Jump to content

sng119

Members
  • Posts

    31
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Ok cool!! Thanks. Now I'll clean these files, downloads and scanners off of my computer. I'm definitely buying another laptop next week because of how slow and laggy this one is. It literally takes 20 seconds or longer for the right click menu to pop up once I've right clicked on the desktop. Alt ctrl delete doesn't even do anything at this point. My bad, it actually does give an error message after 30 seconds or so saying something about how much it sucks, etc. So yeah, time for a new cpu! Have a great day
  2. Ok, the mbam dmp file is now uploaded at the box.com location. I tried to send it to you on there somehow but didn't see a way to. Thanks
  3. I did all of the steps in order, started mbam, and the searching for updates thing comes up. As always, it stops and says "A problem has caused the program to stop working". I'm perplexed as to what's stopping mbam from running. Is it possible for there to be some hidden malware doing this?
  4. JavaRa 1.16 Removal Log. Report follows after line. ------------------------------------ The JavaRa removal process was started on Tue Jul 22 17:17:51 2014 There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0001-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0002-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0003-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0004-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0005-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0006-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0007-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0008-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0009-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0010-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0011-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0012-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0013-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0014-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0015-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0016-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0017-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0018-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0019-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0020-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0021-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0022-ABCDEFFDCBA}. The error returned was 124. Found and removed: SOFTWARE\Classes\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} Found and removed: SOFTWARE\Classes\CLSID\{5852F5ED-8BF4-11D4-A245-0080C6F74284} Found and removed: SOFTWARE\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Found and removed: SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} Found and removed: SOFTWARE\Classes\Interface\{5852F5EC-8BF4-11D4-A245-0080C6F74284} Found and removed: SOFTWARE\Classes\MIME\Database\Content Type\application/java-deployment-toolkit Found and removed: SOFTWARE\Classes\MIME\Database\Content Type\application/x-java-applet Found and removed: SOFTWARE\Classes\MIME\Database\Content Type\application/x-java-jnlp-file Found and removed: SOFTWARE\Classes\TypeLib\{5852F5E0-8BF4-11D4-A245-0080C6F74284} Found and removed: SOFTWARE\Classes\JavaWebStart.isInstalled Found and removed: SOFTWARE\Classes\JavaWebStart.isInstalled.1.7.0.0 Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects Found and removed: SOFTWARE\JavaSoft Found and removed: SOFTWARE\JreMetrics Found and removed: SOFTWARE\MozillaPlugins ------------------------------------ Finished reporting. JavaRa 1.16 Removal Log. Report follows after line. ------------------------------------ The JavaRa removal process was started on Wed Aug 13 00:06:24 2014 There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0001-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0002-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0003-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0004-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0005-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0006-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0007-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0008-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0009-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0010-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0011-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0012-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0013-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0014-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0015-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0016-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0017-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0018-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0019-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0020-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0021-ABCDEFFDCBA}. The error returned was 124. There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0022-ABCDEFFDCBA}. The error returned was 124. Found and removed: SOFTWARE\Classes\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} Found and removed: SOFTWARE\Classes\CLSID\{5852F5ED-8BF4-11D4-A245-0080C6F74284} Found and removed: SOFTWARE\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Found and removed: SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} Found and removed: SOFTWARE\Classes\Interface\{5852F5EC-8BF4-11D4-A245-0080C6F74284} Found and removed: SOFTWARE\Classes\MIME\Database\Content Type\application/java-deployment-toolkit Found and removed: SOFTWARE\Classes\MIME\Database\Content Type\application/x-java-applet Found and removed: SOFTWARE\Classes\MIME\Database\Content Type\application/x-java-jnlp-file Found and removed: SOFTWARE\Classes\TypeLib\{5852F5E0-8BF4-11D4-A245-0080C6F74284} Found and removed: SOFTWARE\Classes\JavaWebStart.isInstalled Found and removed: SOFTWARE\Classes\JavaWebStart.isInstalled.1.7.0.0 Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects Found and removed: SOFTWARE\JavaSoft Found and removed: SOFTWARE\JreMetrics Found and removed: SOFTWARE\MozillaPlugins ------------------------------------ Finished reporting.
