Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version:09-01-2015
- Ran by mushf_000 (2016-01-10 17:52:17)
- Running from C:\Users\mushf_000\Desktop
- Windows 8.1 (X64) (2015-07-28 12:50:00)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-1636230488-600830020-427635520-500 - Administrator - Disabled) => C:\Users\Administrator
- Guest (S-1-5-21-1636230488-600830020-427635520-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-1636230488-600830020-427635520-1003 - Limited - Enabled)
- Mush (S-1-5-21-1636230488-600830020-427635520-1001 - Administrator - Enabled) => C:\Users\Mush
- mushf_000 (S-1-5-21-1636230488-600830020-427635520-1004 - Administrator - Enabled) => C:\Users\mushf_000
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Out of date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
- AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Out of date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
- FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- 7-Zip 15.12 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1512-000001000000}) (Version: 15.12.00.0 - Igor Pavlov)
- Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.4.1.181 - Adobe Systems Incorporated)
- Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.1 - Adobe Systems Incorporated)
- Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)
- BlueStacks App Player (HKLM-x32\...\{EFA0FC40-7D96-4515-9715-7C0C5D872326}) (Version: 2.0.2.5623 - BlueStack Systems, Inc.)
- Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
- Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
- Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
- Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
- Clownfish for Skype (HKLM-x32\...\Clownfish) (Version: - )
- Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
- Curse Client (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
- CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
- CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
- CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.9.4928 - CyberLink Corp.)
- CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.10.5422 - CyberLink Corp.)
- CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
- CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
- D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
- DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
- Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
- FileZilla Client 3.14.1 (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\FileZilla Client) (Version: 3.14.1 - Tim Kosse)
- GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
- Gyazo 3.1.6 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
- Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
- HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
- HP Documentation (HKLM-x32\...\{F29E3AA8-CF19-4452-92B7-F1FE31CD11C5}) (Version: 1.1.0.0 - Hewlett-Packard)
- HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
- HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.46 - Hewlett-Packard)
- HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
- HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.0.30.219 - Hewlett-Packard Company)
- HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company)
- HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
- HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard)
- Inst5675 (Version: 8.01.46 - Softex Inc.) Hidden
- Inst5676 (Version: 8.01.46 - Softex Inc.) Hidden
- Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.24.1790 - Intel Corporation)
- Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3368 - Intel Corporation)
- Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.9.1000 - Intel Corporation)
- join.me (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\JoinMe) (Version: 2.11.0.1717 - LogMeIn, Inc.)
- join.me.launcher (x32 Version: 1.0.624.0 - LogMeIn, Inc.) Hidden
- KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.8.2.0 - QFX Software Corporation)
- League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
- League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
- Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
- Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
- McAfee LiveSafe - Internet Security (HKLM-x32\...\MSC) (Version: 14.0.5120 - McAfee, Inc.)
- Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
- Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
- Mozilla Firefox 43.0.4 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 en-GB)) (Version: 43.0.4 - Mozilla)
- Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4 - Mozilla)
- Oracle VM VirtualBox 5.0.12 (HKLM\...\{6F93731D-89E1-4A8F-BDA9-D104860DDB02}) (Version: 5.0.12 - Oracle Corporation)
- Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
- Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.35.716.2014 - Realtek)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7156 - Realtek Semiconductor Corp.)
- REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.38 - REALTEK Semiconductor Corp.)
