Thanks! Let me know if you have any other recommended steps.
Contents of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Windows 7 Home Premium x64
Ran by chrissy on Mon 01/05/2015 at 23:00:34.93
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\chrissy\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{01F4FEE3-6919-4502-8312-ADB2D47CB478}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{04E9AD4F-1E67-48AC-A0EB-896B9A656FAF}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{067F5188-9E60-4952-B711-5A8A607731FC}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{074095DD-F4E8-44A0-9E8E-E68648C8A1E0}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{07D107FE-7762-4ADC-A876-B021EF664536}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{0874B1C8-ED42-4B69-A126-9DAAE1CD6AAE}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{08C14852-B933-4D09-BA40-4B272FAB141B}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{0D5FF501-39A6-4CF5-94AB-89F431CF0CFA}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{0DC2C2B4-1D0D-44B5-86F8-09E99A220B25}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{107EEF76-A900-41BA-BE2F-776C83030159}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{14E2B145-1EEA-4DA4-B424-2F1972A3142C}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{1837ECED-9515-4CAD-AE88-95FEBA560F0F}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{1914989E-48C6-4FB0-AB3A-40236C67E988}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{1A556A12-795A-4770-84D5-149B7F2E7D47}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{1AEAB636-CDC3-4ED0-96A6-4E5B9F38ACF7}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{1D162F58-72B4-4BDF-B1E0-1F594520F1DD}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{1F2F7B76-BD6F-4FB3-B95E-87E0F7A5D2E2}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{217986D4-6568-4054-967F-D599E4C7C834}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{22F0F5C4-0F88-48E9-9430-95BF5762E936}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{24C3A161-C111-4FAC-B365-9082FCCA5574}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{2A383A8F-92F7-4F0E-A6DE-036C8262E197}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{2BFED33C-356F-46F3-82E4-C4C40955A8E4}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{300AF66A-E9AA-40A6-89E3-5AEE0F1B754C}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{30650A7F-940E-4F40-BE3E-A9E51E917FBB}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{310B9045-6B0E-421D-84CE-18C2949E3AAD}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{3424153C-A0AD-4DB9-86D0-2283EB746389}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{34B75BAC-88D1-4295-A691-E3A48E0E541B}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{3537DE25-AEBE-4E17-BDC2-BBCBF9D93A79}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{35ED4907-2B7E-412D-A85A-BFB64084A84B}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{3609D000-57E0-408A-BB79-D2C68DA6519F}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{372BFF15-ED8C-41FE-96EA-3D09459E5815}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{375AF241-2E80-416C-9A4D-D2BEC8DE86F6}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{39FC1752-32F6-44E8-BAF7-1D7D7637BF55}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{3B2F2381-E1D4-4D42-9DE4-164983984798}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{3B914261-93D0-4B19-A76C-AE2FC2B070A0}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{3D480859-8478-4E44-8EC4-0C76E1C4304B}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{3E0DF59F-847D-474D-A69D-6AA70DBDA682}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{416DAB83-25C8-46C6-AD04-87F9FFB775DD}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{4809F075-477A-4252-AD2F-1C9085EB9ACB}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{495AE8EE-ED64-46BF-969E-6CC5CA771191}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{4A848CFA-6E37-495C-895A-B687C4E52C24}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{4A92B2A8-B9EB-477C-9899-F0B612676B1D}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{4B7CE9C3-A61D-4475-A6B2-E0F426A5721F}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{4C50A33F-524B-4129-8ED1-DC1162558F1F}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{52FAE0BF-DA76-4677-9A7A-9F7159E8DD72}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{5465BC55-857A-4DE9-ACF0-4AE8D461982D}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{54E0FFEA-0092-4CD1-8B20-6742B7F48877}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{55E9C427-E80A-4754-AE7F-89B6D4E46E50}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{56D1F8DA-C713-4E59-9149-F4D8873978D6}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{57089599-6F1B-4E0A-A8B4-A22B83AE8BEF}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{5CCFF429-8E7D-42B9-9F47-162C48673D54}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{5F14B25F-4A8A-47DB-8CA2-2206482C9695}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{643A71B2-5580-48F9-9CD4-0658B91CCCC2}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{66F43116-CE6D-46FC-BC4C-C1ADAC0800AD}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{6B38EE4C-FD1C-4847-