The Addition file:
Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-09-2015
Ran by Admin (2015-09-10 08:59:43)
Running from C:\Users\Admin\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-01-23 18:29:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Admin (S-1-5-21-3303275179-3636383269-2833226413-1003 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3303275179-3636383269-2833226413-500 - Administrator - Disabled)
Guest (S-1-5-21-3303275179-3636383269-2833226413-501 - Limited - Enabled) => C:\Users\Guest
Test (S-1-5-21-3303275179-3636383269-2833226413-1006 - Administrator - Enabled) => C:\Users\Test
UpdatusUser (S-1-5-21-3303275179-3636383269-2833226413-1000 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3303275179-3636383269-2833226413-1003\...\uTorrent) (Version: 3.4.4.40911 - BitTorrent Inc.)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - CutePDF.com)
EA SPORTS Game Face Browser Plugin 1.8.0.0 (HKU\S-1-5-21-3303275179-3636383269-2833226413-1003\...\EA SPORTS Game Face Browser Plugin) (Version: 1.8.0.0 - Electronic Arts)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.14.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.37.2 - HTC)
Intel® PROSet/Wireless for Bluetooth® 3.0 + High Speed (HKLM\...\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}) (Version: 15.0.0.0059 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{077BF055-512A-4D48-B3C2-44AD860FEB0A}) (Version: 1.3.0.0621 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
iTunes (HKLM\...\{A535111D-95C8-487F-869E-CE4C239972D2}) (Version: 11.1.1.11 - Apple Inc.)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA Graphics Driver 268.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 268.83 - NVIDIA Corporation)
S Agent (Version: 1.0.9 - Samsung Electronics CO., LTD.) Hidden
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
12-06-2015 14:21:38 Windows Update
13-06-2015 15:11:20 Windows Update
30-07-2015 19:50:29 Removed BBC iPlayer Downloads
25-08-2015 20:23:28 Removed Google Chrome
25-08-2015 20:26:24 Removed Google Chrome
09-09-2015 01:28:30 Restore Operation
09-09-2015 02:05:23 Removed BBC iPlayer Downloads
09-09-2015 02:57:53 Restore Operation
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0BFC7D4A-6950-4129-8155-917269AAEF3C} - \DNSKINGSTON -> No File <==== ATTENTION
Task: {1D62673F-8624-442C-8750-43819ABC8F3D} - System32\Tasks\{61528F2A-C20B-4A89-BA2B-DF4747A83C0A} => pcalua.exe -a C:\ProgramData\TVWizard\uninstall.exe -c /kb=y /ic=1 <==== ATTENTION
Task: {2D8A40D6-1307-40BC-9AAB-42E3C64A0938} - \DNSMOHAWK -> No File <==== ATTENTION
Task: {3045AD74-F9A8-42B3-A4EE-58C7F2502406} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3303275179-3636383269-2833226413-1003Core => C:\Users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-06] (Facebook Inc.)
Task: {3B1D310B-584B-4734-A162-5ACDD4F3D9D6} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION
Task: {43494081-DA21-4966-8AD4-EE4D44722D23} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-02-16] (CyberLink)
Task: {6859FCA9-2029-4169-AB51-CEC8A7090D56} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2012-10-25] (Samsung Electronics CO., LTD.)
Task: {6A35E2A1-B58A-4FE4-9494-4B8D9BA3AFAA} - System32\Tasks\{47A82447-8CE7-43EE-94AD-1EF766356B0D} => pcalua.exe -a C:\Users\Admin\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=tugs <==== ATTENTION
Task: {873BF679-08EE-47C0-95D4-9D56A29188CE} - \pricemeterdownloader -> No File <==== ATTENTION
Task: {8C7841F5-CF08-4448-B1F7-78DA43DCC03A} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2011-06-24] (SEC)
Task: {A2F67CE0-84DD-40BA-8547-44C0979B7B45} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {A3C5673A-C59F-4600-BC6A-61A62A0094E6} - \upfs7235 -> No File <==== ATTENTION
Task: {BAE0E430-1180-4C26-9B2D-8416A270116E} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-19] (Adobe Systems Incorporated)
Task: {C8F22C06-75A1-422A-BEB8-0F821537766F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {D46BE99B-90B5-4354-A1D3-1ABF8F3A24DF} - System32\Tasks\SnoopRun => C:\ProgramData\Snoop\Snoop.exe [2015-05-19] () <==== ATTENTION
Task: {F05B4049-F089-4990-9DC3-1F7D27399BD5} - \DonutQuotes -> No File <==== ATTENTION
Task: {F5E85609-E6FD-42AA-A811-DF1DA617A486} - \Run_Bobby_Browser -> No File <==== ATTENTION
Task: {F6D806F4-73EB-49B3-8E00-349B4660E552} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3303275179-3636383269-2833226413-1003UA => C:\Users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-06] (Facebook Inc.)