- ROBLOX Player for mushf_000 (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
- Skype Quote Creator (HKU\S-1-5-21-1636230488-600830020-427635520-1004\...\ad08ab58bc77059a) (Version: 1.0.6.0 - MKing)
- Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
- Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.4.0 - Synaptics Incorporated)
- TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
- TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
- Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
- WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
- WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
- Wireshark 2.0.1 (32-bit) (HKLM-x32\...\Wireshark) (Version: 2.0.1 - The Wireshark developer community, hxxps://www.wireshark.org)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-1636230488-600830020-427635520-1004_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\mushf_000\AppData\Local\Roblox\Versions\version-f7131a583a8d4ea7\RobloxProxy64.dll (ROBLOX Corporation)
- CustomCLSID: HKU\S-1-5-21-1636230488-600830020-427635520-1004_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {0E2BFC19-9A3D-42A0-A855-425A7710F819} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2015-07-02] (Hewlett-Packard)
- Task: {0E4F5C68-B2DC-478B-923B-F712C9361B2F} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
- Task: {0F26EBC7-9629-419B-A6CF-33B1EE464501} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
- Task: {12E561FE-18C6-4780-90D2-CB1B4D30B7C2} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-13] (Synaptics Incorporated)
- Task: {1495C8B1-422E-4395-B5E8-453EDEEA4FE4} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
- Task: {1B15B63C-1E9C-4E08-85E2-169A7B2540E6} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [2015-09-01] (McAfee, Inc.)
- Task: {1BC11405-0121-468C-9F37-A5AA1F5C6C5F} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.)
- Task: {21ACD7AD-B1AA-4DC2-BF54-2BA34E6BCCE7} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
- Task: {2D5A6C32-15C0-40EE-BB08-772ABB08FBAA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
- Task: {2E41ADEB-3015-4264-A86C-D82190C9E830} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
- Task: {2F2F43B4-C9C6-4173-AB93-3CDC432B825A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
- Task: {3C9A7E10-A664-42F9-9575-95054D3F4BEE} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2015-07-02] (Hewlett-Packard)
- Task: {3CD3FC6B-FA6C-43F4-BF88-116849140B0E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
- Task: {5BF6B749-C0EB-4142-ACF6-499C69A81134} - System32\Tasks\HPCeeScheduleFormushf_000 => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
- Task: {69AAE5A5-246F-4113-9FF0-15BC4A2EF681} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
- Task: {6E2779CB-B445-4747-9A9C-66773A95D86A} - System32\Tasks\{B640AB39-6739-475A-AEBA-041936304F8B} => pcalua.exe -a C:\Users\mushf_000\AppData\Local\Roblox\Versions\version-f7131a583a8d4ea7\RobloxPlayerLauncher.exe -c -uninstall
- Task: {8E98DBFA-92F2-463B-A427-3059DC062228} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2015-07-02] (Hewlett-Packard)
- Task: {9687502C-D363-4615-A67B-3D7F1820C49A} - System32\Tasks\update-S-1-5-21-1636230488-600830020-427635520-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
- Task: {B5FBF4FF-A6F9-4F56-B7EE-FA67B0C0FCA1} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
- Task: {B9386AC3-C963-403C-8EAB-01A0A7DCE226} - System32\Tasks\update-S-1-5-21-1636230488-600830020-427635520-1004 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
- Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
- Task: {BB7C1359-AF19-402C-99C9-3C09105C8278} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-06] (Google Inc.)
- Task: {D1787104-249D-4B3B-8D26-38944DBE6C0A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-06] (Google Inc.)
- Task: {D25E9429-1686-4F04-BF2C-49B78BDD06B4} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2015-11-03] (McAfee, Inc.)
