Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Bad Image Infection?


  • This topic is locked This topic is locked
3 replies to this topic

#1 jedijed

jedijed

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:40 PM

Posted 10 May 2014 - 10:02 PM

Here is the FRST and Addition.. I'm not sure what I have going on...
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-05-2014
Ran by Andy (ATTENTION: The logged in user is not administrator) on LANY-PC on 10-05-2014 19:59:03
Running from C:\Users\Andy\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(Acer Corp.) C:\Program Files (x86)\Gateway\Gateway TouchPortal\TouchPortalLauncher.exe
(Acer Corp.) C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(PC Drivers Headquarters) C:\Program Files (x86)\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe
(Software Updater) C:\Program Files (x86)\Software Updater\SoftwareUpdater.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
(CyberLink) C:\Program Files (x86)\Gateway\Gateway TouchPortal\YouCam\YCMMirage.exe
(CyberLink Corp.) C:\Program Files (x86)\Gateway\Gateway TouchPortal\YouCam\YouCamTray.exe
(CyberLink Corp.) C:\Program Files (x86)\Gateway\Gateway TouchPortal\Touch Movie\TouchMovieService.exe
() C:\Program Files (x86)\Gateway\Hotkey Utility\HotkeyUtility.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_13_0_0_206_ActiveX.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [TouchPortalV3Launcher] => C:\Program Files (x86)\Gateway\Gateway TouchPortal\TouchPortalLauncher.exe [438376 2010-11-30] (Acer Corp.)
HKLM\...\Run: [TouchORB] => C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [155752 2010-11-12] (Acer Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11485800 2010-10-12] (Realtek Semiconductor)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\THXCfg64.dll [25600 2010-09-14] (Creative Technology Ltd.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)
HKLM-x32\...\Run: [TouchPortalV3Launcher] => C:\Program Files (x86)\Gateway\Gateway TouchPortal\TouchPortalLauncher.exe [438376 2010-11-30] (Acer Corp.)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe [1374720 2010-11-01] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Gateway\Gateway TouchPortal\YouCam\YCMMirage.exe [136488 2011-03-01] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Gateway\Gateway TouchPortal\YouCam\YouCamTray.exe [162912 2011-03-01] (CyberLink Corp.)
HKLM-x32\...\Run: [MDS_Menu] => C:\Program Files (x86)\Gateway\Gateway TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [TouchMovieService] => C:\Program Files (x86)\Gateway\Gateway TouchPortal\Touch Movie\TouchMovieService.exe [124136 2011-03-03] (CyberLink Corp.)
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Gateway\Hotkey Utility\HotkeyUtility.exe [620136 2011-01-18] ()
HKLM-x32\...\Runonce: [removeiLividdatamngr] - cmd.exe /c RD /S /Q "" [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1144514756-1155970485-825852989-1000\...\Run: [iLivid] => "C:\Users\lany\AppData\Local\iLivid\iLivid.exe" -autorun
HKU\S-1-5-21-1144514756-1155970485-825852989-1000\...\Run: [Browser Infrastructure Helper] => C:\Users\lany\AppData\Local\Smartbar\Application\Muvic.exe startup
HKU\S-1-5-21-1144514756-1155970485-825852989-1000\...\Run: [Driver Detective] => C:\Program Files (x86)\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe [4746624 2014-03-13] (PC Drivers Headquarters)
HKU\S-1-5-21-1144514756-1155970485-825852989-1004\...\Run: [Driver Detective] => C:\Program Files (x86)\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe [4746624 2014-03-13] (PC Drivers Headquarters)
HKU\S-1-5-21-1144514756-1155970485-825852989-1004\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1144514756-1155970485-825852989-1004\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
AppInit_DLLs: C:\PROGRA~3\Wincert\WIN64C~1.DLL => C:\ProgramData\Wincert\win64cert.dll [8704 2013-11-04] ()
AppInit_DLLs:  C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll => C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\mgrldr.dll [23552 2014-02-13] ()
AppInit_DLLs-x32: c:\progra~3\wincert\win32c~1.dll => C:\ProgramData\Wincert\win32cert.dll [7168 2013-11-04] ()
AppInit_DLLs-x32:  c:\progra~2\movies~1\datamngr\mgrldr.dll => C:\Program Files (x86)\Movies Toolbar\Datamngr\mgrldr.dll [19968 2014-02-13] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftwareUpdater.lnk
ShortcutTarget: SoftwareUpdater.lnk -> C:\Program Files (x86)\Software Updater\SoftwareUpdater.exe (Software Updater)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Movies Toolbar\Datamngr\apcrtldr.dll [486400 2014-02-13] () <===== ATTENTION
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\apcrtldr.dll [658944 2014-02-13] () <===== ATTENTION
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
GroupPolicyUsers\S-1-5-21-1144514756-1155970485-825852989-1004\User: Group Policy restriction detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbQlzfY2uPTYeQjAjEDkq4w6O7BEwWot70sldsFqghGWL_tj4X1dNMQVEjcE2CRtWuo_mq9BeSNuYH6kEW-GNnX56TUOwlkLK0DmgZ37N5jRl_34_BnAN3o85iW8E2Upem6IvYhP6tl3zjQ7gay9iQw5ZLG1D_N977lcEDZb2xGeBklGrQ,,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbQlzfY2uPTYeQjAjEDkq4w6O7BEwWot70sldsFqghGWL_tj4X1dNMQVEjcE2CRtWuo_mq9BeSNuYH6kEW-GNnX56TUOwlkLK0DmgZ37N5jRl_34_BnM3pUkGjKQodmxWaCZn2UPCBGQJ_Z-m2SuJmO4QzjmJkPNspA1Gka8pDdaFhNeaQ,,
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com/?pc=MAGW
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbQlzfY2uPTYeQjAjEDkq4w6O7BEwWot70sldsFqghGWL_tj4X1dNMQVEjcE2CRtWuo_mq9BeSNuYH6kEW-GNnX56TUOwlkLK0DmgZ37N5jRl_34_BnAN3o85iW8E2Upem6IvYhP6tl3zjQ7gay9iQw5ZLG1D_N977lcEDZb2xGeBklGrQ,,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.phimbo24h.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com/?pc=MAGW
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=MAGW
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com/?pc=MAGW
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=MAGW
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=1386&systemid=406&v=n11551-280&apn_uid=0571610019284823&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbQlzfY2uPTYeQjAjEDkq4w6O7BEwWot70sldsFqghGWL_tj4X1dNMQVEjcE2CRtWuo_mq9BeSNuYH6kEW-GNnX56TUOwlkLK0DmgZ37N5jRl_34_BnAN3o85iW8E2Upem6IvYhP6tl3zjQ7gay9iQw5ZLG1D_N977lcEDZb2xGeBklGrQ,,&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbQlzfY2uPTYeQjAjEDkq4w6O7BEwWot70sldsFqghGWL_tj4X1dNMQVEjcE2CRtWuo_mq9BeSNuYH6kEW-GNnX56TUOwlkLK0DmgZ37N5jRl_34_BnAN3o85iW8E2Upem6IvYhP6tl3zjQ7gay9iQw5ZLG1D_N977lcEDZb2xGeBklGrQ,,&q={searchTerms}
SearchScopes: HKCU - DefaultScope {1874DD39-D469-4DF3-9355-24C730EAB051} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {1874DD39-D469-4DF3-9355-24C730EAB051} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=&systemid=&v=-&apn_uid=&apn_dtid=BND&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
BHO: HQTotalS - {11111111-1111-1111-1111-110511311172} - C:\Program Files (x86)\HQTotalS\HQTotalS-bho64.dll ()
BHO: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: SaelesCheecker - {A93B16F9-9950-50CE-7545-0F77E046734D} - C:\ProgramData\SaelesCheecker\7x_a1Ly00V.x64.dll ()
BHO: saveron - {CCC5CFEF-4A74-97A5-F725-D5637B3363C4} - C:\ProgramData\saveron\pp1w8ZlHe.x64.dll ()
BHO: Movies Toolbar (Dist. by Bandoo Media, Inc.) - {d1dac034-9fd9-4c13-a388-d2e10e57707f} - C:\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~1\IE\searchresultsDx64.dll ()
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO-x32: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
BHO-x32: HQTotalS - {11111111-1111-1111-1111-110511311172} - C:\Program Files (x86)\HQTotalS\HQTotalS-bho.dll ()
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll (Symantec Corporation)
BHO-x32: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll ()
BHO-x32: SaelesCheecker - {A93B16F9-9950-50CE-7545-0F77E046734D} - C:\ProgramData\SaelesCheecker\7x_a1Ly00V.dll ()
BHO-x32: saveron - {CCC5CFEF-4A74-97A5-F725-D5637B3363C4} - C:\ProgramData\saveron\pp1w8ZlHe.dll ()
BHO-x32: Movies Toolbar (Dist. by Bandoo Media, Inc.) - {d1dac034-9fd9-4c13-a388-d2e10e57707f} - C:\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~1\IE\searchresultsDx.dll ()
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: No Name - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - C:\Program Files (x86)\PicLensIE\cooliris.dll (Cooliris Inc.)
Toolbar: HKLM - Movies Toolbar (Dist. by Bandoo Media, Inc.) - {d1dac034-9fd9-4c13-a388-d2e10e57707f} - C:\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~1\IE\searchresultsDx64.dll ()
Toolbar: HKLM - Muvic - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Movies Toolbar (Dist. by Bandoo Media, Inc.) - {d1dac034-9fd9-4c13-a388-d2e10e57707f} - C:\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~1\IE\searchresultsDx.dll ()
Toolbar: HKLM-x32 - Muvic - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
DPF: HKLM-x32 {8AD9C840-044E-11D1-B3E9-00805F499D93} http://javadl-esd.oracle.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab
Winsock: Catalog9 01 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9 02 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9 03 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9 04 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9 15 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9-x64 01 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Winsock: Catalog9-x64 02 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Winsock: Catalog9-x64 03 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Winsock: Catalog9-x64 04 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Winsock: Catalog9-x64 15 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
FireFox:
========
FF ProfilePath: C:\Users\Andy\AppData\Roaming\Mozilla\Firefox\Profiles\f2ky0u8i.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 - C:\Program Files (x86)\Virtual Earth 3D\ ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/VirtualEarth3D,version=4.0 - C:\Program Files (x86)\Virtual Earth 3D\ ()