Task: {FCE980A7-64C4-4EB9-8933-CF24062577FA} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {FEE55D39-FB0E-4572-AB82-C98B1BDD951C} - System32\Tasks\PepeRun => C:\ProgramData\Pepe\Pepe.exe [2015-04-30] () <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3303275179-3636383269-2833226413-1003Core.job => C:\Users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3303275179-3636383269-2833226413-1003UA.job => C:\Users\Admin\AppData\Local\Facebook\Update\FacebookUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2013-10-06 20:12 - 2012-10-04 19:49 - 00087152 _____ () C:\windows\System32\cpwmon64.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:23 - 2010-10-20 15:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2013-10-17 16:27 - 2013-10-17 16:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2011-07-21 06:51 - 2010-12-16 10:37 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-04-06 09:38 - 2009-12-01 08:21 - 00244904 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2014-12-18 16:10 - 2014-12-18 16:10 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2013-09-13 19:51 - 2013-09-13 19:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 19:51 - 2013-09-13 19:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-12-18 16:06 - 2014-12-18 16:06 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-12-18 16:11 - 2014-12-18 16:11 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-12-18 16:14 - 2014-12-18 16:14 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2009-11-02 06:20 - 2009-11-02 06:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 06:23 - 2009-11-02 06:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:45 - 2010-10-20 15:45 - 08801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2012-04-06 08:34 - 2010-05-07 15:22 - 01636864 _____ () C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3303275179-3636383269-2833226413-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
HKU\S-1-5-21-3303275179-3636383269-2833226413-501\Control Panel\Desktop\\Wallpaper -> C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Packer.exe.lnk => C:\windows\pss\Packer.exe.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^hqghumeaylnlf.lnk => C:\windows\pss\hqghumeaylnlf.lnk.Startup
MSCONFIG\startupreg: 3D BubbleSound => "C:\Program Files\BubbleSound\3D BubbleSound.exe"
MSCONFIG\startupreg: Browser Infrastructure Helper => C:\Users\Admin\AppData\Local\Smartbar\Application\Smartbar.exe startup
MSCONFIG\startupreg: OfferBoulevard => C:\Program Files (x86)\OfferBoulevard\OfferBoulevardW.exe
MSCONFIG\startupreg: PriceMeterW => "C:\Users\Admin\AppData\Local\PriceMeter\pricemeterw.exe"
MSCONFIG\startupreg: Registry Helper => "C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe" /boot
MSCONFIG\startupreg: Selection Tools => "C:\Users\Admin\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe" /winstartup
MSCONFIG\startupreg: WindApp => "C:\Users\Admin\AppData\Roaming\Store\WindApp\WindApp.exe" /winstartup
MSCONFIG\startupreg: Xvid => C:\Program Files (x86)\Xvid\CheckUpdate.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{FFF854B9-0D4D-43A0-ABA7-E253EAE0EA0C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{E4D8747F-C297-46EF-995E-C8EC7ECA658B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{60E00196-391B-40EF-9CF7-9FBDE64E6117}] => (Allow) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10.exe
FirewallRules: [{4D95FA5C-1123-4BF3-AE76-48F4831C4035}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector\PDR8.EXE
FirewallRules: [{CC8AAE53-286E-4665-8C7F-7DB1D65F2F77}] => (Allow) LPort=5910
FirewallRules: [{289DA293-83FE-4ACD-9D71-5C826873564A}] => (Allow) C:\Users\Shipu Miah\AppData\Local\CrossLoop\vncviewer.exe
FirewallRules: [{E944B704-C059-4F6D-8A27-F466DA130B6E}] => (Allow) C:\Users\Shipu Miah\AppData\Local\CrossLoop\vncviewer.exe
FirewallRules: [{6129DEE7-3DC1-4588-B4AF-8708D3F0FB3F}] => (Allow) C:\Users\Shipu Miah\AppData\Local\CrossLoop\tvnserver.exe
FirewallRules: [{F6246BCC-E11E-48B9-8957-15ABB9650C00}] => (Allow) C:\Users\Shipu Miah\AppData\Local\CrossLoop\tvnserver.exe
