Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Win 7 computer start up problems

Started by BrianR1976 , Oct 23 2018 10:47 AM

Please log in to reply

#16
RKinner

Posted 26 October 2018 - 10:37 PM

Malware Expert

Expert
24,624 posts

Addition.txt? Process Explorer log?

#17
BrianR1976

Posted 27 October 2018 - 01:25 AM

Member

Topic Starter
Member
355 posts

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24.10.2018
Ran by BReese76 (26-10-2018 15:52:21)
Running from C:\Users\BReese76\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-12-13 22:31:51)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-239473584-822298280-3168733615-500 - Administrator - Disabled)
BReese76 (S-1-5-21-239473584-822298280-3168733615-1001 - Administrator - Enabled) => C:\Users\BReese76
Guest (S-1-5-21-239473584-822298280-3168733615-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-239473584-822298280-3168733615-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4 Elements II (HKLM-x32\...\WTA-cae94c41-98d3-4995-a92c-1a9f8e9e703a) (Version: 2.2.0.98 - WildTangent) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 18.05 (HKLM-x32\...\{23170F69-40C1-2701-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov)
7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - )
ActivePerl 5.16.1 Build 1601 (HKLM-x32\...\{9441AF70-8CCC-41EE-B2C1-398F5FE7E387}) (Version: 5.16.1601 - ActiveState)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 31.0.0.96 - Adobe Systems Incorporated)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Bridge CC 2018 (HKLM-x32\...\KBRG_8_1) (Version: 8.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.9 - Adobe Systems Incorporated)
Adobe Flash Player 31 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_7_5) (Version: 7.5 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_6) (Version: 19.1.6 - Adobe Systems Incorporated)
Adobe Photoshop Elements 13 (HKLM-x32\...\{609818B9-23EB-4196-B466-EFE05E92A32F}) (Version: 13.0 - Adobe Systems Incorporated)
Amazon Kindle (HKU\S-1-5-21-239473584-822298280-3168733615-1001\...\Amazon Kindle) (Version: 1.24.3.51068 - Amazon)
Amazon MP3 Downloader 1.0.17 (HKLM-x32\...\Amazon MP3 Downloader) (Version: 1.0.17 - Amazon Services LLC)
Amazon Music Importer (HKLM-x32\...\{EE54B7D5-57E0-A190-5D10-0982B52DF050}) (Version: 3.0.0 - Amazon Services LLC) Hidden
Amazon Music Importer (HKLM-x32\...\com.amazon.music.uploader) (Version: 3.0.0 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{7E5DC2C5-115A-322B-976C-219237FAED66}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Auslogics Disk Defrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 8.0.16.0 - Auslogics Labs Pty Ltd)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.7.2354 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 69.1.867.100 - AVAST Software)
Bejeweled 3 (HKLM-x32\...\WTA-e9b0d2ff-58f2-4f92-aa9f-4235ebcaa010) (Version: 2.2.0.98 - WildTangent) Hidden
Blackhawk Striker 2 (HKLM-x32\...\WTA-5c3a7a94-dfef-4e00-8d66-77ba16901e21) (Version: 2.2.0.95 - WildTangent) Hidden
Bubble Wrap (HKLM-x32\...\{5BFFDDEB-AFD7-499F-BB13-7A6EAD927CDA}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
calibre (HKLM-x32\...\{B76A3B8A-CD1E-4260-BA4A-6A6EAA05715D}) (Version: 2.82.0 - Kovid Goyal)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.47 - Piriform)
Chuzzle Deluxe (HKLM-x32\...\WTA-18a12f60-8d31-4fc4-b9d4-ba8c3db71ff8) (Version: 2.2.0.95 - WildTangent) Hidden
Cradle of Rome 2 (HKLM-x32\...\WTA-a28c47a7-a641-4085-a762-d1580dfb3be7) (Version: 2.2.0.98 - WildTangent) Hidden
CrystalDiskInfo 7.8.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.8.0 - Crystal Dew World)
CrystalDiskMark 6.0.1 (HKLM\...\CrystalDiskMark6_is1) (Version: 6.0.1 - Crystal Dew World)
DeepSkyStacker (HKLM-x32\...\{18435829-4E75-4CD1-9796-A62DBBAE2ED7}) (Version: 3.2.0 - )
DirectX for Managed Code Update (Summer 2004) (HKLM-x32\...\{E9E34215-82EF-4909-BE2F-F581F0DC9062}) (Version: 9.02.2904 - Microsoft) Hidden
Dora's World Adventure (HKLM-x32\...\WTA-8f7267c2-328a-41f3-b2d6-034896b7d44c) (Version: 2.2.0.95 - WildTangent) Hidden
Dropbox (HKU\S-1-5-21-239473584-822298280-3168733615-1001\...\Dropbox) (Version: 59.4.93 - Dropbox, Inc.)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Escape the Emerald Star (HKLM-x32\...\WTA-0fa94eff-d6c9-4239-a91c-51c12c0444a0) (Version: 2.2.0.98 - WildTangent) Hidden
Fantasy Hockey League (HKLM-x32\...\ST5UNST #1) (Version: - )
Farm Frenzy (HKLM-x32\...\WTA-ce060142-91ae-43c4-b0e0-f2c817140380) (Version: 2.2.0.98 - WildTangent) Hidden
Farmscapes (HKLM-x32\...\WTA-8100fd1a-3049-41a7-814f-8b53792f1f9b) (Version: 2.2.0.97 - WildTangent) Hidden
FATE (HKLM-x32\...\WTA-7202739a-55ea-4ae4-856c-5258f747150f) (Version: 2.2.0.97 - WildTangent) Hidden
Final Drive Fury (HKLM-x32\...\WTA-5dc76dc0-c994-4092-bb73-46a81f3bd8ae) (Version: 2.2.0.95 - WildTangent) Hidden
Fitbit Connect (HKLM-x32\...\{2F0A730C-3593-4637-B740-B9F589591376}) (Version: 2.0.2.7066 - Fitbit Inc.)
FITS Liberator 3.0.1 (HKLM-x32\...\FITS Liberator) (Version: 3.0.1 - ESO/ESA/NASA)
Golden Trails 2: The Lost Legacy Collector's Edition (HKLM-x32\...\WTA-9d8b0610-c5e3-45ee-af7c-cdeea94b2e90) (Version: 2.2.0.98 - WildTangent) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
Hoyle Card Games (HKLM-x32\...\WTA-d2187750-9140-4bdc-80c4-23556ca5aa81) (Version: 2.2.0.95 - WildTangent) Hidden
HP Application Assistant (HKLM\...\{0CE7EBAF-157D-4111-9146-057CB2A4023E}) (Version: 1.1.466.3970 - Hewlett-Packard)
HP Calendar (HKLM-x32\...\{2B38E0FA-D8A5-4EBF-A018-E3C1C8E7A2E2}) (Version: 5.1.4245.23508 - Hewlett-Packard)
HP Clock (HKLM-x32\...\{750E9D0F-B188-4A7E-ADD2-84B7ED7D32F6}) (Version: 5.1.4281.27332 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent)
HP Notes (HKLM-x32\...\{86BAB08A-5E66-4C53-82E3-C1E91673C7CA}) (Version: 5.1.4274.30382 - Hewlett-Packard)
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP Photosmart D110 All-In-One Driver 14.0 Rel. 7 (HKLM\...\{14BC6853-A74E-4874-B50D-679889D1544D}) (Version: 14.0 - HP)
HP RSS (HKLM-x32\...\{452479C5-0118-48E9-AA69-0A7339F95FC8}) (Version: 5.1.4289.23799 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 11.00.0001 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.9.18.3 - Hewlett-Packard Company)
HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
HP TouchSmart Background - Beats (HKLM-x32\...\{6A6F8D36-04BA-41E9-9004-1789BD545874}) (Version: 1.0.1.0 - Hewlett-Packard)
HP TouchSmart RecipeBox (HKLM-x32\...\{20714B53-FC73-4F9C-9687-49EB237D6FD7}) (Version: 3.0.3830.27730 - Hewlett-Packard)
HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard)
HP Weather (HKLM-x32\...\{776CC95E-8160-401B-AC79-164822AA8306}) (Version: 5.1.4245.22595 - Hewlett-Packard)
inSSIDer 3 (HKLM-x32\...\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}) (Version: 3.0.7.48 - MetaGeek, LLC)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Jewel Match 3 (HKLM-x32\...\WTA-4a300df6-0a04-42ca-8731-ce1dc72d918d) (Version: 2.2.0.98 - WildTangent) Hidden
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (HKLM-x32\...\WTA-cde176c2-3fbb-4206-8d44-8c409895fe58) (Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (HKLM-x32\...\WTA-57a418fb-a77e-43a6-b537-20d17df5f4d0) (Version: 2.2.0.95 - WildTangent) Hidden
LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
Luxor HD (HKLM-x32\...\WTA-afa075f1-744f-4c53-9043-24311e6226ae) (Version: 2.2.0.98 - WildTangent) Hidden
Mah Jong Medley (HKLM-x32\...\WTA-e396b932-3635-442c-a16a-ad5e9cd9ba6f) (Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Metric Converter (HKLM-x32\...\{D0661463-50F7-4A1E-83CB-37CC590589AE}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.10827.20181 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mortimer Beckett and the Crimson Thief Premium Edition (HKLM-x32\...\WTA-99303275-448e-4ef7-af3b-382815c633d8) (Version: 2.2.0.98 - WildTangent) Hidden
Mozilla Firefox 63.0 (x64 en-US) (HKLM\...\Mozilla Firefox 63.0 (x64 en-US)) (Version: 63.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 63.0.0.6865 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My Farm Life 2 (HKLM-x32\...\WTA-c2399047-bc9f-4bd9-be08-2bb213f1caf9) (Version: 2.2.0.98 - WildTangent) Hidden
Network64 (HKLM\...\{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}) (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Network64 (HKLM\...\{CE47BA54-78AC-409F-9151-BDF5BE15A804}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
Noiseware Community Edition (HKLM-x32\...\{CB3B7C24-30A1-4961-8039-94919F5ED2EE}) (Version: 2.6.0.1 - Imagenomic)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.2.33 - PDF Complete, Inc)
Penguins! (HKLM-x32\...\WTA-ba1d02c0-99a5-44d9-ad50-d78e0ff275e1) (Version: 2.2.0.98 - WildTangent) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-5265d433-55cf-4f91-8af7-6f222f20ecbe) (Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (HKLM-x32\...\WTA-f45a2279-a2f0-4996-b789-170e0caa6692) (Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (HKLM-x32\...\WTA-49198b23-c076-479e-8963-efcc5b8f3b43) (Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (HKLM-x32\...\WTA-717d6b13-c516-4e2f-aa7b-6859d039bc61) (Version: 2.2.0.98 - WildTangent) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6305 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6305 - CyberLink Corp.)
PS_AIO_07_D110_SW_Min (HKLM-x32\...\{42BBA4CC-EFB6-4653-A2CC-F305D4B399C3}) (Version: 140.0.142.000 - Hewlett-Packard) Hidden
Ralink 802.11n Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 3.2.12.0 - Ralink)
RealDownloader (HKLM-x32\...\{17C5FC50-8E12-4D06-AAF2-A9D9F0CE0A32}) (Version: 18.1.7.347 - RealNetworks) Hidden
RealDownloader (HKLM-x32\...\{6cf9c673-d8f4-48dc-b916-4e9bc19b5682}) (Version: 18.1.7.347 - RealNetworks) Hidden
RealDownloader (HKLM-x32\...\{EE8BACFF-60B3-4069-8F71-337A2662940A}) (Version: 18.1.7.343 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (HKLM-x32\...\{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}) (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM-x32\...\{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}) (Version: 10.0 - RealNetworks, Inc) Hidden
RealUpgrade 1.1 (HKLM-x32\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.5119 - CyberLink Corp.) Hidden
Roads of Rome 3 (HKLM-x32\...\WTA-e94797d3-3b47-45b2-b709-a68038792160) (Version: 2.2.0.98 - WildTangent) Hidden
RogueKiller version 11 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 11 - Adlice Software)
Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 140.0.77.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Spot (HKLM-x32\...\{3D171340-B528-42E0-92E4-BDA7AEEF6F32}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
Spotify (HKU\S-1-5-21-239473584-822298280-3168733615-1001\...\Spotify) (Version: 1.0.91.183.g259b84fa - Spotify AB)
Stellarium 0.12.1 (HKLM\...\Stellarium_is1) (Version: 0.12.1 - Stellarium team)
Tales of Lagoona (HKLM-x32\...\WTA-8ae7d57e-9bf6-4714-9287-2ebbabeb96ba) (Version: 2.2.0.98 - WildTangent) Hidden
Tap Tap Bear (HKLM-x32\...\{A393CDFF-BEB8-48EA-990D-2EB35B311D23}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
TI USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{355FBD67-5A4F-44DA-86A1-56EEC4C20EC0}) (Version: 1.12.18.0 - Texas Instruments Inc.)
