Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2016
- Ran by Russell Ison (2016-06-15 18:53:39)
- Running from C:\Users\Russell Ison\Downloads
- Windows 10 Home Version 1511 (X64) (2016-04-09 03:48:59)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-3777230128-999622161-3604897991-500 - Administrator - Disabled)
- DefaultAccount (S-1-5-21-3777230128-999622161-3604897991-503 - Limited - Disabled)
- Guest (S-1-5-21-3777230128-999622161-3604897991-501 - Limited - Disabled)
- Russell Ison (S-1-5-21-3777230128-999622161-3604897991-1002 - Administrator - Enabled) => C:\Users\Russell Ison
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Trend Micro Maximum Security (Enabled - Up to date) {8242D66F-41BD-4049-C2E6-E578E73B62A0}
- AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Trend Micro Maximum Security (Enabled - Up to date) {3923378B-6787-4FC7-F856-DE0A9CBC281D}
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- 12 Labours of Hercules III: Girl Power (x32 Version: 3.0.2.118 - WildTangent) Hidden
- Adobe After Effects CC 2015 (HKLM-x32\...\{147EC100-14BE-45EF-AB42-35BAEE7D02F0}) (Version: 13.7.1 - Adobe Systems Incorporated)
- Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated)
- Adobe Illustrator CC 2015 (HKLM-x32\...\ILST_19_2_1) (Version: 19.2.1 - Adobe Systems Incorporated)
- Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.2.0 - Adobe Systems Incorporated)
- Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
- Amazon 1Button App (x32 Version: 2.3.4 - Amazon) Hidden <==== ATTENTION
- Amazon Assistant (HKLM-x32\...\Amazon Assistant) (Version: 2.3.4 - Amazon) <==== ATTENTION
- AMD Catalyst Install Manager (HKLM\...\{A30D3EA3-B90A-DDD5-949E-6DDE67E64FE6}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
- ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
- Azkend 2: The World Beneath (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Bandicam (HKLM-x32\...\Bandicam) (Version: 3.0.4.1036 - Bandisoft.com)
- Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
- BlueStacks App Player (HKLM-x32\...\{FAAE9525-C11E-4685-B7C9-048229908D48}) (Version: 2.2.17.6203 - BlueStack Systems, Inc.)
- Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
- Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
- Company of Heroes 2 (HKLM\...\Steam App 231430) (Version: - Relic Entertainment)
- Coyote The Outlander (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
- CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.6.7006 - CyberLink Corp.)
- CyberLink PhotoDirector (Version: 5.0.6.7006 - CyberLink Corp.) Hidden
- CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.5.4601 - CyberLink Corp.)
- CyberLink PowerDirector 12 (Version: 12.0.5.4601 - CyberLink Corp.) Hidden
- Delicious: Emily's Wonder Wedding Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
- DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
- Dropbox (HKLM-x32\...\Dropbox) (Version: 4.4.29 - Dropbox, Inc.)
- Dropbox Update Helper (x32 Version: 1.3.35.1 - Dropbox, Inc.) Hidden
- Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
- Entwined: The Perfect Murder (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Evernote v. 5.8.13 (HKLM-x32\...\{A229420E-204B-11E5-B844-0050569584E9}) (Version: 5.8.13.8152 - Evernote Corp.)
- Family Vacation 2: Road Trip (x32 Version: 3.0.2.59 - WildTangent) Hidden
- FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
- FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.84 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
- HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.14.265 - SurfRight B.V.)
- Home Makeover (x32 Version: 3.0.2.59 - WildTangent) Hidden
- HP Documentation (HKLM\...\HP_Documentation) (Version: - HP)
- HP ePrint SW (HKLM-x32\...\{88970959-baf7-4864-a39a-69a58e8ae5cf}) (Version: 5.0.18701 - HP)
- HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8305.5282 - Hewlett-Packard)
- HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.2.8.25 - Hewlett-Packard Company)
- HP Support Solutions Framework (HKLM-x32\...\{D7D5F438-26EF-45AB-AB89-C476FBCF8584}) (Version: 12.4.18.7 - Hewlett-Packard Company)
- HP System Event Utility (HKLM-x32\...\{D17A3B70-B75E-4C49-83D6-C17DDF65B35F}) (Version: 1.3.4 - Hewlett-Packard Company)
- HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - HP Inc.)
