Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-10-2015 Ran by rigoj_000 (2015-10-29 14:07:28) Running from C:\Users\rigoj_000\Downloads\Downloads Windows 10 Home (X64) (2015-10-27 23:49:54) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-4151019796-3771742870-4154944045-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-4151019796-3771742870-4154944045-503 - Limited - Disabled) fbwuser0C88 (S-1-5-21-4151019796-3771742870-4154944045-1004 - Limited - Disabled) => C:\Users\fbwuser0C88 fbwuserD5E5 (S-1-5-21-4151019796-3771742870-4154944045-1006 - Limited - Disabled) => C:\Users\fbwuserD5E5 fbwuserE4A0 (S-1-5-21-4151019796-3771742870-4154944045-1005 - Limited - Disabled) => C:\Users\fbwuserE4A0 Guest (S-1-5-21-4151019796-3771742870-4154944045-501 - Limited - Disabled) rigoj_000 (S-1-5-21-4151019796-3771742870-4154944045-1001 - Administrator - Enabled) => C:\Users\rigoj_000 ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden 7 Sticky Notes (HKLM-x32\...\{2DB7DD8E-F17B-408A-B93B-92867EF7974D}_is1) (Version: - Fabio Martin) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 19.0.0.213 - Adobe Systems Incorporated) Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.0.162 - Adobe Systems, Inc.) AIO_CDB_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden AIO_CDB_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden Ashampoo Burning Studio 2015 (HKLM-x32\...\{91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1) (Version: 1.15.3 - Ashampoo GmbH & Co. KG) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden ChrisPC Free Anonymous Proxy 5.80 (HKLM-x32\...\{6006089C-84B5-4F18-8113-D96792AED0DE}_is1) (Version: - Chris P.C. srl) Citrix Online Launcher (HKLM-x32\...\{6740FE60-43C1-4D15-8C4A-001624134B14}) (Version: 1.0.312 - Citrix) Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Cyberfox Web Browser (HKLM\...\{5EFB52C0-4EC9-46B4-80EB-8432C6599641}_is1) (Version: 41.0.3.0 - 8pecxstudios) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dell App Launcher for Unifying Software (HKLM\...\Unifying Software Launcher) (Version: 1.00.44 - Logitech) Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.8.1.70 - Dell Inc.) Dell Data Vault (Version: 4.2.2.0 - Dell Inc.) Hidden Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP) Dell Product Registration (HKLM-x32\...\{764E68FE-C2F9-410E-90A8-CE7F8B9A36E2}) (Version: 2.03.0204 - Aviata Inc.) Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.10 - Dell) Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.0.2.57295 - Dell) Dell System Detect (HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\73f463568823ebbe) (Version: 6.6.0.2 - Dell) Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.) Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.93 - DivX, LLC) DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden Driver Booster 3.0 (HKLM-x32\...\Driver Booster_is1) (Version: 3.0 - IObit) Easy 7-Zip v0.1.5 (x64) (HKLM\...\{661BB54F-5E4A-45F0-8153-DDF10C2E3FB7}_is1) (Version: 0.1.5 (x64) - James Hoo) Empire of Sports (HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\EoS-{5CCCD423-F673-4CD8-9464-9D950F49BBC3}) (Version: - F4) F300 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden F300_Help (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden F300Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden FastStone Image Viewer 5.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.5 - FastStone Soft) Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG) Fishing Planet (HKLM-x32\...\Steam App 380600) (Version: - Fishing Planet LLC) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.2.2.929 - Foxit Software Inc.) GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden IncrediMail (x32 Version: 6.6.0.5288 - IncrediMail) Hidden Infinit (remove only) (HKLM-x32\...\Infinit) (Version: - ) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.1.0.7 - IObit) Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation) K-Lite Mega Codec Pack 11.1.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.1.0 - ) LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version: - LastPass) Logitech Unifying Software 2.10 (HKLM\...\Logitech Unifying) (Version: 2.10.37 - Logitech) MacX DVD Ripper Pro For Windows 7.6.5 (HKLM-x32\...\MacX DVD Ripper Pro For Windows_is1) (Version: - Digiarty Software, Inc.) MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden Maxx Audio Installer (x64) (Version: 2.6.5320.104 - Waves Audio Ltd.) Hidden Microsoft OneNote 2013 - en-us (HKLM\...\OneNoteFreeRetail - en-us) (Version: 15.0.4745.1002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 41.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 en-US)) (Version: 41.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla) My Dell Client Framework (HKLM-x32\...\InstallShield_{05F1B866-2372-4E82-9AA8-C64FB11CEF8B}) (Version: 1.0.0.3 - Dell) My Dell Client Framework (x32 Version: 1.0.0.3 - Dell) Hidden Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP) Office 15 Click-to-Run Extensibility Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation) OpenOffice 4.1.1 Language Pack (English) (HKLM-x32\...