- Task: {DDE26964-5747-4E30-B143-865A5D6F7E50} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
- Task: {F0DA5190-46C6-43A5-A5A4-8321FC86C36D} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
- Task: {F116E506-9E9F-449C-BCF6-5F237C7CC5BD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-15] (AVAST Software)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\HPCeeScheduleFormushf_000.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
- Task: C:\WINDOWS\Tasks\update-S-1-5-21-1636230488-600830020-427635520-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- Task: C:\WINDOWS\Tasks\update-S-1-5-21-1636230488-600830020-427635520-1004.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-11-14 04:23 - 2015-11-14 04:23 - 00553120 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
- 2014-05-01 14:13 - 2014-05-01 14:13 - 00470016 _____ () C:\Users\mushf_000\AppData\Local\MEGAsync\ShellExtX64.dll
- 2015-10-16 10:02 - 2015-10-16 10:02 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
- 2015-09-19 14:21 - 2015-09-19 14:21 - 00016384 _____ () C:\Users\mushf_000\AppData\Local\Apps\2.0\NP0D00DJ.L8M\9GDC4Z0X.QWM\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.CurseClient.WowDb.dll
- 2015-09-19 14:21 - 2015-09-19 14:21 - 00035840 _____ () C:\Users\mushf_000\AppData\Local\Apps\2.0\NP0D00DJ.L8M\9GDC4Z0X.QWM\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.Advertising.dll
- 2015-11-14 04:22 - 2015-11-14 04:22 - 31401120 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
- 2000-01-01 00:00 - 2015-12-18 12:56 - 02419712 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe
- 2014-05-01 14:15 - 2014-05-01 14:15 - 00463360 _____ () C:\Users\mushf_000\AppData\Local\MEGAsync\ShellExtX32.dll
- 2015-09-06 15:41 - 2015-11-05 11:26 - 01435240 _____ () C:\Program Files\CyberGhost 5\Geckofx-Core.dll
- 2015-07-30 14:09 - 2014-10-29 03:59 - 01029952 _____ () C:\Windows\SYSTEM32\speech\engines\tts\MSTTSEngine.dll
- 2015-07-30 14:05 - 2014-10-29 00:46 - 00531456 _____ () C:\Windows\SYSTEM32\speech\engines\tts\MSTTSLoc.DLL
- 2015-12-16 15:53 - 2015-12-16 15:53 - 00052224 _____ () C:\Users\mushf_000\AppData\Local\MEGAsync\cares.dll
- 2015-11-16 17:43 - 2015-11-16 17:43 - 40523440 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
- 2015-12-14 13:50 - 2016-01-03 18:33 - 03287552 _____ () C:\Program Files (x86)\BlueStacks\libGLESv2.dll
- 2015-12-05 10:21 - 2015-12-05 10:21 - 00933056 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
- 2015-11-16 17:43 - 2015-11-16 17:43 - 01365680 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libglesv2.dll
- 2015-11-16 17:43 - 2015-11-16 17:43 - 00219312 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libegl.dll
- 2015-11-25 19:35 - 2015-11-25 19:35 - 00124416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
- 2015-11-25 19:35 - 2015-11-25 19:35 - 00188416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
- 2015-11-25 19:35 - 2015-11-25 19:35 - 00121344 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
- 2015-11-25 19:35 - 2015-11-25 19:35 - 00129536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
- 2015-11-25 13:22 - 2015-11-25 13:22 - 00158384 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\native\ProxyResolverWin.dll
- 2015-11-25 19:35 - 2015-11-25 19:35 - 00081408 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
- 2015-10-16 10:02 - 2015-10-16 10:02 - 00039384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
- 2016-01-06 19:29 - 2015-12-11 03:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
- 2016-01-06 19:29 - 2015-12-11 03:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
- 2000-01-01 00:00 - 2000-01-01 00:00 - 00092599 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\libssp-0.dll
- 2000-01-01 00:00 - 2000-01-01 00:00 - 00718072 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\libevent-2-0-5.dll
- 2000-01-01 00:00 - 2000-01-01 00:00 - 00092599 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\libssp-0.dll
- 2000-01-01 00:00 - 2000-01-01 00:00 - 00107520 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\zlib1.dll