FirewallRules: [TCP Query User{2AEFF4C1-66EA-43EA-BC79-376A0B7833EA}C:\users\shipu miah\appdata\local\crossloop\crossloopconnect.exe] => (Allow) C:\users\shipu miah\appdata\local\crossloop\crossloopconnect.exe
FirewallRules: [UDP Query User{6A7C319E-313A-43B0-AC54-FADD09A32629}C:\users\shipu miah\appdata\local\crossloop\crossloopconnect.exe] => (Allow) C:\users\shipu miah\appdata\local\crossloop\crossloopconnect.exe
FirewallRules: [{1EEEE87B-684D-47E5-A757-F30B69DFA451}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{605CB552-AE65-45CF-B0D2-6BA4D463FFEF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E286249E-69C6-4FEA-9545-4B1DDE97B5C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A39F3EE8-1B2E-4723-A8E8-6E4F314A27D8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9721CE7E-5EC6-4A82-AFA0-19357E8B62C2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BD7F20B8-B09F-4DEC-9B46-01CFCF4E3627}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{E6AE6E2E-57DD-4DD6-B8D1-7A2C64E03242}] => (Allow) C:\Users\Administrator\AppData\Local\CrossLoop\vncviewer.exe
FirewallRules: [{44E9B039-2F78-42AF-80E2-50780923706A}] => (Allow) C:\Users\Administrator\AppData\Local\CrossLoop\vncviewer.exe
FirewallRules: [{EFDAD348-E634-41DB-8DD9-EBB576650624}] => (Allow) C:\Users\Administrator\AppData\Local\CrossLoop\tvnserver.exe
FirewallRules: [{27915088-25A1-4B73-B91B-FBA0E6860B6E}] => (Allow) C:\Users\Administrator\AppData\Local\CrossLoop\tvnserver.exe
FirewallRules: [TCP Query User{622AF63E-1965-43BB-9D9C-59D3F4888EDB}C:\users\administrator\appdata\local\crossloop\crossloopconnect.exe] => (Allow) C:\users\administrator\appdata\local\crossloop\crossloopconnect.exe
FirewallRules: [UDP Query User{DAA29728-1D22-40EB-B4A4-E99EEE62C9C7}C:\users\administrator\appdata\local\crossloop\crossloopconnect.exe] => (Allow) C:\users\administrator\appdata\local\crossloop\crossloopconnect.exe
FirewallRules: [{268BEF9D-7466-4FDB-AF9A-B3F74DAFAE57}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\Smc.exe
FirewallRules: [{ABDD6597-A97D-4F9B-A323-D7F87EE45863}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\Smc.exe
FirewallRules: [{CE9BEF73-8531-4487-BEE8-BF98E4A69BEF}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\snac64.exe
FirewallRules: [{3810BC61-DCD4-47C0-B55B-40C60A8834E4}] => (Allow) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\snac64.exe
FirewallRules: [{2EF38616-38A4-40E2-BCB7-851D6D21726A}] => (Allow) C:\Users\Admin\AppData\Local\CrossLoop\vncviewer.exe
FirewallRules: [{A3C2385A-7201-417D-83CD-54C210C800A0}] => (Allow) C:\Users\Admin\AppData\Local\CrossLoop\vncviewer.exe
FirewallRules: [{CC001E7E-915D-402B-B293-D1F3414C6D37}] => (Allow) C:\Users\Admin\AppData\Local\CrossLoop\tvnserver.exe
FirewallRules: [{A16D606B-1C29-4BC2-999E-488C1D2F85D4}] => (Allow) C:\Users\Admin\AppData\Local\CrossLoop\tvnserver.exe
FirewallRules: [{2876B07F-320C-4B2E-9D61-3E5832C679F0}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{305E2089-49D1-44E2-9DB4-D73DB3B5478E}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5282294B-FECD-47AE-9198-567CF5C4E1A8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{1B3705A1-B033-40DB-AED1-34AA4344D0E2}] => (Allow) C:\Users\Admin\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{D435433D-A576-48EA-A354-BB86710A75BB}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{E545A73B-BC5C-42A1-A55F-F4FB508BC1A5}] => (Allow) C:\Users\Admin\AppData\Local\BoBrowser\Application\bobrowser.exe
==================== Faulty Device Manager Devices =============
Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/09/2015 08:56:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2015 08:55:52 PM) (Source: Registry Helper Service) (EventID: 109) (User: )
Description: Error: Service started
Error: (09/09/2015 03:22:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2015 03:21:09 PM) (Source: Registry Helper Service) (EventID: 109) (User: )
Description: Error: Service started
Error: (09/09/2015 03:14:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2015 03:14:07 PM) (Source: Registry Helper Service) (EventID: 109) (User: )