- HP Wireless Button Driver (HKLM-x32\...\{1BDD178E-43DC-4063-B480-BA2BAE03E2A0}) (Version: 1.1.15.1 - HP)
- IGT Slots: Paradise Garden (x32 Version: 3.0.2.59 - WildTangent) Hidden
- IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
- Imperial Island: Birth of an Empire (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Insane Cold: Back to the Ice Age (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Intel(R) PRO/Wireless Driver (HKLM\...\{9f63698a-6f92-4dd3-be96-6a75e3672dae}) (Version: 18.30.0000.3514 - Intel Corporation)
- Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{4DA9DC19-4E1D-4B10-A726-A5F2A1BC7265}) (Version: 18.1.1546.2762 - Intel Corporation)
- Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
- Jewel Match Snowscapes (x32 Version: 3.0.2.118 - WildTangent) Hidden
- Living Legends: Frozen Beauty Collector's Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Lost Lands: Dark Overlord Collector's Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Lost Souls: Timeless Fables Collector's Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
- Manor Memoirs Collector's Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.6965.2053 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
- Mozilla Firefox 47.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 en-US)) (Version: 47.0 - Mozilla)
- Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
- Mystery Expedition: Prisoners of Ice (x32 Version: 3.0.2.59 - WildTangent) Hidden
- OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
- Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
- Office 16 Click-to-Run Licensing Component (Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
- Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
- Plagiarii (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden
- Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
- Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.31213 - Realtek Semiconductor Corp.)
- Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7730 - Realtek Semiconductor Corp.)
- Runefall (x32 Version: 3.0.2.126 - WildTangent) Hidden
- Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
- Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
- Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
- SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1218 - SUPERAntiSpyware.com)
- swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
- Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.4.0 - Synaptics Incorporated)
- Trend Micro Maximum Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 10.0 - Trend Micro Inc.)
- Trend Micro Password Manager (HKLM\...\3A0FB4E3-2C0D-4572-A24D-67F1CAABDDP35_is1) (Version: 3.6.0.1076 - Trend Micro Inc.)
- Trend Micro Titanium (Version: 10.0 - Trend Micro Inc.) Hidden
- Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
- VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.3 - VideoLAN)
- Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.7.1.0 - Azureus Software, Inc.)
- WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
- WildTangent Games App for HP (x32 Version: 4.0.11.16 - WildTangent) Hidden
- WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-3777230128-999622161-3604897991-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Russell Ison\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-3777230128-999622161-3604897991-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {02E5A189-DB66-4849-BC2C-31F09B22A302} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-06-13] (Microsoft Corporation)
- Task: {0E902A10-FF3C-4C7A-A9AE-5CF27A02D21C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-04-22] (HP Inc.)
- Task: {19CFDDF9-5AB6-4F36-8D25-EDABE43C325A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-04-11] (Dropbox, Inc.)
- Task: {25BDD445-C8C0-4934-9465-4C8FFA646631} - System32\Tasks\DistromaticSearchProtect-hourly => C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe [2016-06-12] (Distromatic) <==== ATTENTION
- Task: {289DF894-F796-4265-9623-0F72E1648745} - System32\Tasks\DistromaticSearchProtect-logon => C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe [2016-06-12] (Distromatic) <==== ATTENTION
- Task: {2D09CCC3-3B96-4E25-B0D5-937FE4A76586} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
- Task: {4A1F7CA9-3B0D-4D11-9929-6A293075C483} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
- Task: {5B73720C-5F3D-49D5-AF67-957D5609168D} - System32\Tasks\AdobeAAMUpdater-1.0-LAPTOP-UCFFLMK3-Russell Ison => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated)
- Task: {6010825D-7448-41F9-BECA-E24E0BE5D84B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-05-26] (Microsoft Corporation)
- Task: {639E0AC3-E8C9-4AB2-ACC7-149865F570E2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-11] (Google Inc.)
- Task: {74F119A4-AA8A-411C-9364-AC1AB69C4714} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-03-02] (Hewlett-Packard)
- Task: {7801F6FC-59AA-417E-A950-8001AF3AC84C} - System32\Tasks\DistromaticUpdater-periodic => C:\Program Files (x86)\Amazon Browser Settings\updater.exe [2016-06-12] (Distromatic) <==== ATTENTION
- Task: {7BD23379-680C-4013-AA0F-29A9FC5AC071} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-03-02] (Hewlett-Packard)
- Task: {95CACD00-480B-425F-9771-110D1A6E5273} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-04-11] (Dropbox, Inc.)
- Task: {9EB14851-F985-400B-914E-7D0E5ADA2CB2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-11] (Google Inc.)