- 2000-01-01 00:00 - 2000-01-01 00:00 - 00523262 _____ () C:\Users\mushf_000\Desktop\Tor Browser\Browser\TorBrowser\Tor\libgcc_s_sjlj-1.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
- ==================== EXE Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2013-08-22 13:25 - 2013-08-22 13:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-1636230488-600830020-427635520-1004\Control Panel\Desktop\\Wallpaper ->
- DNS Servers: 8.8.8.8 - 8.8.4.4
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
- FirewallRules: [{8E98688E-29E9-4835-A115-0AAAE8E6C0E4}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
- FirewallRules: [{73662CD1-BF16-4EDE-BBF6-BA8B4710F03F}] => (Allow) LPort=2869
- FirewallRules: [{6E074171-9605-4931-AFAA-63C52ACD6FEE}] => (Allow) LPort=1900
- FirewallRules: [{BD387CC1-9FDB-4972-A52D-CF829A14F743}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
- FirewallRules: [{381EB021-452F-49E8-A066-D37EC8B08ED7}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
- FirewallRules: [{0594139F-4C80-4F0A-A948-DE7BB1672AFE}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
- FirewallRules: [{983E2A54-1B46-4291-A271-CC7F6F84CBFB}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
- FirewallRules: [{3513654B-7B5C-4288-BCC6-D5F42FAD267A}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
- FirewallRules: [{81C65CB9-E518-4416-8894-593F2831417F}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
- FirewallRules: [{621F4CA6-CB36-4189-B48F-57BD3E2FE45A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{B1EED578-0A5D-4680-B2A9-6ECEF6D87F4A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{B27ECB3A-8641-4269-89E5-D6B4B52434C3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{8DEA1BF2-BFAA-499D-88A4-9F0F5449111A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{AD5A0AD8-4A08-43B2-AB4D-9265BF015D49}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
- FirewallRules: [{05F22421-0D0B-40D8-909F-03C94E6E617F}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
- FirewallRules: [{0122A8BD-D113-4085-BD0B-E1AB361EE35E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
- FirewallRules: [{DC80867C-507E-4C40-B3AB-26D71DF999AB}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
- FirewallRules: [{D82187A6-6AA7-4297-A739-FA2BA19C0CC9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
- FirewallRules: [{F9931A90-ADB8-487E-B899-189DF7BD8347}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
- FirewallRules: [{41B95227-94C2-48EE-AD4A-2B6F3703C8AA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
- FirewallRules: [{00841E7A-7E00-4C38-8485-6AA038E1A452}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
- FirewallRules: [TCP Query User{18C01037-90D4-4902-A3D7-458792EA815F}C:\users\mush\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\mush\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{2BC26619-0B0C-4126-932A-FF2E4F9F6E19}C:\users\mush\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\mush\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [TCP Query User{2029F4DB-CA34-49E2-8478-18885BD91627}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
- FirewallRules: [UDP Query User{DE5C01EA-ABE0-4029-9153-4C45526D94EC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
- FirewallRules: [{2924127D-023C-4EE5-B31D-01346E1A898C}] => (Block) C:\program files (x86)\skype\phone\skype.exe
- FirewallRules: [{0B3E8F73-D866-43FF-B377-02186F5E2C5E}] => (Block) C:\program files (x86)\skype\phone\skype.exe
- FirewallRules: [{B0AD6E26-DB92-4A7B-80DD-496DD7E79C41}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{2F7D536F-873B-4C88-BB87-F7BA8BAC0264}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{F5FC8985-4BC8-4333-9205-B45B4F0CE091}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{27057697-D811-4A64-9377-3E6F53178DBA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{DE901B30-DB68-4E6C-A492-8D2864BF82A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{61958E2C-69FB-4E86-AA20-DB8B2A6102EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{64DC17E2-5710-4BD8-AA46-C1D0DF25B46E}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
- FirewallRules: [TCP Query User{C7C4F9BB-C756-4012-BC36-0E014382C21B}C:\users\mushf_000\appdata\local\temp\joi5922.tmp\join.me.exe] => (Block) C:\users\mushf_000\appdata\local\temp\joi5922.tmp\join.me.exe
