Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Never Seen Before? Flashing desktop that constantly refreshes itself!


  • This topic is locked This topic is locked
3 replies to this topic

#1 AsgardBS

AsgardBS

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina USA
  • Local time:05:56 PM

Posted 20 October 2014 - 08:47 AM

Windows Hate. I mean Windows 8! It's a little difficult to describe.  When logged in to any account the desktop starts flashing, slowily at first.  Every time it flashes or refreshes itself whatever is typed or partly open becomes undone.  For example if I manage to open a run command whenever I start typing after each flash/refresh the typing is undone.  Then it starts flashing even faster and makes it impossible to open anything or perform any task.  I managed to turn off  most items in msconfig and to enable safe mode which had to be done extemely quickly after log in. But after logging out of Safe mode (which seemed to works OK), and logging back into regular mode, the safe mode feature seem to be turned off again. Was able to run JRT and Esset while in safemode but did not solve the problem.

 

Thanks for your input!

 

 



BC AdBot (Login to Remove)

 


#2 AsgardBS

AsgardBS
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina USA
  • Local time:05:56 PM

Posted 20 October 2014 - 09:48 AM

FRST Log

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-09-2014
Ran by Back (administrator) on CHEEK-PC on 20-10-2014 10:37:29
Running from F:\House Call Utilities 914\Antivirus Tools\Bleeping Computer Tools
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2876816 2013-03-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [900704 2013-03-15] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2013-06-14] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2013-06-14] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [552960 2013-03-01] (Vimicro)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [{ABA99F9A-8FE2-E89A-E99B-E8b85B9AE9B9}] => C:\Program Files (x86)\Alltel Broadband Connect\mphonetools.exe [339968 2010-02-12] (Avanquest Software)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [313656 2013-04-18] (Hewlett-Packard Company)
Winlogon\Notify\igfxcui: C:\WINDOWS\SYSTEM32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [133248 2013-05-16] ( (Qualcomm Atheros Commnucations))
HKU\S-1-5-21-1980709516-2410047675-2997262659-1005\...\RunOnce: [Lenovo.ShowBand] => C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52512 2014-05-06] (Lenovo)
HKU\S-1-5-21-1980709516-2410047675-2997262659-1005\...\RunOnce: [Report] => C:\AdwCleaner\AdwCleaner[S1].txt [877 2014-10-20] ()
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers: OverlayExcluded -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayPending -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayProtected -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: SugarSyncBackedUp -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncPending -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncRoot -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncShared -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://home.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://home.lenovo.com
SearchScopes: HKLM - {C70CC355-AA25-4899-8BF4-688EC0F88EDB} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKLM-x32 - {C70CC355-AA25-4899-8BF4-688EC0F88EDB} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin-x32: @exent.com/npExentControl,version=7.1.0.1 -> C:\Program Files (x86)\FreeRide Games\npExentControl.dll (Exent Technologies Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2013-11-07]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn [2014-09-17]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [310912 2013-05-16] (Windows ® Win 7 DDK provider)
S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2428088 2014-08-12] (Microsoft Corporation)
S2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed]
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-11-06] (Intel Corporation)
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-21] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1663880 2014-05-06] ()
S2 N360; C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe [265040 2014-09-21] (Symantec Corporation)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation)
S2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-14] (Nitro PDF Software)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-21] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-21] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)
S2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-05-16] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140912.003\BHDrvx64.sys [1586904 2014-09-12] (Symantec Corporation)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-05-16] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1506000.020\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-09-10] (Symantec Corporation)
S1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140926.003\IDSvia64.sys [633560 2014-08-29] (Symantec Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140927.001\ENG64.SYS [129752 2014-08-21] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140927.001\EX64.SYS [2137304 2014-08-21] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\N360x64\1506000.020\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