\{53E5F858-54E3-406D-A927-09AC86FCBA1A}) (Version: 4.11.9775 - Apache Software Foundation) Photo Notifier and Animation Creator (HKLM-x32\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) PicPick (HKLM-x32\...\PicPick) (Version: 4.0.7 - NGWIN) Pinball Arcade (HKLM-x32\...\Steam App 238260) (Version: - FarSight Studios) Pinball FX2 (HKLM-x32\...\Steam App 226980) (Version: - Zen Studios) PocketCloud (HKLM-x32\...\{D9752C7D-A595-4687-A0D5-362E9C311C55}) (Version: 2.7.14 - Wyse Technology) Pokki Download Helper (HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\PokkiDownloadHelper) (Version: 1.3.1.282 - Pokki) Potplayer-64 Bits (HKLM\...\PotPlayer64) (Version: - Daum Kakao Corp.) Print Envelope 3.2.2.8 (HKLM-x32\...\Print Envelope_is1) (Version: 3.2.2.8 - Radovan Kraus) PrivaZer (HKLM-x32\...\PrivaZer) (Version: 2.37.0.0 - Goversoft LLC) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.304 - Qualcomm Atheros Communications) Really Slick Screensavers 0.2 (HKLM-x32\...\ReallySlickScreensavers) (Version: - ) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.40.723.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.) Registry Life version 3.20 (HKLM-x32\...\Registry Life_is1) (Version: 3.20 - ChemTable Software) Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden Scanitto Pro (HKLM-x32\...\{FC9FED7B-11C5-4BAA-AAF0-395AD111EE92}_is1) (Version: 3.2 - Masters ITC Software) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation) Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.) Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.3 - IObit) SmartCallMonitor V1.7.2.265 (HKLM-x32\...\SmartCallMonitor_is1) (Version: 1.7.2.265 - JAM Software) SmartSHOW 2.15 (HKLM-x32\...\{400EBE76-B6D2-4977-B4C9-18BB60112654}_is1) (Version: - AMS Software) Soda Manager (x32 Version: 8.0.0.0 - LULU Software Limited) Hidden Soda PDF 8 (HKLM-x32\...\Soda8) (Version: 8.0.39.24931 - LULU Software Limited) Soda PDF 8 Asian Fonts Pack (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 Convert Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 Create Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 Edit Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 Forms Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 Insert Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 OCR Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 Review Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 Secure Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden Soda PDF 8 View Module (Version: 8.0.41.24998 - LULU Software Limited) Hidden SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC) The Four Kings Casino and Slots (HKLM-x32\...\Steam App 260430) (Version: - Digital Leisure Inc.) theHunter (HKLM-x32\...\Steam App 253710) (Version: - Expansive Worlds) theHunter Launcher (HKLM-x32\...\FBDFBE7F-2DB8-47E2-B88E-32F4A2A74AA8_is1) (Version: 736 - Expansive Worlds) Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden Unity Web Player (HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS) Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS) uRex DVD Ripper Platinum (HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\uRexDVDRipperPlatinum) (Version: - uRexsoft, Inc. All Rights Reserved.) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment) WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) WinPDFEditor V2.1 (HKLM-x32\...\WinPDFEditor_is1) (Version: - hxxp://www.WinPDFEditor.com) WinX DVD Ripper Platinum 7.5.11 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.) WonderFox DVD Video Converter 8.6 (HKLM-x32\...\WonderFox DVD Video Converter) (Version: 8.6 - WonderFox Soft, Inc.) WTF (HKLM-x32\...\WTF_is1) (Version: WTF - OnNet) XWidget Ver1.92 (HKLM-x32\...\{A6E16998-A241-438F-A916-5CD59B5506C0}_is1) (Version: - XWidget Software) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-4151019796-3771742870-4154944045-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\rigoj_000\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileCoAuth.exe (Microsoft Corporation) ==================== Restore Points ========================= 27-10-2015 20:38:33 Installed Realtek Ethernet Controller Driver ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 08:25 - 2015-05-07 13:01 - 00001991 ____A C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com 0.0.0.0 cdn.bispd.com 0.0.0.0 cdn.bisrv.com There are 3 more lines. ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0E0CE2FE-9523-4FD3-B152-218E2E8A0530} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-03-04] (Dell Inc.) Task: {0E7F7C59-BED1-4AD7-BF95-BD13261257BB} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-10-16] (IObit) Task: {0FDF5574-BD17-4BFE-90FB-07AB64387C8D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {1433928B-A2DF-46CC-9693-F05D0590C523} - System32\Tasks\{238C682F-38DC-43F5-BC9C-B71B9CC8B891} => Firefox.exe hxxp://ui.skype.com/ui/0/7.7.0.103/en/go/help.faq.installer?LastError=1603 Task: {1826BAC8-641B-4F34-9B62-4EB0B5400F19} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION Task: {1994F23E-384F-4E0A-AC61-67A9975CBE1E} - System32\Tasks\RealDownloader Update Check => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe Task: {206E9E16-BDDF-412E-B047-2445D30B07B7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION Task: {338B7000-3604-45C0-AA9C-35707A9F5F4E} - System32\Tasks\ASC7_SkipUac_rigoj_000 => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe Task: {4E652BBE-6E73-4B7B-B823-2A13F6F36C05} - System32\Tasks\PocketCloudUpdater => C:\Program Task: {5A0E6AD2-46C0-4225-9EEC-2380F93FBD0E} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe Task: {5A6C47AF-C0E6-4F3B-BC6F-4C919C0148C6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION Task: {5C9994C2-5E57-4F98-A354-2F3EADBB18AE} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2015-07-09] (Microsoft Corporation) Task: {5E5A5CA3-30F3-440E-A7D7-57AE20C8584A} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-05-25] (PC-Doctor, Inc.) Task: {6CD1BC71-80D4-4B83-9BDA-6920F78874E1} - System32\Tasks\Uninstaller_SkipUac_rigoj_000 => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-20] (IObit) Task: {74EBCC0F-9727-4552-9585-D89B10BD53E5} - System32\Tasks\0914avtUpdateInfo => C:\ProgramData\Avg_Update_0914avt\0914avt_AVG-Secure-Search-Update.exe [2014-09-14] () Task: {77AD911D-3E64-4586-AD3D-B9B9A0588468} - System32\Tasks\PocketCloud => C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudDesktopApp.exe [2013-08-22] () Task: {7924C702-06AD-4683-918B-A3A406142AB8} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe Task: {79B12A06-2A42-484A-8E02-A78BB3B72B6B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation) Task: {810FECD9-7DB1-4559-BF53-DAC6CDD22235} - System32\Tasks\Driver Booster SkipUAC (rigoj_000) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-10-22] (IObit) Task: {818F7594-4BD0-48C5-B172-5A3DB8F81DA9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION Task: {890473A5-E373-4122-AC95-3AE93F23562F} - System32\Tasks\{E0BB7145-8130-4C69-B21D-76A9F2E3AC14} => Firefox.exe hxxp://ui.skype.com/ui/0/7.7.0.103/en/go/help.faq.installer?LastError=1603 Task: {8D985867-0EDB-4828-A20C-DC4F88B60295} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-07-23] (IObit) Task: {90A8C62D-E168-4CA3-BAF5-55713A9EC684} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe Task: {93A5519E-B819-47C7-9FE5-A869818A659C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {A1FFF312-92EE-4AC0-ABA1-FF701838619B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {A4122729-3A3A-44B6-BF5D-436DE0DF34F4} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-02-19] (Aviata Inc) Task: {A6B84893-9389-4BCC-875D-D324C3DD5885} - System32\Tasks\PocketCloudVirtualChannel => C:\Program Files (x86)\Wyse\PocketCloud\WPCRDPVirtualChannelServer.exe [2013-08-22] () Task: {A7C9EADB-D538-43C7-B71C-EB758ADA431C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {B00BCBC4-1FB3-4730-B4CF-2726AD26863F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION Task: {B01BC6C8-E505-4D68-89F8-DB34B0C08D55} - System32\Tasks\{1A2569CE-B23B-4A60-A149-176FD67BE559} => Firefox.exe hxxp://ui.skype.com/ui/0/7.7.0.103/en/go/help.faq.installer?LastError=1603 Task: {CB29A362-2469-4B51-8FDD-EEC8BE099533} - System32\Tasks\{C60B84E7-8A58-40EB-9BAE-C4D853290115} => Firefox.exe hxxp://ui.skype.com/ui/0/7.7.0.103/en/go/help.faq.installer?LastError=1603 Task: {D141308E-F92D-4046-9A15-0639E80DB868} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION Task: {D503D2FA-BF1F-4FA8-B7CD-0B48929FAC12} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-18] (Adobe Systems Incorporated) Task: {D57B5C01-C4C4-4772-B752-6A0E5A3994F8} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation) Task: {E66416C1-1AB3-427B-915B-8B2C34160861} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-05-25] (PC-Doctor, Inc.) Task: {F36864F5-B51B-4AC1-AF5A-4F19DBC66642} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-10-18] (Realtek Semiconductor) Task: {FA0B4871-F65D-4E49-9F10-B1EC9579EBC2} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\0914avtUpdateInfo.job => C:\ProgramData\Avg_Update_0914avt\0914avt_AVG-Secure-Search-Update.exe Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\ASC7_SkipUac_rigoj_000.job => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_rigoj_000.