A98F-8449F3F36F13}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{6D847045-2371-46EE-9877-C4044D8E57C2}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{70B65D25-B4AC-4C09-B903-88FD5BC4905D}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{73C78FE7-E6CD-42FD-BC72-90E13BF90274}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{77CD76F6-E413-4453-99D8-DF8E0C379A61}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{791A3B68-0F61-4BB0-A9F0-6708E86040C9}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{7950628D-EB02-46EE-B1AA-EEFDDCF2F5DA}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{81C3C106-05C9-4E5B-91FD-561D0DCC6A23}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{84946CFD-F074-45C5-9C82-DBD94F325A42}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{8620183C-28C4-442A-9116-63BA58D1DAFC}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{87F118B7-AD62-4497-829B-2EDB8C37F3D0}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{8B36B408-BBB6-4583-9C3D-851E856DA8AF}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{8C9B897F-69E6-49BB-BA08-93BCDB167265}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{8CD4A707-7E76-487F-AF11-F5A7B25D89B3}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{980ADE56-A310-4B16-86A4-93A29B4DEEFB}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{9827CBE1-F7D4-4697-B474-411339CBF61F}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{9C767808-67D2-4C70-84E2-03C00BC1D676}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{A09A55F7-7965-4134-904A-20AEB5ADE82E}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{A58081CD-66C5-49DD-AC6E-4E528F24EE5D}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{A5B18DF5-3271-43A2-8171-7CEBBE22F182}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{A6912BD9-7B31-4692-8E87-CD74B68B199B}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{A7FFD9B5-C6B0-4289-ABF1-FCB4BB131EA2}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{A8F974DF-3661-444A-9682-B350D4494BC2}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{AAA54144-521D-4109-9FC5-2AC4B076D2B7}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{B19B7F6F-8AB9-498E-B301-40086828C1B5}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{B5D18FE4-52B3-4846-903A-06EEE2A4721D}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{BAEBB411-5040-4E0E-AFCE-DCFFAE6C4E82}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{BBD42D96-28AF-4F5D-AE8E-E89911B62E34}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{BF46F357-2BD9-4B3F-A51C-BF12313AA625}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{C05A1AA8-77F4-4A8A-80A5-906CD093C9D1}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{C0B73AA2-04D9-47B2-A5E2-484E1CA18299}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{C1468567-68E4-4172-BEA6-E6B4192E7B06}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{C4C5F8B9-5D2B-494F-A586-0F720D7376E5}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{CACBB649-1208-40DB-A7CB-C581F98C9E67}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{CB6911EC-9A3A-4C39-BFEB-36F325E74E05}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{CBC50FCE-E58F-420B-AA67-60A7D6F10506}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{CCA36994-59D1-4AD4-A3AB-C69A3F3C2778}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{D0A216F6-AF97-45D8-B55B-1D52A3048797}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{DA28626B-FC7B-4B50-9988-46FE591C418B}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{DC139673-160C-4C54-98E5-2456D0C7BF1D}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{DD885D3F-AB19-4C28-BE94-A8C6DD11E5FB}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{E5F3DAEF-0A48-4C4F-82C6-9E55766F9914}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{E90BD108-ECAF-40D1-A1BA-E9CCB227A15C}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{EFD2012B-5807-43E0-848F-6D423DC21A5F}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{F2A42A03-D152-4647-9D84-B01CAE8C00B0}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{F2AAEEDD-DD91-4733-A3BB-36DA2536F8B1}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{F430E6F0-19EA-4DCB-8BF7-A84A1686FB84}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{F910F274-29C4-4458-9F57-280E6024E889}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{FA8E7EEB-0A82-4759-985D-A1AB5FBF4DDF}
Successfully deleted: [Empty Folder] C:\Users\chrissy\appdata\local\{FC371725-4471-4F04-ABA4-6DD0F177103B}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 01/05/2015 at 23:05:58.55
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Contents of OTL fix log
All processes killed
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Policies\Microsoft\Windows NT\SystemRestore\ not found.
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
Process Tnulqltoe.exe killed successfully!
Releasing module C:\Users\chrissy\AppData\Local\Temp\fstqfzk.dll
C:\Users\chrissy\AppData\Local\Temp\fstqfzk.dll moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Conime deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Otgpuozkwdji deleted successfully.
C:\Users\chrissy\AppData\Local\{7093A744-9E19-4332-AB8D-3CFF0FE4828A}\Otgpuozkwdji.dll moved successfully.