S1 SRTSPX; C:\Windows\system32\drivers\N360x64\1506000.020\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1506000.020\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1506000.020\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1506000.020\SymELAM.sys [23568 2013-09-09] (Symantec Corporation)
S3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-11-07] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\N360x64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\N360x64\1506000.020\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)
S3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1045248 2013-03-01] (Vimicro Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
S2 X5XSEx_Pr148; C:\Program Files (x86)\FreeRide Games\X5XSEx_Pr148.Sys [56136 2012-08-02] (Exent Technologies Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-20 10:35 - 2014-10-20 10:37 - 00000000 ____D () C:\FRST
2014-10-20 09:49 - 2014-10-20 09:49 - 00000000 ____D () C:\Users\Back\AppData\Roaming\LSC
2014-10-20 09:12 - 2014-10-20 10:21 - 00000000 ____D () C:\Users\Back\AppData\Local\CrashDumps
2014-10-20 09:08 - 2014-10-20 09:08 - 00001417 _____ () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-20 09:08 - 2014-10-20 09:08 - 00000000 ____D () C:\Users\Back\AppData\Roaming\Adobe
2014-10-20 09:08 - 2014-10-20 09:08 - 00000000 ____D () C:\Users\Back\AppData\Local\VirtualStore
2014-10-17 18:05 - 2014-08-31 17:13 - 02347384 _____ (ESET) C:\Users\Back\Desktop\esetsmartinstaller_enu.exe
2014-10-17 18:04 - 2014-10-20 10:23 - 00000000 ____D () C:\Users\Back
2014-10-17 18:04 - 2014-10-20 09:17 - 00000000 ____D () C:\Users\Back\AppData\Local\Packages
2014-10-17 18:04 - 2014-10-17 18:04 - 00000020 ___SH () C:\Users\Back\ntuser.ini
2014-10-17 18:04 - 2014-10-07 12:16 - 05582481 ____R (Swearware) C:\Users\Back\Desktop\ComboFix.exe
2014-10-17 18:04 - 2014-09-17 20:39 - 00000000 ___RD () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-10-17 18:04 - 2014-05-18 21:18 - 00000000 ___RD () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-10-17 18:04 - 2014-02-22 00:37 - 00000369 _____ () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-10-17 18:04 - 2014-02-22 00:37 - 00000369 _____ () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-10-17 18:04 - 2013-11-27 13:48 - 00000000 ____D () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-10-17 18:04 - 2013-11-27 13:48 - 00000000 ____D () C:\Users\Back\AppData\Roaming\Macromedia
2014-10-17 18:04 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-17 18:04 - 2013-08-22 11:36 - 00000000 ____D () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-10-17 18:04 - 2013-06-14 21:00 - 00001151 _____ () C:\Users\Back\Desktop\Cyberlink Power2Go.lnk
2014-10-17 18:04 - 2013-02-04 02:18 - 00000189 _____ () C:\Users\Back\Desktop\Lenovo Telephony Start Now.url
2014-10-17 17:55 - 2014-10-20 08:47 - 00000000 ____D () C:\AdwCleaner
2014-10-17 17:55 - 2014-10-17 17:55 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-10-17 17:50 - 2014-10-20 09:06 - 00000000 ____D () C:\WINDOWS\pss
2014-10-17 17:33 - 2014-10-17 17:33 - 00000000 ____D () C:\WINDOWS\system32\LSC
2014-10-17 15:07 - 2014-10-17 15:07 - 00000000 ____D () C:\NBRT
2014-10-17 12:56 - 2014-10-17 12:56 - 00000000 __SHD () C:\found.001
2014-10-17 12:09 - 2014-10-17 12:09 - 00000184 __RSH () C:\MSSTBJ.CAT
2014-10-16 10:23 - 2014-09-23 09:53 - 00448512 _____ (OldTimer Tools) C:\Users\Cheeks\Desktop\TFC.exe
2014-10-16 10:21 - 2014-09-22 16:00 - 01024790 _____ (Thisisu) C:\Users\Cheeks\Desktop\JRT_NEW.exe
2014-10-10 16:54 - 2014-10-10 16:54 - 00003680 ____N () C:\bootsqm.dat
2014-10-10 16:54 - 2014-10-10 16:54 - 00000000 __SHD () C:\found.000
2014-10-10 16:01 - 2014-10-17 17:33 - 00000000 ____D () C:\Users\Admin\AppData\Local\CrashDumps
2014-09-26 16:52 - 2014-09-26 16:52 - 00003482 _____ () C:\WINDOWS\System32\Tasks\HPLJCustParticipation
2014-09-26 16:52 - 2014-09-26 16:52 - 00001303 _____ () C:\Users\Public\Desktop\HP LaserJet Pro MFP M127-M128 – Help & Learn Center.lnk
2014-09-26 16:52 - 2014-09-26 16:52 - 00001276 _____ () C:\Users\Public\Desktop\HP LJ M127128 Scan.lnk
2014-09-26 16:52 - 2014-09-26 16:52 - 00000000 ____D () C:\Users\Cheeks\AppData\Roaming\Hewlett-Packard Company
2014-09-26 16:51 - 2014-10-04 21:33 - 00000000 ____D () C:\Users\Cheeks\AppData\Roaming\HpUpdate
2014-09-26 16:51 - 2014-09-26 16:52 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-09-26 16:51 - 2014-09-26 16:51 - 00000199 _____ () C:\WINDOWS\SysWOW64\msiexec.log
2014-09-26 16:51 - 2014-09-26 16:51 - 00000000 ____D () C:\Users\Public\Desktop\HP
2014-09-26 16:51 - 2014-09-26 16:51 - 00000000 ____D () C:\Users\Cheeks\Desktop\HP
2014-09-26 16:51 - 2014-09-26 16:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-09-26 16:51 - 2014-09-26 16:51 - 00000000 ____D () C:\Program Files\HP
2014-09-26 16:47 - 2014-09-26 16:53 - 00000000 ____D () C:\Program Files (x86)\HP
2014-09-26 16:47 - 2013-06-17 18:51 - 00957264 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpptsplj127128_x64.dll
2014-09-26 16:47 - 2013-06-17 18:51 - 00789328 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\hpptsplj127128.dll
2014-09-26 16:47 - 2013-06-17 18:51 - 00528208 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpwia2_lj127128.dll
2014-09-26 16:47 - 2013-04-05 10:31 - 00557088 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzjcd01.dll
2014-09-26 16:47 - 2010-10-21 17:15 - 00217656 _____ (Hewlett Packard) C:\WINDOWS\system32\hppscancoins64.dll
2014-09-26 16:46 - 2014-09-26 17:07 - 00000000 ____D () C:\ProgramData\HP