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe ==================== Loaded Modules (Whitelisted) ============== 2015-09-10 00:08 - 2015-09-10 00:08 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2015-09-10 00:08 - 2015-09-10 00:08 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2014-07-16 13:58 - 2014-05-04 10:02 - 01232880 _____ () C:\Program Files (x86)\Common Files\Appkeys\yytool64.exe 2015-02-26 11:52 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2013-08-22 13:40 - 2013-08-22 13:40 - 00016176 _____ () C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe 2015-10-27 21:04 - 2015-10-27 21:04 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-10-27 21:04 - 2015-10-27 21:04 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-07-18 00:35 - 2015-07-18 00:35 - 00396688 _____ () C:\WINDOWS\system32\igfxTray.exe 2015-10-27 21:04 - 2015-10-27 21:04 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-10-27 21:04 - 2015-10-27 21:04 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-10-27 21:04 - 2015-10-27 21:04 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-10-27 21:04 - 2015-10-27 21:04 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-10-27 21:04 - 2015-10-27 21:04 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-08-25 09:31 - 2015-08-25 09:31 - 21398296 _____ () C:\Program Files (x86)\Infinit.io\Infinit\Infinit.exe 2015-09-10 00:26 - 2015-09-10 00:26 - 00007168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.820.12440.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2015-09-10 00:26 - 2015-09-10 00:26 - 11603456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.820.12440.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2015-09-10 00:24 - 2015-09-10 00:24 - 07897088 _____ () C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.0_1.0.22929.0_x64__8wekyb3d8bbwe\SharedLibrary.dll 2014-11-18 02:15 - 2014-11-18 02:15 - 00493568 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\http_hook.dll 2014-04-29 21:04 - 2014-04-29 21:04 - 00088080 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\libglog.dll 2014-11-20 03:17 - 2014-11-20 03:17 - 01026560 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASD2Engine.dll 2014-11-18 02:14 - 2014-11-18 02:14 - 00032768 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\fsmlib.dll 2014-04-29 20:27 - 2014-04-29 20:27 - 00649744 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\sqlite3.dll 2014-04-29 21:04 - 2014-04-29 21:04 - 00038928 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\fuzzy.dll 2014-04-29 21:04 - 2014-04-29 21:04 - 00093712 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\zlibwapi.dll 2014-11-18 02:15 - 2014-11-18 02:15 - 00125952 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ExtractImpl.dll 2014-11-18 02:15 - 2014-11-18 02:15 - 00021504 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\UnpackImpl.dll 2014-11-18 02:14 - 2014-11-18 02:14 - 00252928 _____ () C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\pyunpacker.dll 2014-07-18 14:46 - 2014-10-16 10:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2014-07-03 21:09 - 2009-08-12 12:09 - 00077824 _____ () C:\Program Files (x86)\XWidget\Res\Lib\lib.dll 2015-06-30 07:29 - 2015-06-30 07:29 - 00654848 _____ () C:\Program Files (x86)\Infinit.io\Infinit\QxtGui.dll 2015-06-30 07:29 - 2015-06-30 07:29 - 00501248 _____ () C:\Program Files (x86)\Infinit.io\Infinit\QxtCore.dll 2015-06-29 09:03 - 2015-06-29 09:03 - 00489773 _____ () C:\Program Files (x86)\Infinit.io\Infinit\libgcc_s_sjlj-1.dll 2015-06-29 09:03 - 2015-06-29 09:03 - 06762827 _____ () C:\Program Files (x86)\Infinit.io\Infinit\libstdc++-6.dll 2015-04-16 13:19 - 2015-09-21 10:49 - 00348960 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl 2015-04-16 13:19 - 2015-09-21 10:49 - 00183584 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 2015-04-16 13:19 - 2015-09-21 10:49 - 00050976 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 2014-05-15 16:35 - 2013-12-09 17:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-02-26 11:07 - 2015-02-09 10:14 - 01905904 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\STRestoreAPI.dll 2014-05-15 16:45 - 2012-11-26 00:19 - 01153384 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\libxml2.dll 2015-02-26 11:07 - 2014-02-18 13:12 - 00117568 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\zlib1.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\Temp:56E2E879 AlternateDataStreams: C:\ProgramData\Temp:5C321E34 ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\dell.com -> dell.com IE trusted site: HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\hola.org -> hxxp://hola.org ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rigoj_000\Downloads\my_daily_wallpaper (2)\MDWallpaper_7269676F6A5F303030.bmp DNS Servers: Media is not connected to internet. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Dell Unifying Software Launcher => C:\Program Files\Dell\UnifyingSoftwareLauncher\DellLaunchUnifyingApp.exe /s MSCONFIG\startupreg: GlobusVpnAgent => HKLM\...\StartupApproved\Run: => "hola" HKLM\...\StartupApproved\Run32: => "AVG_UI" HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\StartupApproved\StartupFolder: => "Howard.lnk" HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk" HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\StartupApproved\Run: => "GUDelayStartup" HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\StartupApproved\Run: => "StartMenuX39" HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\StartupApproved\Run: => "StartMenuX" HKU\S-1-5-21-4151019796-3771742870-4154944045-1001\...