Folder C:\Users\chrissy\AppData\Local\{C05A1AA8-77F4-4A8A-80A5-906CD093C9D1}\ not found.
========== FILES ==========
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Siawesfwt\Dictionaries folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Siawesfwt\36.0.1985.143\VisualElements folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Siawesfwt\36.0.1985.143\PepperFlash folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Siawesfwt\36.0.1985.143\Locales folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Siawesfwt\36.0.1985.143\Extensions folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Siawesfwt\36.0.1985.143\default_apps folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Siawesfwt\36.0.1985.143 folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Siawesfwt folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\elkyiuwkfnoi folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo\Dmgbqnyjfay folder moved successfully.
C:\Users\chrissy\AppData\LocalLow\Adobe\Ptiepmgjdo folder moved successfully.
C:\Users\chrissy\AppData\Local\{7093A744-9E19-4332-AB8D-3CFF0FE4828A} folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: chrissy
->Temp folder emptied: 4188946 bytes
->Temporary Internet Files folder emptied: 409031207 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 222381783 bytes
->Google Chrome cache emptied: 105894519 bytes
->Flash cache emptied: 506 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 19374 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 707.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 01052015_230934
Files\Folders moved on Reboot...
File\Folder C:\Users\chrissy\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!
File move failed. C:\Users\chrissy\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
C:\Windows\temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Windows\temp\FXSTIFFDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Contents of AdwCleaner log
# AdwCleaner v4.106 - Report created 05/01/2015 at 23:31:12
# Updated 21/12/2014 by Xplode
# Database : 2015-01-03.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : chrissy - CHRISSY-HP
# Running from : C:\Users\chrissy\Desktop\AdwCleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files (x86)\Tweaks
Folder Deleted : C:\Program Files\PC Optimizer Pro
Folder Deleted : C:\Users\chrissy\AppData\Roaming\1H1Q
File Deleted : C:\Users\Public\Desktop\eBay.lnk
File Deleted : C:\Windows\System32\roboot64.exe
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\All Enthusiast Games.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKCU\Software\pc optimizer pro
Key Deleted : HKCU\Software\systweak
Key Deleted : HKLM\SOFTWARE\systweak
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17496
-\\ Mozilla Firefox v34.0.5 (x86 en-US)
-\\ Google Chrome v39.0.2171.95
[C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
*************************
AdwCleaner[R0].txt - [2231 octets] - [05/01/2015 23:28:26]
AdwCleaner[S0].txt - [2155 octets] - [05/01/2015 23:31:12]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2215 octets] ##########
Contents of FRST log
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-01-2015
Ran by chrissy (administrator) on CHRISSY-HP on 05-01-2015 23:35:11
Running from C:\Users\chrissy\Desktop
Loaded Profile: chrissy (Available profiles: chrissy)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Eastman Kodak Company) C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2799912 2011-06-09] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1424896 2011-09-08] (IDT, Inc.)
HKLM\...\Run: [SetDefault] => C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [44880 2011-12-19] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [2922496 2011-06-16] (Eastman Kodak Company)
HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2011-10-07] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-06-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [295512 2013-03-26] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM-x32\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-18\...\RunOnce: [KodakHomeCenter] => C:\Program Files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe [2234840 2012-06-18] (Eastman Kodak Company)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\chrissy\AppData\Roaming\Mozilla\Firefox\Profiles\akdn4yie.default-1411873159929
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\
[email protected] [2014-12-12]
FF HKLM-x32\...\Firefox\Extensions: [{DAC3F861-B30D-40dd-9166-F4E75327FAC7}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-03-26]
Chrome:
=======
CHR HomePage: Default ->
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-09]
CHR Extension: (Google Drive) - C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-09]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-07-09]
CHR Extension: (YouTube) - C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-09]
CHR Extension: (Google Cast) - C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-07-09]
CHR Extension: (Google Search) - C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-09]
CHR Extension: (Google Wallet) - C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-09]