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-20 10:37 - 2014-10-20 10:35 - 00000000 ____D () C:\FRST
2014-10-20 10:33 - 2013-09-30 00:04 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-20 10:23 - 2014-10-17 18:04 - 00000000 ____D () C:\Users\Back
2014-10-20 10:21 - 2014-10-20 09:12 - 00000000 ____D () C:\Users\Back\AppData\Local\CrashDumps
2014-10-20 10:16 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-10-20 10:13 - 2013-08-22 10:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-10-20 10:07 - 2013-11-27 13:57 - 01141645 _____ () C:\WINDOWS\WindowsUpdate.log
2014-10-20 10:07 - 2012-07-26 03:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-10-20 09:52 - 2013-08-22 10:46 - 00389379 _____ () C:\WINDOWS\setupact.log
2014-10-20 09:49 - 2014-10-20 09:49 - 00000000 ____D () C:\Users\Back\AppData\Roaming\LSC
2014-10-20 09:48 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-10-20 09:17 - 2014-10-17 18:04 - 00000000 ____D () C:\Users\Back\AppData\Local\Packages
2014-10-20 09:10 - 2013-11-06 11:02 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-10-20 09:08 - 2014-10-20 09:08 - 00001417 _____ () C:\Users\Back\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-20 09:08 - 2014-10-20 09:08 - 00000000 ____D () C:\Users\Back\AppData\Roaming\Adobe
2014-10-20 09:08 - 2014-10-20 09:08 - 00000000 ____D () C:\Users\Back\AppData\Local\VirtualStore
2014-10-20 09:06 - 2014-10-17 17:50 - 00000000 ____D () C:\WINDOWS\pss
2014-10-20 08:48 - 2013-09-29 23:55 - 00052832 _____ () C:\WINDOWS\PFRO.log
2014-10-20 08:47 - 2014-10-17 17:55 - 00000000 ____D () C:\AdwCleaner
2014-10-20 08:28 - 2013-06-14 20:58 - 00000000 ____D () C:\ProgramData\Temp
2014-10-17 21:15 - 2013-08-22 11:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-10-17 18:06 - 2013-08-22 09:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-10-17 18:04 - 2014-10-17 18:04 - 00000020 ___SH () C:\Users\Back\ntuser.ini
2014-10-17 17:55 - 2014-10-17 17:55 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-10-17 17:50 - 2014-01-03 14:52 - 00000000 ____D () C:\Users\Cheeks\AppData\Local\CrashDumps
2014-10-17 17:49 - 2013-11-27 14:09 - 00000000 __RDO () C:\Users\Cheeks\SkyDrive
2014-10-17 17:33 - 2014-10-17 17:33 - 00000000 ____D () C:\WINDOWS\system32\LSC
2014-10-17 17:33 - 2014-10-10 16:01 - 00000000 ____D () C:\Users\Admin\AppData\Local\CrashDumps
2014-10-17 17:26 - 2014-07-23 23:04 - 00003926 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{31191F55-061B-4E75-A524-1E9C5A3207BC}
2014-10-17 15:07 - 2014-10-17 15:07 - 00000000 ____D () C:\NBRT
2014-10-17 12:56 - 2014-10-17 12:56 - 00000000 __SHD () C:\found.001
2014-10-17 12:09 - 2014-10-17 12:09 - 00000184 __RSH () C:\MSSTBJ.CAT
2014-10-17 09:19 - 2013-11-27 13:45 - 00000000 ____D () C:\Users\Admin
2014-10-10 16:54 - 2014-10-10 16:54 - 00003680 ____N () C:\bootsqm.dat
2014-10-10 16:54 - 2014-10-10 16:54 - 00000000 __SHD () C:\found.000
2014-10-10 13:30 - 2014-09-04 18:55 - 00000000 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for CHEEK-PC-Cheeks Cheek-PC