- Task: {A5BBD050-9D41-47DD-8BC1-150DB14A06B7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-05-26] (Microsoft Corporation)
- Task: {D54F8F9D-839A-4FF5-BFC9-66276C3B4229} - System32\Tasks\SUPERAntiSpyware Scheduled Task 46f415eb-5467-47a2-895d-a27629faa117 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-08] (SUPERAdBlocker.com)
- Task: {DA6C6FB4-DA6E-4ED3-BF07-7EFCC942EDF6} - System32\Tasks\SUPERAntiSpyware Scheduled Task e3941c92-108f-404b-958c-365243fbfdd7 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-08] (SUPERAdBlocker.com)
- Task: {E5D1B88C-39FE-413D-B549-57CBDCF6C557} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
- Task: {E92176B5-83EF-4DA4-8581-6AE91048A753} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
- Task: {E9293EFD-BA25-4E05-B62D-29FF15947B89} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
- Task: {EAC95ACE-4350-4309-A4D4-63F6E822D367} - System32\Tasks\HPCeeScheduleForRussell Ison => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-17] (Hewlett-Packard)
- Task: {F0D1FE0D-F85D-428C-86ED-8BD286DCB59A} - System32\Tasks\DistromaticUpdater-logon => C:\Program Files (x86)\Amazon Browser Settings\updater.exe [2016-06-12] (Distromatic) <==== ATTENTION
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
- Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
- Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\windows\Tasks\HPCeeScheduleForRussell Ison.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
- Task: C:\windows\Tasks\SUPERAntiSpyware Scheduled Task 46f415eb-5467-47a2-895d-a27629faa117.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
- Task: C:\windows\Tasks\SUPERAntiSpyware Scheduled Task e3941c92-108f-404b-958c-365243fbfdd7.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-10-30 17:18 - 2015-10-30 17:18 - 00185856 _____ () C:\windows\SYSTEM32\ism32k.dll
- 2016-04-22 19:09 - 2015-04-01 05:08 - 00026408 _____ () C:\Program Files\Trend Micro\AMSP\boost_system-vc110-mt-1_57.dll
- 2016-04-22 19:09 - 2015-04-01 05:08 - 00058320 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc110-mt-1_57.dll
- 2016-04-22 19:09 - 2015-04-01 05:09 - 00686608 _____ () C:\Program Files\Trend Micro\AMSP\sqlite3.dll
- 2016-04-22 19:09 - 2015-04-01 05:08 - 00110320 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc110-mt-1_57.dll
- 2016-04-22 19:09 - 2015-04-01 05:08 - 00036160 _____ () C:\Program Files\Trend Micro\AMSP\boost_chrono-vc110-mt-1_57.dll
- 2016-04-22 19:09 - 2015-04-01 05:09 - 01314920 _____ () C:\Program Files\Trend Micro\AMSP\libprotobuf.dll
- 2015-07-17 12:31 - 2015-07-17 12:31 - 00168544 ____N () C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll
- 2015-08-07 15:39 - 2015-08-07 15:39 - 00127488 _____ () c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
- 2016-04-22 19:16 - 2015-07-17 12:31 - 00018944 _____ () C:\Program Files\Trend Micro\Titanium\plugin\Pt\boost_system-vc110-mt-1_52.dll
- 2016-04-22 19:16 - 2015-07-17 12:31 - 00089088 _____ () C:\Program Files\Trend Micro\Titanium\plugin\Pt\boost_thread-vc110-mt-1_52.dll
- 2016-04-22 19:16 - 2015-07-17 12:31 - 00049664 _____ () C:\Program Files\Trend Micro\Titanium\plugin\Pt\boost_date_time-vc110-mt-1_52.dll
- 2016-04-22 19:16 - 2015-07-17 12:31 - 00761856 _____ () C:\Program Files\Trend Micro\Titanium\plugin\Pt\boost_regex-vc110-mt-1_52.dll
- 2016-04-22 19:08 - 2014-08-01 20:17 - 00048128 _____ () C:\Program Files\Trend Micro\TMIDS\boost_date_time-vc110-mt-1_49.dll
- 2016-04-17 21:32 - 2016-03-29 20:20 - 02656952 _____ () C:\windows\system32\CoreUIComponents.dll
- 2016-04-17 21:32 - 2016-03-29 20:20 - 02656952 _____ () C:\windows\System32\CoreUIComponents.dll
- 2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
- 2016-05-21 07:32 - 2016-05-21 07:32 - 00959168 _____ () C:\Users\Russell Ison\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
- 2016-06-13 16:57 - 2016-06-13 16:57 - 08919752 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
- 2016-04-22 19:08 - 2016-04-21 18:00 - 40970752 _____ () C:\Program Files\Trend Micro\TMIDS\tower\PwmTower.exe
- 2016-03-02 19:06 - 2016-03-02 19:06 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
- 2016-05-12 21:58 - 2016-04-23 14:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
- 2016-05-12 21:58 - 2016-04-23 14:25 - 00674816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
- 2015-07-17 12:31 - 2015-07-17 12:31 - 00065520 ____N () C:\Program Files\Trend Micro\Titanium\plugin\fcMsgDispatcher.dll
- 2016-04-01 23:17 - 2016-04-01 23:17 - 31679664 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
- 2016-03-02 20:29 - 2014-04-15 12:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
- 2016-04-19 09:29 - 2016-04-19 09:30 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
- 2016-05-12 22:06 - 2016-04-23 14:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
- 2016-05-12 22:05 - 2016-04-23 13:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