  5. Oh, I forgot to let you know that before I ran the frst scan, I installed Apple itunes & uninstalled it. I also did all of the reboots in between and after, etc. I am going to leave Cyberlink dvd off for now. Thanks
  6. Here is my FRST txt. It was really short and to the point I guess? lol LastRegBack: 2014-08-04 12:55 ==================== End Of Log ============================ Here is the Addition txt 2013-10-14 14:23 - 2013-10-14 14:23 - 00109568 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe 2013-10-14 14:24 - 2013-10-14 14:24 - 00627200 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachedrv.dll 2013-10-14 14:25 - 2013-10-14 14:25 - 02541056 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll 2013-10-14 14:22 - 2013-10-14 14:22 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll 2013-10-14 14:22 - 2013-10-14 14:22 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll 2013-10-14 14:22 - 2013-10-14 14:22 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll 2013-10-14 14:35 - 2013-10-14 14:35 - 00306064 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll 2013-10-14 14:35 - 2013-10-14 14:35 - 01297296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll 2013-09-25 09:49 - 2013-09-25 09:49 - 00099328 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe 2013-09-25 09:48 - 2013-09-25 09:48 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2013-10-14 14:30 - 2013-10-14 14:30 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe 2014-07-23 08:19 - 2014-07-23 08:19 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll 2014-08-12 17:42 - 2014-08-12 17:42 - 02786304 _____ () C:\Program Files\AVAST Software\Avast\defs\14081203\algo.dll 2014-01-18 09:53 - 2013-08-05 02:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll 2013-08-05 18:48 - 2013-08-05 18:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 00718664 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libglesv2.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libegl.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll 2014-07-23 08:19 - 2014-07-23 08:19 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-08-12 22:45 - 2014-08-12 22:45 - 00098816 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32api.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00110080 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\pywintypes27.dll 2014-08-12 22:45 - 2014-08-12 22:45 - 00364544 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\pythoncom27.dll 2014-08-12 22:45 - 2014-08-12 22:45 - 00045568 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\_socket.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 01160704 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\_ssl.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00320512 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32com.shell.shell.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00713216 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\_hashlib.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 01175040 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\wx._core_.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00805888 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\wx._gdi_.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00811008 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\wx._windows_.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 01062400 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\wx._controls_.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00735232 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\wx._misc_.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00128512 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\_elementtree.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00127488 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\pyexpat.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00557056 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\pysqlite2._sqlite.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00007168 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\hashobjs_ext.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00087552 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\_ctypes.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00119808 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32file.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00108544 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32security.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00018432 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32event.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00038912 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32inet.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00070656 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\wx._html2.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00167936 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32gui.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00011264 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32crypt.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00027136 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\_multiprocessing.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00122368 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\wx._wizard.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00010240 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\select.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00024064 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32pipe.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00686080 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\unicodedata.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00025600 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32pdh.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00525640 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\windows._lib_cacheinvalidation.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00035840 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32process.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00017408 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32profile.