09:13 - 00241734 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe 2009-04-22 21:53 - 2009-04-22 21:53 - 00296320 _____ () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe 2009-04-22 21:53 - 2009-04-22 21:53 - 00116104 _____ () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe 2009-07-01 15:44 - 2009-07-01 15:44 - 00632888 _____ () C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe 2009-02-06 11:02 - 2008-12-17 19:11 - 00132480 _____ () C:\Program Files (x86)\SMINST\STWmiM.dll 2009-04-22 21:53 - 2009-04-22 21:53 - 00267656 _____ () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapEngine.dll 2009-04-22 21:53 - 2009-04-22 21:53 - 00038184 _____ () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapSvcps.dll 2011-02-21 22:44 - 2011-01-10 11:47 - 00158208 _____ () C:\Program Files (x86)\Verizon\VSP\Windows7Features.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Temp:561568A4 AlternateDataStreams: C:\ProgramData\Temp:996104FC ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ServicepointService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ServicepointService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: HP Health Check Scheduler => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe MSCONFIG\startupreg: HPAdvisor => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe autorun=AUTORUN MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start MSCONFIG\startupreg: SmartMenu => %ProgramFiles%\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ========================= Accounts: ========================== Administrator (S-1-5-21-3223491886-3315611203-1768561930-500 - Administrator - Disabled) charlee (S-1-5-21-3223491886-3315611203-1768561930-1005 - Administrator - Enabled) => C:\Users\charlee CHARLES WEHRHEIM (S-1-5-21-3223491886-3315611203-1768561930-1000 - Administrator - Enabled) => C:\Users\CHARLES WEHRHEIM Guest (S-1-5-21-3223491886-3315611203-1768561930-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3223491886-3315611203-1768561930-1002 - Limited - Enabled) Katie (S-1-5-21-3223491886-3315611203-1768561930-1004 - Administrator - Enabled) => C:\Users\Katie UpdatusUser (S-1-5-21-3223491886-3315611203-1768561930-1003 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/04/2014 03:49:30 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/04/2014 03:10:37 PM) (Source: AVLogEvent) (EventID: 5004) (User: NT AUTHORITY) Description: McShield crashed. Error Code:c0000005 Error: (12/04/2014 03:10:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: mcshield.exe, version: 1.1.3.178, time stamp: 0x53d17f6f Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24 Exception code: 0xc0000005 Fault offset: 0x000000000004e4e4 Faulting process id: 0x90c Faulting application start time: 0xmcshield.exe0 Faulting application path: mcshield.exe1 Faulting module path: mcshield.exe2 Report Id: mcshield.exe3 Error: (12/04/2014 03:10:35 PM) (Source: AVLogEvent) (EventID: 5004) (User: NT AUTHORITY) Description: McShield crashed. Error Code:c0000005 Error: (12/04/2014 03:07:20 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/04/2014 01:59:26 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/04/2014 00:36:22 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/03/2014 04:12:54 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/02/2014 10:29:51 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (12/02/2014 07:46:58 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (12/04/2014 03:53:01 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {209500FC-6B45-4693-8871-6296C4843751} Error: (12/04/2014 03:11:40 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {209500FC-6B45-4693-8871-6296C4843751} Error: (12/04/2014 03:11:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The McAfee Anti-Malware Core service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service. Error: (12/04/2014 03:09:39 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY) Description: CBS Client initialization failed. Last error: 0x8007041d Error: (12/04/2014 03:09:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Windows Modules Installer service failed to start due to the following error: %%1053 Error: (12/04/2014 03:09:39 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Modules Installer service to connect. Error: (12/04/2014 03:09:39 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1053TrustedInstaller{752073A1-23F2-4396-85F0-8FDB879ED0ED} Error: (12/04/2014 03:02:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. Error: (12/04/2014 03:02:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. Error: (12/04/2014 03:02:43 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2010-01-11 20:24:46.928 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2010-01-11 20:24:46.882 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2010-01-11 20:24:46.850 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2010-01-11 20:24:46.804 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2010-01-11 20:24:46.694 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2009-12-26 22:53:11.050 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_0f6c030d3823f645\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2009-12-26 22:53:10.941 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_0f8c6d1f380baafd\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2009-12-26 22:53:10.816 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_0f32e3e61ecadee9\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2009-12-26 22:53:10.707 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_0efecf2c1ef1a5d7\tcpip.sys because the set of per-page image hashes could not be found on the system. Date: 2009-12-26 22:53:10.613 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_0f3cadd61ec3b22c\tcpip.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU P7550 @ 2.26GHz Percentage of memory in use: 42% Total physical RAM: 4063.2 MB Available physical RAM: 2332.42 MB Total Pagefile: 8124.57 MB Available Pagefile: 5922.53 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:287.58 GB) (Free:124.09 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (RECOVERY) (Fixed) (Total:10.51 GB) (Free:1.76 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 30224A71) Partition 1: (Active) - (Size=287.6 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=10.5 GB) - (Type=07 NTFS) ==================== End Of Log ============================ [/QUOTE]
Insert quotes…
Verification
Post reply
Top