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
FF Plugin-x32: TorchVLC - C:\Users\lany\AppData\Local\Torch\Plugins\Video\VLC\npvlc.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Andy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Extension: HQTotalS - C:\Users\Andy\AppData\Roaming\Mozilla\Firefox\Profiles\f2ky0u8i.default\Extensions\ee5ad154-f909-4cc0-aa51-d7e94e3fb0af@36204afd-f43e-4917-9c71-8384e2e4d3ad.com [2014-03-22]
FF Extension: No Name - C:\Users\Andy\AppData\Roaming\Mozilla\Firefox\Profiles\f2ky0u8i.default\Extensions\staged [2014-04-24]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFF
FF Extension: Symantec Intrusion Prevention - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFF [2014-03-03]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\coFFPlgn_2011_7_13_2
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\coFFPlgn_2011_7_13_2 [2014-05-10]
==================== Services (Whitelisted) =================
R2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36392 2014-03-14] (Just Develop It)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-03-19] (WildTangent)
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
S2 LPTSystemUpdater; C:\Program Files (x86)\LPT\srpts.exe [36384 2014-02-25] ()
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [130008 2011-04-16] (Symantec Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R3 PCProtect; C:\Program Files (x86)\Web Protect\PCProtect.exe [1265608 2014-01-07] (Objectify Media Inc)
S2 ProtectMonitor; C:\monitorsvc.exe [34244 2014-02-13] ()
S2 Re-markit; C:\Program Files (x86)\Re-markit-soft\Re-markit157.exe [194560 2014-03-22] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2011-03-09] ()
S2 Update EnhanceTronic; C:\Program Files (x86)\EnhanceTronic\updateEnhanceTronic.exe [316712 2014-05-08] ()
R2 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] ()
S2 Util EnhanceTronic; C:\Program Files (x86)\EnhanceTronic\bin\utilEnhanceTronic.exe [316712 2014-05-08] ()
S2 WajamUpdaterV3; C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV3.exe [114176 2014-01-06] ()
R2 TorchCrashHandler; C:\Users\lany\AppData\Local\Torch\Update\TorchCrashHandler.exe [X]
R2 vosr; C:\Users\lany\AppData\Roaming\VOPackage\VOsrv.exe [X]
==================== Drivers (Whitelisted) ====================
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20140409.001\BHDrvx64.sys [1525976 2014-03-18] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-03-03] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-03-03] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20140430.002\IDSvia64.sys [525016 2014-03-24] (Symantec Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-05-10] (Malwarebytes Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20140501.034\ENG64.SYS [126040 2014-03-03] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20140501.034\EX64.SYS [2099288 2014-03-03] (Symantec Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [744568 2011-03-30] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [40568 2011-03-30] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1207020.003\SYMDS64.SYS [450680 2011-01-26] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1207020.003\SYMEFA64.SYS [912504 2011-03-14] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2014-03-03] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [171128 2011-01-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [386168 2011-04-20] (Symantec Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-10 19:42 - 2014-05-10 19:42 - 00054434 _____ () C:\Users\Andy\Desktop\Addition.txt
2014-05-10 19:41 - 2014-05-10 19:59 - 00022935 _____ () C:\Users\Andy\Desktop\FRST.txt
2014-05-10 19:41 - 2014-05-10 19:59 - 00000000 ____D () C:\FRST
2014-05-10 19:40 - 2014-05-10 19:40 - 02066432 _____ (Farbar) C:\Users\Andy\Desktop\FRST64.exe
2014-05-10 19:22 - 2014-05-10 19:58 - 00022212 _____ () C:\Windows\wininit.ini
2014-05-10 19:13 - 2014-05-10 19:13 - 00015720 _____ () C:\Users\Andy\Desktop\hijackthis.log
2014-05-10 18:29 - 2014-05-10 18:29 - 00002971 _____ () C:\Users\Andy\Desktop\HiJackThis.lnk
2014-05-10 18:29 - 2014-05-10 18:29 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-05-10 18:29 - 2014-05-10 18:29 - 00000000 ____D () C:\Program Files (x86)\Trend Micro
2014-05-10 18:00 - 2014-05-10 18:37 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-10 18:00 - 2014-05-10 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-10 17:59 - 2014-05-10 18:00 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-10 17:59 - 2014-05-10 17:59 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-10 17:59 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-10 17:59 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-10 17:59 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-10 14:22 - 2014-05-10 14:22 - 00000000 ____D () C:\Users\Andy\Downloads\PC Drivers HeadQuarters
2014-05-10 14:22 - 2014-05-10 14:22 - 00000000 ____D () C:\Users\Andy\AppData\Local\PC_Drivers_Headquarters
2014-04-24 03:59 - 2014-04-24 03:59 - 00000000 ____D () C:\ProgramData\saveron
2014-04-24 01:18 - 2014-05-10 18:37 - 00000311 _____ () C:\Windows\SysWOW64\ff.bin
2014-04-24 00:11 - 2014-04-24 03:59 - 00000000 ____D () C:\ProgramData\67bb3b8f17512fdf
2014-04-24 00:10 - 2014-04-24 00:11 - 00000000 ____D () C:\ProgramData\SaelesCheecker
2014-04-23 23:31 - 2014-05-10 18:54 - 00000552 _____ () C:\Windows\SysWOW64\schtasks.bin
==================== One Month Modified Files and Folders =======
2014-05-10 19:59 - 2014-05-10 19:41 - 00022935 _____ () C:\Users\Andy\Desktop\FRST.txt
2014-05-10 19:59 - 2014-05-10 19:41 - 00000000 ____D () C:\FRST
2014-05-10 19:58 - 2014-05-10 19:22 - 00022212 _____ () C:\Windows\wininit.ini
2014-05-10 19:42 - 2014-05-10 19:42 - 00054434 _____ () C:\Users\Andy\Desktop\Addition.txt
2014-05-10 19:40 - 2014-05-10 19:40 - 02066432 _____ (Farbar) C:\Users\Andy\Desktop\FRST64.exe
2014-05-10 19:40 - 2009-07-13 21:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-10 19:40 - 2009-07-13 21:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-10 19:28 - 2014-03-03 14:28 - 00217699 _____ () C:\Windows\WindowsUpdate.log
2014-05-10 19:28 - 2009-07-13 22:13 - 00714818 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-10 19:24 - 2014-03-22 22:31 - 00001488 _____ () C:\Windows\Tasks\HQTotalS-updater.job
2014-05-10 19:24 - 2014-03-22 22:30 - 00003078 _____ () C:\Windows\Tasks\HQTotalS-chromeinstaller.job
2014-05-10 19:24 - 2014-03-22 22:30 - 00002516 _____ () C:\Windows\Tasks\HQTotalS-firefoxinstaller.job
2014-05-10 19:24 - 2014-03-22 22:30 - 00001442 _____ () C:\Windows\Tasks\HQTotalS-codedownloader.job
2014-05-10 19:24 - 2014-03-22 22:29 - 00000390 _____ () C:\Windows\Tasks\Re-markit Update.job
2014-05-10 19:23 - 2014-03-08 16:48 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-05-10 19:23 - 2009-07-13 22:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-10 19:23 - 2009-07-13 21:51 - 00068520 _____ () C:\Windows\setupact.log
2014-05-10 19:14 - 2014-03-08 15:58 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-10 19:13 - 2014-05-10 19:13 - 00015720 _____ () C:\Users\Andy\Desktop\hijackthis.log
2014-05-10 19:03 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-10 18:54 - 2014-04-23 23:31 - 00000552 _____ () C:\Windows\SysWOW64\schtasks.bin
2014-05-10 18:37 - 2014-05-10 18:00 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-10 18:37 - 2014-04-24 01:18 - 00000311 _____ () C:\Windows\SysWOW64\ff.bin
2014-05-10 18:30 - 2014-03-08 18:22 - 00000000 ____D () C:\Users\Andy\AppData\Local\VirtualStore
2014-05-10 18:29 - 2014-05-10 18:29 - 00002971 _____ () C:\Users\Andy\Desktop\HiJackThis.lnk
2014-05-10 18:29 - 2014-05-10 18:29 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-05-10 18:29 - 2014-05-10 18:29 - 00000000 ____D () C:\Program Files (x86)\Trend Micro
2014-05-10 18:19 - 2009-07-13 19:34 - 00000505 _____ () C:\Windows\win.ini
2014-05-10 18:00 - 2014-05-10 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-10 18:00 - 2014-05-10 17:59 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-10 17:59 - 2014-05-10 17:59 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-10 14:22 - 2014-05-10 14:22 - 00000000 ____D () C:\Users\Andy\Downloads\PC Drivers HeadQuarters
2014-05-10 14:22 - 2014-05-10 14:22 - 00000000 ____D () C:\Users\Andy\AppData\Local\PC_Drivers_Headquarters
2014-05-04 19:07 - 2014-03-08 18:22 - 00000000 ____D () C:\Users\Andy\AppData\Local\CrashDumps
2014-05-03 20:14 - 2014-03-11 19:14 - 17338544 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-03 20:14 - 2014-03-08 15:58 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-03 20:14 - 2014-03-08 15:58 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-02 00:18 - 2014-03-22 21:52 - 00000000 _____ () C:\END
2014-04-24 18:34 - 2014-03-22 21:53 - 00000000 ____D () C:\Program Files (x86)\EnhanceTronic
2014-04-24 03:59 - 2014-04-24 03:59 - 00000000 ____D () C:\ProgramData\saveron
2014-04-24 03:59 - 2014-04-24 00:11 - 00000000 ____D () C:\ProgramData\67bb3b8f17512fdf
2014-04-24 00:11 - 2014-04-24 00:10 - 00000000 ____D () C:\ProgramData\SaelesCheecker
2014-04-13 23:53 - 2014-03-23 18:57 - 00001980 _____ () C:\WildTangent Games App - gateway.lnk
2014-04-13 23:53 - 2011-03-25 06:07 - 00002350 ____N () C:\Users\Public\Desktop\WildTangent Games App - gateway.lnk
2014-04-13 23:53 - 2009-07-13 22:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-04-11 07:26 - 2014-03-23 03:29 - 00000000 ____D () C:\Users\lany\AppData\Roaming\TP
2014-04-11 07:18 - 2014-03-08 18:22 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\Adobe
2014-04-11 07:18 - 2014-03-08 18:22 - 00000000 ____D () C:\Users\Andy\AppData\Local\Adobe
2014-04-11 07:17 - 2014-03-08 18:22 - 00000000 ____D () C:\Users\Andy\AppData\Local\Windows Live
Files to move or delete:
====================