Description: Error: Service started
Error: (09/09/2015 02:27:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1708
Start Time: 01d0eb020eea1c55
Termination Time: 0
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
Error: (09/09/2015 02:18:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 5bc
Start Time: 01d0eb00735309a2
Termination Time: 0
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
Error: (09/09/2015 01:58:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 13ac
Start Time: 01d0eafe046f3c2c
Termination Time: 0
Application Path: C:\Program Files\Internet Explorer\iexplore.exe
Report Id:
Error: (09/09/2015 01:30:46 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (09/10/2015 08:52:59 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (09/10/2015 08:52:59 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (09/10/2015 08:52:53 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.
Error: (09/10/2015 08:52:53 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.
Error: (09/10/2015 08:52:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.
Error: (09/10/2015 08:52:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.
Error: (09/10/2015 08:52:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.
Error: (09/10/2015 08:52:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.
Error: (09/10/2015 08:52:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.
Error: (09/10/2015 08:52:52 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.
Microsoft Office:
=========================
Error: (09/09/2015 08:56:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2015 08:55:52 PM) (Source: Registry Helper Service) (EventID: 109) (User: )
Description: Service started
Error: (09/09/2015 03:22:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2015 03:21:09 PM) (Source: Registry Helper Service) (EventID: 109) (User: )
Description: Service started
Error: (09/09/2015 03:14:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2015 03:14:07 PM) (Source: Registry Helper Service) (EventID: 109) (User: )
Description: Service started
Error: (09/09/2015 02:27:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.17840170801d0eb020eea1c550C:\Program Files\Internet Explorer\iexplore.exe
Error: (09/09/2015 02:18:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.178405bc01d0eb00735309a20C:\Program Files\Internet Explorer\iexplore.exe
Error: (09/09/2015 01:58:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe11.0.9600.1784013ac01d0eafe046f3c2c0C:\Program Files\Internet Explorer\iexplore.exe
Error: (09/09/2015 01:30:46 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
CodeIntegrity:
===================================
Date: 2015-01-24 01:50:24.578
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:50:24.502
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:50:10.926
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:50:10.788
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:50:10.480
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:50:10.309
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:50:08.428
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:50:08.356
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:49:45.671
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-01-24 01:49:45.587
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel® Core i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 42%
Total physical RAM: 6057.55 MB
Available physical RAM: 3470.3 MB
Total Virtual: 12113.3 MB
Available Virtual: 9324.41 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:674.87 GB) (Free:61.73 GB) NTFS
Drive e: () (Removable) (Total:0.49 GB) (Free:0.39 GB) FAT
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 107BD653)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=674.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=23.7 GB) - (Type=27)
========================================================
Disk: 1 (Size: 504 MB) (Disk ID: 1C23B197)
Partition 1: (Active) - (Size=504 MB) - (Type=06)
==================== End of Addition.txt ============================