CHR Extension: (Gmail) - C:\Users\chrissy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-09]
CHR HKLM-x32\...\Chrome\Extension: [bfmogjcijkfeahcajecmmegieipfbdcc] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx [2011-08-18]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-03-06]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 Kodak AiO Status Monitor Service; C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe [777728 2012-06-19] (Eastman Kodak Company) [File not signed]
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-05 23:35 - 2015-01-05 23:38 - 00014678 _____ () C:\Users\chrissy\Desktop\FRST.txt
2015-01-05 23:34 - 2015-01-05 23:35 - 00000000 ____D () C:\FRST
2015-01-05 23:28 - 2015-01-05 23:31 - 00000000 ____D () C:\AdwCleaner
2015-01-05 23:09 - 2015-01-05 23:09 - 00000000 ____D () C:\_OTL
2015-01-05 23:05 - 2015-01-05 23:05 - 00012775 _____ () C:\Users\chrissy\Desktop\JRT.txt
2015-01-05 23:00 - 2015-01-05 23:00 - 00000000 ____D () C:\Windows\ERUNT
2015-01-05 22:58 - 2015-01-05 22:57 - 02123776 _____ (Farbar) C:\Users\chrissy\Desktop\FRST64.exe
2015-01-05 22:58 - 2015-01-05 22:55 - 02173952 _____ () C:\Users\chrissy\Desktop\AdwCleaner.exe
2015-01-05 22:58 - 2015-01-05 22:54 - 01707939 _____ (Thisisu) C:\Users\chrissy\Desktop\JRT.exe
2015-01-03 09:38 - 2015-01-03 09:38 - 00085006 _____ () C:\Users\chrissy\Desktop\Extras.Txt
2015-01-03 09:36 - 2015-01-03 09:36 - 00072506 _____ () C:\Users\chrissy\Desktop\OTL.Txt
2015-01-03 09:07 - 2015-01-03 09:05 - 00602112 _____ (OldTimer Tools) C:\Users\chrissy\Desktop\OTL.exe
2015-01-03 09:01 - 2015-01-03 09:01 - 00068174 _____ () C:\Users\chrissy\Downloads\newborns.htm
2014-12-22 23:10 - 2014-12-22 23:10 - 00000537 _____ () C:\DelFix.txt
2014-12-20 17:18 - 2014-12-20 17:18 - 00003789 _____ () C:\Users\chrissy\Downloads\fixlist.txt
2014-12-19 21:16 - 2015-01-05 23:32 - 00002456 _____ () C:\Windows\PFRO.log
2014-12-18 21:35 - 2015-01-05 23:21 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-12-17 22:03 - 2014-12-12 21:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-17 22:02 - 2014-12-12 23:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-17 21:28 - 2014-12-26 21:18 - 00003348 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3213345147-4210730247-2188965704-1000
2014-12-17 21:28 - 2014-12-26 21:18 - 00003218 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3213345147-4210730247-2188965704-1000
2014-12-16 22:29 - 2014-12-18 21:35 - 00135384 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-16 22:28 - 2014-12-18 21:23 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-16 22:28 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-16 22:28 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-16 22:27 - 2014-12-16 22:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-16 22:18 - 2014-12-16 22:27 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\chrissy\Downloads\mbam-setup-2.0.4.1028.exe
2014-12-15 23:33 - 2014-12-15 23:33 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-15 22:23 - 2014-10-17 20:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-15 22:23 - 2014-10-17 19:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-15 22:23 - 2014-07-06 20:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-15 22:23 - 2014-07-06 20:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-15 22:23 - 2014-07-06 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-15 22:23 - 2014-07-06 20:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-15 22:23 - 2014-07-06 19:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-12-15 22:23 - 2014-07-06 19:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-12-15 22:23 - 2014-07-06 19:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-12-15 22:23 - 2014-07-06 19:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-12-12 21:42 - 2014-11-07 21:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-12 21:42 - 2014-11-07 20:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-12 21:33 - 2014-12-12 21:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-12 21:33 - 2014-11-26 19:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-12 21:33 - 2014-11-26 19:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-12 21:33 - 2014-11-21 21:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-12 21:33 - 2014-11-21 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-12 21:33 - 2014-11-21 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-12 21:33 - 2014-11-21 20:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-12 21:33 - 2014-11-21 20:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-12 21:33 - 2014-11-21 20:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-12 21:33 - 2014-11-21 20:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-12 21:33 - 2014-11-21 20:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-12 21:33 - 2014-11-21 20:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-12 21:33 - 2014-11-21 20:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-12 21:33 - 2014-11-21 20:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-12 21:33 - 2014-11-21 20:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-12 21:33 - 2014-11-21 20:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-12 21:33 - 2014-11-21 20:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-12 21:33 - 2014-11-21 20:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-12 21:33 - 2014-11-21 20:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-12 21:33 - 2014-11-21 20:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-12 21:33 - 2014-11-21 20:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-12 21:33 - 2014-11-21 20:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-12 21:33 - 2014-11-21 20:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-12 21:33 - 2014-11-21 20:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-12 21:33 - 2014-11-21 20:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-12 21:33 - 2014-11-21 20:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-12 21:33 - 2014-11-21 20:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-12 21:33 - 2014-11-21 20:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-12 21:33 - 2014-11-21 20:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-12 21:33 - 2014-11-21 20:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-12 21:33 - 2014-11-21 19:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-12 21:33 - 2014-11-21 19:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-12 21:33 - 2014-11-21 19:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-12 21:33 - 2014-11-21 19:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-12 21:33 - 2014-11-21 19:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-12 21:33 - 2014-11-21 19:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-12 21:33 - 2014-11-21 19:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-12 21:33 - 2014-11-21 19:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-12 21:33 - 2014-11-21 19:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-12 21:33 - 2014-11-21 19:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-12 21:33 - 2014-11-21 19:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-12 21:33 - 2014-11-21 19:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-12 21:33 - 2014-11-21 19:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-12 21:33 - 2014-11-21 19:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-12 21:33 - 2014-11-21 19:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-12 21:33 - 2014-11-21 19:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-12 21:33 - 2014-11-21 19:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-12 21:33 - 2014-11-21 19:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-12 21:33 - 2014-11-21 19:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-12 21:33 - 2014-11-21 19:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-12 21:33 - 2014-11-21 19:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-12 21:33 - 2014-11-21 19:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-12 21:33 - 2014-11-21 19:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-12 21:33 - 2014-11-21 18:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-12 21:33 - 2014-11-21 18:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-12 21:27 - 2014-11-10 21:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-12 21:27 - 2014-11-10 20:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-12 21:27 - 2014-11-10 19:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-12 21:21 - 2014-12-03 20:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-12 21:21 - 2014-12-03 20:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-12 21:21 - 2014-12-03 20:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-12 21:21 - 2014-12-03 20:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-12 21:21 - 2014-12-03 20:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-12 21:21 - 2014-12-03 20:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-12 21:21 - 2014-12-03 20:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-12 21:21 - 2014-12-01 17:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-12 21:21 - 2014-10-02 20:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-12 21:21 - 2014-10-02 20:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-12 21:21 - 2014-10-02 20:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-12 21:21 - 2014-10-02 20:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-12 21:21 - 2014-10-02 20:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-12 21:21 - 2014-10-02 19:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-12 21:21 - 2014-10-02 19:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-12 21:21 - 2014-10-02 19:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-12 21:21 - 2014-10-02 19:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-12 21:21 - 2014-10-02 19:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-12 21:16 - 2014-10-29 20:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-12 21:16 - 2014-10-29 19:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-10 22:02 - 2015-01-05 23:32 - 00001882 _____ () C:\Windows\setupact.log
2014-12-10 22:02 - 2014-12-10 22:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-12-10 21:46 - 2014-12-10 21:47 - 00185094 _____ () C:\Users\chrissy\Documents\cc_20141210_214545 backup.reg