\StartupApproved\Run: => "Power2GoExpress8" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [UDP Query User{3F10D89D-B431-4329-9466-DDB13DAB26CD}C:\program files\cyberfox\plugin-container.exe] => (Allow) C:\program files\cyberfox\plugin-container.exe FirewallRules: [TCP Query User{6D8A7662-65E4-4C34-9EEB-64E789F1A266}C:\program files\cyberfox\plugin-container.exe] => (Allow) C:\program files\cyberfox\plugin-container.exe FirewallRules: [{F706DEA8-2059-471F-9228-592888F96E90}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\theHunter\launcher\launcher.exe FirewallRules: [{44AC8F6E-8995-4CC7-BF45-35C954FD653E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\theHunter\launcher\launcher.exe StandardProfile\AuthorizedApplications: [C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe] => Enabled:Daum PotPlayer ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (10/29/2015 01:35:09 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (3964) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032. Error: (10/29/2015 01:35:09 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (3964) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8). Error: (10/29/2015 01:34:58 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (3964) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032. Error: (10/29/2015 01:34:58 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (3964) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8). Error: (10/29/2015 01:34:48 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (3964) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032. Error: (10/29/2015 01:34:48 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (3964) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8). Error: (10/29/2015 01:34:38 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (3964) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032. Error: (10/29/2015 01:34:38 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (3964) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8). Error: (10/29/2015 01:34:27 PM) (Source: ESENT) (EventID: 413) (User: ) Description: SettingSyncHost (3964) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032. Error: (10/29/2015 01:34:27 PM) (Source: ESENT) (EventID: 488) (User: ) Description: SettingSyncHost (3964) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8). System errors: ============= Error: (10/29/2015 01:31:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The 驱动检测 service failed to start due to the following error: %%3 Error: (10/29/2015 01:21:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Dell SupportAssist Agent service failed to start due to the following error: %%1053 Error: (10/29/2015 01:21:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Dell SupportAssist Agent service to connect. Error: (10/29/2015 01:21:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The My Dell Client Framework service failed to start due to the following error: %%1053 Error: (10/29/2015 01:21:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the My Dell Client Framework service to connect. Error: (10/29/2015 01:21:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The 驱动检测 service failed to start due to the following error: %%3 Error: (10/28/2015 09:48:21 PM) (Source: DCOM) (EventID: 10010) (User: MYPC) Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca Error: (10/28/2015 09:48:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The User Data Access_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (10/28/2015 09:48:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The User Data Storage_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (10/28/2015 09:48:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Contact Data_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. CodeIntegrity: =================================== Date: 2015-10-28 21:21:05.028 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:04.930 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:04.864 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:04.793 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:04.726 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:04.661 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:04.589 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:04.517 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:03.278 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-28 21:21:02.129 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3-4150 CPU @ 3.50GHz Percentage of memory in use: 26% Total physical RAM: 8108.93 MB Available physical RAM: 5977.7 MB Total Virtual: 10028.93 MB Available Virtual: 7811.82 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:919.32 GB) (Free:705.06 GB) NTFS Drive f: () (Removable) (Total:7.4 GB) (Free:5.08 GB) FAT32 Drive w: (WINRETOOLS) (Fixed) (Total:0.73 GB) (Free:0.27 GB) NTFS Drive x: (PBR Image) (Fixed) (Total:10.81 GB) (Free:0.71 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: B263B0DF) Partition: GPT. ======================================================== Disk: 1 (Size: 7.4 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt ============================