- 2016-05-12 22:06 - 2016-04-23 13:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
- 2016-05-12 22:06 - 2016-04-23 14:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
- 2016-06-03 18:03 - 2016-06-03 18:06 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
- 2016-06-03 18:03 - 2016-06-03 18:06 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
- 2016-06-03 18:03 - 2016-06-03 18:06 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
- 2016-04-09 15:01 - 2016-04-09 15:02 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- HKU\S-1-5-21-3777230128-999622161-3604897991-1002\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- IE trusted site: HKU\S-1-5-21-3777230128-999622161-3604897991-1002\...\amazon.com -> hxxps://amazon.com
- IE trusted site: HKU\S-1-5-21-3777230128-999622161-3604897991-1002\...\trendmicro.com -> hxxps://pwm.trendmicro.com
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2015-10-30 17:24 - 2016-06-13 19:41 - 00001212 ____A C:\windows\system32\Drivers\etc\hosts
- 107.178.255.88 s ssl.goo.88 partner.googleadservices.com
- 107.178.255.88 google-analytics.com
- 107.178.255.88 s ssl.goo.88 partner.googleadservices.com
- 107.178.255.88 google-analytics.com127.0.0.1 down.baidu2016.com
- 127.0.0.1 123.sogou.com
- 127.0.0.1 www.czzsyzgm.com
- 127.0.0.1 www.czzsyzxl.com
- 127.0.0.1 union.baidu2019.com
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-3777230128-999622161-3604897991-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Russell Ison\Desktop\NoisiaSTA1366x768.jpg
- DNS Servers: 10.0.0.138
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-3777230128-999622161-3604897991-1002\...\StartupApproved\Run: => "Skype"
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
- FirewallRules: [{A0E19F59-8E9E-4032-8872-E7701A41BB66}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPSOCKSVC.exe
- FirewallRules: [{F15F90AC-51A4-4928-A008-1936D5C92970}] => (Allow) c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
- FirewallRules: [{D83E6A6F-8737-44B5-8689-41050CB36B78}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{5607279B-F12E-4960-9B7D-F2065CD9AA62}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{601C86B8-30C5-4854-B3C6-75B81926CADA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{8C607D03-7827-49C2-96ED-EA6178D07221}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{5B16B147-F572-4AC1-88C5-A7D1E889BA23}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
- FirewallRules: [{1FB1DD48-6210-41FA-90DD-953A14622162}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [{5D33B02E-DAAE-4FF4-8F97-C1EBE96EB4DC}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
- FirewallRules: [{4E0FC428-15BC-44F5-938A-558EA1D55844}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
- FirewallRules: [{273C5349-75F6-40DF-85E4-E73E495D153E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{4115B573-9D8C-4CD8-83E2-8A464D44D3A1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{F7010514-86B3-4812-BFFB-688D2E4C6627}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{36958CE0-C8B6-4F85-B9DC-B4A0EAA93455}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{EC70C60D-5D8B-4106-B143-E1E56280D0E3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Company of Heroes 2\RelicCoH2.exe
- FirewallRules: [{5014F7E9-4FB8-44A9-865A-1A54382DF004}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Company of Heroes 2\RelicCoH2.exe
- FirewallRules: [{2261B7D5-631C-4866-AE6F-BA8AAF7B6272}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
- FirewallRules: [{6DBD0065-F082-4CC6-8875-8A55317F03A5}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
- FirewallRules: [{366D9314-A949-48D2-A6DC-012457E80963}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [TCP Query User{F3FA560A-52B4-4256-907F-0668F0DA2C6B}C:\program files (x86)\image-line\fl studio 12\fl64.exe] => (Allow) C:\program files (x86)\image-line\fl studio 12\fl64.exe
- FirewallRules: [UDP Query User{68F5755E-21FF-40E5-A3EF-59A48DEEA327}C:\program files (x86)\image-line\fl studio 12\fl64.exe] => (Allow) C:\program files (x86)\image-line\fl studio 12\fl64.exe
- FirewallRules: [{8DF41DA8-107E-46AF-A60F-5889AC6A4E40}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
- FirewallRules: [{A5D6D18D-B7E4-4C6F-8B4D-DECF26B6FCDF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [TCP Query User{1540A38A-FF17-4124-9CD7-2EE2585334DB}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
- FirewallRules: [UDP Query User{F35AFE9A-805E-40B1-80A2-51A91E86D94D}C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_77\bin\javaw.exe
- FirewallRules: [TCP Query User{4B85178F-6CE9-4402-BA63-436BE73744CC}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe
- FirewallRules: [UDP Query User{63D9F3CD-9F45-48DF-834A-A662A1D82AEC}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe
- FirewallRules: [{557DD30A-B10A-4165-942C-A1C79D00AF44}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