2014-12-08 22:27 - 2014-12-16 22:07 - 00000000 ____D () C:\Program Files\CCleaner
2014-12-08 22:23 - 2014-12-08 22:25 - 05162080 _____ (Piriform Ltd) C:\Users\chrissy\Downloads\ccsetup500.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-05 23:38 - 2011-12-12 02:30 - 01972426 _____ () C:\Windows\WindowsUpdate.log
2015-01-05 23:35 - 2014-07-09 15:19 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-05 23:32 - 2014-07-09 15:19 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-05 23:32 - 2012-06-18 21:28 - 00000000 ____D () C:\ProgramData\Kodak
2015-01-05 23:32 - 2009-07-13 23:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-05 23:31 - 2009-07-13 23:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-05 23:29 - 2009-07-13 22:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-05 23:29 - 2009-07-13 22:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-05 23:21 - 2012-12-04 15:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-05 23:09 - 2012-06-18 12:06 - 00000000 ____D () C:\Users\chrissy\AppData\Local\AuthenTec
2015-01-05 23:01 - 2013-10-18 11:25 - 00000000 ____D () C:\Users\chrissy\AppData\Local\{6475797A-84E2-4673-9040-48AC730D5F97}
2015-01-05 23:00 - 2009-07-13 23:13 - 00796812 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-05 22:51 - 2013-02-02 09:14 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-05 15:29 - 2012-06-18 14:18 - 00003942 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{B276584C-4FEB-4413-8A30-A2AEF7C479B9}
2015-01-03 11:06 - 2014-08-30 21:30 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForchrissy
2015-01-03 11:06 - 2014-08-30 21:30 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForchrissy.job
2014-12-29 23:36 - 2014-09-01 09:31 - 00003370 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3213345147-4210730247-2188965704-1000
2014-12-29 23:36 - 2014-02-18 21:45 - 00003240 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3213345147-4210730247-2188965704-1000
2014-12-24 22:26 - 2009-07-13 23:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-12-19 23:04 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\rescache
2014-12-19 20:44 - 2012-08-10 21:05 - 00000000 ____D () C:\Users\chrissy\AppData\Local\CrashDumps
2014-12-17 21:43 - 2009-07-13 23:08 - 00030492 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-12-15 23:33 - 2014-05-07 14:44 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-15 23:33 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-15 23:33 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-15 23:22 - 2013-08-14 07:53 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-15 22:36 - 2012-08-08 20:40 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-12 22:20 - 2014-07-09 15:20 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-12 16:33 - 2013-02-02 09:14 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-12 16:33 - 2012-12-04 15:53 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-12 16:33 - 2011-10-29 21:21 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-10 22:22 - 2013-05-12 14:55 - 00189952 ___SH () C:\Users\chrissy\Desktop\Thumbs.db
2014-12-10 21:49 - 2014-08-16 21:54 - 00003114 _____ () C:\Windows\System32\Tasks\{51FD0240-2160-4FBA-9C8D-4C7DFF571147}
2014-12-09 09:36 - 2007-01-01 19:25 - 00000000 ____D () C:\Windows\Panther
2014-12-08 22:19 - 2013-07-31 18:49 - 00000000 ____D () C:\ProgramData\Apple
Some content of TEMP:
====================
C:\Users\chrissy\AppData\Local\Temp\Quarantine.exe
C:\Users\chrissy\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-19 22:51
==================== End Of Log ============================
Contents of Addition log
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-01-2015
Ran by chrissy at 2015-01-05 23:38:50
Running from C:\Users\chrissy\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
5D Embroidery Machine Communication (HKLM-x32\...\{8DD32D05-002D-4771-94F4-5E91377A402C}) (Version: 1.05.1000 - VSM Software Ltd.)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Reader X (10.1.0) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.1.629 - Adobe Systems, Inc.)
aioprnt (Version: 5.3.1.0 - Eastman Kodak Company) Hidden
aioscnnr (x32 Version: 6.2.3.10 - Your Company Name) Hidden
aioscnnr (x32 Version: 7.3.4.0 - Your Company Name) Hidden
AuthenTec TrueAPI (Version: 1.3.0.139 - AuthenTec, Inc.) Hidden
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon Utilities Digital Photo Professional 3.4 (HKLM-x32\...\DPP) (Version: 3.4.0.0 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.3.0.0 - Canon Inc.)
center (x32 Version: 6.2.5.0 - Eastman Kodak Company) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cool Calendar Packages (HKU\S-1-5-21-3213345147-4210730247-2188965704-1000\...\Cool Calendar Packages) (Version: - ) <==== ATTENTION
Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.0.4528 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
essentials (x32 Version: 6.0.14.0 - Eastman Kodak Company) Hidden
ESU for Microsoft Windows 7 SP1 (HKLM-x32\...\{E96CAA2A-0244-4A2A-8403-0C3C9534778B}) (Version: 2.1.1 - Hewlett-Packard)
Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Farmscapes (x32 Version: 2.2.0.98 - WildTangent) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden
HP Application Assistant (HKLM\...\{6032497A-4479-462B-ADB8-A0A372BB9A23}) (Version: 1.0.409.3882 - Hewlett-Packard)
HP Documentation (HKLM-x32\...\{BC6CB499-9F29-4B41-8B8B-FA7248525256}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent)
HP Launch Box (HKLM\...\{5A847522-375C-4D05-BD3D-88C450CC047F}) (Version: 1.1.5 - Hewlett-Packard Company)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.1.21091.0 - Hewlett-Packard Company)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Power Manager (HKLM-x32\...\{7E799992-5DA0-4A1A-9443-B1836B063FEC}) (Version: 1.4.8 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{53B17A98-5BF0-40BC-AAFF-850A357975AC}) (Version: 2.7.2 - Hewlett-Packard Company)
HP QuickWeb (HKLM-x32\...\{BB4FC2AD-DF12-4EE1-8AA7-2C0A26B5E2FB}) (Version: 3.1.1.10197 - Hewlett-Packard Company)
HP Security Assistant (HKLM\...\{562608FE-2051-4488-BF22-8CE4C03046AC}) (Version: 1.0.12 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}) (Version: 9.0.15076.3891 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.2.14901.3869 - Hewlett-Packard Company)
HP SimplePass PE 2011 (HKLM-x32\...\{4741965C-AFD0-4D00-81D1-1039F96D4DC3}) (Version: 5.3.0.264 - Hewlett-Packard)
HP Software Framework (HKLM-x32\...\{675D093B-815D-47FD-AB2C-192EC751E8E2}) (Version: 4.6.10.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6365.0 - IDT)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Identity Protection Technology 1.1.2.0 (HKLM-x32\...\{C01A86F5-56E7-101F-9BC9-E3F1025EB779}) (Version: 1.1.2.0 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2559 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.5.0.1026 - Intel Corporation)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kodak AIO Printer (Version: 7.5.0.0 - Eastman Kodak Company) Hidden
KODAK AiO Software (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.5.9.60 - Eastman Kodak Company)
Letters from Nowhere 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Luxor HD (x32 Version: 2.2.0.98 - WildTangent) Hidden
Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyCalendar (HKLM-x32\...\Tweaks MyCalendar) (Version: 1.1.3 - Tweaks)
ocr (x32 Version: 6.2.3.50 - Eastman Kodak Company) Hidden
opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Pentair ScreenLogic (HKLM-x32\...\{D10B9BEF-B4DF-4719-8617-E23B1994A9D7}) (Version: 5.2.580.0 - Pentair)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
PreReq (x32 Version: 6.2.4.0 - Eastman Kodak Company) Hidden
Print Workshop 2004 LE (HKLM-x32\...\{952682F8-F40D-11D7-AD8E-0050DA87D0EB}) (Version: - )
Ralink RT5390 802.11b/g/n WiFi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 3.2.13.0 - Ralink)
RealDownloader (x32 Version: 1.3.1 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.0 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.85 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
RollerCoaster Tycoon 3: Platinum (x32 Version: 2.2.0.98 - WildTangent) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.11.0 - Synaptics Incorporated)
The Treasures of Mystery Island: The Ghost Ship (x32 Version: 2.2.0.98 - WildTangent) Hidden
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
VIP Access SDK (1.0.1.2) (HKLM-x32\...\VIP Access SDK) (Version: 1.0.1.2 - Symantec Inc.)
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden
WildTangent Games App (HP Games) (x32 Version: 4.0.5.32 - WildTangent) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
05-01-2015 23:09:45 OTL Restore Point - 1/5/2015 11:09:45 PM
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 20:34 - 2009-06-10 15:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {03A81BDE-2303-4284-991B-D06B10F4DC2D} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {12901ADC-E4C6-40CD-9066-5DE9822267AE} - System32\Tasks\HPCeeScheduleForchrissy => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {15C265AC-8F27-48EF-8CFC-41021255D7BA} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3213345147-4210730247-2188965704-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {27A34EC6-9AB8-4DA3-991C-41E7DB79A885} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-09] (Google Inc.)
Task: {37C90F94-6AD3-4878-A247-874F46522E9A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-09] (Google Inc.)
Task: {3D4E0F6A-A9DC-45D2-9DC4-6FFCF865D327} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3213345147-4210730247-2188965704-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {4B765FEA-E288-473A-B128-6C3EE7A8A6EB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-12] (Adobe Systems Incorporated)
Task: {536E9346-25A7-469C-8E1F-BF4DFC909D54} - System32\Tasks\{51FD0240-2160-4FBA-9C8D-4C7DFF571147} => pcalua.exe -a C:\ProgramData\Blasteroids\uninstall.exe -c /kb=y /ic=1
Task: {6231A2C3-CEB3-4318-BD4D-563D718E712D} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3213345147-4210730247-2188965704-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {A17AF7A7-F54F-484B-BFBB-4D847F23671B} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3213345147-4210730247-2188965704-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-03-06] (RealNetworks, Inc.)