TI USB3 Host Driver (HKLM-x32\...\{355FBD67-5A4F-44DA-86A1-56EEC4C20EC0}) (Version: 1.12.18.0 - Texas Instruments Inc.) Hidden
Toolbox (HKLM-x32\...\{BBFB2E59-B0DB-42C8-8F4D-CF4E85471667}) (Version: 140.0.424.000 - Hewlett-Packard) Hidden
Torchlight (HKLM-x32\...\WTA-564fcbde-007d-4035-80b5-601ed66ad9f1) (Version: 2.2.0.98 - WildTangent) Hidden
TSHostedAppLauncher (HKLM-x32\...\{F89BADB0-D319-470E-8024-443EE3A3402B}) (Version: 5.1.15.0 - Hewlett-Packard) Hidden
Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden
UpdateService (HKLM-x32\...\{E3AE96D6-E196-45B4-AF62-2B41998B9E37}) (Version: 1.0.0 - RealNetworks, Inc.) Hidden
vc2012_redist (HKLM-x32\...\{9402AEF2-5981-4097-8BE2-6501DAC4DBFD}) (Version: 1.0.0.0 - Realnetworks) Hidden
Video Downloader (HKLM-x32\...\{415B9F6F-CC10-472E-A5A2-8961A3374148}) (Version: 18.1.7 - RealNetworks) Hidden
Virtual Villagers 4 - The Tree of Life (HKLM-x32\...\WTA-2bbf0a89-bf22-4c3a-80ae-5e03ef3a7a49) (Version: 2.2.0.98 - WildTangent) Hidden
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
WildTangent Games App (HP Games) (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.0.10.5 - WildTangent) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinPatrol (HKLM-x32\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 35.5.2017.8 - Ruiware)
Youda Fisherman (HKLM-x32\...\WTA-d63f8446-d7e3-4baa-a564-dd263804d9c6) (Version: 2.2.0.98 - WildTangent) Hidden
Zuma's Revenge (HKLM-x32\...\WTA-5ba1d7e5-572b-42a4-bae2-e30c907395b5) (Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-239473584-822298280-3168733615-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-16] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-16] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1-x32: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-02-12] ()
ContextMenuHandlers1-x32: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-16] (AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-16] (AVAST Software)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => c:\program files (x86)\real\realplayer\RPDS\Bin64\rpcontextmenu.dll [2017-03-19] (RealNetworks, Inc.)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers6-x32: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ContextMenuHandlers6-x32: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-10-16] (AVAST Software)
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers1_S-1-5-21-239473584-822298280-3168733615-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-239473584-822298280-3168733615-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-239473584-822298280-3168733615-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\BReese76\AppData\Roaming\Dropbox\bin\DropboxExt64.25.0.dll [2018-10-09] (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {000A66B4-C5A7-40C0-ABE1-08F62EE40AAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {0CFDE608-A517-4970-8DD5-7D27BCC5DD06} - System32\Tasks\AdobeGCInvoker-1.0-BReese76-HP-BReese76 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {10E30BB0-AE64-4EF3-B424-33C0A39F5CB8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-05-17] (AVAST Software)
Task: {1CEA4FBB-5F27-40BB-8856-E49CFE253244} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-23] (Microsoft Corporation)
Task: {1E00BF53-E352-4DA4-B795-01FED872799B} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {2754156C-20FF-4CD1-8DBD-89ECBC13D3D4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-09-14] (AVAST Software)
Task: {2E79299A-3A28-4774-9C6E-60B0B6B33589} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-23] (Microsoft Corporation)
Task: {32B0AA4F-52BC-42AE-B6D7-BFBF6E75664C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {33076945-963E-4EC4-A13C-EB638BBC2955} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {37805D90-A519-4C58-B650-E54AA65A78FF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-10-23] (Microsoft Corporation)
Task: {3A7660D4-5184-4B98-8E6F-7FC5D3681F40} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-239473584-822298280-3168733615-1001 => C:\program files (x86)\real\realplayer\RealDownloader\RealUpgrade.exe [2017-03-14] (RealNetworks, Inc.)
Task: {46A5A90B-A669-442B-8B6B-FF40C235C02E} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {5029C1CA-5BCE-4679-A841-B76E8DFF3FC8} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {5804FA15-58A5-490E-AF66-E08730E35896} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-239473584-822298280-3168733615-1001 => C:\program files (x86)\real\realplayer\RealDownloader\recordingmanager.exe [2017-03-14] (RealNetworks, Inc.)
Task: {5A9E6666-6396-4315-852F-83E9914958B9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-19] (Piriform Ltd)
Task: {5BD1712A-D5B3-417E-BE67-3520BCA619D9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-10-16] (AVAST Software)
Task: {65611CF7-D869-4D49-9D2E-9E3D15BD4C0A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-10-23] (Microsoft Corporation)
Task: {67D28997-2E38-487C-8D43-508E5E36D925} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-14] (Microsoft Corporation)
Task: {6D9C6D34-86C2-427A-A303-7664C9BFA920} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {75C8E018-FAF0-4181-980B-8D0C5400D07E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-239473584-822298280-3168733615-1001UA => C:\Users\BReese76\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-04] (Dropbox, Inc.)
Task: {7F3072DE-345C-48F6-A5B2-83883AB13269} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-05-17] (AVAST Software)
Task: {848BECA2-ACC0-4D4E-874D-04F17BDE60AC} - System32\Tasks\RealDownloader Update Check => C:\program files (x86)\real\realplayer\RealDownloader\downloader2.exe
Task: {8EED3BE9-ABF2-4ABD-B322-AE309DF696F4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {8F6551B5-3956-411E-8DFF-B2B11FD32364} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-14] (Microsoft Corporation)
Task: {9420A5AA-43B0-436C-844D-D60495D91273} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {9CB1120C-48FE-45A1-839E-D793E9AED94B} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {BAD5407C-EF68-4424-9623-ECDD618259FE} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-239473584-822298280-3168733615-1001Core => C:\Users\BReese76\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-04] (Dropbox, Inc.)
Task: {BC0B38A5-D4D5-46F8-AFBD-29638758B612} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {C365ED2D-49B0-47DC-B27A-233A27F2F956} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {E1D022F4-FA9D-4F6F-92B6-809AD68B14A1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-10-23] (Microsoft Corporation)
Task: {E45D1C56-0ED2-4D79-A538-1B5223472194} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-10-23] (Microsoft Corporation)
Task: {E5937814-01F5-4765-A731-3DD78EE5817F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2018-08-30] (HP Inc.)
Task: {E870D75C-F851-459E-B3F8-6BB7B63CDA68} - System32\Tasks\Java Check => “C:\Program [Argument = Files\Java\jre1.6.0_01\bin\jucheck.exe”]
Task: {E9348A4E-9932-4F16-A079-233DC63FBF06} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {F4954C7E-F1F3-4A24-9E4B-D6D71AEAA2E5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-19] (Piriform Ltd)
Task: {F52BDA37-8830-496B-AC8D-FE65D87B2AB4} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-239473584-822298280-3168733615-1001 => C:\program files (x86)\real\realplayer\RealDownloader\RealUpgrade.exe [2017-03-14] (RealNetworks, Inc.)
Task: {F717F655-E608-4A88-8B12-54BE5F49E81F} - System32\Tasks\AdobeAAMUpdater-1.0-BReese76-HP-BReese76 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-02-20 22:09 - 2013-06-17 16:40 - 000035944 _____ () C:\windows\system32\ddmon4-64x.dll
2018-03-05 20:47 - 2018-03-05 20:47 - 000614848 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2017-02-12 15:31 - 2017-02-12 15:31 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 000264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2017-03-14 20:44 - 2017-03-14 20:44 - 000035104 _____ () C:\program files (x86)\real\realplayer\UpdateService\RealPlayerUpdateSvc.exe
2018-10-12 15:30 - 2018-10-26 10:29 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-10-16 10:24 - 2018-10-16 10:24 - 000730328 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2018-09-05 15:58 - 2018-09-05 15:58 - 037507528 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
2018-10-16 10:23 - 2018-10-16 10:23 - 000919256 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-10-16 10:24 - 2018-10-16 10:24 - 000598232 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-10-26 09:18 - 2018-10-26 09:18 - 005682832 _____ () C:\Program Files\AVAST Software\Avast\defs\18102604\algo.dll
2018-10-16 10:23 - 2018-10-16 10:23 - 000496856 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-10-16 10:23 - 2018-10-16 10:23 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-10-16 10:23 - 2018-10-16 10:23 - 001112280 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-03-10 17:26 - 2018-03-10 17:26 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-07-20 22:13 - 2018-07-20 22:13 - 080293888 ____R () C:\Program Files (x86)\Fitbit Connect\libcef.dll
2018-07-25 22:04 - 2018-07-25 22:04 - 000068608 ____R () C:\Program Files (x86)\Fitbit Connect\MP3Gain.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 002144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 007955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 000341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 000028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 000127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2018-07-31 10:57 - 2018-07-31 10:57 - 081764304 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2018-07-31 10:57 - 2018-07-31 10:57 - 002257360 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\swiftshader\libglesv2.dll
2018-07-31 10:57 - 2018-07-31 10:57 - 000110552 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\swiftshader\libegl.dll
2012-09-13 00:39 - 2012-09-13 00:39 - 000336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2017-03-14 20:44 - 2017-03-14 20:44 - 000040248 _____ () C:\program files (x86)\real\realplayer\UpdateService\DL2UpdatePlugin.dll
2017-03-14 20:44 - 2017-03-14 20:44 - 000042296 _____ () C:\program files (x86)\real\realplayer\UpdateService\RealDownloaderUpdatePlugin.dll
2017-03-14 20:43 - 2017-03-14 20:43 - 000039752 _____ () C:\program files (x86)\real\realplayer\UpdateService\VideoDLUpdatePlugin.dll
2018-06-11 15:57 - 2018-06-11 15:57 - 000142376 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\fs-ext\build\Release\fs-ext.node
2018-06-11 15:57 - 2018-06-11 15:57 - 000271400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2018-06-11 15:57 - 2018-06-11 15:57 - 000141864 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\ref\build\Release\binding.node
2018-06-11 15:57 - 2018-06-11 15:57 - 000150568 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\ffi\build\Release\ffi_bindings.node
2018-06-11 15:57 - 2018-06-11 15:57 - 000111144 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2018-06-11 15:57 - 2018-06-11 15:57 - 000110120 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Adobe Photoshop CS6 13.0 Final Multilanguage (patch-PainteR) [ChingLiu]:com.dropbox.attributes [168]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:34 - 2018-10-26 15:29 - 000002132 _____ C:\windows\system32\Drivers\etc\hosts

127.0.0.1       localhost
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-239473584-822298280-3168733615-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: CryptoPreventEmail => 3
MSCONFIG\Services: CryptoPreventFolderWatch => 3
MSCONFIG\Services: CryptoPreventMonSvc => 2
MSCONFIG\startupreg: AvastUI.exe => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
MSCONFIG\startupreg: Raptr => "C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe" --startup
MSCONFIG\startupreg: RealDownloader => C:\Program Files (x86)\Real\RealDownloader\downloader2.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{D86A00B7-D787-4FCF-99DE-7828BCCCAAB4}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{9207830A-E076-48DE-923C-0ED795B6911A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{0351AACC-82F6-431C-833C-B0F6AE936B88}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{0E08BD01-86AA-40C4-BB2E-CCDBC0329DF4}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{5BF64805-C0E7-4D45-B92D-444F9F19CE0C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{90F94230-F5F8-4433-B01C-E2F733161CD9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{406EDAFD-BDB5-45CB-85EA-9E5A623398D9}C:\users\breese76\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\breese76\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A10894CE-0E9F-4B8C-B334-5219B7792227}C:\users\breese76\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\breese76\appdata\roaming\spotify\spotify.exe
FirewallRules: [{0AE574CF-CB8F-45DA-B1E0-C510D13BDE60}] => (Block) C:\users\breese76\appdata\roaming\spotify\spotify.exe
FirewallRules: [{4626A069-0430-4CB6-B649-D014987AC2E3}] => (Block) C:\users\breese76\appdata\roaming\spotify\spotify.exe
FirewallRules: [{81B7D1FB-13D4-4C34-8636-CAB2FB99C130}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{4878E0EA-44E9-491B-ABC7-A68331422EA0}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{32D52DA7-7038-4FEA-A40B-7F192CCA5A9A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{052782F2-2F56-48A6-894D-B0AAF7C85305}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{397F67DA-7FA0-48F4-91E1-A9D6E2FF016C}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{8499C925-E03E-4489-AC50-4C3A46D0F887}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{D7AE063B-700E-45C0-B0E7-700026F79D40}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{FB8F4E8E-67DA-421B-AEB5-C0A32CD85F08}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{40DDC61A-3ADA-4E13-B05F-40BC8D433297}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{36AA9FD8-74A4-46EA-8CEB-64D893C506EF}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{68E8D4B1-AD44-43E1-ABA9-1E9DB694B51E}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{D3196FF9-1534-41AE-A7E4-DAE4DBE5A390}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{7E9D49B4-83A2-4216-9A10-A5B47742F505}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{7637EC3F-5FE6-4980-9AF4-63937327F824}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{387C399E-1650-48A9-895E-BE8B254769CA}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [TCP Query User{99B18C80-5651-4DF1-9D7D-5F3B7CC6C68E}C:\program files\adobe\adobe animate cc 2017\animate.exe] => (Allow) C:\program files\adobe\adobe animate cc 2017\animate.exe
FirewallRules: [UDP Query User{DF9E8C34-7F2D-4EB8-B268-B5767D0C6A59}C:\program files\adobe\adobe animate cc 2017\animate.exe] => (Allow) C:\program files\adobe\adobe animate cc 2017\animate.exe
FirewallRules: [{D93012D1-174B-4435-9226-86890370A575}] => (Block) C:\program files\adobe\adobe animate cc 2017\animate.exe
FirewallRules: [{8798B6CD-A844-4093-B348-524C2BB41397}] => (Block) C:\program files\adobe\adobe animate cc 2017\animate.exe
FirewallRules: [{2F563B47-0847-4817-B018-E55552F9E2A0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{F62FFA17-3323-4155-965A-2EE56A8BABEF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{C28DCD0B-1F6A-4BD8-ABD5-6139E3FBE114}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{C03AC624-0A25-46DA-AEA9-8AA30B9D39A9}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{30668312-C1EC-40AD-AF08-3282DE9E812D}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{45AE197E-2D6E-428F-B1C2-BEBC8FA76113}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{8B31B6F3-ACCB-4080-950E-30B2AC75932F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{BA69FE67-14E4-4C29-AD3B-4E8AB3CFFAE4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B62A6CAD-290A-4A26-AF65-F72FB93BF486}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe

==================== Restore Points =========================

26-10-2018 14:49:00 Windows Live Essentials
26-10-2018 14:50:47 WLSetup
26-10-2018 14:56:24 Removed Microsoft Silverlight
26-10-2018 14:59:19 Removed Apple Application Support
26-10-2018 15:09:54 Windows Live Essentials
26-10-2018 15:12:31 WLSetup

==================== Faulty Device Manager Devices =============

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (10/26/2018 03:44:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 24.10.2018.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1cb4

Start Time: 01d46d7cb4b945a1

Termination Time: 0

Application Path: C:\Users\BReese76\Desktop\FRST64.exe

Report Id: a16e7665-d970-11e8-a537-b4b52fb7793f

System errors:
=============
Error: (10/26/2018 03:49:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
and APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (10/26/2018 03:39:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
and APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (10/26/2018 03:38:31 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Windows Update service hung on starting.

Error: (10/26/2018 03:30:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The RealTimes Desktop Service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/26/2018 03:30:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The RealPlayer Cloud Service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/26/2018 03:29:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Ralink UPnP Media Server service to connect.

Error: (10/26/2018 03:29:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
and APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (10/26/2018 03:24:58 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

==================== Memory info ===========================

Processor: Intel® Core™ i5-2400 CPU @ 3.10GHz
Percentage of memory in use: 54%
Total physical RAM: 6100.01 MB
Available physical RAM: 2755.06 MB
Total Virtual: 12198.17 MB
Available Virtual: 8987.46 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:914.65 GB) (Free:444.84 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:16.64 GB) (Free:2.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 4C3DA384)

Partition: GPT.

==================== End of Addition.txt ============================

#18
BrianR1976

Posted 27 October 2018 - 01:26 AM

Member

Topic Starter
Member
355 posts

Process   CPU   Private Bytes   Working Set   PID   Description   Company Name   Verified Signer
System Idle Process   72.41   0 K   24 K   0
AvastSvc.exe   25.00   118,652 K   41,724 K   1604   Avast Service   AVAST Software   (Verified) AVAST Software s.r.o.
AvastUI.exe   0.82   22,768 K   27,084 K   2828   Avast Antivirus   AVAST Software   (Verified) AVAST Software s.r.o.
System   0.61   264 K   5,576 K   4
procexp64.exe   0.35   28,936 K   49,756 K   2260   Sysinternals Process Explorer   Sysinternals - www.sysinternals.com   (Verified) Microsoft Corporation
svchost.exe   0.32   187,040 K   197,608 K   988   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
Interrupts   0.18   0 K   0 K   n/a   Hardware Interrupts and DPCs
Adobe CEF Helper.exe   0.08   32,944 K   59,928 K   7316   Adobe CEF Helper   Adobe Inc.   (Verified) Adobe Systems Incorporated
Creative Cloud.exe   0.04   21,628 K   74,072 K   3324   Adobe Creative Cloud   Adobe Inc.   (Verified) Adobe Systems Incorporated
csrss.exe   0.03   15,376 K   32,308 K   508   Client Server Runtime Process   Microsoft Corporation   (Verified) Microsoft Windows
explorer.exe   0.03   30,364 K   50,328 K   2120   Windows Explorer   Microsoft Corporation   (Verified) Microsoft Windows
CameraHelperShell.exe   0.02   11,304 K   17,768 K   3668   Webcam Controller   Logitech Inc.   (Verified) Logitech
firefox.exe   0.02   288,620 K   309,396 K   5424   Firefox   Mozilla Corporation   (Verified) Mozilla Corporation
svchost.exe   0.02   5,124 K   10,672 K   708   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
Adobe Desktop Service.exe   0.02   79,480 K   115,912 K   5496   Creative Cloud   Adobe Inc.   (Verified) Adobe Systems Incorporated
LMS.exe   0.01   2,424 K   5,152 K   7344   Local Manageability Service   Intel Corporation   (Verified) Intel Corporation
SearchIndexer.exe   0.01   31,688 K   20,556 K   4224   Microsoft Windows Search Indexer   Microsoft Corporation   (Verified) Microsoft Windows
lsass.exe   < 0.01   5,764 K   13,448 K   608   Local Security Authority Process   Microsoft Corporation   (Verified) Microsoft Windows
MOM.exe   < 0.01   30,008 K   9,312 K   3372   Catalyst Control Center: Monitoring program   Advanced Micro Devices Inc.   (Verified) Advanced Micro Devices
CCleaner64.exe   < 0.01   15,664 K   6,384 K   3840   CCleaner   Piriform Ltd   (Verified) Piriform Ltd
svchost.exe   < 0.01   11,216 K   14,756 K   5724   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe   < 0.01   8,412 K   15,164 K   2488   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
Fitbit Connect.exe   < 0.01   14,412 K   31,264 K   2972   Fitbit Connect Desktop Client RC   Fitbit, Inc.   (Verified) Fitbit
svchost.exe   < 0.01   17,996 K   19,620 K   1304   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
firefox.exe   < 0.01   170,356 K   192,012 K   5516   Firefox   Mozilla Corporation   (Verified) Mozilla Corporation
AGMService.exe   < 0.01   2,488 K   6,680 K   1296   Adobe Genuine Software Service   Adobe Systems, Incorporated   (Verified) Adobe Systems Incorporated
FitbitConnectService.exe   < 0.01   19,880 K   24,752 K   2648   Fitbit Connect Service RC   Fitbit, Inc.   (Verified) Fitbit
wmpnetwk.exe   < 0.01   16,176 K   13,976 K   4168   Windows Media Player Network Sharing Service   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe   < 0.01   14,296 K   24,028 K   1016   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
spoolsv.exe   < 0.01   15,060 K   22,380 K   1888   Spooler SubSystem App   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe   < 0.01   4,420 K   8,868 K   7692   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
CoreSync.exe   < 0.01   7,768 K   17,440 K   1148   Core Sync       (Verified) Adobe Systems Incorporated
unchecky_bg.exe   < 0.01   2,104 K   7,640 K   4132   Unchecky Background Process   Reason Software Company Inc.   (Verified) Reason Software Company Inc.
taskhost.exe   < 0.01   11,660 K   16,656 K   492   Host Process for Windows Tasks   Microsoft Corporation   (Verified) Microsoft Windows
mbamtray.exe   < 0.01   25,328 K   40,044 K   2636   Malwarebytes Tray Application   Malwarebytes   (Verified) Malwarebytes Corporation
node.exe   < 0.01   47,716 K   57,424 K   6644   Node.js: Server-side JavaScript   Node.js   (Verified) Node.js Foundation
aswidsagenta.exe   < 0.01   53,200 K   70,308 K   5840   Avast Behavior Shield   AVAST Software   (Verified) AVAST Software s.r.o.
svchost.exe   < 0.01   26,292 K   41,652 K   260   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
WinPatrol.exe   < 0.01   2,944 K   9,468 K   2172   WinPatrol Monitor   Ruiware   (Verified) Ruiware
OfficeClickToRun.exe   < 0.01   31,696 K   47,204 K   1728   Microsoft Office Click-to-Run (SxS)   Microsoft Corporation   (Verified) Microsoft Corporation
csrss.exe   < 0.01   2,740 K   5,456 K   420   Client Server Runtime Process   Microsoft Corporation   (Verified) Microsoft Windows
AdobeUpdateService.exe   < 0.01   2,608 K   6,244 K   1260   Adobe Update Service   Adobe Inc.   (Verified) Adobe Systems Incorporated
svchost.exe   < 0.01   7,184 K   11,280 K   812   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
PhotoshopElementsFileAgent.exe   < 0.01   2,384 K   1,008 K   3924   Adobe Photoshop Elements 13.0 (component)   Adobe Systems Incorporated   (Verified) Adobe Systems Incorporated
MBAMService.exe   < 0.01   36,828 K   66,580 K   4308   Malwarebytes Service   Malwarebytes   (Verified) Malwarebytes Corporation
svchost.exe   < 0.01   17,088 K   21,316 K   1460   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
stacsv64.exe   < 0.01   11,952 K   9,408 K   424   IDT PC Audio   IDT, Inc.   (Verified) Microsoft Windows Hardware Compatibility Publisher
WUDFHost.exe       1,804 K   5,612 K   5416   Windows Driver Foundation - User-mode Driver Framework Host Process   Microsoft Corporation   (Verified) Microsoft Windows
WUDFHost.exe       2,296 K   6,768 K   5760   Windows Driver Foundation - User-mode Driver Framework Host Process   Microsoft Corporation   (Verified) Microsoft Windows
WmiPrvSE.exe       7,840 K   13,940 K   4576   WMI Provider Host   Microsoft Corporation   (Verified) Microsoft Windows
WmiPrvSE.exe       3,188 K   7,524 K   4816   WMI Provider Host   Microsoft Corporation   (Verified) Microsoft Windows
wlanext.exe       2,468 K   6,536 K   1596   Windows Wireless LAN 802.11 Extensibility Framework   Microsoft Corporation   (Verified) Microsoft Windows
WirelessKB850NotificationService.exe       1,444 K   4,556 K   4108   WirelessKB850NotificationService.exe   Microsoft Corporation   (Verified) Microsoft Corporation
winlogon.exe       3,352 K   8,004 K   552   Windows Logon Application   Microsoft Corporation   (Verified) Microsoft Windows
wininit.exe       1,908 K   5,100 K   496   Windows Start-Up Application   Microsoft Corporation   (Verified) Microsoft Windows
unsecapp.exe       1,872 K   5,812 K   1368   Sink to receive asynchronous callbacks for WMI client application   Microsoft Corporation   (Verified) Microsoft Windows
unchecky_svc.exe       2,420 K   5,948 K   4004   Unchecky Service   Reason Software Company Inc.   (Verified) Reason Software Company Inc.
taskeng.exe       2,652 K   7,156 K   2180   Task Scheduler Engine   Microsoft Corporation   (Verified) Microsoft Windows
taskeng.exe       2,152 K   6,116 K   1192   Task Scheduler Engine   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       19,684 K   22,428 K   952   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       2,860 K   6,468 K   1108   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       2,016 K   6,020 K   3044   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       2,148 K   6,200 K   1696   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       1,396 K   4,112 K   1508   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       4,440 K   8,144 K   2372   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       1,376 K   4,084 K   3164   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
sttray64.exe       9,168 K   20,168 K   2624   IDT PC Audio   IDT, Inc.   (Verified) Microsoft Windows Hardware Compatibility Publisher
smss.exe       596 K   1,392 K   312   Windows Session Manager   Microsoft Corporation   (Verified) Microsoft Windows
sftvsa.exe       1,524 K   5,152 K   924   Microsoft Application Virtualization Virtual Service Agent   Microsoft Corporation   (Verified) Microsoft Corporation
sftlist.exe       5,328 K   13,504 K   4724   Microsoft Application Virtualization Client Service   Microsoft Corporation   (Verified) Microsoft Corporation
services.exe       7,048 K   11,536 K   600   Services and Controller app   Microsoft Corporation   (Verified) Microsoft Windows
realsched.exe       2,916 K   1,504 K   3144   RealNetworks Scheduler   RealNetworks, Inc.   (Verified) RealNetworks
RealPlayerUpdateSvc.exe       2,440 K   8,224 K   4008           (Verified) RealNetworks
RaRegistry64.exe       1,612 K   4,532 K   3196   RalinkRegistryWriter   Ralink Technology, Corp.   (No signature was present in the subject) Ralink Technology, Corp.
pdfsvc.exe       2,580 K   7,932 K   2752   Dispatcher   PDF Complete Inc   (Verified) PDF Complete Inc.
LWS.exe       4,872 K   13,132 K   3256   Logitech Webcam Software   Logitech Inc.   (Verified) Logitech
lsm.exe       2,712 K   4,688 K   616   Local Session Manager Service   Microsoft Corporation   (Verified) Microsoft Windows
hpwuschd2.exe       1,056 K   3,932 K   3308   hpwuSchd Application   Hewlett-Packard   (A certificate was explicitly revoked by its issuer) Hewlett-Packard
HPTouchSmartSyncCalReminderApp.exe       38,444 K   44,132 K   7176   HP TouchSmart Calendar Service   Hewlett-Packard   (No signature was present in the subject) Hewlett-Packard
hpsysdrv.exe       988 K   3,776 K   2720   hpsysdrv   Hewlett-Packard   (Verified) Hewlett-Packard Company
HPSupportSolutionsFrameworkService.exe       29,564 K   30,096 K   8100   HP Support Solutions Framework Service   HP Inc.   (Verified) HP Inc.
GoogleUpdate.exe       2,168 K   692 K   2112   Google Installer   Google Inc.   (Verified) Google Inc
GCalService.exe       21,112 K   24,528 K   7668   HP TouchSmart Calendar   Hewlett-Packard   (No signature was present in the subject) Hewlett-Packard
firefox.exe       197,024 K   262,304 K   6384   Firefox   Mozilla Corporation   (Verified) Mozilla Corporation
firefox.exe       46,704 K   49,612 K   6172   Firefox   Mozilla Corporation   (Verified) Mozilla Corporation
firefox.exe       53,808 K   57,552 K   3384   Firefox   Mozilla Corporation   (Verified) Mozilla Corporation
dwm.exe       2,208 K   7,412 K   2088   Desktop Window Manager   Microsoft Corporation   (Verified) Microsoft Windows
DropboxUpdate.exe       2,512 K   3,160 K   1616   Dropbox Update   Dropbox, Inc.   (Verified) Dropbox
dllhost.exe       2,876 K   8,428 K   8848   COM Surrogate   Microsoft Corporation   (Verified) Microsoft Windows
CVHSVC.EXE       4,272 K   9,920 K   3288   Microsoft Office Client Virtualization Service    Microsoft Corporation   (Verified) Microsoft Corporation
conhost.exe       1,588 K   4,104 K   4608   Console Window Host   Microsoft Corporation   (Verified) Microsoft Windows
conhost.exe       1,092 K   3,144 K   1612   Console Window Host   Microsoft Corporation   (Verified) Microsoft Windows
CCXProcess.exe       892 K   3,024 K   7412   CCXProcess   Adobe Systems Incorporated   (Verified) Adobe Systems Incorporated
CCC.exe       80,260 K   21,792 K   7232   Catalyst Control Center: Host application   Advanced Micro Devices Inc.   (Verified) Advanced Micro Devices
Beats64.exe       2,140 K   5,868 K   2728   HP Beats   Hewlett-Packard    (Verified) Microsoft Windows Hardware Compatibility Publisher
AvastBrowserCrashHandler64.exe       1,752 K   848 K   2620   Avast Browser Update   AVAST Software   (Verified) AVAST Software s.r.o.
AvastBrowserCrashHandler.exe       1,640 K   736 K   3404   Avast Browser Update   AVAST Software   (Verified) AVAST Software s.r.o.
audiodg.exe       15,440 K   16,920 K   6616   Windows Audio Device Graph Isolation    Microsoft Corporation   (Verified) Microsoft Windows
atiesrxx.exe       1,684 K   5,228 K   896   AMD External Events Service Module   AMD   (Verified) Microsoft Windows Hardware Compatibility Publisher
atieclxx.exe       2,668 K   7,620 K   1540   AMD External Events Client Module   AMD   (Verified) Microsoft Windows Hardware Compatibility Publisher
armsvc.exe       1,228 K   4,272 K   1216   Adobe Acrobat Update Service   Adobe Systems Incorporated   (Verified) Adobe Systems
AGSService.exe       2,032 K   8,124 K   1332   Adobe Genuine Software Integrity Service   Adobe Systems, Incorporated   (Verified) Adobe Systems Incorporated
AdobeIPCBroker.exe       4,836 K   8,788 K   5472   Adobe IPC Broker   Adobe Systems Incorporated   (Verified) Adobe Systems Incorporated
Adobe CEF Helper.exe       42,752 K   66,132 K   3432   Adobe CEF Helper   Adobe Inc.   (Verified) Adobe Systems Incorporated

#19
BrianR1976

Posted 27 October 2018 - 01:28 AM

Member

Topic Starter
Member
355 posts

Sorry, something happened earlier and I had to leave very suddenly.

I uninstalled a bunch of programs. I have a couple of really old Adobe programs that I cannot get rid of. They predate Creative Cloud and I have no idea how to remove them. I also looked into updating the Wireless card. The driver appears to be up to date. And do I not need Java at all?

#20
RKinner

Posted 27 October 2018 - 04:09 AM

Malware Expert

Expert
24,624 posts

Java is not needed these days. Used to be a lot of websites used it but it was targeted so often by malware that it's now very rare to find a website that needs it. Haven't had it on my own PCs for several years.

Avast is not happy. Get a new copy of the offline Avast Antivirus Free installation files from:

https://www.avast.co...tallation-files

Download and save.

Uninstall your old copy of Avast. Reboot.

Right click on the downloaded file and Run As Admin.

Do not let it give you the Trial version. Stick with the Basic (free) version and uncheck any optional software. (I've seen them offer Dropbox and/or Chrome). After it installs you usually have to reboot again and decline the free trial. Once you get Avast reinstalled then

Install the System Update Readiness Tool for Windows 7

This link is for 64 bit:
https://www.microsof...s.aspx?id=20858

This one for 32 bit:
https://www.microsof...ls.aspx?id=3132

Once that runs then get

KB3083710 and KB3102810 if you don't have them

https://support.micr...n-us/kb/3083710

https://support.micr...n-us/kb/3102810

Then run Process Explorer again and post the logs. Remember to wait a ute for it to settle down before creating the log.

Which old Adobe products do you not want?

#21
BrianR1976

Posted 27 October 2018 - 12:58 PM

Member

Topic Starter
Member
355 posts

Process   CPU   Private Bytes   Working Set   PID   Description   Company Name   Verified Signer
System Idle Process   94.13   0 K   24 K   0
procexp64.exe   6.32   29,984 K   51,252 K   11108   Sysinternals Process Explorer   Sysinternals - www.sysinternals.com   (Verified) Microsoft Corporation
svchost.exe   0.56   5,092 K   10,448 K   688   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
AvastUI.exe   0.55   97,396 K   41,464 K   4244   Avast Antivirus   AVAST Software   (Verified) AVAST Software s.r.o.
lsass.exe   0.31   6,040 K   13,632 K   532   Local Security Authority Process   Microsoft Corporation   (Verified) Microsoft Windows
explorer.exe   0.23   36,668 K   59,724 K   2820   Windows Explorer   Microsoft Corporation   (Verified) Microsoft Windows
Interrupts   0.41   0 K   0 K   n/a   Hardware Interrupts and DPCs
System   0.19   540 K   19,740 K   4
csrss.exe   0.13   15,612 K   34,708 K   472   Client Server Runtime Process   Microsoft Corporation   (Verified) Microsoft Windows
Adobe CEF Helper.exe   0.11   32,388 K   55,444 K   1604   Adobe CEF Helper   Adobe Inc.   (Verified) Adobe Systems Incorporated
Creative Cloud.exe   0.07   23,300 K   73,176 K   3300   Adobe Creative Cloud   Adobe Inc.   (Verified) Adobe Systems Incorporated
unchecky_bg.exe   0.06   2,428 K   8,276 K   3052   Unchecky Background Process   Reason Software Company Inc.   (Verified) Reason Software Company Inc.
aswidsagenta.exe   0.06   19,008 K   36,088 K   7992   Avast Behavior Shield   AVAST Software   (Verified) AVAST Software s.r.o.
AvastSvc.exe   0.05   267,004 K   41,968 K   5044   Avast Service   AVAST Software   (Verified) AVAST Software s.r.o.
svchost.exe   0.05   7,780 K   11,760 K   764   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
FitbitConnectService.exe   0.04   20,380 K   25,700 K   1744   Fitbit Connect Service RC   Fitbit, Inc.   (Verified) Fitbit
CameraHelperShell.exe   0.03   12,016 K   17,324 K   3440   Webcam Controller   Logitech Inc.   (Verified) Logitech
Adobe Desktop Service.exe   0.02   74,752 K   104,028 K   5952   Creative Cloud   Adobe Inc.   (Verified) Adobe Systems Incorporated
LMS.exe   0.02   2,628 K   5,248 K   1080   Local Manageability Service   Intel Corporation   (Verified) Intel Corporation
svchost.exe   0.02   9,536 K   15,896 K   1588   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe   0.01   11,596 K   15,072 K   5064   Host Process for Windows Services   Microsoft Corporation   (No signature was present in the subject) Microsoft Corporation
SearchIndexer.exe   0.01   32,736 K   18,404 K   3320   Microsoft Windows Search Indexer   Microsoft Corporation   (Verified) Microsoft Windows
CCleaner64.exe   0.01   14,800 K   5,980 K   4432   CCleaner   Piriform Ltd   (Verified) Piriform Ltd
svchost.exe   0.01   35,044 K   37,444 K   1288   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
taskhost.exe   0.01   8,772 K   15,600 K   2608   Host Process for Windows Tasks   Microsoft Corporation   (Verified) Microsoft Windows
OfficeClickToRun.exe   0.01   33,068 K   47,588 K   1936   Microsoft Office Click-to-Run (SxS)   Microsoft Corporation   (Verified) Microsoft Corporation
svchost.exe   < 0.01   25,612 K   24,028 K   916   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
MOM.exe   < 0.01   29,580 K   8,916 K   3192   Catalyst Control Center: Monitoring program   Advanced Micro Devices Inc.   (Verified) Advanced Micro Devices
lsm.exe   < 0.01   3,100 K   4,932 K   540   Local Session Manager Service   Microsoft Corporation   (Verified) Microsoft Windows
WinPatrol.exe   < 0.01   9,880 K   15,964 K   2616   WinPatrol Monitor   Ruiware   (Verified) Ruiware
Fitbit Connect.exe   < 0.01   14,852 K   29,912 K   2572   Fitbit Connect Desktop Client RC   Fitbit, Inc.   (Verified) Fitbit
AGMService.exe   < 0.01   2,460 K   6,516 K   1876   Adobe Genuine Software Service   Adobe Systems, Incorporated   (Verified) Adobe Systems Incorporated
svchost.exe   < 0.01   4,376 K   8,692 K   6788   Host Process for Windows Services   Microsoft Corporation   (No signature was present in the subject) Microsoft Corporation
svchost.exe   < 0.01   33,328 K   52,204 K   1020   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe   < 0.01   16,060 K   28,060 K   988   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
CoreSync.exe   < 0.01   7,912 K   16,592 K   6256   Core Sync       (Verified) Adobe Systems Incorporated
services.exe   < 0.01   6,848 K   10,648 K   508   Services and Controller app   Microsoft Corporation   (Verified) Microsoft Windows
csrss.exe   < 0.01   2,664 K   5,364 K   380   Client Server Runtime Process   Microsoft Corporation   (Verified) Microsoft Windows
GCalService.exe   < 0.01   17,636 K   18,720 K   5740   HP TouchSmart Calendar   Hewlett-Packard   (No signature was present in the subject) Hewlett-Packard
node.exe   < 0.01   42,640 K   48,352 K   5964   Node.js: Server-side JavaScript   Node.js   (Verified) Node.js Foundation
AdobeUpdateService.exe   < 0.01   2,576 K   6,124 K   1836   Adobe Update Service   Adobe Inc.   (Verified) Adobe Systems Incorporated
SearchProtocolHost.exe   < 0.01   3,452 K   9,268 K   11236   Microsoft Windows Search Protocol Host   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe   < 0.01   182,076 K   177,156 K   948   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
sftlist.exe   < 0.01   5,292 K   12,696 K   4168   Microsoft Application Virtualization Client Service   Microsoft Corporation   (Verified) Microsoft Corporation
stacsv64.exe   < 0.01   11,948 K   8,920 K   288   IDT PC Audio   IDT, Inc.   (Verified) Microsoft Windows Hardware Compatibility Publisher
MBAMService.exe   < 0.01   17,284 K   45,356 K   3808   Malwarebytes Service   Malwarebytes   (Verified) Malwarebytes Corporation
spoolsv.exe   < 0.01   16,920 K   22,596 K   1632   Spooler SubSystem App   Microsoft Corporation   (Verified) Microsoft Windows
PhotoshopElementsFileAgent.exe   < 0.01   2,384 K   1,012 K   6976   Adobe Photoshop Elements 13.0 (component)   Adobe Systems Incorporated   (Verified) Adobe Systems Incorporated
WUDFHost.exe       1,804 K   5,424 K   3404   Windows Driver Foundation - User-mode Driver Framework Host Process   Microsoft Corporation   (Verified) Microsoft Windows
WUDFHost.exe       2,304 K   6,656 K   5316   Windows Driver Foundation - User-mode Driver Framework Host Process   Microsoft Corporation   (Verified) Microsoft Windows
wmpnetwk.exe       15,964 K   15,112 K   3308   Windows Media Player Network Sharing Service   Microsoft Corporation   (Verified) Microsoft Windows
WmiPrvSE.exe       7,456 K   12,564 K   3716   WMI Provider Host   Microsoft Corporation   (Verified) Microsoft Windows
wlanext.exe       2,488 K   6,520 K   1472   Windows Wireless LAN 802.11 Extensibility Framework   Microsoft Corporation   (Verified) Microsoft Windows
WirelessKB850NotificationService.exe       1,456 K   4,480 K   2552   WirelessKB850NotificationService.exe   Microsoft Corporation   (Verified) Microsoft Corporation
winlogon.exe       3,336 K   7,924 K   600   Windows Logon Application   Microsoft Corporation   (Verified) Microsoft Windows
wininit.exe       2,032 K   5,180 K   448   Windows Start-Up Application   Microsoft Corporation   (Verified) Microsoft Windows
unsecapp.exe       1,924 K   5,844 K   6792   Sink to receive asynchronous callbacks for WMI client application   Microsoft Corporation   (Verified) Microsoft Windows
unchecky_svc.exe       3,104 K   7,176 K   2484   Unchecky Service   Reason Software Company Inc.   (Verified) Reason Software Company Inc.
taskeng.exe       2,180 K   6,156 K   2720   Task Scheduler Engine   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       16,900 K   21,432 K   1424   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       3,064 K   6,688 K   1068   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       6,748 K   12,480 K   1992   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       1,512 K   4,232 K   2072   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
svchost.exe       1,340 K   3,988 K   2320   Host Process for Windows Services   Microsoft Corporation   (No signature was present in the subject) Microsoft Corporation
svchost.exe       2,136 K   6,200 K   1040   Host Process for Windows Services   Microsoft Corporation   (Verified) Microsoft Windows
sttray64.exe       9,192 K   18,868 K   2196   IDT PC Audio   IDT, Inc.   (Verified) Microsoft Windows Hardware Compatibility Publisher
smss.exe       904 K   1,584 K   276   Windows Session Manager   Microsoft Corporation   (Verified) Microsoft Windows
sftvsa.exe       1,512 K   4,932 K   4060   Microsoft Application Virtualization Virtual Service Agent   Microsoft Corporation   (Verified) Microsoft Corporation
SearchFilterHost.exe       3,308 K   7,680 K   8644   Microsoft Windows Search Filter Host   Microsoft Corporation   (Verified) Microsoft Windows
realsched.exe       2,904 K   1,136 K   1256   RealNetworks Scheduler   RealNetworks, Inc.   (Verified) RealNetworks
RealPlayerUpdateSvc.exe       2,276 K   8,176 K   3732           (Verified) RealNetworks
RaRegistry64.exe       1,664 K   4,472 K   2352   RalinkRegistryWriter   Ralink Technology, Corp.   (No signature was present in the subject) Ralink Technology, Corp.
pdfsvc.exe       2,500 K   7,700 K   2200   Dispatcher   PDF Complete Inc   (Verified) PDF Complete Inc.
mbamtray.exe       20,824 K   31,424 K   1644   Malwarebytes Tray Application   Malwarebytes   (Verified) Malwarebytes Corporation
LWS.exe       4,876 K   12,196 K   2428   Logitech Webcam Software   Logitech Inc.   (Verified) Logitech
hpwuschd2.exe       1,056 K   3,840 K   1228   hpwuSchd Application   Hewlett-Packard   (A certificate was explicitly revoked by its issuer) Hewlett-Packard
HPTouchSmartSyncCalReminderApp.exe       38,648 K   41,212 K   1612   HP TouchSmart Calendar Service   Hewlett-Packard   (No signature was present in the subject) Hewlett-Packard
hpsysdrv.exe       996 K   3,772 K   2332   hpsysdrv   Hewlett-Packard   (Verified) Hewlett-Packard Company
HPSupportSolutionsFrameworkService.exe       29,312 K   27,592 K   3096   HP Support Solutions Framework Service   HP Inc.   (Verified) HP Inc.
GoogleUpdate.exe       2,152 K   528 K   2828   Google Installer   Google Inc.   (Verified) Google Inc
dwm.exe       2,240 K   7,728 K   2764   Desktop Window Manager   Microsoft Corporation   (Verified) Microsoft Windows
DropboxUpdate.exe       2,512 K   3,180 K   2548   Dropbox Update   Dropbox, Inc.   (Verified) Dropbox
CVHSVC.EXE       4,204 K   9,700 K   4624   Microsoft Office Client Virtualization Service    Microsoft Corporation   (Verified) Microsoft Corporation
conhost.exe       1,088 K   3,124 K   1488   Console Window Host   Microsoft Corporation   (Verified) Microsoft Windows
conhost.exe       1,472 K   3,876 K   3400   Console Window Host   Microsoft Corporation   (Verified) Microsoft Windows
CCXProcess.exe       780 K   2,860 K   5960   CCXProcess   Adobe Systems Incorporated   (Verified) Adobe Systems Incorporated
CCC.exe       79,856 K   22,536 K   3920   Catalyst Control Center: Host application   Advanced Micro Devices Inc.   (Verified) Advanced Micro Devices
Beats64.exe       2,160 K   5,916 K   2316   HP Beats   Hewlett-Packard    (Verified) Microsoft Windows Hardware Compatibility Publisher
AvastBrowserCrashHandler64.exe       1,760 K   604 K   6948   Avast Browser Update   AVAST Software   (Verified) AVAST Software s.r.o.
AvastBrowserCrashHandler.exe       1,640 K   528 K   6892   Avast Browser Update   AVAST Software   (Verified) AVAST Software s.r.o.
atiesrxx.exe       1,656 K   5,160 K   824   AMD External Events Service Module   AMD   (Verified) Microsoft Windows Hardware Compatibility Publisher
atieclxx.exe       2,660 K   7,468 K   1244   AMD External Events Client Module   AMD   (Verified) Microsoft Windows Hardware Compatibility Publisher
armsvc.exe       1,232 K   4,208 K   1812   Adobe Acrobat Update Service   Adobe Systems Incorporated   (Verified) Adobe Systems
AGSService.exe       3,976 K   11,056 K   1908   Adobe Genuine Software Integrity Service   Adobe Systems, Incorporated   (Verified) Adobe Systems Incorporated
AdobeIPCBroker.exe       5,168 K   8,944 K   3584   Adobe IPC Broker   Adobe Systems Incorporated   (Verified) Adobe Systems Incorporated
Adobe CEF Helper.exe       42,172 K   60,000 K   6416   Adobe CEF Helper   Adobe Inc.   (Verified) Adobe Systems Incorporated

#22
BrianR1976

Posted 27 October 2018 - 01:13 PM

Member

Topic Starter
Member
355 posts

I let process explorer run for a few minutes before saving it. It looks like I had both of the extra links you supplied me. The System Update tool ran for a while and then finished. Avast was uninstalled and reinstalled and Java was uninstalled (though I forgot and this this last)

As for the Adobe products I attached a picture of the ones I want to remove. The Adobe remover tool wont get rid of them. I believe they were cracked copies that I could never get off of the computer. I know site policy is against that kind of thing but I am trying to remove them and I do subscribe to Creative Cloud now.

#23
RKinner

Posted 27 October 2018 - 03:10 PM

Malware Expert

Expert
24,624 posts

Process Explorer looks very good. Are things a bit faster now?

Let's try Latency Monitor to see if anything is slowing you down:

Go to

http://www.resplendence.com/downloads

Scroll down to

System Monitoring Tools

and then find

LatencyMon 6.70 (or it may be a higher number if they update)

Click on Download free home edition

Save it then right click and Run As Admin. It will install and then start the program.
It will tell you to click on the Start button but there isn't one.
Instead click on the green arrowhead (looks like a Play button). Let it run for at least 20 seconds. Then hit the red box to stop it.

Edit, Copy Report text to Clipboard then move to a REPLY and Ctrl + v to paste the text into a reply.

See if the free Revo uninstaller will help remove the Adobe products:

Get the Free version of Revo uninstaller.

http://www.revounins...e_download.html

The free version download is near the bottom of the page where it says:

Free Full Downloads of Revo Uninstaller

#24
BrianR1976

Posted 27 October 2018 - 04:20 PM

Member

Topic Starter
Member
355 posts

_________________________________________________________________________________________________________
CONCLUSION
_________________________________________________________________________________________________________
Your system seems to be having difficulty handling real-time audio and other tasks. You may experience drop outs, clicks or pops due to buffer underruns. One or more DPC routines that belong to a driver running in your system appear to be executing for too long. At least one detected problem appears to be network related. In case you are using a WLAN adapter, try disabling it to get better results. One problem may be related to power management, disable CPU throttling settings in Control Panel and BIOS setup. Check for BIOS updates.
LatencyMon has been analyzing your system for 0:01:07 (h:mm:ss) on all processors.

_________________________________________________________________________________________________________
SYSTEM INFORMATION
_________________________________________________________________________________________________________
Computer name:                                        BREESE76-HP
OS version:                                           Windows 7 Service Pack 1, 6.1, build: 7601 (x64)
Hardware:                                             p7-1380t, Hewlett-Packard, Foxconn, 2ADA
CPU:                                                  GenuineIntel Intel® Core™ i5-2400 CPU @ 3.10GHz
Logical processors:                                   4
Processor groups:                                     1
RAM:                                                  6100 MB total

_________________________________________________________________________________________________________
CPU SPEED
_________________________________________________________________________________________________________
Reported CPU speed:                                   3093 MHz

Note: reported execution times may be calculated based on a fixed reported CPU speed. Disable variable speed settings like Intel Speed Step and AMD Cool N Quiet in the BIOS setup for more accurate results.

WARNING: the CPU speed that was measured is only a fraction of the CPU speed reported. Your CPUs may be throttled back due to variable speed settings and thermal issues. It is suggested that you run a utility which reports your actual CPU frequency and temperature.