C:\Program Files (x86)\Movies Toolbar\Datamngr\apcrtldr.dll
C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\apcrtldr.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-05-2014
Ran by Andy at 2014-05-10 19:42:03
Running from C:\Users\Andy\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Norton Internet Security (Disabled - Out of date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
==================== Installed Programs ======================
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.0.2.12610 - Adobe Systems Inc.) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Reader 9.1 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Agatha Christie - 4:50 from Paddington (x32 Version: 2.2.0.95 - WildTangent) Hidden
AnyProtect (HKLM-x32\...\AnyProtect) (Version: 1.0.0.0 - CMI Limited) <==== ATTENTION
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cooliris for Internet Explorer (HKLM-x32\...\{14C52FEF-0236-4D8C-BBE2-E6D7C4F2926D}) (Version: 1.12.1.37152 - Cooliris Inc.)
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1421_35790 - CyberLink Corp.)
CyberLink MediaEspresso (x32 Version: 6.5.1421_35790 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.0.1425 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 4.0.1425 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Driver Detective (HKLM-x32\...\{5D6D605B-E4B7-490B-A794-9284BC3D2A8B}) (Version: 8.1 - PC Drivers HeadQuarters)
eBay Worldwide (HKLM-x32\...\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}) (Version: 2.1.0901 - OEM)
EnhanceTronic (HKLM\...\EnhanceTronic) (Version: 2014.03.20.233601 - EnhanceTronic) <==== ATTENTION
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Game Channels (HKLM-x32\...\WildTangentGameProvider-gateway-main) (Version: 4.1.0.8 - WildTangent, Inc.)
Game Channels (HKLM-x32\...\WildTangentGameProvider-gateway-touch) (Version: 4.1.0.8 - WildTangent, Inc.)
Gateway Games (HKLM-x32\...\WildTangent gateway Master Uninstall) (Version: 1.0.2.4 - WildTangent)
Gateway Recovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3002 - Gateway Incorporated)
Gateway Registration (HKLM-x32\...\Gateway Registration) (Version: 1.03.3003 - Gateway Incorporated)
Gateway ScreenSaver (HKLM-x32\...\Gateway Screensaver) (Version: 1.1.0506.2010 - Gateway Incorporated)
Gateway TouchPortal (HKLM-x32\...\{C652F86F-348A-4A65-8BE8-A3F7A6370D98}) (Version: 3.00.3006 - Gateway Incorporated)
Gateway Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3005 - Gateway Incorporated)
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3014 - Gateway Incorporated)
HQTotalS (HKLM-x32\...\HQTotalS) (Version: 1.34.3.6 - HQplustotalS)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3006 - Gateway Incorporated)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2219 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
J2SE Runtime Environment 5.0 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0150000}) (Version: 1.5.0 - Sun Microsystems, Inc.)
Jewel Quest Heritage (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LPT System Updater Service (x32 Version: 1.0.0.0 - LPT) Hidden <==== ATTENTION
Malwarebytes Anti-Malware version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
MediaShow Espresso (x32 Version: 5.5.1422_24072 - CyberLink Corp.) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Touch Pack for Windows 7 (HKLM-x32\...\{8FF90DB8-6DED-44A3-B182-244FEC09012F}) (Version: 1.0.40517.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Movies Toolbar for Internet Explorer (Dist. by Bandoo Media, Inc.) (HKLM-x32\...\ilividmoviestoolbar181IE) (Version: 1.8.1.0 - IAC Search and Media) <==== ATTENTION
Mozilla Firefox 27.0.1 (x86 en-US) (HKCU\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Muvic Smartbar (HKLM-x32\...\{AA236AFD-B26E-4BC7-9A13-76BD5F9887AC}) (Version: 10.211.58.15493 - PinWid Ltd.) <==== ATTENTION
MyPC Backup  (HKLM\...\MyPC Backup) (Version:  - JDi Backup Ltd) <==== ATTENTION
Mystery P.I. - Stolen in San Francisco (x32 Version: 2.2.0.95 - WildTangent) Hidden
Namco All-Stars: PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden
Nero Control Center 10 (x32 Version: 10.2.11100.1.1 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.18100.8.8 - Nero AG) Hidden
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.2.10500.2.100 - Nero AG)
Nero DiscSpeed 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.2.12000.21.100 - Nero AG)
Nero Express 10 Help (CHM) (x32 Version: 10.5.10200 - Nero AG) Hidden
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}) (Version: 10.5.10300 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.2.11600.14.100 - Nero AG)
Nero StartSmart 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG)
NOOK for PC (HKLM-x32\...\BN_DesktopReader) (Version: 2.5.1.237 - Barnesandnoble.com)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 18.7.2.3 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden
Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6220 - Realtek Semiconductor Corp.)
Re-markit (HKLM-x32\...\aee53d7c-84cd-444d-98d8-fc0357b3171b) (Version:  - Re-markit Software) <==== ATTENTION
SaelesCheecker (HKLM-x32\...\{CC17A332-9555-AD95-3985-0BDD9BF0EC71}) (Version:  - SaolesCChuecker)
saveron (HKLM-x32\...\{66951628-3E5A-9C96-37EA-490E187974D5}) (Version:  - saverron)
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.11.11.7 - Conduit) <==== ATTENTION
Software Updater version 1.8.4 (HKLM-x32\...\Software Updater_is1) (Version: 1.8.4 - Air Software) <==== ATTENTION
System Optimizer Pro (HKLM\...\System Optimizer Pro) (Version: 1.0 - 383 Media, Inc.) <==== ATTENTION
THX TruStudio Pro (HKLM-x32\...\{97BE901A-9940-4ACF-9921-A6FAA284AC03}) (Version: 1.0 - Creative Technology Limited)
Times Reader (HKLM-x32\...\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1) (Version: 2.055 - The New York Times Company)
Times Reader (x32 Version: 2.055 - The New York Times Company) Hidden
Torchlight (x32 Version: 2.2.0.95 - WildTangent) Hidden
Touch Movie (x32 Version: 9.0.7503 - CyberLink Corp.) Hidden
Touch MVP (x32 Version: 4.2.8703 - CyberLink Corp.) Hidden
TouchSettings (HKLM-x32\...\{75880CD4-9436-4EDD-B7E7-400EBFD60B2C}) (Version: 1.00.0008 - Gateway Incorporated)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Earth 3D (Beta) (HKLM\...\{6ACE7F46-FACE-4125-AE86-672F4F2A6A28}) (Version: 4.0.903.16005 - Microsoft Corporation)
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden
VO Package (HKLM-x32\...\VOPackage) (Version: 1.0.0.0 - ) <==== ATTENTION
Wajam (HKLM-x32\...\Wajam) (Version: 2.13 - Wajam) <==== ATTENTION
Web Protect for Windows (HKLM-x32\...\wp-apl) (Version: 10.0.0 - Web Protect)
Welcome Center (HKLM-x32\...\Gateway Welcome Center) (Version: 1.02.3102 - Gateway Incorporated)
WildTangent Games App (x32 Version: 4.0.11.2 - WildTangent) Hidden
Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version:  - Yahoo! Inc.) <==== ATTENTION
Zuma's Revenge (x32 Version: 2.2.0.95 - WildTangent) Hidden
==================== Restore Points  =========================
Could not list Restore Points. Check "winmgmt" service or repair WMI.
==================== Hosts content: ==========================
2009-07-13 19:34 - 2009-06-10 14:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\HQTotalS-chromeinstaller.job => ?
Task: C:\Windows\Tasks\HQTotalS-codedownloader.job => ?
Task: C:\Windows\Tasks\HQTotalS-firefoxinstaller.job => ?
Task: C:\Windows\Tasks\HQTotalS-updater.job => ?
Task: C:\Windows\Tasks\Re-markit Update.job => ? <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2014-03-08 16:44 - 2014-02-13 05:51 - 00658944 _____ () C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\apcrtldr.dll
2014-03-03 14:38 - 2010-08-11 15:53 - 00238592 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2014-03-13 12:37 - 2014-03-13 12:37 - 00795488 _____ () C:\Program Files (x86)\PC Drivers HeadQuarters\Driver Detective\ThemePack.Default.dll
2014-03-13 12:37 - 2014-03-13 12:37 - 00428416 _____ () C:\Program Files (x86)\PC Drivers HeadQuarters\Driver Detective\Agent.Communication.XmlSerializers.dll
2014-03-13 12:37 - 2014-03-13 12:37 - 00035208 _____ () C:\Program Files (x86)\PC Drivers HeadQuarters\Driver Detective\Agent.ExceptionLogging.XmlSerializers.dll
2011-01-18 18:08 - 2011-01-18 18:08 - 00620136 _____ () C:\Program Files (x86)\Gateway\Hotkey Utility\HotkeyUtility.exe
2011-03-25 06:09 - 2010-08-13 11:00 - 00014368 _____ () C:\Program Files (x86)\Gateway\Gateway TouchPortal\LanguageDll\TouchPortalLauncher-en.dll
2014-03-08 16:44 - 2014-02-13 05:51 - 00486400 _____ () C:\Program Files (x86)\Movies Toolbar\Datamngr\apcrtldr.dll
2011-01-18 18:08 - 2011-01-18 18:08 - 00151656 _____ () C:\Program Files (x86)\Gateway\Hotkey Utility\HotkeyHook.dll
2014-03-08 16:44 - 2014-02-13 05:51 - 00019968 _____ () C:\Program Files (x86)\Movies Toolbar\Datamngr\mgrldr.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:373E1720
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PCProtect => ""="service" <==== ATTENTION
==================== EXE Association (whitelisted) =============
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/10/2014 07:30:23 PM) (Source: Driver Detective) (User: ) (EventID: 100)
Description: Timestamp: 5/11/2014 2:30:23 AM
Message: An exception occured and was caught: DriverDetectiveException
---------Exception Information----------
Local Time: 5/10/2014 7:30:23 PM
Type: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Message: The request failed with HTTP status 503: Service Unavailable.
Source: Not available
Target Site:
Stack Trace: Not available
 ----------Inner Exception Information----------
  Message: The request failed with HTTP status 503: Service Unavailable.
  Source: System.Web.Services
  Target Site: System.Object[] ReadResponse(System.Web.Services.Protocols.SoapClientMessage, System.Net.WebResponse, System.IO.Stream, Boolean)
  Stack Trace:    at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
 
   at System.Web.Services.Protocols.SoapHttpClientProtocol.InvokeAsyncCallback(IAsyncResult result)
--------------------------------------
Additional Information
Machine Name: LANY-PC
Assembly: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Application Domain: DriversHQ.DriverDetective.Client.exe
Thread Identity: lany-PC\Andy
Thread Name:
Windows Identity: lany-PC\Andy
Process Name:
Error: (05/10/2014 07:25:32 PM) (Source: WinMgmt) (User: ) (EventID: 10)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/10/2014 07:23:56 PM) (Source: CVHSVC) (User: ) (EventID: 100)
Description: Information only.
Error: Cannot connect to SoftGrid Service Type: 95::SoftGridConfigurationFailure.
Error: (05/10/2014 06:58:11 PM) (Source: Driver Detective) (User: ) (EventID: 100)
Description: Timestamp: 5/11/2014 1:58:11 AM
Message: An exception occured and was caught: InvalidOperationException
---------Exception Information----------
Local Time: 5/10/2014 6:58:11 PM
Type: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Message: There is an error in XML document (0, 0).
Source: Common
Target Site: Void PreserveStackTraceAndThrow(System.Exception)
Stack Trace:    at System.Xml.Serialization.XmlSerializer.Deserialize(XmlReader xmlReader, String encodingStyle, XmlDeserializationEvents events)
 
   at System.Xml.Serialization.XmlSerializer.Deserialize(XmlReader xmlReader)
 
   at DriversHQ.Common.Serialization.SerializationUtility.FromXML[T](XmlReader reader, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.FromXML[T](TextReader reader, XmlRootAttribute rootAttribute, Type[] extraTypes, Boolean validateSchema, ValidationEventHandler validationCallback)
 
   at DriversHQ.Common.Serialization.SerializationUtility.FromXML[T](Stream stream, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes, Boolean validateSchema, ValidationEventHandler validationCallback)
 
   at DriversHQ.Common.Serialization.SerializationUtility.FromXML[T](Stream stream, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.Load[T](String path, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.Load[T](String path, Encoding encoding)
 
   at DriversHQ.Common.Serialization.SerializationBase.Load[T](String path, Encoding encoding)
 
   at DriversHQ.Common.Client.ClientConfigBase.Load[T](String clientConfigPath)
 
   at DriversHQ.Common.ExceptionUtility.PreserveStackTraceAndThrow(Exception exception)
 
   at DriversHQ.Common.Client.ClientConfigBase.Load[T](String clientConfigPath)
 
   at DriversHQ.Common.Client.ClientConfigBase.Load[T](String distributorName, String productName)
 
   at DriversHQ.RuleEngine.Controllers.RuleHistoryController.Load(String distributorName, String productName)
 ----------Inner Exception Information----------
  Message: Root element is missing.
  Source: System.Xml
  Target Site: Void Throw(System.Exception)
  Stack Trace:    at System.Xml.XmlTextReaderImpl.Throw(Exception e)
 
   at System.Xml.XmlTextReaderImpl.ParseDocumentContent()
 
   at System.Xml.XmlReader.MoveToContent()
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationReaderRuleHistoryController.Read1_ruleHistoryController()
--------------------------------------
Additional Information
Machine Name: LANY-PC
Assembly: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Application Domain: DriversHQ.DriverDetective.Client.exe
Thread Identity: lany-PC\Andy
Thread Name:
Windows Identity: lany-PC\Andy
Process Name:
Error: (05/10/2014 06:53:51 PM) (Source: WinMgmt) (User: ) (EventID: 10)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/10/2014 06:52:52 PM) (Source: CVHSVC) (User: ) (EventID: 100)
Description: Information only.
Error: Cannot connect to SoftGrid Service Type: 95::SoftGridConfigurationFailure.
Error: (05/10/2014 06:35:26 PM) (Source: Driver Detective) (User: ) (EventID: 100)
Description: Timestamp: 5/11/2014 1:35:26 AM
Message: An exception occured and was caught: InvalidOperationException
---------Exception Information----------
Local Time: 5/10/2014 6:35:26 PM
Type: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Message: There was an error generating the XML document.
Source: System.Xml
Target Site: Void Serialize(System.Xml.XmlWriter, System.Object, System.Xml.Serialization.XmlSerializerNamespaces, System.String, System.String)
Stack Trace:    at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o, XmlSerializerNamespaces namespaces, String encodingStyle, String id)
 
   at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToXML[T](T value, XmlWriter writer, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToXML[T](T value, Stream stream, XmlRootAttribute rootAttribute, Type[] extraTypes, XmlWriterSettings settings)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToXML[T](T value, XmlRootAttribute rootAttribute, Type[] extraTypes, XmlWriterSettings settings)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToXML[T](T value, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToEncryptedXML[T](T value, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToEncryptedXML[T](T value, TextWriter writer, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToEncryptedXML[T](T value, Stream stream, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.SaveEncrypted[T](T value, String path, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.SaveEncrypted[T](T value, String path)
 
   at DriversHQ.Common.Serialization.SerializationBase.SaveEncrypted[T](T value, String path)
 
   at DriversHQ.Common.Client.ClientConfigBase.Save[T](T clientConfig)
 
   at DriversHQ.RuleEngine.Controllers.RuleHistoryController.Save()
 
   at DriversHQ.RuleEngine.Controllers.RuleController.a(IRuleInfo A_0)
 
   at DriversHQ.RuleEngine.Controllers.RuleController.ProcessRuleAsyncDo(Object stateInfo)
 ----------Inner Exception Information----------
  Message: There was an error generating the XML document.
  Source: System.Xml
  Target Site: Void Serialize(System.Xml.XmlWriter, System.Object, System.Xml.Serialization.XmlSerializerNamespaces, System.String, System.String)
  Stack Trace:    at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o, XmlSerializerNamespaces namespaces, String encodingStyle, String id)
 
   at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o)
 
   at DriversHQ.Common.Serialization.XmlWriterHelper.WriteObject[T](XmlRootAttribute rootAttribute, T value)
 
   at DriversHQ.RuleEngine.Controllers.RuleHistoryController.WriteXmlElementItem(XmlWriterHelper helper, IRuleInfo item)
 
   at DriversHQ.RuleEngine.Controllers.ControllerBase`1.WriteXmlElementItems(XmlWriterHelper helper)
 
   at DriversHQ.RuleEngine.Controllers.ControllerBase`1.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializationBase.WriteXml(XmlWriter writer)
 