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00022528 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\win32ts.pyd 2014-08-12 22:45 - 2014-08-12 22:45 - 00078336 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI40162\wx._animate.pyd 2014-07-18 14:05 - 2014-07-15 04:24 - 14664008 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Users\Jessica\SkyDrive:ms-properties AlternateDataStreams: C:\Users\Jessica\SkyDrive.old:ms-properties ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/12/2014 10:21:19 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 14224953 Error: (08/12/2014 10:21:19 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 14224953 Error: (08/12/2014 10:21:19 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/12/2014 06:24:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1828 Error: (08/12/2014 06:24:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1828 Error: (08/12/2014 06:24:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/12/2014 05:53:51 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: FAMILY-PC) Description: Application or service 'Apple Mobile Device' could not be restarted. Error: (08/11/2014 10:20:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: svchost.exe_RpcEptMapper, version: 6.3.9600.16384, time stamp: 0x5215dfe3 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00007ffcbe53000a Faulting process id: 0x304 Faulting application start time: 0xsvchost.exe_RpcEptMapper0 Faulting application path: svchost.exe_RpcEptMapper1 Faulting module path: svchost.exe_RpcEptMapper2 Report Id: svchost.exe_RpcEptMapper3 Faulting package full name: svchost.exe_RpcEptMapper4 Faulting package-relative application ID: svchost.exe_RpcEptMapper5 Error: (08/11/2014 09:57:21 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 6688547 Error: (08/11/2014 09:57:21 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 6688547 System errors: ============= Error: (08/12/2014 10:40:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The McAfee SiteAdvisor Service service failed to start due to the following error: %%2 Error: (08/12/2014 10:40:06 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY) Description: WLAN Extensibility Module has failed to start. Module Path: C:\WINDOWS\system32\Rtlihvs.dll Error Code: 126 Error: (08/12/2014 10:39:16 PM) (Source: DCOM) (EventID: 10010) (User: FAMILY-PC) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (08/12/2014 10:39:16 PM) (Source: DCOM) (EventID: 10010) (User: FAMILY-PC) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (08/12/2014 10:39:16 PM) (Source: DCOM) (EventID: 10010) (User: FAMILY-PC) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (08/12/2014 10:39:16 PM) (Source: DCOM) (EventID: 10010) (User: FAMILY-PC) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (08/12/2014 10:39:15 PM) (Source: DCOM) (EventID: 10010) (User: FAMILY-PC) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (08/12/2014 10:39:15 PM) (Source: DCOM) (EventID: 10010) (User: FAMILY-PC) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (08/12/2014 10:39:15 PM) (Source: DCOM) (EventID: 10010) (User: FAMILY-PC) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (08/12/2014 10:39:15 PM) (Source: DCOM) (EventID: 10010) (User: FAMILY-PC) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Microsoft Office Sessions: ========================= Error: (08/12/2014 10:21:19 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 14224953 Error: (08/12/2014 10:21:19 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 14224953 Error: (08/12/2014 10:21:19 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/12/2014 06:24:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1828 Error: (08/12/2014 06:24:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1828 Error: (08/12/2014 06:24:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/12/2014 05:53:51 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: FAMILY-PC) Description: 0AppleMobileDeviceService.exeApple Mobile Device03026217817840 Error: (08/11/2014 10:20:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: svchost.exe_RpcEptMapper6.3.9600.163845215dfe3unknown0.0.0.000000000c000000500007ffcbe53000a30401cfb45e425fa7e5C:\WINDOWS\system32\svchost.exeunknownad72e92e-21cf-11e4-8275-a01d480bffd9 Error: (08/11/2014 09:57:21 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 6688547 Error: (08/11/2014 09:57:21 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 6688547 ==================== Memory info =========================== Processor: AMD E1-2100 APU with Radeon HD Graphics Percentage of memory in use: 39% Total physical RAM: 3537.02 MB Available physical RAM: 2151.96 MB Total Pagefile: 7121.02 MB Available Pagefile: 5573.21 MB Total Virtual: 131072 MB Available Virtual: 131071.85 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:446.78 GB) (Free:392.79 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:18.21 GB) (Free:1.85 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 466 GB) (Disk ID: 179F6E94) Partition: GPT Partition Type. ==================== End Of Log ============================
  7. Ok, I found itunes on my pc but I'm not sure how to go about uninstalling/deleting it. It also seems to be tied into itunes somehow. I've attached a screenshot of the 4 files related to itunes that was found in my computer.
  8. I searched my installed programs and my computer for itunes and don't see it installed. Are the scan results showing that itunes is installed on my pc? If so, how do I find it to uninstall it? I uninstalled my Cyberlink suite but cannot find how to reinstall it. I went to the website but it seems there are only free trials. Not worried about that at all, as I never use it. I didn't want to run the farbar scan without telling you about the itunes issue. Thanks!
  9. I attached the frst.txt, and copy and pasted the additional.txt Thank you! Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-08-2014 Ran by Jessica at 2014-08-08 16:29:34 Running from C:\Users\Jessica\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.) Airport Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden AMD Accelerated Video Transcoding (Version: 13.15.100.30925 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Control Center (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Install Manager (HKLM\...\{19C397A1-9C70-119F-E3BF-752C432FD217}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) AMD Fuel (Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden AMD Start Now (Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software) Azkend 2: The World Beneath (x32 Version: 2.2.0.98 - WildTangent) Hidden Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Bounce Symphony (x32 Version: 2.2.0.97 - WildTangent) Hidden Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center InstallProxy (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden Curse at Twilight (x32 Version: 3.0.2.32 - WildTangent) Hidden CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.) CyberLink LabelPrint (x32 Version: 2.5.5.6902 - CyberLink Corp.) Hidden CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.) CyberLink Media Suite 10 (x32 Version: 10.0.6.3728 - CyberLink Corp.) Hidden CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.5.3416 - CyberLink Corp.) CyberLink Power2Go 8 (x32 Version: 8.0.5.3416 - CyberLink Corp.) Hidden CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3418 - CyberLink Corp.) CyberLink PowerDVD 12 (x32 Version: 12.0.2.3418 - CyberLink Corp.) Hidden CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2.3302 - CyberLink Corp.) CyberLink YouCam (x32 Version: 5.0.2.3302 - CyberLink Corp.) Hidden D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.) Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company) ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version: - Lars Hederer) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden Fishdom 3: Collector's Edition (x32 Version: 3.0.2.38 - WildTangent) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.) Google Drive (HKLM-x32\...\{75939021-3B68-419D-8DC1-E9823BFF9658}) (Version: 1.16.7009.9618 - Google, Inc.) Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden House of 1000 Doors: Family Secrets (x32 Version: 2.2.0.98 - WildTangent) Hidden HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden HP Documentation (HKLM-x32\...\{D82B396E-A647-4C81-9DA4-C61F7BB620EC}) (Version: 1.1.0.0 - Hewlett-Packard) HP Postscript Converter (Version: 4.5.12202 - Hewlett-Packard) Hidden HP Recovery Manager (x32 Version: 12.00 - Hewlett-Packard) Hidden HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7127.4628 - Hewlett-Packard) HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.00.57 - Hewlett-Packard) HP SimplePass (Version: 8.00.57 - Hewlett-Packard) Hidden HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company) HP System Event Utility (HKLM-x32\...\{DEF23826-DB71-4654-BC00-D5D6C20802EA}) (Version: 1.1.4 - Hewlett-Packard Company) HP Utility Center (HKLM\...\{1D7EB7E7-0B5D-4A23-A383-7EF133090026}) (Version: 2.3.2 - Hewlett-Packard Company) HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company) Inst5675 (Version: 8.00.57 - Softex Inc.) Hidden Inst5676 (Version: 8.00.57 - Softex Inc.) Hidden Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217065FF}) (Version: 7.0.650 - Oracle) Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden King Oddball (x32 Version: 3.0.2.48 - WildTangent) Hidden Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden Mahjongg Dimensions Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation) Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden OEM Application Profile (HKLM-x32\...\{70D5F822-F4C4-33D9-7EEC-2A4AF4EA7BDC}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.29071 - Realtek Semiconductor Corp.) Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.24.1218.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7156 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.) Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.6.6.4 - Reimage) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.16.1 - Synaptics Incorporated) Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Vacation Questâ„¢ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (HP Games) (x32 Version: 4.0.10.15 - WildTangent) Hidden Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-3498190754-3230192529-2156594845-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Jessica\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-3498190754-3230192529-2156594845-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Jessica\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.) ==================== Restore Points ========================= 17-07-2014 20:41:03 Windows Update 20-07-2014 18:20:06 Installed Java 7 Update 65 22-07-2014 21:37:08 Removed Java 7 Update 65 02-08-2014 23:05:56 Scheduled Checkpoint ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 08:25 - 2013-08-22 08:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {140260E7-1E46-4775-852E-039BEC4FA094} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation) Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate Task: {317ACB8E-FF4A-41D6-8A6A-D962E5C44371} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation) Task: {37BA742D-B278-447A-8A38-6E993F55224A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-04] (Google Inc.) Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation) Task: {451BD24A-AECF-4A1E-BB5E-2221383F44F2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company) Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance Task: {4A87C195-35F4-4E0B-8BC0-F30EFBD2EBAF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-03-21] (Hewlett-Packard) Task: {4E330F03-1E4C-4E16-ADD3-D21855260A50} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv Task: {5011962F-8A34-4F5A-9901-E01B3F9D508A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload Task: {5B4FD84A-88BB-4A76-81CE-FCD9510F6890} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3498190754-3230192529-2156594845-1002UA => C:\Users\Jessica\AppData\Local\Google\Update\GoogleUpdate.exe [2014-07-04] (Google Inc.) Task: {69FE3859-12CE-4FEB-99D8-09F43D8F5355} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-29] (Adobe Systems Incorporated) Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup Task: {6B43ED7C-1A18-405F-877F-AFA04DD84118} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task Task: {7066BFA3-AD4D-4BCA-BE93-197035A39DC5} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-01] (Synaptics Incorporated) Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask Task: {951782FB-0167-46BD-9694-8E060C254E4A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work Task: {ABDFAAB7-9FED-420E-9C22-812FF846CE7F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company) Task: {B720C85D-8B05-466F-8A4A-16CE5FD71300} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-07-17] (Microsoft Corporation) Task: {C12D81CC-1628-404A-A357-7C5102EA2CDE} - System32\Tasks\HPCeeScheduleForJessica => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard) Task: {CA0D9E87-528E-4139-A863-7CD6F4D2D8DE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-03-21] (Hewlett-Packard) Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization Task: {E0D46F6C-6768-4B18-86E7-2A71917EB3B0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3498190754-3230192529-2156594845-1002Core => C:\Users\Jessica\AppData\Local\Google\Update\GoogleUpdate.exe [2014-07-04] (Google Inc.) Task: {E5110943-FB1E-4117-88E8-C0C132C54639} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-23] (AVAST Software) Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE Task: {E904D72C-C28C-4257-A810-0250D7DAC865} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-04] (Google Inc.) Task: {EB2EE703-7D56-45F3-8137-A172F8E85577} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.) Task: {F4ED6027-E9BF-4F3D-99EC-B04B0DF2E37C} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics Task: {F674EB26-4C70-433A-9139-AEFAC4886C58} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink) Task: {FD23EEB2-284E-4CDE-9C36-FE28424BDC55} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3498190754-3230192529-2156594845-1002Core.job => C:\Users\Jessica\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3498190754-3230192529-2156594845-1002UA.job => C:\Users\Jessica\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForJessica.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Loaded Modules (whitelisted) ============= 2013-10-14 14:23 - 2013-10-14 14:23 - 00109568 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe 2013-10-14 14:24 - 2013-10-14 14:24 - 00627200 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachedrv.dll 2013-10-14 14:25 - 2013-10-14 14:25 - 02541056 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll 2013-10-14 14:22 - 2013-10-14 14:22 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll 2013-10-14 14:22 - 2013-10-14 14:22 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll 2013-10-14 14:22 - 2013-10-14 14:22 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll 2013-10-14 14:35 - 2013-10-14 14:35 - 00306064 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll 2013-10-14 14:35 - 2013-10-14 14:35 - 01297296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll 2013-09-25 09:49 - 2013-09-25 09:49 - 00099328 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe 2013-09-25 09:48 - 2013-09-25 09:48 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2013-10-14 14:30 - 2013-10-14 14:30 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe 2014-07-23 08:19 - 2014-07-23 08:19 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll 2014-08-01 15:21 - 2014-08-01 15:21 - 02795008 _____ () C:\Program Files\AVAST Software\Avast\defs\14080101\algo.dll 2014-08-02 17:03 - 2014-08-02 17:03 - 02795008 _____ () C:\Program Files\AVAST Software\Avast\defs\14080202\algo.dll 2014-08-08 15:48 - 2014-08-08 15:48 - 02795008 _____ () C:\Program Files\AVAST Software\Avast\defs\14080801\algo.dll 2014-07-23 08:19 - 2014-07-23 08:19 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-01-18 09:53 - 2013-08-05 02:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll 2013-08-05 18:48 - 2013-08-05 18:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll 2014-08-03 08:46 - 2014-08-03 08:46 - 00098816 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32api.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00110080 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\pywintypes27.dll 2014-08-03 08:46 - 2014-08-03 08:46 - 00364544 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\pythoncom27.dll 2014-08-03 08:46 - 2014-08-03 08:46 - 00045568 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\_socket.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 01160704 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\_ssl.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00320512 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32com.shell.shell.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00713216 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\_hashlib.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 01175040 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\wx._core_.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00805888 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\wx._gdi_.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00811008 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\wx._windows_.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 01062400 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\wx._controls_.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00735232 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\wx._misc_.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00128512 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\_elementtree.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00127488 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\pyexpat.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00557056 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\pysqlite2._sqlite.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00007168 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\hashobjs_ext.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00087552 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\_ctypes.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00119808 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32file.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00108544 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32security.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00018432 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32event.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00038912 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32inet.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00070656 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\wx._html2.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00167936 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32gui.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00011264 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32crypt.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00027136 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\_multiprocessing.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00122368 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\wx._wizard.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00010240 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\select.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00024064 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32pipe.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00686080 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\unicodedata.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00025600 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32pdh.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00525640 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\windows._lib_cacheinvalidation.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00035840 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32process.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00017408 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32profile.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00022528 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\win32ts.pyd 2014-08-03 08:46 - 2014-08-03 08:46 - 00078336 _____ () C:\Users\Jessica\AppData\Local\Temp\_MEI34442\wx._animate.pyd 2014-07-18 14:05 - 2014-07-15 04:24 - 00718664 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libglesv2.