- FirewallRules: [UDP Query User{6EC00975-FBA9-4DC8-8EC1-33400FF99FBF}C:\users\mushf_000\appdata\local\temp\joi5922.tmp\join.me.exe] => (Block) C:\users\mushf_000\appdata\local\temp\joi5922.tmp\join.me.exe
- FirewallRules: [TCP Query User{F9923530-50BF-42FD-B544-B0A90B9CA162}C:\users\mushf_000\appdata\local\join.me\join.me.exe] => (Allow) C:\users\mushf_000\appdata\local\join.me\join.me.exe
- FirewallRules: [UDP Query User{49392E9C-90CE-4C7D-9E1E-8D4185B3C770}C:\users\mushf_000\appdata\local\join.me\join.me.exe] => (Allow) C:\users\mushf_000\appdata\local\join.me\join.me.exe
- FirewallRules: [{71349922-C432-48A8-9A6B-5895B8144FA0}] => (Block) C:\users\mushf_000\appdata\local\join.me\join.me.exe
- FirewallRules: [{1F6694D3-BF93-46CF-B178-3B74AE1801EC}] => (Block) C:\users\mushf_000\appdata\local\join.me\join.me.exe
- FirewallRules: [TCP Query User{639CAAEC-08AE-4360-9667-2A76C30DEBC4}C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe] => (Allow) C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe
- FirewallRules: [UDP Query User{F40A59E0-63BA-4779-9B12-C4874ED18026}C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe] => (Allow) C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe
- FirewallRules: [{885E8019-0DAD-4881-9BE8-08E12126E574}] => (Block) C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe
- FirewallRules: [{8804D6F5-D79E-45E9-B12B-778888C86F6D}] => (Block) C:\users\mushf_000\appdata\local\temp\joif620.tmp\join.me.exe
- FirewallRules: [TCP Query User{F2F3B53E-D47F-4746-BA1F-DF4DB1E09B2D}C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe] => (Allow) C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe
- FirewallRules: [UDP Query User{BED1240E-8B4C-4BB5-A2F8-508DB59E7CA2}C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe] => (Allow) C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe
- FirewallRules: [{B3D5190C-D676-41A7-A3F9-1522D6FEA83B}] => (Block) C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe
- FirewallRules: [{403709A3-4387-4747-8289-543705297868}] => (Block) C:\users\mushf_000\appdata\local\skypeplugin\7.12.0.55\pluginhost.exe
- FirewallRules: [{F3D48EE6-5FE7-42F9-B59C-F7F2D3F356C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
- FirewallRules: [{6A2B84F3-5E27-410C-9E49-32EC5674AB81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
- FirewallRules: [TCP Query User{A2FC0E31-3CED-4DD4-8787-04EFA6E6DDD9}C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{A480E734-7EC6-47B9-A156-EB6C16F6BEEE}C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [{7F86AE44-4206-45EC-979F-D627A3C79E4E}] => (Block) C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [{0BF5580F-19AD-4D68-B458-0780DB1BB1D5}] => (Block) C:\users\mushf_000\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [TCP Query User{70008D27-14A5-438F-804A-09D23AF61B91}C:\program files (x86)\google\chrome\application\47.0.2526.106\delegate_execute.exe] => (Block) C:\program files (x86)\google\chrome\application\47.0.2526.106\delegate_execute.exe
- FirewallRules: [UDP Query User{40D4A491-58AD-4E4A-8DFD-10805A86BC46}C:\program files (x86)\google\chrome\application\47.0.2526.106\delegate_execute.exe] => (Block) C:\program files (x86)\google\chrome\application\47.0.2526.106\delegate_execute.exe
- FirewallRules: [{B8A864DD-5059-405C-A012-10950B063052}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{D6739CDB-FA89-4F5B-9E48-C2E14243A7DB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{AB0C97C2-4AA0-4C23-9B6A-41BCE81F2E72}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{CDCA4EB4-138C-4961-92AA-B3F160C9CC99}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{44485412-9C32-4D2E-BA2A-66A5F41046AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{9B755E57-7CCD-40C2-8E02-A0EFF811D5B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{E6DD9E89-8932-4FC5-BDC3-099067E5C9E7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- ==================== Restore Points =========================
- 10-01-2016 16:17:21 Restore Point Created by FRST
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (01/10/2016 05:49:47 PM) (Source: Perflib) (EventID: 1008) (User: )
- Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8
- Error: (01/10/2016 05:49:46 PM) (Source: PerfNet) (EventID: 2004) (User: )
- Description:
- Error: (01/10/2016 05:49:46 PM) (Source: Perflib) (EventID: 1008) (User: )
- Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8
- Error: (01/10/2016 05:49:46 PM) (Source: Perflib) (EventID: 1008) (User: )
- Description: LsaC:\Windows\System32\Secur32.dll8
- Error: (01/10/2016 05:49:46 PM) (Source: Perflib) (EventID: 1008) (User: )
- Description: ESENTC:\WINDOWS\system32\esentprf.dll8
- Error: (01/10/2016 05:49:46 PM) (Source: Perflib) (EventID: 1008) (User: )
- Description: BITSC:\Windows\System32\bitsperf.dll8
- Error: (01/10/2016 04:52:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program LiveComm.exe version 17.5.9600.20911 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: b88
- Start Time: 01d14bc69e4c2d0f
- Termination Time: 4294967295
- Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
- Report Id: 915759c1-b7ba-11e5-827e-3464a9731b16
- Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
- Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
- Error: (01/10/2016 04:48:57 PM) (Source: Perflib) (EventID: 1008) (User: )
- Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4
- Error: (01/10/2016 04:48:57 PM) (Source: Perflib) (EventID: 1023) (User: )
- Description: rdyboost4
- Error: (01/10/2016 04:48:56 PM) (Source: PerfNet) (EventID: 2004) (User: )
- Description:
- System errors:
- =============
- Error: (01/10/2016 05:08:42 PM) (Source: Application Popup) (EventID: 1060) (User: )
- Description: \??\C:\Windows\System32\drivers\TrueSight.sys
- Error: (01/10/2016 04:53:39 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: {DC7EF8E1-824F-4110-AB43-1604DA9B4F40}
- Error: (01/10/2016 04:53:23 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
- Description: The McAfee VirusScan Announcer service did not respond on starting.
- Error: (01/10/2016 04:51:39 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: {DC7EF8E1-824F-4110-AB43-1604DA9B4F40}
- Error: (01/10/2016 04:51:07 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: {209500FC-6B45-4693-8871-6296C4843751}
- Error: (01/10/2016 04:50:42 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
- Description: The McAfee Home Network service did not respond on starting.
- Error: (01/10/2016 04:46:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The WebcamMax, WDM Video Capture service failed to start due to the following error:
- %%1058
- Error: (01/10/2016 04:44:59 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
- Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the mfemms service.
- Error: (01/10/2016 03:42:06 PM) (Source: Application Popup) (EventID: 1060) (User: )
- Description: \??\C:\Windows\System32\drivers\TrueSight.sys
- Error: (01/10/2016 03:38:03 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
- Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.
- CodeIntegrity:
- ===================================
- Date: 2016-01-10 16:36:57.537
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-01-10 16:36:57.092
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-01-10 16:03:02.250
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-01-10 16:02:55.387
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-01-10 16:02:38.172
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-01-10 16:02:37.146
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-01-09 14:38:12.216
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-01-09 14:38:11.512
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
- Percentage of memory in use: 60%
- Total physical RAM: 8123.84 MB
- Available physical RAM: 3210.27 MB
- Total Virtual: 9403.84 MB
- Available Virtual: 4945.16 MB
- ==================== Drives ================================
- Drive c: (Windows) (Fixed) (Total:911.24 GB) (Free:7.78 GB) NTFS
- Drive d: (RECOVERY) (Fixed) (Total:19.26 GB) (Free:1.89 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (Size: 931.5 GB) (Disk ID: DA47CBF4)
- Partition: GPT.
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement