Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-02-2015 01 Ran by Jana at 2015-02-25 14:08:20 Running from C:\Users\Jana\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.05.2005 - Acer Incorporated) abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.01.2006 - Acer Incorporated) abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.06.2003.0 - Acer Incorporated) abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.01.2005.1 - Acer Incorporated) Acer Games (HKU\S-1-5-21-749935011-514595495-3718541168-1001\...\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf) (Version: 1.1.9.43466 - Pokki) Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8101 - Acer Incorporated) Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.04.2002 - Acer Incorporated) Acer Power Management (HKLM\...\{E438A632-CADC-49E4-9492-C9F50F9AE37F}) (Version: 7.01.8100 - Acer Incorporated) Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.00.3000 - Acer Incorporated) Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8101 - Acer Incorporated) Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.02.3001 - Acer Incorporated) Acer Screen Grasp (HKLM-x32\...\{84443E5D-0767-438B-B1C8-6A52FAB2101B}) (Version: 1.01.3006 - Acer Incorporated) Acer Touch Tools (HKLM\...\{BB1F8130-3CB3-4896-9D28-770DFFFDE59C}) (Version: 1.00.3017 - Acer Incorporated) Airlink101 ConnectSky Viewer (HKLM-x32\...\ConnectSky Viewer_is1) (Version: - Airlink101) Airlink101 SkyIPCam Utility (HKLM-x32\...\{C46E44D8-208A-41CD-9D8B-5226B634A5E0}) (Version: 1.0.4 - Airlink101 SkyIPCam Utility) Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.04.2001.2 - Acer Incorporated) CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform) ConnectSky Setup Wizard (HKLM-x32\...\ConnectSky_is1) (Version: - Airlink101) Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3323.57 - CyberLink Corp.) eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM) Game Channels (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 9.2.0.11 - WildTangent, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.238 - SurfRight B.V.) Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3349 - Intel Corporation) Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1050 - Intel Corporation) Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mozilla Firefox 35.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla) Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG) Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer) Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications) Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.27041 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Solid YouTube Downloader and Converter 6.2.0.1 (HKLM-x32\...\{66732EEE-ECBC-4CA6-A474-ytd}_is1) (Version: - DreamVideoSoft,Inc.) Soluto (HKLM\...\{A40888FC-B545-46F3-8628-6AE98C1C75C6}) (Version: 1.3.1193.1 - Soluto) Spotify (HKLM-x32\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.6.13 - Synaptics Incorporated) The Chronicles of Emerland Solitaire (x32 Version: 3.0.2.32 - WildTangent) Hidden Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.11.1 - Tweaking.com) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (x32 Version: 4.0.10.20 - WildTangent) Hidden ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 20-02-2015 14:50:28 Checkpoint by HitmanPro 23-02-2015 12:44:41 Checkpoint by HitmanPro ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 07:25 - 2015-02-23 16:47 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {143D30E6-5D9F-4DE1-865A-40B2CEBABD0A} - System32\Tasks\GeniusBox => cmd.exe /C start "" "C:\Users\Jana\AppData\Local\browser extensions\client.exe" Task: {1697B1D7-A5B4-4045-A188-15B2310950AC} - \Runner IC No Task File <==== ATTENTION Task: {47EACB6B-44FB-49F7-BC91-4F557AFD28A1} - System32\Tasks\BBQLeads => C:\Program Files (x86)\bbqleads\ScheduledTask.exe Task: {4CF8320A-DB49-4303-BC00-E6A4B05554AD} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-08-02] (Acer Incorporate) Task: {4EC6DD3B-331A-4068-9AC5-3E17E952FB52} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-12-04] (Acer Incorporated) Task: {64BD9BD7-01AF-4939-B1C9-1944D61F5370} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd) Task: {66BFC9F0-C82B-4D9E-81D2-380312769B8D} - System32\Tasks\prelauncher_First => C:\Program Files (x86)\Acer\Screen Grasp\InputTask.exe [2013-09-27] (Acer Incorporated) Task: {66C7A3BD-0405-4083-AA78-DB748A4C473D} - \avayvxvaxc No Task File <==== ATTENTION Task: {68F7F184-EECD-44C8-8FB8-146FCEC567B7} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-09-12] (Acer Incorporated) Task: {85FD9C72-865D-44BC-A7CD-E23A9C961C5E} - System32\Tasks\UpdateAdmin => C:\Users\Jana\AppData\Local\UpdateAdmin\UpdateAdmin.exe <==== ATTENTION Task: {8850A404-6D5F-4AB5-800B-31A8BAF7701C} - \avaxvyyvyf No Task File <==== ATTENTION Task: {8D697752-5CAE-4A5B-B2BC-E2B2781B971D} - \SMW_UpdateTask_Time_323435353633363231382d7823232a57454a4141575032 No Task File <==== ATTENTION Task: {9EEB47A2-3305-4798-91CD-719BC08F33EA} - System32\Tasks\SMWUpd => C:\Program Files\Common Files\Goobzo\GBUpdate\updater.exe <==== ATTENTION Task: {9F9FCEE6-BA02-4A19-B37B-FE1D861BFAD1} - System32\Tasks\Screen Grasp GestureDetection => C:\Program Files (x86)\Acer\Screen Grasp\GestureDetection.exe [2013-09-13] (Acer Incorporated) Task: {A0D31216-B281-48FA-8D26-88044B6F90F9} - System32\Tasks\Check Updates => C:\Users\Jana\AppData\Local\browser extensions\updater.exe Task: {AE3BA637-F442-43EB-99AA-A77A8BB97ADC} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-28] (Synaptics Incorporated) Task: {B3AF49D2-9C0B-462B-90CA-26DC77412110} - System32\Tasks\Software POP sticker Task => C:\ProgramData\oem\Software POP Sticker\Software POP sticker Launcher.exe [2013-08-12] () Task: {B444F327-E938-49BD-858E-872A4442D726} - System32\Tasks\Validate Installation => C:\Users\Jana\AppData\Local\browser extensions\updater.exe Task: {C17866E3-420D-43F7-9EE1-D01DD8229C41} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-749935011-514595495-3718541168-1001 Task: {CA0111DB-2FBE-44A2-AA52-6287F70FC142} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Task: {CCBE8EF8-1C34-4030-86CD-FCB370EB52E4} - System32\Tasks\GODMBAU => C:\Users\Jana\AppData\Roaming\GODMBAU.exe <==== ATTENTION Task: {D3D88FC4-3B94-4FD5-A82E-414333161DA7} - System32\Tasks\Launch Screen Grasp_First => C:\Program Files (x86)\Acer\Screen Grasp\Launch Screen Grasp.exe [2013-09-13] (Acer Incorporated) Task: {D7402F35-622B-47D3-AC1A-489325E4D185} - \Microsoft\Windows\Maintenance\Update IC No Task File <==== ATTENTION Task: {E0C05D89-702A-4DD6-9783-ACD90B699653} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2014-12-19] (Acer) Task: {E154FD6B-709B-42FD-A769-2AA7CA41422E} - System32\Tasks\Prelauncher => C:\Program Files (x86)\Acer\Screen Grasp\InputTask.exe [2013-09-27] (Acer Incorporated) Task: {F14E198E-F829-47F1-B3D4-2395CE29119C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2013-08-02] (Acer Incorporate) Task: C:\Windows\Tasks\GODMBAU.job => C:\Users\Jana\AppData\Roaming\GODMBAU.exe <==== ATTENTION ==================== Loaded Modules (whitelisted) ============== 2013-01-29 14:28 - 2013-01-29 14:28 - 00109024 _____ () C:\Program Files\Soluto\PCGDllExportInspector.dll 2013-01-29 14:28 - 2013-01-29 14:28 - 00055352 ____R () C:\Program Files\Soluto\PCGDeviceScanLib.dll 2015-02-20 15:09 - 2015-02-20 15:09 - 00101376 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Management\5638c05aebdbb990686165fb14eb3c88\Windows.Management.ni.dll 2015-02-20 15:09 - 2015-02-20 15:09 - 01782784 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.App640a3541#\3f4dc590466037f015f65bc07d1ea923\Windows.ApplicationModel.ni.dll 2015-02-20 15:09 - 2015-02-20 15:09 - 00207872 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.System\a4efa88b742703220e527956d8ab4e84\Windows.System.ni.dll 2015-02-20 15:09 - 2015-02-20 15:09 - 00363520 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\6382e6f5ad8b7a9db4f5cd4817e70319\Windows.Foundation.ni.dll 2013-09-07 03:48 - 2013-09-07 03:48 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2013-09-07 03:45 - 2013-09-07 03:45 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll 2013-09-07 03:52 - 2013-09-07 03:52 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe 2014-12-19 21:59 - 2014-12-19 21:59 - 00090880 _____ () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe 2014-12-19 21:59 - 2014-12-19 21:59 - 00089344 _____ () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe 2015-01-30 22:37 - 2015-01-30 22:37 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\ErrorReporting.dll 2015-02-18 22:23 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2015-02-18 22:23 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2015-02-18 22:23 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2015-02-18 22:23 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2015-02-18 22:23 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2014-12-19 21:48 - 2014-12-19 21:48 - 00203008 _____ () C:\Program Files (x86)\Acer\Acer Portal\curllib.dll 2014-12-19 21:48 - 2014-12-19 21:48 - 00119552 _____ () C:\Program Files (x86)\Acer\Acer Portal\OpenLDAP.dll 2015-01-22 20:28 - 2015-01-22 20:28 - 00015616 _____ () C:\Windows\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll 2014-12-19 21:16 - 2014-12-19 21:16 - 00013568 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll 2014-12-29 13:25 - 2014-12-29 13:25 - 00203008 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll 2014-12-29 13:26 - 2014-12-29 13:26 - 00654552 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll 2014-12-29 13:26 - 2014-12-29 13:26 - 00630528 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll 2014-12-29 13:26 - 2014-12-29 13:26 - 00119552 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll 2014-12-19 21:10 - 2014-12-19 21:10 - 00277096 _____ () C:\Program Files (x86)\Acer\AOP Framework\libcurl.dll 2014-12-19 22:00 - 2014-12-19 22:00 - 00279296 _____ () C:\Program Files (x86)\Acer\abDocs\libcurl.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Temp:2CB9631F AlternateDataStreams: C:\ProgramData\Temp:5539129F AlternateDataStreams: C:\Users\Jana\SkyDrive:ms-properties ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CatWSPrx => ""="service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CatWSw8 => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-749935011-514595495-3718541168-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\acer01.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKU\S-1-5-21-749935011-514595495-3718541168-1001\...\StartupApproved\StartupFolder: => "optimizerpro.lnk" HKU\S-1-5-21-749935011-514595495-3718541168-1001\...\StartupApproved\Run: => "Itibiti.exe" HKU\S-1-5-21-749935011-514595495-3718541168-1001\...\StartupApproved\Run: => "SE" ==================== Accounts: ============================= Administrator (S-1-5-21-749935011-514595495-3718541168-500 - Administrator - Disabled) Guest (S-1-5-21-749935011-514595495-3718541168-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-749935011-514595495-3718541168-1003 - Limited - Enabled) Jana (S-1-5-21-749935011-514595495-3718541168-1001 - Administrator - Enabled) => C:\Users\Jana ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (02/25/2015 01:59:19 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: BackgroundAgent.exe, version: 1.0.1.6, time stamp: 0x5494253a Faulting module name: MSVCR90.dll, version: 9.0.30729.8387, time stamp: 0x51ea24a5 Exception code: 0xc0000005 Fault offset: 0x00056b1d Faulting process id: 0x10c0 Faulting application start time: 0xBackgroundAgent.exe0 Faulting application path: BackgroundAgent.exe1 Faulting module path: BackgroundAgent.exe2 Report Id: BackgroundAgent.exe3 Faulting package full name: BackgroundAgent.exe4 Faulting package-relative application ID: BackgroundAgent.exe5 Error: (02/25/2015 01:55:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AcerPortal.exe, version: 3.0.4.2002, time stamp: 0x54942c87 Faulting module name: SHELL32.dll, version: 6.3.9600.17415, time stamp: 0x54503a17 Exception code: 0xc0000005 Fault offset: 0x0017025b Faulting process id: 0x156c Faulting application start time: 0xAcerPortal.exe0 Faulting application path: AcerPortal.exe1 Faulting module path: AcerPortal.exe2 Report Id: AcerPortal.exe3 Faulting package full name: AcerPortal.exe4 Faulting package-relative application ID: AcerPortal.exe5 Error: (02/24/2015 02:26:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: BackgroundAgent.exe, version: 1.0.1.6, time stamp: 0x5494253a Faulting module name: MSVCR90.dll, version: 9.0.30729.8387, time stamp: 0x51ea24a5 Exception code: 0xc0000005 Fault offset: 0x00056b1d Faulting process id: 0x130c Faulting application start time: 0xBackgroundAgent.exe0 Faulting application path: BackgroundAgent.exe1 Faulting module path: BackgroundAgent.exe2 Report Id: BackgroundAgent.exe3 Faulting package full name: BackgroundAgent.exe4 Faulting package-relative application ID: BackgroundAgent.exe5 Error: (02/24/2015 02:23:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AcerPortal.exe, version: 3.0.4.2002, time stamp: 0x54942c87 Faulting module name: SHELL32.dll, version: 6.3.9600.17415, time stamp: 0x54503a17 Exception code: 0xc0000005 Fault offset: 0x0017025b Faulting process id: 0x998 Faulting application start time: 0xAcerPortal.exe0 Faulting application path: AcerPortal.exe1 Faulting module path: AcerPortal.exe2 Report Id: AcerPortal.exe3 Faulting package full name: AcerPortal.exe4 Faulting package-relative application ID: AcerPortal.exe5 Error: (02/23/2015 10:01:11 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AcerPortal.exe, version: 3.0.4.2002, time stamp: 0x54942c87 Faulting module name: SHELL32.dll, version: 6.3.9600.17415, time stamp: 0x54503a17 Exception code: 0xc0000005 Fault offset: 0x0017025b Faulting process id: 0x102c Faulting application start time: 0xAcerPortal.exe0 Faulting application path: AcerPortal.exe1 Faulting module path: AcerPortal.exe2 Report Id: AcerPortal.exe3 Faulting package full name: AcerPortal.exe4 Faulting package-relative application ID: AcerPortal.exe5 Error: (02/23/2015 09:20:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: Activation of app WinStore_cw5n1h2txyewy!Windows.Store failed with error: -2144927151 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (02/23/2015 09:17:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: Activation of app WinStore_cw5n1h2txyewy!Windows.Store failed with error: -2144927151 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (02/23/2015 08:40:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: Activation of app WinStore_cw5n1h2txyewy!Windows.Store failed with error: -2144927151 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (02/23/2015 08:13:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: Activation of app WinStore_cw5n1h2txyewy!Windows.Store failed with error: -2144927151 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (02/23/2015 07:58:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: Activation of app WinStore_cw5n1h2txyewy!Windows.Store failed with error: -2144927151 See the Microsoft-Windows-TWinUI/Operational log for additional information. System errors: ============= Error: (02/25/2015 01:50:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Windows Defender Service service failed to start due to the following error: %%577 Error: (02/24/2015 10:29:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Superfetch service terminated with the following error: %%1062 Error: (02/24/2015 07:38:22 PM) (Source: disk) (EventID: 11) (User: ) Description: The driver detected a controller error on \Device\Harddisk1\DR1. Error: (02/24/2015 02:21:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Windows Defender Service service failed to start due to the following error: %%577 Error: (02/23/2015 11:08:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Superfetch service terminated with the following error: %%1062 Error: (02/23/2015 09:27:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Windows Defender Service service failed to start due to the following error: %%577 Error: (02/23/2015 02:49:24 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Superfetch service terminated with the following error: %%1062 Error: (02/23/2015 02:49:19 PM) (Source: DCOM) (EventID: 10010) (User: TURTLE0734) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (02/23/2015 02:49:19 PM) (Source: DCOM) (EventID: 10010) (User: TURTLE0734) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Error: (02/23/2015 02:49:19 PM) (Source: DCOM) (EventID: 10010) (User: TURTLE0734) Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9} Microsoft Office Sessions: ========================= Error: (02/25/2015 01:59:19 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: BackgroundAgent.exe1.0.1.65494253aMSVCR90.dll9.0.30729.838751ea24a5c000000500056b1d10c001d05134c772f64dC:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exeC:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\MSVCR90.dllc829427d-bd28-11e4-828e-201a06d6d51a Error: (02/25/2015 01:55:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: AcerPortal.exe3.0.4.200254942c87SHELL32.dll6.3.9600.1741554503a17c00000050017025b156c01d05134fb2e0d4fC:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exeC:\Windows\SYSTEM32\SHELL32.dll39e1cde1-bd28-11e4-828e-201a06d6d51a Error: (02/24/2015 02:26:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: BackgroundAgent.exe1.0.1.65494253aMSVCR90.dll9.0.30729.838751ea24a5c000000500056b1d130c01d0506f939a31a8C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exeC:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\MSVCR90.dll62a37658-bc63-11e4-828d-201a06d6d51a Error: (02/24/2015 02:23:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: AcerPortal.exe3.0.4.200254942c87SHELL32.dll6.3.9600.1741554503a17c00000050017025b99801d0506fc354c2dcC:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exeC:\Windows\SYSTEM32\SHELL32.dll022c724d-bc63-11e4-828d-201a06d6d51a Error: (02/23/2015 10:01:11 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: AcerPortal.exe3.0.4.200254942c87SHELL32.dll6.3.9600.1741554503a17c00000050017025b102c01d04fe686357b6bC:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exeC:\Windows\SYSTEM32\SHELL32.dllc43c9ae0-bbd9-11e4-828c-201a06d6d51a Error: (02/23/2015 09:20:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: WinStore_cw5n1h2txyewy!Windows.Store-2144927151 Error: (02/23/2015 09:17:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: WinStore_cw5n1h2txyewy!Windows.Store-2144927151 Error: (02/23/2015 08:40:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: WinStore_cw5n1h2txyewy!Windows.Store-2144927151 Error: (02/23/2015 08:13:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: WinStore_cw5n1h2txyewy!Windows.Store-2144927151 Error: (02/23/2015 07:58:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURTLE0734) Description: WinStore_cw5n1h2txyewy!Windows.Store-2144927151 CodeIntegrity Errors: =================================== Date: 2015-02-25 13:50:25.687 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-24 14:21:24.471 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-02-23 21:27:11.734 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: Intel(R) Celeron(R) CPU N2920 @ 1.86GHz Percentage of memory in use: 18% Total physical RAM: 8075.34 MB Available physical RAM: 6547.68 MB Total Pagefile: 9355.34 MB Available Pagefile: 7702.16 MB Total Virtual: 131072 MB Available Virtual: 131071.78 MB ==================== Drives ================================ Drive c: (Acer) (Fixed) (Total:448.69 GB) (Free:399.88 GB) NTFS Drive e: () (Removable) (Total:3.72 GB) (Free:2.96 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: B5E450AF) Partition: GPT Partition Type. ======================================================== Disk: 1 (Size: 3.7 GB) (Disk ID: 7558D4F7) Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C) ==================== End Of Log ============================