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libegl.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll 2014-07-18 14:05 - 2014-07-15 04:24 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Users\Jessica\SkyDrive:ms-properties AlternateDataStreams: C:\Users\Jessica\SkyDrive.old:ms-properties ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/08/2014 04:30:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1657 Error: (08/08/2014 04:30:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1657 Error: (08/08/2014 04:30:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/08/2014 04:23:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 364766 Error: (08/08/2014 04:23:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 364766 Error: (08/08/2014 04:23:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/08/2014 04:17:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1860 Error: (08/08/2014 04:17:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1860 Error: (08/08/2014 04:17:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/08/2014 04:04:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1953 System errors: ============= Error: (08/08/2014 04:30:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 32 time(s). Error: (08/08/2014 04:17:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 31 time(s). Error: (08/08/2014 04:04:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 30 time(s). Error: (08/07/2014 06:44:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 29 time(s). Error: (08/07/2014 03:04:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 28 time(s). Error: (08/07/2014 01:04:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 27 time(s). Error: (08/07/2014 09:43:39 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 26 time(s). Error: (08/07/2014 00:16:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 25 time(s). Error: (08/06/2014 02:28:15 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 24 time(s). Error: (08/06/2014 00:12:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 23 time(s). Microsoft Office Sessions: ========================= Error: (08/08/2014 04:30:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1657 Error: (08/08/2014 04:30:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1657 Error: (08/08/2014 04:30:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/08/2014 04:23:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 364766 Error: (08/08/2014 04:23:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 364766 Error: (08/08/2014 04:23:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/08/2014 04:17:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1860 Error: (08/08/2014 04:17:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1860 Error: (08/08/2014 04:17:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (08/08/2014 04:04:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1953 ==================== Memory info =========================== Percentage of memory in use: 46% Total physical RAM: 3537.02 MB Available physical RAM: 1896.12 MB Total Pagefile: 7121.02 MB Available Pagefile: 4855.38 MB Total Virtual: 131072 MB Available Virtual: 131071.85 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:446.78 GB) (Free:392.01 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:18.21 GB) (Free:1.85 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 466 GB) (Disk ID: 179F6E94) Partition: GPT Partition Type. ==================== End Of Log ============================ FRST.txt
  10. Sounds great! Thank you guys so much. Have a great day! Jessica
  11. It uploaded but when I click on it, it says I don't have permission to share it or view it.
  12. It said upload skipped because the file was too big. Is there another way to attach the mbam dump file?
  13. I tried the net conf fix again and the same error is still popping up. When I run the replacement.bat file, the black dos net conf box flashes on and off so quickly, I can't read the paragraph of words that is inside of it. Not sure if the box is supposed to stay on screen for more than less than a second. I've attached a screenshot of what happens when I try to update mabam. Hopefully the things the adwcleaner scan found yesterday don't have anything to do with this. Sorry if this issue is frustrating; I'm definitely puzzled. Thanks in advance! Jessica
  14. Here are the Farbar results in an attachment: FRST.txt
  15. Hi Ron, I still can't get MBAM to update. Other than that, here are the results of the scans you requested. I put them both on one post. I have to put the farbar results in another reply because it was too large. Thanks! Jessica ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.4 (04.06.2014:1) OS: Windows 8.1 x64 Ran by Jessica on Wed 07/30/2014 at 14:48:59.41 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Wed 07/30/2014 at 17:11:57.55 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # AdwCleaner v3.302 - Report created 30/07/2014 at 20:12:21 # Updated 30/07/2014 by Xplode # Operating System : Windows 8.1 (64 bits) # Username : Jessica - FAMILY-PC # Running from : C:\Users\Jessica\Desktop\AdwCleaner (1).exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Scheduled Tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17126 -\\ Mozilla Firefox v30.0 (en-US) [ File : C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\jw282w8z.default\prefs.js ] -\\ Google Chrome v36.0.1985.125 [ File : C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [4535 octets] - [26/06/2014 07:15:43] AdwCleaner[R1].txt - [1041 octets] - [30/07/2014 20:07:05] AdwCleaner[s0].txt - [4536 octets] - [26/06/2014 07:19:36] AdwCleaner[s1].txt - [964 octets] - [30/07/2014 20:12:21] ########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [1023 octets] ########## ====================================================================== ====================================================================== C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir a variant of Win32/Conduit.SearchProtect.I potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir a variant of Win32/ClientConnect.A potentially unwanted application C:\Users\Jessica\Downloads\ccsetup413.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application C:\Users\Jessica\Downloads\ccsetup415.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application C:\Users\Jessica\Downloads\ErrorEND_Pro_Installer.exe probably a variant of Win32/AdWare.ErrorEND.A application C:\Users\Jessica\Downloads\Minecraft Download Manager.exe a variant of Win32/InstallCore.BY potentially unwanted application
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.