   at System.Xml.Serialization.XmlSerializationWriter.WriteSerializable(IXmlSerializable serializable, String name, String ns, Boolean isNullable, Boolean wrapped)
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationWriterRuleHistoryController.Write1_ruleHistoryController(Object o)
 ----------Inner Exception Information----------
  Message: There was an error generating the XML document.
  Source: System.Xml
  Target Site: Void Serialize(System.Xml.XmlWriter, System.Object, System.Xml.Serialization.XmlSerializerNamespaces, System.String, System.String)
  Stack Trace:    at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o, XmlSerializerNamespaces namespaces, String encodingStyle, String id)
 
   at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o)
 
   at DriversHQ.Common.Serialization.XmlWriterHelper.WriteObject[T](XmlRootAttribute rootAttribute, T value)
 
   at DriversHQ.RuleEngine.Types.Rule.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializationBase.WriteXml(XmlWriter writer)
 
   at System.Xml.Serialization.XmlSerializationWriter.WriteSerializable(IXmlSerializable serializable, String name, String ns, Boolean isNullable, Boolean wrapped)
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationWriterRuleTriggered.Write1_ruleTriggered(Object o)
 ----------Inner Exception Information----------
  Message: There was an error generating the XML document.
  Source: System.Xml
  Target Site: Void Serialize(System.Xml.XmlWriter, System.Object, System.Xml.Serialization.XmlSerializerNamespaces, System.String, System.String)
  Stack Trace:    at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o, XmlSerializerNamespaces namespaces, String encodingStyle, String id)
 
   at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o)
 
   at DriversHQ.Common.Serialization.XmlWriterHelper.WriteObject[T](XmlRootAttribute rootAttribute, T value)
 
   at DriversHQ.RuleEngine.Types.EnvironmentPropertyContainerBase.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.RuleEngine.Types.EnvironmentProperty.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.RuleEngine.Types.ConditionResolved`1.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializationBase.WriteXml(XmlWriter writer)
 
   at System.Xml.Serialization.XmlSerializationWriter.WriteSerializable(IXmlSerializable serializable, String name, String ns, Boolean isNullable, Boolean wrapped)
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationWriterActionResolved1.Write1_action(Object o)
 ----------Inner Exception Information----------
  Message: Could not find file 'C:\Users\Andy\AppData\Local\Temp\7ukbbfjm.dll'.
  Source: mscorlib
  Target Site: Void WinIOError(Int32, System.String)
  Stack Trace:    at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
 
   at System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy)
 
   at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
 
   at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share)
 
   at Microsoft.CSharp.CSharpCodeGenerator.FromFileBatch(CompilerParameters options, String[] fileNames)
 
   at Microsoft.CSharp.CSharpCodeGenerator.FromSourceBatch(CompilerParameters options, String[] sources)
 
   at Microsoft.CSharp.CSharpCodeGenerator.System.CodeDom.Compiler.ICodeCompiler.CompileAssemblyFromSourceBatch(CompilerParameters options, String[] sources)
 
   at System.CodeDom.Compiler.CodeDomProvider.CompileAssemblyFromSource(CompilerParameters options, String[] sources)
 
   at System.Xml.Serialization.Compiler.Compile(Assembly parent, String ns, XmlSerializerCompilerParameters xmlParameters, Evidence evidence)
 
   at System.Xml.Serialization.TempAssembly.GenerateAssembly(XmlMapping[] xmlMappings, Type[] types, String defaultNamespace, Evidence evidence, XmlSerializerCompilerParameters parameters, Assembly assembly, Hashtable assemblies)
 
   at System.Xml.Serialization.TempAssembly..ctor(XmlMapping[] xmlMappings, Type[] types, String defaultNamespace, String location, Evidence evidence)
 
   at System.Xml.Serialization.XmlSerializer.GenerateTempAssembly(XmlMapping xmlMapping, Type type, String defaultNamespace, String location, Evidence evidence)
 
   at System.Xml.Serialization.XmlSerializer..ctor(Type type, XmlAttributeOverrides overrides, Type[] extraTypes, XmlRootAttribute root, String defaultNamespace, String location, Evidence evidence)
 
   at System.Xml.Serialization.XmlSerializer..ctor(Type type, XmlRootAttribute root)
 
   at DriversHQ.Common.Serialization.XmlSerializerCache.Create(Type type, XmlRootAttribute root, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.XmlSerializerCache.Create(Type type, XmlRootAttribute root)
 
   at DriversHQ.Common.Serialization.XmlWriterHelper.WriteObject[T](XmlRootAttribute rootAttribute, T value)
 
   at DriversHQ.RuleEngine.Collections.EnvironmentPropertyContainer.WriteXmlElementItem(XmlWriterHelper helper, IEnvironmentPropertyInfo item)
 
   at DriversHQ.Common.Serialization.SerializableListBase`1.WriteXmlElementItems(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializableListBase`1.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializableListBase`1.WriteXml(XmlWriter writer)
 
   at System.Xml.Serialization.XmlSerializationWriter.WriteSerializable(IXmlSerializable serializable, String name, String ns, Boolean isNullable, Boolean wrapped)
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationWriterEnvironmentPropertyContainer.Write1_properties(Object o)
--------------------------------------
Additional Information
Machine Name: LANY-PC
Assembly: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Application Domain: DriversHQ.DriverDetective.Client.exe
Thread Identity: lany-PC\Andy
Thread Name:
Windows Identity: lany-PC\Andy
Process Name:
Error: (05/10/2014 06:21:40 PM) (Source: WinMgmt) (User: ) (EventID: 10)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/10/2014 06:20:56 PM) (Source: CVHSVC) (User: ) (EventID: 100)
Description: Information only.
Error: Cannot connect to SoftGrid Service Type: 95::SoftGridConfigurationFailure.
Error: (05/09/2014 06:27:08 PM) (Source: WinMgmt) (User: ) (EventID: 10)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (05/10/2014 07:27:29 PM) (Source: WMPNetworkSvc) (User: ) (EventID: 14349)
Description: 0x800700b7
Error: (05/10/2014 07:27:29 PM) (Source: WMPNetworkSvc) (User: ) (EventID: 14353)
Description: 00x800700b7http://+:10243/WMPNSSv4/2811996591/
Error: (05/10/2014 07:27:29 PM) (Source: WMPNetworkSvc) (User: ) (EventID: 14349)
Description: 0x800700b7
Error: (05/10/2014 07:27:29 PM) (Source: WMPNetworkSvc) (User: ) (EventID: 14353)
Description: 00x800700b7http://+:10243/WMPNSSv4/2811996591/
Error: (05/10/2014 07:27:29 PM) (Source: WMPNetworkSvc) (User: ) (EventID: 14349)
Description: 0x800700b7
Error: (05/10/2014 07:27:29 PM) (Source: WMPNetworkSvc) (User: ) (EventID: 14353)
Description: 00x800700b7http://+:10243/WMPNSSv4/2811996591/
Error: (05/10/2014 07:27:29 PM) (Source: WMPNetworkSvc) (User: ) (EventID: 14349)
Description: 0x800700b7
Error: (05/10/2014 07:27:29 PM) (Source: WMPNetworkSvc) (User: ) (EventID: 14353)
Description: 00x800700b7http://+:10243/WMPNSSv4/2811996591/
Error: (05/10/2014 07:25:18 PM) (Source: Service Control Manager) (User: ) (EventID: 7022)
Description: The Client Virtualization Handler service hung on starting.
Error: (05/10/2014 07:24:56 PM) (Source: DCOM) (User: NT AUTHORITY) (EventID: 10016)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
Microsoft Office Sessions:
=========================
Error: (05/10/2014 07:30:23 PM) (Source: Driver Detective) (User: ) (EventID: 100)
Description: Timestamp: 5/11/2014 2:30:23 AM
Message: An exception occured and was caught: DriverDetectiveException
---------Exception Information----------
Local Time: 5/10/2014 7:30:23 PM
Type: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Message: The request failed with HTTP status 503: Service Unavailable.
Source: Not available
Target Site:
Stack Trace: Not available
 ----------Inner Exception Information----------
  Message: The request failed with HTTP status 503: Service Unavailable.
  Source: System.Web.Services
  Target Site: System.Object[] ReadResponse(System.Web.Services.Protocols.SoapClientMessage, System.Net.WebResponse, System.IO.Stream, Boolean)
  Stack Trace:    at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
 
   at System.Web.Services.Protocols.SoapHttpClientProtocol.InvokeAsyncCallback(IAsyncResult result)
--------------------------------------
Additional Information
Machine Name: LANY-PC
Assembly: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Application Domain: DriversHQ.DriverDetective.Client.exe
Thread Identity: lany-PC\Andy
Thread Name:
Windows Identity: lany-PC\Andy
Process Name:
Error: (05/10/2014 07:25:32 PM) (Source: WinMgmt) (User: ) (EventID: 10)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/10/2014 07:23:56 PM) (Source: CVHSVC) (User: ) (EventID: 100)
Description: Error: Cannot connect to SoftGrid Service Type: 95::SoftGridConfigurationFailure.
Error: (05/10/2014 06:58:11 PM) (Source: Driver Detective) (User: ) (EventID: 100)
Description: Timestamp: 5/11/2014 1:58:11 AM
Message: An exception occured and was caught: InvalidOperationException
---------Exception Information----------
Local Time: 5/10/2014 6:58:11 PM
Type: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Message: There is an error in XML document (0, 0).
Source: Common
Target Site: Void PreserveStackTraceAndThrow(System.Exception)
Stack Trace:    at System.Xml.Serialization.XmlSerializer.Deserialize(XmlReader xmlReader, String encodingStyle, XmlDeserializationEvents events)
 
   at System.Xml.Serialization.XmlSerializer.Deserialize(XmlReader xmlReader)
 
   at DriversHQ.Common.Serialization.SerializationUtility.FromXML[T](XmlReader reader, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.FromXML[T](TextReader reader, XmlRootAttribute rootAttribute, Type[] extraTypes, Boolean validateSchema, ValidationEventHandler validationCallback)
 
   at DriversHQ.Common.Serialization.SerializationUtility.FromXML[T](Stream stream, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes, Boolean validateSchema, ValidationEventHandler validationCallback)
 
   at DriversHQ.Common.Serialization.SerializationUtility.FromXML[T](Stream stream, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.Load[T](String path, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.Load[T](String path, Encoding encoding)
 
   at DriversHQ.Common.Serialization.SerializationBase.Load[T](String path, Encoding encoding)
 
   at DriversHQ.Common.Client.ClientConfigBase.Load[T](String clientConfigPath)
 
   at DriversHQ.Common.ExceptionUtility.PreserveStackTraceAndThrow(Exception exception)
 
   at DriversHQ.Common.Client.ClientConfigBase.Load[T](String clientConfigPath)
 
   at DriversHQ.Common.Client.ClientConfigBase.Load[T](String distributorName, String productName)
 
   at DriversHQ.RuleEngine.Controllers.RuleHistoryController.Load(String distributorName, String productName)
 ----------Inner Exception Information----------
  Message: Root element is missing.
  Source: System.Xml
  Target Site: Void Throw(System.Exception)
  Stack Trace:    at System.Xml.XmlTextReaderImpl.Throw(Exception e)
 
   at System.Xml.XmlTextReaderImpl.ParseDocumentContent()
 
   at System.Xml.XmlReader.MoveToContent()
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationReaderRuleHistoryController.Read1_ruleHistoryController()
--------------------------------------
Additional Information
Machine Name: LANY-PC
Assembly: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Application Domain: DriversHQ.DriverDetective.Client.exe
Thread Identity: lany-PC\Andy
Thread Name:
Windows Identity: lany-PC\Andy
Process Name:
Error: (05/10/2014 06:53:51 PM) (Source: WinMgmt) (User: ) (EventID: 10)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/10/2014 06:52:52 PM) (Source: CVHSVC) (User: ) (EventID: 100)
Description: Error: Cannot connect to SoftGrid Service Type: 95::SoftGridConfigurationFailure.
Error: (05/10/2014 06:35:26 PM) (Source: Driver Detective) (User: ) (EventID: 100)
Description: Timestamp: 5/11/2014 1:35:26 AM
Message: An exception occured and was caught: InvalidOperationException
---------Exception Information----------
Local Time: 5/10/2014 6:35:26 PM
Type: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Message: There was an error generating the XML document.
Source: System.Xml
Target Site: Void Serialize(System.Xml.XmlWriter, System.Object, System.Xml.Serialization.XmlSerializerNamespaces, System.String, System.String)
Stack Trace:    at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o, XmlSerializerNamespaces namespaces, String encodingStyle, String id)
 
   at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToXML[T](T value, XmlWriter writer, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToXML[T](T value, Stream stream, XmlRootAttribute rootAttribute, Type[] extraTypes, XmlWriterSettings settings)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToXML[T](T value, XmlRootAttribute rootAttribute, Type[] extraTypes, XmlWriterSettings settings)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToXML[T](T value, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToEncryptedXML[T](T value, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToEncryptedXML[T](T value, TextWriter writer, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.ToEncryptedXML[T](T value, Stream stream, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.SaveEncrypted[T](T value, String path, Encoding encoding, XmlRootAttribute rootAttribute, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.SerializationUtility.SaveEncrypted[T](T value, String path)
 
   at DriversHQ.Common.Serialization.SerializationBase.SaveEncrypted[T](T value, String path)
 
   at DriversHQ.Common.Client.ClientConfigBase.Save[T](T clientConfig)
 
   at DriversHQ.RuleEngine.Controllers.RuleHistoryController.Save()
 
   at DriversHQ.RuleEngine.Controllers.RuleController.a(IRuleInfo A_0)
 
   at DriversHQ.RuleEngine.Controllers.RuleController.ProcessRuleAsyncDo(Object stateInfo)
 ----------Inner Exception Information----------
  Message: There was an error generating the XML document.
  Source: System.Xml
  Target Site: Void Serialize(System.Xml.XmlWriter, System.Object, System.Xml.Serialization.XmlSerializerNamespaces, System.String, System.String)
  Stack Trace:    at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o, XmlSerializerNamespaces namespaces, String encodingStyle, String id)
 
   at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o)
 
   at DriversHQ.Common.Serialization.XmlWriterHelper.WriteObject[T](XmlRootAttribute rootAttribute, T value)
 
   at DriversHQ.RuleEngine.Controllers.RuleHistoryController.WriteXmlElementItem(XmlWriterHelper helper, IRuleInfo item)
 
   at DriversHQ.RuleEngine.Controllers.ControllerBase`1.WriteXmlElementItems(XmlWriterHelper helper)
 
   at DriversHQ.RuleEngine.Controllers.ControllerBase`1.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializationBase.WriteXml(XmlWriter writer)
 
   at System.Xml.Serialization.XmlSerializationWriter.WriteSerializable(IXmlSerializable serializable, String name, String ns, Boolean isNullable, Boolean wrapped)
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationWriterRuleHistoryController.Write1_ruleHistoryController(Object o)
 ----------Inner Exception Information----------
  Message: There was an error generating the XML document.
  Source: System.Xml
  Target Site: Void Serialize(System.Xml.XmlWriter, System.Object, System.Xml.Serialization.XmlSerializerNamespaces, System.String, System.String)
  Stack Trace:    at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o, XmlSerializerNamespaces namespaces, String encodingStyle, String id)
 
   at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o)
 
   at DriversHQ.Common.Serialization.XmlWriterHelper.WriteObject[T](XmlRootAttribute rootAttribute, T value)
 
   at DriversHQ.RuleEngine.Types.Rule.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializationBase.WriteXml(XmlWriter writer)
 
   at System.Xml.Serialization.XmlSerializationWriter.WriteSerializable(IXmlSerializable serializable, String name, String ns, Boolean isNullable, Boolean wrapped)
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationWriterRuleTriggered.Write1_ruleTriggered(Object o)
 ----------Inner Exception Information----------
  Message: There was an error generating the XML document.
  Source: System.Xml
  Target Site: Void Serialize(System.Xml.XmlWriter, System.Object, System.Xml.Serialization.XmlSerializerNamespaces, System.String, System.String)
  Stack Trace:    at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o, XmlSerializerNamespaces namespaces, String encodingStyle, String id)
 
   at System.Xml.Serialization.XmlSerializer.Serialize(XmlWriter xmlWriter, Object o)
 
   at DriversHQ.Common.Serialization.XmlWriterHelper.WriteObject[T](XmlRootAttribute rootAttribute, T value)
 
   at DriversHQ.RuleEngine.Types.EnvironmentPropertyContainerBase.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.RuleEngine.Types.EnvironmentProperty.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.RuleEngine.Types.ConditionResolved`1.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializationBase.WriteXml(XmlWriter writer)
 
   at System.Xml.Serialization.XmlSerializationWriter.WriteSerializable(IXmlSerializable serializable, String name, String ns, Boolean isNullable, Boolean wrapped)
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationWriterActionResolved1.Write1_action(Object o)
 ----------Inner Exception Information----------
  Message: Could not find file 'C:\Users\Andy\AppData\Local\Temp\7ukbbfjm.dll'.
  Source: mscorlib
  Target Site: Void WinIOError(Int32, System.String)
  Stack Trace:    at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
 
   at System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy)
 
   at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
 
   at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share)
 
   at Microsoft.CSharp.CSharpCodeGenerator.FromFileBatch(CompilerParameters options, String[] fileNames)
 
   at Microsoft.CSharp.CSharpCodeGenerator.FromSourceBatch(CompilerParameters options, String[] sources)
 
   at Microsoft.CSharp.CSharpCodeGenerator.System.CodeDom.Compiler.ICodeCompiler.CompileAssemblyFromSourceBatch(CompilerParameters options, String[] sources)
 
   at System.CodeDom.Compiler.CodeDomProvider.CompileAssemblyFromSource(CompilerParameters options, String[] sources)
 
   at System.Xml.Serialization.Compiler.Compile(Assembly parent, String ns, XmlSerializerCompilerParameters xmlParameters, Evidence evidence)
 
   at System.Xml.Serialization.TempAssembly.GenerateAssembly(XmlMapping[] xmlMappings, Type[] types, String defaultNamespace, Evidence evidence, XmlSerializerCompilerParameters parameters, Assembly assembly, Hashtable assemblies)
 
   at System.Xml.Serialization.TempAssembly..ctor(XmlMapping[] xmlMappings, Type[] types, String defaultNamespace, String location, Evidence evidence)
 
   at System.Xml.Serialization.XmlSerializer.GenerateTempAssembly(XmlMapping xmlMapping, Type type, String defaultNamespace, String location, Evidence evidence)
 
   at System.Xml.Serialization.XmlSerializer..ctor(Type type, XmlAttributeOverrides overrides, Type[] extraTypes, XmlRootAttribute root, String defaultNamespace, String location, Evidence evidence)
 
   at System.Xml.Serialization.XmlSerializer..ctor(Type type, XmlRootAttribute root)
 
   at DriversHQ.Common.Serialization.XmlSerializerCache.Create(Type type, XmlRootAttribute root, Type[] extraTypes)
 
   at DriversHQ.Common.Serialization.XmlSerializerCache.Create(Type type, XmlRootAttribute root)
 
   at DriversHQ.Common.Serialization.XmlWriterHelper.WriteObject[T](XmlRootAttribute rootAttribute, T value)
 
   at DriversHQ.RuleEngine.Collections.EnvironmentPropertyContainer.WriteXmlElementItem(XmlWriterHelper helper, IEnvironmentPropertyInfo item)
 
   at DriversHQ.Common.Serialization.SerializableListBase`1.WriteXmlElementItems(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializableListBase`1.WriteXmlElements(XmlWriterHelper helper)
 
   at DriversHQ.Common.Serialization.SerializableListBase`1.WriteXml(XmlWriter writer)
 
   at System.Xml.Serialization.XmlSerializationWriter.WriteSerializable(IXmlSerializable serializable, String name, String ns, Boolean isNullable, Boolean wrapped)
 
   at Microsoft.Xml.Serialization.GeneratedAssembly.XmlSerializationWriterEnvironmentPropertyContainer.Write1_properties(Object o)
--------------------------------------
Additional Information
Machine Name: LANY-PC
Assembly: ExceptionLogging, Version=3.0.0.100, Culture=neutral, PublicKeyToken=null
Application Domain: DriversHQ.DriverDetective.Client.exe
Thread Identity: lany-PC\Andy
Thread Name:
Windows Identity: lany-PC\Andy
Process Name:
Error: (05/10/2014 06:21:40 PM) (Source: WinMgmt) (User: ) (EventID: 10)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/10/2014 06:20:56 PM) (Source: CVHSVC) (User: ) (EventID: 100)
Description: Error: Cannot connect to SoftGrid Service Type: 95::SoftGridConfigurationFailure.
Error: (05/09/2014 06:27:08 PM) (Source: WinMgmt) (User: ) (EventID: 10)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
CodeIntegrity Errors:
===================================
  Date: 2014-04-23 05:25:50.940
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-23 05:25:50.930
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-23 05:25:50.911
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-22 00:30:47.350
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-22 00:30:47.340
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-22 00:30:47.328
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-21 15:09:24.896
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-21 15:09:24.886
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-21 15:09:24.868
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
  Date: 2014-04-19 00:30:41.668
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Web Protect\pcwtc64f.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 41%
Total physical RAM: 4040.02 MB
Available physical RAM: 2345.04 MB
Total Pagefile: 8078.24 MB
Available Pagefile: 6194.58 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: (Gateway) (Fixed) (Total:448.08 GB) (Free:399.29 GB) NTFS
Drive f: () (Removable) (Total:7.99 GB) (Free:7.82 GB) FAT32
==================== MBR & Partition Table ==================
==================== End Of Log ============================

Edited by Queen-Evie, 10 May 2014 - 10:33 PM.
moved from Am I Infected to Malware Removal Logs. FRST logs are allowed only in MRL forum


BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:40 PM

Posted 11 May 2014 - 11:38 AM

Hello,
  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Follow This Topic.I suggest you click it and select Immediate E-Mail notification and click on Follow This Topic. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

  • Finally, please reply using the Post button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.
  • I will be analyzing your log. I will get back to you with instructions.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 jedijed

jedijed
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:40 PM

Posted 11 May 2014 - 11:27 PM

Thank you fireman4it. I was helping a friend with their computer last night. I found that their antivirus was out of date. The database was updated, and appears to have taken care of it with the Norton provided by their ISP.

#4 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:40 PM

Posted 12 May 2014 - 07:54 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users