Task: {A197C99F-30D6-4606-9511-8249B96AD4DB} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3213345147-4210730247-2188965704-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {BA24867C-6346-49D2-82A3-E421BB7ADA0E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {BD20E36D-5C3E-4F35-B845-783B02A043FE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe
Task: {BF755A26-384D-4427-BC5E-70791F6515F5} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-09-28] (CyberLink)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForchrissy.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Loaded Modules (whitelisted) =============
2013-03-06 01:21 - 2013-03-06 01:21 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2011-12-19 22:34 - 2011-12-19 22:34 - 00108880 _____ () C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
2011-08-26 13:53 - 2011-08-26 13:53 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-10-18 18:47 - 2014-10-18 18:47 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\c152a64e30c5b94894d75ac86aa7aad2\IsdiInterop.ni.dll
2011-12-12 02:28 - 2011-04-30 02:28 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
========================= Accounts: ==========================
Administrator (S-1-5-21-3213345147-4210730247-2188965704-500 - Administrator - Disabled)
ASPNET (S-1-5-21-3213345147-4210730247-2188965704-1004 - Limited - Enabled)
chrissy (S-1-5-21-3213345147-4210730247-2188965704-1000 - Administrator - Enabled) => C:\Users\chrissy
Guest (S-1-5-21-3213345147-4210730247-2188965704-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3213345147-4210730247-2188965704-1002 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/05/2015 11:32:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/05/2015 11:32:45 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (01/05/2015 11:32:45 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (01/05/2015 11:32:45 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Error: XML document load failed for file: C:\ProgramData\VirtualizedApplications\Patch_ready\{90140011-0066-0409-0000-0000000FF1CE}\descriptor.xml HResult: 0x1. OException caught while loading the descriptor xml
Error: (01/05/2015 11:22:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/05/2015 11:22:16 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (01/05/2015 11:22:16 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (01/05/2015 11:22:16 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Error: XML document load failed for file: C:\ProgramData\VirtualizedApplications\Patch_ready\{90140011-0066-0409-0000-0000000FF1CE}\descriptor.xml HResult: 0x1. OException caught while loading the descriptor xml
System errors:
=============
Error: (01/05/2015 11:31:15 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Application Virtualization Client service terminated unexpectedly. It has done this 1 time(s).
Error: (01/05/2015 11:31:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
Error: (01/05/2015 11:31:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Modules Installer service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
Error: (01/05/2015 11:31:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Management and Security Application User Notification Service service terminated unexpectedly. It has done this 1 time(s).
Error: (01/05/2015 11:31:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Rapid Storage Technology service terminated unexpectedly. It has done this 1 time(s).
Error: (01/05/2015 11:31:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
Error: (01/05/2015 11:31:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
Error: (01/05/2015 11:31:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The HP Software Framework Service service terminated unexpectedly. It has done this 1 time(s).
Error: (01/05/2015 11:31:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Client Virtualization Handler service terminated unexpectedly. It has done this 1 time(s).
Error: (01/05/2015 11:31:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
Microsoft Office Sessions:
=========================
Error: (01/05/2015 11:32:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/05/2015 11:32:45 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (01/05/2015 11:32:45 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (01/05/2015 11:32:45 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Error: XML document load failed for file: C:\ProgramData\VirtualizedApplications\Patch_ready\{90140011-0066-0409-0000-0000000FF1CE}\descriptor.xml HResult: 0x1. OException caught while loading the descriptor xml
Error: (01/05/2015 11:22:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/05/2015 11:22:16 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (01/05/2015 11:22:16 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.
Error: (01/05/2015 11:22:16 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Error: XML document load failed for file: C:\ProgramData\VirtualizedApplications\Patch_ready\{90140011-0066-0409-0000-0000000FF1CE}\descriptor.xml HResult: 0x1. OException caught while loading the descriptor xml
==================== Memory info ===========================
Processor: Intel® Core i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 32%
Total physical RAM: 6091.86 MB
Available physical RAM: 4093.85 MB
Total Pagefile: 12181.9 MB
Available Pagefile: 10301.27 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:441.63 GB) (Free:41.21 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Recovery) (Fixed) (Total:19.97 GB) (Free:2.16 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.08 GB) FAT32
Drive g: () (Removable) (Total:0.02 GB) (Free:0.01 GB) FAT
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: E861ED1B)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=441.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=4 GB) - (Type=0C)
========================================================
Disk: 1 (Size: 15.8 MB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================