2014-10-10 13:29 - 2013-11-15 21:46 - 00003930 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{83179114-56C3-482A-9E61-92AD6D95E707}
2014-10-08 20:14 - 2013-11-27 13:45 - 00000000 ____D () C:\Users\Cheeks
2014-10-08 13:14 - 2013-08-22 10:44 - 00371720 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-10-08 12:20 - 2012-07-26 04:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-10-08 10:44 - 2013-11-06 22:07 - 06096018 _____ () C:\Users\Public\CAFADEBUG.log
2014-10-07 12:16 - 2014-10-17 18:04 - 05582481 ____R (Swearware) C:\Users\Back\Desktop\ComboFix.exe
2014-10-07 11:17 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-10-05 15:44 - 2013-11-06 22:11 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1980709516-2410047675-2997262659-1001
2014-10-04 21:33 - 2014-09-26 16:51 - 00000000 ____D () C:\Users\Cheeks\AppData\Roaming\HpUpdate
2014-09-28 13:20 - 2013-11-07 22:55 - 00003206 _____ () C:\WINDOWS\System32\Tasks\Norton WSC Integration
2014-09-28 13:20 - 2013-11-07 22:55 - 00002350 _____ () C:\Users\Public\Desktop\Norton 360.lnk
2014-09-28 13:20 - 2013-11-07 22:54 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2014-09-28 13:20 - 2013-11-07 22:54 - 00000000 ____D () C:\WINDOWS\system32\Drivers\N360x64
2014-09-26 17:07 - 2014-09-26 16:46 - 00000000 ____D () C:\ProgramData\HP
2014-09-26 17:06 - 2013-11-06 11:08 - 00000000 ____D () C:\Users\Cheeks\AppData\Roaming\Nitro PDF
2014-09-26 16:53 - 2014-09-26 16:47 - 00000000 ____D () C:\Program Files (x86)\HP
2014-09-26 16:52 - 2014-09-26 16:52 - 00003482 _____ () C:\WINDOWS\System32\Tasks\HPLJCustParticipation
2014-09-26 16:52 - 2014-09-26 16:52 - 00001303 _____ () C:\Users\Public\Desktop\HP LaserJet Pro MFP M127-M128 – Help & Learn Center.lnk
2014-09-26 16:52 - 2014-09-26 16:52 - 00001276 _____ () C:\Users\Public\Desktop\HP LJ M127128 Scan.lnk
2014-09-26 16:52 - 2014-09-26 16:52 - 00000000 ____D () C:\Users\Cheeks\AppData\Roaming\Hewlett-Packard Company
2014-09-26 16:52 - 2014-09-26 16:51 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-09-26 16:52 - 2013-09-07 05:16 - 00000000 ____D () C:\Users\Cheeks\AppData\Local\Packages
2014-09-26 16:51 - 2014-09-26 16:51 - 00000199 _____ () C:\WINDOWS\SysWOW64\msiexec.log
2014-09-26 16:51 - 2014-09-26 16:51 - 00000000 ____D () C:\Users\Public\Desktop\HP
2014-09-26 16:51 - 2014-09-26 16:51 - 00000000 ____D () C:\Users\Cheeks\Desktop\HP
2014-09-26 16:51 - 2014-09-26 16:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-09-26 16:51 - 2014-09-26 16:51 - 00000000 ____D () C:\Program Files\HP
2014-09-23 09:53 - 2014-10-16 10:23 - 00448512 _____ (OldTimer Tools) C:\Users\Cheeks\Desktop\TFC.exe
2014-09-22 21:42 - 2013-11-09 05:31 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-09-22 16:00 - 2014-10-16 10:21 - 01024790 _____ (Thisisu) C:\Users\Cheeks\Desktop\JRT_NEW.exe
2014-09-22 10:12 - 2013-06-14 20:57 - 00000000 ____D () C:\WINDOWS\Downloaded Installations

Files to move or delete:
====================
C:\ProgramData\hpe131A.dll


Some content of TEMP:
====================
C:\Users\Back\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-06 11:14

==================== End Of Log ============================

 

Addittion Log

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-09-2014
Ran by Back at 2014-10-20 10:37:50
Running from F:\House Call Utilities 914\Antivirus Tools\Bleeping Computer Tools
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton 360 (Disabled - Out of date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton 360 (Disabled - Out of date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 15.0.0.249 - Adobe Systems Incorporated) Hidden
Alltel Broadband Connect (HKLM-x32\...\{6336C0CC-BA32-4949-9D3D-C86B76147CCA}) (Version: 1.04 - Avanquest Software)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.64.52.0 - Conexant)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo)
Energy Management (x32 Version: 8.0.2.4 - Lenovo) Hidden
Family Tree Maker 2012 (HKLM-x32\...\Family Tree Maker 2012) (Version: 21.0.452 - Ancestry.com, Inc.)
Family Tree Maker 2012 (x32 Version: 21.0.452 - Ancestry.com, Inc.) Hidden
FreeRide Games (HKLM-x32\...\{6C26A305-4549-4A8A-9F03-25719C03B0FB}) (Version: 07.05.80.00 - Exent Technologies)
HP LaserJet Pro MFP M127-M128 (HKLM-x32\...\{3b050369-8d19-413d-9dec-84ff278472eb}) (Version: 8.0.13192.945 - Hewlett-Packard)
HP LaserJet Pro MFP M127-M128 Fax (Version: 32.0.36.0 - Hewlett-Packard Co.) Hidden
HP LaserJet Pro MFP M127-M128 Fax (x32 Version: 32.0.36.0 - Hewlett-Packard Co.) Hidden
HP LaserJet Pro MFP M127-M128 Fax Driver (Version: 32.0.36.0 - Hewlett-Packard Co.) Hidden
HP LaserJet Pro MFP M127-M128 HP Device Toolbox (x32 Version: 32.0.28.0 - Hewlett-Packard Co.) Hidden
HP LJ M127128 Scan HP Scan (x32 Version: 1.0.302.0 - Hewlett-Packard Co.) Hidden
HP Product FWUpdater (x32 Version: 4.0.0.8582 - Hewlett-Packard Company) Hidden
HP Unified IO (Version: 2.0.0.477 - HP) Hidden
HP Unified IO (x32 Version: 2.0.0.477 - HP) Hidden
HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.002.004 - Hewlett-Packard)
hpbDSService (x32 Version: 002.002.07399 - Hewlett-Packard) Hidden
hpbM128DSService (x32 Version: 001.001.08254 - Hewlett-Packard) Hidden
HPDXP (x32 Version: 3.0.26.40 - HP) Hidden
HPLJDXPHelper (x32 Version: 060.048.005 - HP) Hidden
HPLJProMFPM127M128 (HKLM-x32\...\{B5409C23-DE0C-4B48-8C8A-50AE38694955}) (Version: 1.00.0000 - Hewlett-Packard)
HPLJUTCore (x32 Version: 008.000.0001 - HP) Hidden
HPLJUTM127_128 (x32 Version: 008.000.0001 - HP) Hidden
hppLaserJetService (x32 Version: 009.033.00905 - Hewlett-Packard) Hidden
hppM125LaserJetService (x32 Version: 001.032.00682 - Hewlett-Packard) Hidden
hpStatusAlerts (x32 Version: 080.040.00171 - Hewlett Packard) Hidden
hpStatusAlertsM127-M128 (x32 Version: 080.046.00111 - Hewlett-Packard) Hidden
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.0.0.1083 - Intel Corporation) Hidden
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.738.1 - Intel Corporation) Hidden
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.13.301.1 - Vimicro)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo Photos (HKLM-x32\...\Lenovo Photos) (Version: 4.8.7 - CEWE COLOR AG u Co. OHG)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.14.1 - ELAN Microelectronic Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4331.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.4331.52 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{2F45A217-E9C7-4984-B0AC-5BE31FF4712B}) (Version: 2.4.003.00 - Lenovo Group Limited)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3423 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden
LJDXPHelperUI (x32 Version: 060.048.005 - HP) Hidden
Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4649.1003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{95140000-0137-0409-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation)
Mobile PhoneTools (x32 Version: 3.55 - BVRP Software) Hidden
Nitro Pro 8 (HKLM\...\{34BE77EE-B563-49D7-A8A0-FFD76D29BBD3}) (Version: 8.0.10.7 - Nitro)
Norton 360 (HKLM-x32\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4649.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4649.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4649.1003 - Microsoft Corporation) Hidden
PANTECH USB Modem V2 (HKLM\...\{1C336D20-A089-4818-9C56-96AD81BF5A11}) (Version: 1.2.4151.1109 - PANTECH CO.,LTD)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.226 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Qualcomm Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.15 - Qualcomm Atheros Communications Inc.)
Realtek USB Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.2.9200.39036 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
Update for Microsoft en-us Dictionary (Version: 16.1.775.1 - Microsoft Corporation) Hidden
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
UserGuide (x32 Version: 1.0.0.9 - Lenovo) Hidden
Windows Driver Package - Lenovo (ACPIVPC) System  (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

20-10-2014 14:06:49 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0A6D8783-30C7-4E95-99EC-D2B31A72A5E3} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {11349724-4AD6-4B5A-BB1E-E5BD3A8E20DE} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-05-06] ()
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {253EA630-F424-4648-9878-B66C29F687A6} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2013-01-28] (Hewlett Packard)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4EE7A686-64CA-4AA3-B87B-255FD420AB05} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {50F2B400-D83B-4655-9A6F-239D1CFB2215} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-05-06] (Lenovo)
Task: {56855ABC-8399-482F-9AD6-89D7B0139041} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {664B99EA-68FE-4990-B659-A00B1030E424} - System32\Tasks\Microsoft Office 15 Sync Maintenance for CHEEK-PC-Cheeks Cheek-PC
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {71B3B6A3-0C3A-40B9-8C5F-99847D5FBABA} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9243E3D0-F7D3-40B1-8603-45AB1F55434F} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {92FCA983-9B7D-4C56-A2BD-0455EF5ED14F} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A909890E-A1B0-4B3F-BE61-5A5DEB3581DF} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-05-06] (Lenovo)
Task: {B30EFEE1-8042-44B6-B7C5-4BAA0A657430} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {C1253D01-5112-41D1-B8AC-BE792D7C38F6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-09-11] (Microsoft Corporation)
Task: {CAE41B6A-5485-4B52-B9F7-524EBF3250C3} - System32\Tasks\Lenovo\LSC\LSCTaskService => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCTaskService.exe [2014-05-06] ()
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D4E0A60C-2DE3-4115-B5FA-7ABB661E1927} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-05-06] ()
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DB3AE3AA-C7F3-41C4-AFD3-2BC281E5D0FE} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {E1E7E8A5-1ADA-4036-827D-F08B81BDCC56} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {E6A9A305-D62D-460B-804D-141274EAE42D} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-08-12] (Microsoft Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE

==================== Loaded Modules (whitelisted) =============

2014-09-22 21:41 - 2014-09-22 21:41 - 08894120 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Cheeks\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "cAudioFilterAgent"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "EnergyUtility"
HKLM\...\StartupApproved\Run: => "Energy Management"
HKLM\...\StartupApproved\Run: => "SmartAudio"
HKLM\...\StartupApproved\Run32: => "YouCam Tray"
HKLM\...\StartupApproved\Run32: => "{ABA99F9A-8FE2-E89A-E99B-E8b85B9AE9B9}"
HKLM\...\StartupApproved\Run32: => "StatusAlerts"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "Intel AppUp(SM) center"
HKLM\...\StartupApproved\Run32: => "UpdateP2GShortCut"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/20/2014 10:34:41 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (10/20/2014 10:34:39 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (10/20/2014 10:33:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: Activation of app DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (10/20/2014 10:33:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: Activation of app DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (10/20/2014 10:33:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: Activation of app DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (10/20/2014 10:33:13 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: Activation of app DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (10/20/2014 10:31:15 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: Activation of app Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (10/20/2014 10:30:23 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: Activation of app DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (10/20/2014 10:29:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: Activation of app windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel failed with error: -2147019873 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (10/20/2014 10:23:53 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.


System errors:
=============
Error: (10/20/2014 10:37:51 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (10/20/2014 10:37:46 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/20/2014 10:37:46 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/20/2014 10:37:46 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/20/2014 10:37:46 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/20/2014 10:37:45 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (10/20/2014 10:37:43 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/20/2014 10:37:43 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/20/2014 10:37:43 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/20/2014 10:37:43 AM) (Source: DCOM) (EventID: 10005) (User: Cheek-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}


Microsoft Office Sessions:
=========================
Error: (10/20/2014 10:34:41 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestF:\House Call Utilities 914\Antivirus Tools\Bleeping Computer Tools\esetsmartinstaller_enu.exe

Error: (10/20/2014 10:34:39 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestF:\House Call Utilities 914\Antivirus Tools\esetsmartinstaller_enu.exe

Error: (10/20/2014 10:33:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default-2144927149

Error: (10/20/2014 10:33:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default-2144927149

Error: (10/20/2014 10:33:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default-2144927149

Error: (10/20/2014 10:33:13 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default-2144927149

Error: (10/20/2014 10:31:15 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness-2144927149

Error: (10/20/2014 10:30:23 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: DefaultBrowser_NOPUBLISHERID!Microsoft.InternetExplorer.Default-2144927149

Error: (10/20/2014 10:29:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Cheek-PC)
Description: windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel-2147019873

Error: (10/20/2014 10:23:53 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Back\Desktop\esetsmartinstaller_enu.exe


==================== Memory info ===========================

Processor: Intel® Core™ i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 12%
Total physical RAM: 6009.77 MB
Available physical RAM: 5256.97 MB
Total Pagefile: 6969.77 MB
Available Pagefile: 6316.39 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:890.63 GB) (Free:857.37 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.74 GB) NTFS
Drive f: (PcParamedix Mgr) (Removable) (Total:59.62 GB) (Free:23.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 05B77FDD)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 59.6 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================


Edited by AsgardBS, 20 October 2014 - 09:49 AM.


#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,760 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:56 PM

Posted 25 October 2014 - 08:50 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/552630 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,760 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:56 PM

Posted 30 October 2014 - 08:50 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users