_________________________________________________________________________________________________________
MEASURED INTERRUPT TO USER PROCESS LATENCIES
_________________________________________________________________________________________________________
The interrupt to process latency reflects the measured interval that a usermode process needed to respond to a hardware request from the moment the interrupt service routine started execution. This includes the scheduling and execution of a DPC routine, the signaling of an event and the waking up of a usermode thread from an idle wait state in response to that event.

Highest measured interrupt to process latency (µs):   1771.859221
Average measured interrupt to process latency (µs):   6.689878

Highest measured interrupt to DPC latency (µs):       1742.394447
Average measured interrupt to DPC latency (µs):       3.032430

_________________________________________________________________________________________________________
REPORTED ISRs
_________________________________________________________________________________________________________
Interrupt service routines are routines installed by the OS and device drivers that execute in response to a hardware interrupt signal.

Highest ISR routine execution time (µs):              18.504041
Driver with highest ISR routine execution time:       ataport.SYS - ATAPI Driver Extension, Microsoft Corporation

Highest reported total ISR routine time (%):          0.002085
Driver with highest ISR total time:                   ataport.SYS - ATAPI Driver Extension, Microsoft Corporation

Total time spent in ISRs (%)                          0.005513

ISR count (execution time <250 µs):                   3040
ISR count (execution time 250-500 µs):                0
ISR count (execution time 500-999 µs):                0
ISR count (execution time 1000-1999 µs):              0
ISR count (execution time 2000-3999 µs):              0
ISR count (execution time >=4000 µs):                 0

_________________________________________________________________________________________________________
REPORTED DPCs
_________________________________________________________________________________________________________
DPC routines are part of the interrupt servicing dispatch mechanism and disable the possibility for a process to utilize the CPU while it is interrupted until the DPC has finished execution.

Highest DPC routine execution time (µs):              1533.911413
Driver with highest DPC routine execution time:       tcpip.sys - TCP/IP Driver, Microsoft Corporation

Highest reported total DPC routine time (%):          0.019671
Driver with highest DPC total execution time:         ndis.sys - NDIS 6.20 driver, Microsoft Corporation

Total time spent in DPCs (%)                          0.058905

DPC count (execution time <250 µs):                   19816
DPC count (execution time 250-500 µs):                0
DPC count (execution time 500-999 µs):                65
DPC count (execution time 1000-1999 µs):              1
DPC count (execution time 2000-3999 µs):              0
DPC count (execution time >=4000 µs):                 0

_________________________________________________________________________________________________________
REPORTED HARD PAGEFAULTS
_________________________________________________________________________________________________________
Hard pagefaults are events that get triggered by making use of virtual memory that is not resident in RAM but backed by a memory mapped file on disk. The process of resolving the hard pagefault requires reading in the memory from disk while the process is interrupted and blocked from execution.

NOTE: some processes were hit by hard pagefaults. If these were programs producing audio, they are likely to interrupt the audio stream resulting in dropouts, clicks and pops. Check the Processes tab to see which programs were hit.

Process with highest pagefault count:                 latmon.exe

Total number of hard pagefaults                       11
Hard pagefault count of hardest hit process:          4
Number of processes hit:                              3

_________________________________________________________________________________________________________
PER CPU DATA
_________________________________________________________________________________________________________
CPU 0 Interrupt cycle time (s):                       0.565421
CPU 0 ISR highest execution time (µs):                18.504041
CPU 0 ISR total execution time (s):                   0.014785
CPU 0 ISR count:                                      3040
CPU 0 DPC highest execution time (µs):                1533.911413
CPU 0 DPC total execution time (s):                   0.146822
CPU 0 DPC count:                                      18777
_________________________________________________________________________________________________________
CPU 1 Interrupt cycle time (s):                       0.158725
CPU 1 ISR highest execution time (µs):                0.0
CPU 1 ISR total execution time (s):                   0.0
CPU 1 ISR count:                                      0
CPU 1 DPC highest execution time (µs):                164.160685
CPU 1 DPC total execution time (s):                   0.009820
CPU 1 DPC count:                                      773
_________________________________________________________________________________________________________
CPU 2 Interrupt cycle time (s):                       0.15480
CPU 2 ISR highest execution time (µs):                0.0
CPU 2 ISR total execution time (s):                   0.0
CPU 2 ISR count:                                      0
CPU 2 DPC highest execution time (µs):                69.120595
CPU 2 DPC total execution time (s):                   0.000357
CPU 2 DPC count:                                      71
_________________________________________________________________________________________________________
CPU 3 Interrupt cycle time (s):                       0.106805
CPU 3 ISR highest execution time (µs):                0.0
CPU 3 ISR total execution time (s):                   0.0
CPU 3 ISR count:                                      0
CPU 3 DPC highest execution time (µs):                132.985774
CPU 3 DPC total execution time (s):                   0.000981
CPU 3 DPC count:                                      261
_________________________________________________________________________________________________________

#25
BrianR1976

Posted 27 October 2018 - 04:29 PM

Member

Topic Starter
Member
355 posts

I ran Revo and it couldn't remove those programs. I'm gonna try gain through Creative Cloud.

Edit: CC didn't work either.

Edit 2: Just noticed you asked how things were running. It's spotty. It'll be fine and then I'll have a hiccup. I just had a big freeze up that lasted a couple of minutes. I looked at Task Manager and saw that my Physical Memory Usage was near the top of the chart, over 4gb. I would chalk some of this up to having like 20 things running from startup. Normally I'm at about 6.

Edit 3: I know you said to not turn startup stuff off but I had to turn some of it off. Before I started working on the computer I had nearly everything off. It was all on and I'm trying to do homework and everything is going crazy freezing up. I apologize for not doing what you said but I really need to work on that homework.

Edited by BrianR1976, 27 October 2018 - 05:46 PM.

#26
RKinner

Posted 27 October 2018 - 09:07 PM

Malware Expert

Expert
24,624 posts

Does Revo see the Adobe programs and then can't remove them? Perhaps it's a permission error:

try
Windows Repair all in one

http://www.tweaking....all_in_one.html

Download it and save it then run it.

You can skip to step 4 or 5 where it gives you the same picture as in the above link.
They now offer several preset options. Doesn't matter which one you take. Pick one then uncheck the other options.
Make sure these two are checked before hitting Start:

Reset Registry Permissions
Reset File Permissions

Reboot when done. Then try to remove them.

I can remove everything Adobe with FRST but that's not what we want.

Latency Monitor seems to think your network adapter is a at fault. Try disabling it then rerun Latency Monitor.

The reason I ask you to check everything in msconfig is that when you uninstall stuff and stuff is in msconfig then it won't completely uninstall.

What exactly are you rechecking that makes it run better?

#27
BrianR1976

Posted 27 October 2018 - 10:26 PM

Member

Topic Starter
Member
355 posts

Thanks for putting up with me I wish this crap would have happened during Winter Break, it would be so much easier on me. I will do these things tomorrow night after work.

Using MSConfig I turned off: URealPlayer, SwitchBoard, URealDownload, URAPTR, PDF Complete, Logitech stuff, hpwuSchd, Dropbox Update, Avast Antivirus (there are two for some reason), Adobe CS6S Service manager, Adobe utility startup update, Adobe Creative Cloud, and Adobe Reader and Acrobat Manager. Stuff marked U I uninstalled earlier today (before turning them off with MSConfig)

A couple of these things I uninstalled earlier. And I havent had CS6 on my computer in years. The computer ran alot smoother with them off. What sucks is its such a small sample size of time to determine if the problem is fixed.

#28
BrianR1976

Posted 29 October 2018 - 10:22 PM

Member

Topic Starter
Member
355 posts

_________________________________________________________________________________________________________
CONCLUSION
_________________________________________________________________________________________________________
Your system appears to be suitable for handling real-time audio and other tasks without dropouts.
LatencyMon has been analyzing your system for 0:00:40 (h:mm:ss) on all processors.

_________________________________________________________________________________________________________
SYSTEM INFORMATION
_________________________________________________________________________________________________________
Computer name:                                        BREESE76-HP
OS version:                                           Windows 7 Service Pack 1, 6.1, build: 7601 (x64)
Hardware:                                             p7-1380t, Hewlett-Packard, Foxconn, 2ADA
CPU:                                                  GenuineIntel Intel® Core™ i5-2400 CPU @ 3.10GHz
Logical processors:                                   4
Processor groups:                                     1
RAM:                                                  6100 MB total

_________________________________________________________________________________________________________
CPU SPEED
_________________________________________________________________________________________________________
Reported CPU speed:                                   3093 MHz

Note: reported execution times may be calculated based on a fixed reported CPU speed. Disable variable speed settings like Intel Speed Step and AMD Cool N Quiet in the BIOS setup for more accurate results.

WARNING: the CPU speed that was measured is only a fraction of the CPU speed reported. Your CPUs may be throttled back due to variable speed settings and thermal issues. It is suggested that you run a utility which reports your actual CPU frequency and temperature.

_________________________________________________________________________________________________________
MEASURED INTERRUPT TO USER PROCESS LATENCIES
_________________________________________________________________________________________________________
The interrupt to process latency reflects the measured interval that a usermode process needed to respond to a hardware request from the moment the interrupt service routine started execution. This includes the scheduling and execution of a DPC routine, the signaling of an event and the waking up of a usermode thread from an idle wait state in response to that event.

Highest measured interrupt to process latency (µs):   165.200827
Average measured interrupt to process latency (µs):   2.913405

Highest measured interrupt to DPC latency (µs):       89.718285
Average measured interrupt to DPC latency (µs):       0.783561

_________________________________________________________________________________________________________
REPORTED ISRs
_________________________________________________________________________________________________________
Interrupt service routines are routines installed by the OS and device drivers that execute in response to a hardware interrupt signal.

Highest ISR routine execution time (µs):              38.297446
Driver with highest ISR routine execution time:       ataport.SYS - ATAPI Driver Extension, Microsoft Corporation

Highest reported total ISR routine time (%):          0.021390
Driver with highest ISR total time:                   ataport.SYS - ATAPI Driver Extension, Microsoft Corporation

Total time spent in ISRs (%)                          0.024275

ISR count (execution time <250 µs):                   5651
ISR count (execution time 250-500 µs):                0
ISR count (execution time 500-999 µs):                0
ISR count (execution time 1000-1999 µs):              0
ISR count (execution time 2000-3999 µs):              0
ISR count (execution time >=4000 µs):                 0

_________________________________________________________________________________________________________
REPORTED DPCs
_________________________________________________________________________________________________________
DPC routines are part of the interrupt servicing dispatch mechanism and disable the possibility for a process to utilize the CPU while it is interrupted until the DPC has finished execution.

Highest DPC routine execution time (µs):              108.157129
Driver with highest DPC routine execution time:       USBPORT.SYS - USB 1.1 & 2.0 Port Driver, Microsoft Corporation

Highest reported total DPC routine time (%):          0.016609
Driver with highest DPC total execution time:         USBPORT.SYS - USB 1.1 & 2.0 Port Driver, Microsoft Corporation

Total time spent in DPCs (%)                          0.035314

DPC count (execution time <250 µs):                   17072
DPC count (execution time 250-500 µs):                0
DPC count (execution time 500-999 µs):                0
DPC count (execution time 1000-1999 µs):              0
DPC count (execution time 2000-3999 µs):              0
DPC count (execution time >=4000 µs):                 0

_________________________________________________________________________________________________________
REPORTED HARD PAGEFAULTS
_________________________________________________________________________________________________________
Hard pagefaults are events that get triggered by making use of virtual memory that is not resident in RAM but backed by a memory mapped file on disk. The process of resolving the hard pagefault requires reading in the memory from disk while the process is interrupted and blocked from execution.

NOTE: some processes were hit by hard pagefaults. If these were programs producing audio, they are likely to interrupt the audio stream resulting in dropouts, clicks and pops. Check the Processes tab to see which programs were hit.

Process with highest pagefault count:                 searchprotocolhost.exe

Total number of hard pagefaults                       68
Hard pagefault count of hardest hit process:          34
Number of processes hit:                              2

_________________________________________________________________________________________________________
PER CPU DATA
_________________________________________________________________________________________________________
CPU 0 Interrupt cycle time (s):                       0.287559
CPU 0 ISR highest execution time (µs):                38.297446
CPU 0 ISR total execution time (s):                   0.039777
CPU 0 ISR count:                                      5651
CPU 0 DPC highest execution time (µs):                108.157129
CPU 0 DPC total execution time (s):                   0.055628
CPU 0 DPC count:                                      16152
_________________________________________________________________________________________________________
CPU 1 Interrupt cycle time (s):                       0.071377
CPU 1 ISR highest execution time (µs):                0.0
CPU 1 ISR total execution time (s):                   0.0
CPU 1 ISR count:                                      0
CPU 1 DPC highest execution time (µs):                24.863240
CPU 1 DPC total execution time (s):                   0.001155
CPU 1 DPC count:                                      492
_________________________________________________________________________________________________________
CPU 2 Interrupt cycle time (s):                       0.077730
CPU 2 ISR highest execution time (µs):                0.0
CPU 2 ISR total execution time (s):                   0.0
CPU 2 ISR count:                                      0
CPU 2 DPC highest execution time (µs):                26.175558
CPU 2 DPC total execution time (s):                   0.000533
CPU 2 DPC count:                                      219
_________________________________________________________________________________________________________
CPU 3 Interrupt cycle time (s):                       0.051420
CPU 3 ISR highest execution time (µs):                0.0
CPU 3 ISR total execution time (s):                   0.0
CPU 3 ISR count:                                      0
CPU 3 DPC highest execution time (µs):                19.681216
CPU 3 DPC total execution time (s):                   0.000551
CPU 3 DPC count:                                      209
_________________________________________________________________________________________________________

#29
BrianR1976

Posted 29 October 2018 - 10:23 PM

Member

Topic Starter
Member
355 posts

I turned the network back on and ran it again

_________________________________________________________________________________________________________
CONCLUSION
_________________________________________________________________________________________________________
Your system appears to be having trouble handling real-time audio and other tasks. You are likely to experience buffer underruns appearing as drop outs, clicks or pops. One problem may be related to power management, disable CPU throttling settings in Control Panel and BIOS setup. Check for BIOS updates.
LatencyMon has been analyzing your system for 0:00:40 (h:mm:ss) on all processors.

_________________________________________________________________________________________________________
SYSTEM INFORMATION
_________________________________________________________________________________________________________
Computer name:                                        BREESE76-HP
OS version:                                           Windows 7 Service Pack 1, 6.1, build: 7601 (x64)
Hardware:                                             p7-1380t, Hewlett-Packard, Foxconn, 2ADA
CPU:                                                  GenuineIntel Intel® Core™ i5-2400 CPU @ 3.10GHz
Logical processors:                                   4
Processor groups:                                     1
RAM:                                                  6100 MB total

_________________________________________________________________________________________________________
CPU SPEED
_________________________________________________________________________________________________________
Reported CPU speed:                                   3093 MHz

Note: reported execution times may be calculated based on a fixed reported CPU speed. Disable variable speed settings like Intel Speed Step and AMD Cool N Quiet in the BIOS setup for more accurate results.

WARNING: the CPU speed that was measured is only a fraction of the CPU speed reported. Your CPUs may be throttled back due to variable speed settings and thermal issues. It is suggested that you run a utility which reports your actual CPU frequency and temperature.

_________________________________________________________________________________________________________
MEASURED INTERRUPT TO USER PROCESS LATENCIES
_________________________________________________________________________________________________________
The interrupt to process latency reflects the measured interval that a usermode process needed to respond to a hardware request from the moment the interrupt service routine started execution. This includes the scheduling and execution of a DPC routine, the signaling of an event and the waking up of a usermode thread from an idle wait state in response to that event.

Highest measured interrupt to process latency (µs):   2893.828508
Average measured interrupt to process latency (µs):   5.201612

Highest measured interrupt to DPC latency (µs):       420.119938
Average measured interrupt to DPC latency (µs):       2.408835

_________________________________________________________________________________________________________
REPORTED ISRs
_________________________________________________________________________________________________________
Interrupt service routines are routines installed by the OS and device drivers that execute in response to a hardware interrupt signal.

Highest ISR routine execution time (µs):              25.139670
Driver with highest ISR routine execution time:       ataport.SYS - ATAPI Driver Extension, Microsoft Corporation

Highest reported total ISR routine time (%):          0.034132
Driver with highest ISR total time:                   ataport.SYS - ATAPI Driver Extension, Microsoft Corporation

Total time spent in ISRs (%)                          0.036533

ISR count (execution time <250 µs):                   7706
ISR count (execution time 250-500 µs):                0
ISR count (execution time 500-999 µs):                0
ISR count (execution time 1000-1999 µs):              0
ISR count (execution time 2000-3999 µs):              0
ISR count (execution time >=4000 µs):                 0

_________________________________________________________________________________________________________
REPORTED DPCs
_________________________________________________________________________________________________________
DPC routines are part of the interrupt servicing dispatch mechanism and disable the possibility for a process to utilize the CPU while it is interrupted until the DPC has finished execution.

Highest DPC routine execution time (µs):              477.680892
Driver with highest DPC routine execution time:       ndis.sys - NDIS 6.20 driver, Microsoft Corporation

Highest reported total DPC routine time (%):          0.032726
Driver with highest DPC total execution time:         ndis.sys - NDIS 6.20 driver, Microsoft Corporation

Total time spent in DPCs (%)                          0.077333

DPC count (execution time <250 µs):                   20166
DPC count (execution time 250-500 µs):                0
DPC count (execution time 500-999 µs):                19
DPC count (execution time 1000-1999 µs):              0
DPC count (execution time 2000-3999 µs):              0
DPC count (execution time >=4000 µs):                 0

_________________________________________________________________________________________________________
REPORTED HARD PAGEFAULTS
_________________________________________________________________________________________________________
Hard pagefaults are events that get triggered by making use of virtual memory that is not resident in RAM but backed by a memory mapped file on disk. The process of resolving the hard pagefault requires reading in the memory from disk while the process is interrupted and blocked from execution.

NOTE: some processes were hit by hard pagefaults. If these were programs producing audio, they are likely to interrupt the audio stream resulting in dropouts, clicks and pops. Check the Processes tab to see which programs were hit.

Process with highest pagefault count:                 searchprotocolhost.exe

Total number of hard pagefaults                       82
Hard pagefault count of hardest hit process:          41
Number of processes hit:                              4

_________________________________________________________________________________________________________
PER CPU DATA
_________________________________________________________________________________________________________
CPU 0 Interrupt cycle time (s):                       0.457673
CPU 0 ISR highest execution time (µs):                25.139670
CPU 0 ISR total execution time (s):                   0.059545
CPU 0 ISR count:                                      7706
CPU 0 DPC highest execution time (µs):                477.680892
CPU 0 DPC total execution time (s):                   0.113872
CPU 0 DPC count:                                      18870
_________________________________________________________________________________________________________
CPU 1 Interrupt cycle time (s):                       0.088901
CPU 1 ISR highest execution time (µs):                0.0
CPU 1 ISR total execution time (s):                   0.0
CPU 1 ISR count:                                      0
CPU 1 DPC highest execution time (µs):                133.043324
CPU 1 DPC total execution time (s):                   0.007796
CPU 1 DPC count:                                      741
_________________________________________________________________________________________________________
CPU 2 Interrupt cycle time (s):                       0.079268
CPU 2 ISR highest execution time (µs):                0.0
CPU 2 ISR total execution time (s):                   0.0
CPU 2 ISR count:                                      0
CPU 2 DPC highest execution time (µs):                69.160039
CPU 2 DPC total execution time (s):                   0.001275
CPU 2 DPC count:                                      246
_________________________________________________________________________________________________________
CPU 3 Interrupt cycle time (s):                       0.063322
CPU 3 ISR highest execution time (µs):                0.0
CPU 3 ISR total execution time (s):                   0.0
CPU 3 ISR count:                                      0
CPU 3 DPC highest execution time (µs):                139.054640
CPU 3 DPC total execution time (s):                   0.00310
CPU 3 DPC count:                                      328
_________________________________________________________________________________________________________

#30
BrianR1976

Posted 29 October 2018 - 10:27 PM

Member

Topic Starter
Member
355 posts

I ran the latency program twice. The first time with networks disabled. The second time with them on. On the second run the message it gave me was fine until I hit about 35 seconds them it changed to the one about having trouble with real time audio.

I ran the Windows Repair program, I was not able to remove those programs with Revo.

Also tonight when I first turned the computer on, it arrived at the log in screen and then went black. The computer rebooted on me and took me to the "did not shut down properly screen". It is the first time that has ever happened to me.