- ==================== Restore Points =========================
- 07-05-2016 17:53:18 Installed Project64 1.6
- 14-05-2016 21:55:09 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
- 21-05-2016 08:12:36 Windows Update
- 13-06-2016 18:47:16 JRT Pre-Junkware Removal
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (06/15/2016 06:44:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program javaw.exe version 8.0.910.15 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
- Process ID: 1598
- Start Time: 01d1c6e21182a404
- Termination Time: 125
- Application Path: C:\Program Files (x86)\Java\jre1.8.0_91\bin\javaw.exe
- Report Id: 5c53ae4f-32d5-11e6-b92e-08d40ccb1618
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (06/15/2016 06:43:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program javaw.exe version 8.0.910.15 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
- Process ID: c24
- Start Time: 01d1c6e1c6919bff
- Termination Time: 93
- Application Path: C:\Program Files (x86)\Java\jre1.8.0_91\bin\javaw.exe
- Report Id: 273636c5-32d5-11e6-b92e-08d40ccb1618
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (06/15/2016 04:00:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 4719
- Error: (06/15/2016 04:00:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 4719
- Error: (06/15/2016 04:00:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: Continuously busy for more than a second
- Error: (06/15/2016 04:00:56 AM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 3188
- Error: (06/15/2016 04:00:56 AM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 3188
- Error: (06/15/2016 04:00:56 AM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: Continuously busy for more than a second
- Error: (06/15/2016 04:00:54 AM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledSPRetry 1532
- Error: (06/15/2016 04:00:54 AM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Task Scheduling Error: m->NextScheduledEvent 1532
- System errors:
- =============
- Error: (06/15/2016 12:10:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
- Error: (06/14/2016 10:18:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
- Error: (06/14/2016 06:06:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The AdaptiveSleepService service terminated unexpectedly. It has done this 1 time(s).
- Error: (06/14/2016 04:56:15 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
- Error: (06/14/2016 04:18:28 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-UCFFLMK3)
- Description: microsoft.windows.immersivecontrolpanel
- Error: (06/14/2016 04:11:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the HPWMISVC service.
- Error: (06/14/2016 04:10:30 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
- Description: The Delivery Optimization service hung on starting.
- Error: (06/14/2016 04:10:14 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: {96D1EED3-701E-4FE5-B996-A543A8465897}
- Error: (06/14/2016 04:03:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The BstHdPlusAndroidSvc service failed to start due to the following error:
- The service did not respond to the start or control request in a timely fashion.
- Error: (06/14/2016 04:03:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
- Description: A timeout was reached (30000 milliseconds) while waiting for the BstHdPlusAndroidSvc service to connect.
- CodeIntegrity:
- ===================================
- Date: 2016-06-13 18:16:30.830
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-06-13 16:48:55.811
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-29 11:38:34.074
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-22 13:33:00.587
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-22 13:28:35.408
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-16 15:44:11.098
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-15 09:55:30.558
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-05-01 16:52:20.027
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-04-21 09:44:12.677
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-04-17 19:55:16.634
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- ==================== Memory info ===========================
- Processor: AMD A6-6310 APU with AMD Radeon R4 Graphics
- Percentage of memory in use: 50%
- Total physical RAM: 7113.01 MB
- Available physical RAM: 3554 MB
- Total Virtual: 8265.01 MB
- Available Virtual: 4045.62 MB
- ==================== Drives ================================
- Drive c: (Windows) (Fixed) (Total:909.83 GB) (Free:767.17 GB) NTFS
- Drive d: (RECOVERY) (Fixed) (Total:20.72 GB) (Free:2.41 GB) NTFS ==>[system with boot components (obtained from drive)]
- Drive e: (May 08 2016) (CDROM) (Total:4.38 GB) (Free:4.38 GB) UDF
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (Size: 931.5 GB) (Disk ID: FE1A604C)
- Partition: GPT.
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement