Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21.01.2018 Ran by Janice (27-01-2018 12:28:30) Running from C:\Users\Janice\Downloads\Farbar Windows 10 Home Version 1709 16299.192 (X64) (2017-12-29 07:14:54) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2151132770-2338251114-259933141-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2151132770-2338251114-259933141-503 - Limited - Disabled) Guest (S-1-5-21-2151132770-2338251114-259933141-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2151132770-2338251114-259933141-1002 - Limited - Enabled) Janice (S-1-5-21-2151132770-2338251114-259933141-1000 - Administrator - Enabled) => C:\Users\Janice WDAGUtilityAccount (S-1-5-21-2151132770-2338251114-259933141-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Reader XI (11.0.23) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated) Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd) AIO_Scan (HKLM-x32\...\{D86B0E2E-DF9A-441C-AF77-8D1A0FF00FA6}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Best Buy pc app (HKLM\...\{FBBC4667-2521-4E78-B1BD-8706F774549B}) (Version: 3.1.0.0 - Best Buy) Hidden Best Buy pc app (HKLM-x32\...\{FBBC4667-2521-4E78-B1BD-8706F774549B}) (Version: 3.1.0.0 - Best Buy) Hidden Bing Rewards Client Installer (HKLM-x32\...\{61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17}) (Version: 16.0.345.0 - Microsoft Corporation) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) BufferChm (HKLM-x32\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden C7200 (HKLM-x32\...\{EE5926BD-9590-48A3-AB1E-C1C49575823D}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden C7200_Help (HKLM-x32\...\{c600ab3d-8b64-41df-bf36-b3d87ce0706b}) (Version: 100.0.206.000 - Hewlett-Packard) Hidden Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Copy (HKLM-x32\...\{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}) (Version: 130.0.428.000 - Hewlett-Packard) Hidden D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: - Dell) Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.47 - Dell) Dell Dock (HKLM\...\{C73A3942-84C8-4597-9F9B-EE227DCBA758}) (Version: 2.0 - Stardock Corporation) Hidden Dell Dock (HKLM-x32\...\Dell Dock) (Version: 2.0 - Stardock Corporation) Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.) Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.0.3 - Dell Inc.) Dell Support Center (HKLM\...\{0090A87C-3E0E-43D4-AA71-A71B06563A4A}) (Version: 3.0.5621.01 - PC-Doctor, Inc.) Hidden Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.0.5621.01 - Dell Inc.) Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 1.40.05 - Creative Technology Ltd) Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden DeviceDiscovery (HKLM-x32\...\{2FF8C687-DB7D-4adc-A5DC-57983EC25046}) (Version: 130.0.465.000 - Hewlett-Packard) Hidden DNS Unlocker version 1.4 (HKLM-x32\...\{E1527582-8509-4011-B922-29E3FB548882}_is1) (Version: 1.4 - ) <==== ATTENTION DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden Download Updater (AOL Inc.) (HKLM-x32\...\SoftwareUpdUtility) (Version: - ) <==== ATTENTION Dropbox (HKU\S-1-5-21-2151132770-2338251114-259933141-1000\...\Dropbox) (Version: 42.4.114 - Dropbox, Inc.) DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 5.60.48.35 - Dell Inc.) Fax (HKLM-x32\...\{440B915A-0C85-45DB-92AE-75AE14704A64}) (Version: 130.0.418.000 - Hewlett-Packard) Hidden Google Drive (HKLM-x32\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.) Google Talk Plugin (HKLM-x32\...\{6D2A900D-EB39-3386-8D9F-3B8F069C57A5}) (Version: 4.2.1.14031 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden GoTo Opener (HKLM-x32\...\{1F803452-798F-49FB-A5DD-9F527F7017E4}) (Version: 1.0.473 - LogMeIn, Inc.) GoToAssist 8.0.0.514 (HKLM-x32\...\GoToAssist) (Version: - ) GoToMeeting 8.20.0.8199 (HKU\S-1-5-21-2151132770-2338251114-259933141-1000\...\GoToMeeting) (Version: 8.20.0.8199 - LogMeIn, Inc.) GPBaseService2 (HKLM-x32\...\{63FF21C9-A810-464F-B60A-3111747B1A6D}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP) HP Dropbox Plugin (HKLM-x32\...\{D12BC084-97D6-438A-AA7C-5962608D17A0}) (Version: 36.0.41.58587 - HP) HP ENVY 7640 series Basic Device Software (HKLM\...\{B81E425D-39FF-4846-B4BB-7AD61909A0EF}) (Version: 40.11.1135.17143 - HP Inc.) HP ENVY 7640 series Help (HKLM-x32\...\{5845A5C9-AA03-4D91-9793-1A2563CE0129}) (Version: 34.0.0 - Hewlett Packard) HP Google Drive Plugin (HKLM-x32\...\{BFA42100-DB54-467A-BB87-CF70732B4065}) (Version: 36.0.41.58587 - HP) HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Photosmart All-In-One Driver Software 13.0 Rel. 2 (HKLM\...\{988329F4-A1A1-4D51-803C-EF2725A97627}) (Version: 13.0 - HP) HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP) HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 130.0.282.000 - Hewlett-Packard) Hidden HPPhotoSmartDiscLabel_PaperLabel (HKLM-x32\...\{D9D8F2CF-FE2D-4644-9762-01F916FE90A9}) (Version: 2.04.0000 - Hewlett-Packard) Hidden HPPhotoSmartDiscLabel_PrintOnDisc (HKLM-x32\...\{20EFC9AA-BBC1-4DFD-81FF-99654F71CBF8}) (Version: 2.04.0000 - Hewlett-Packard) Hidden HPPhotoSmartDiscLabelContent1 (HKLM-x32\...\{681B698F-C997-42C3-B184-B489C6CA24C9}) (Version: 2.04.0000 - Hewlett-Packard) Hidden hpphotosmartdisclabelplugin (HKLM-x32\...\{B28635AB-1DF3-4F07-BFEA-975D911B549B}) (Version: 2.04.0000 - Hewlett-Packard) Hidden HPPhotosmartEssential (HKLM-x32\...\{D79113E7-274C-470B-BD46-01B10219DF6A}) (Version: 2.04.0000 - Hewlett-Packard) Hidden HPProductAssistant (HKLM-x32\...\{C43326F5-F135-4551-8270-7F7ABA0462E1}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6289.0 - IDT) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2202 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Internet Explorer (HKLM-x32\...\{AA31EA7B-7917-4000-949B-38E91F848A25}) (Version: 8 - Microsoft Corporation) Hidden iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.) Java(TM) 6 Update 22 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416022FF}) (Version: 6.0.220 - Oracle) Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Kaspersky Internet Security (HKLM-x32\...\{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Live! Cam Avatar Creator (HKLM-x32\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.3009.1 - Creative Technology Ltd) MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Messenger Companion (HKLM-x32\...\{50816F92-1652-4A7C-B9BC-48F682742C4B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Microsoft Office 2007 Primary Interop Assemblies (HKLM-x32\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Small Business 2007 (HKLM-x32\...\SMALLBUSINESSR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2151132770-2338251114-259933141-1000\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2005 Tools for Office Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) MixiDJ V52 Toolbar for IE (HKLM-x32\...\IECT3298588) (Version: 6.17.2.8 - MixiDJ V52) <==== ATTENTION Mozilla Firefox 58.0 (x64 en-US) (HKLM\...\Mozilla Firefox 58.0 (x64 en-US)) (Version: 58.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 58.0.0.6592 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Network64 (HKLM\...\{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}) (Version: 130.0.572.000 - Hewlett-Packard) Hidden Network64 (HKLM\...\{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}) (Version: 140.0.221.000 - Hewlett-Packard) Hidden OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP) Outlook Setup Assistant (HKLM-x32\...\{9BB028FE-07AF-4DCC-A86F-949A1A2A48C1}) (Version: 1.5.0 - Skykick Inc) Outlook Setup Assistant Installation (HKLM-x32\...\{537dbe6d-68f1-412f-aa37-c447c14452ae}) (Version: 1.5.0 - SkyKick) Outlook Setup Assistant MAPI64 Helper (HKLM\...\{CDA22859-DF05-4275-9FC3-E5C4D160DBD5}) (Version: 1.5.0 - SkyKick Inc) Plus-HD-4.5 (HKLM-x32\...\Plus-HD-4.5) (Version: 1.31.153.0 - Plus HD) <==== ATTENTION Product Improvement Study for HP ENVY 7640 series (HKLM\...\{C15C2D78-89D2-4EC1-850D-4D9BFADA758A}) (Version: 40.11.1135.17143 - HP Inc.) PropStream (HKLM-x32\...\{7AE0E3CB-E148-4F73-A02E-481D6801A7EB}) (Version: 2.0.33.0 - EquiMine Inc.) PS_AIO_02_ProductContext (HKLM-x32\...\{B4B2096B-B13E-408E-8985-BD07463D5487}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden PS_AIO_02_Software (HKLM-x32\...\{94F8D42D-BB31-4858-9705-7D756D8D9655}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden PS_AIO_02_Software_Min (HKLM-x32\...\{685B0843-6C8D-4E42-B60D-2B86B45526E0}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden QuickBooks (HKLM-x32\...\{B52E01F1-D34E-4381-B590-28DFF3C0B647}) (Version: 27.0.4001.2702 - Intuit Inc.) Hidden QuickBooks Pro 2017 (HKLM-x32\...\{82F55A7D-6BEB-436B-A1DC-586E113782D7}) (Version: 27.0.4001.2702 - Intuit Inc.) QuickBooks Runtime Redistributable (HKLM\...\{F2A4F809-2DE6-4D27-888B-4D2BB8DAF20E}) (Version: 1.00.0000 - Intuit Inc.) Quicken Rental Property Manager 2.0 (HKLM-x32\...\{894A9DFD-6102-40AB-9C4A-1DCA60032D64}) (Version: 2.3 - Intuit) Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.5.0 - Dell Inc.) Real Estate Success Software (HKLM-x32\...\{C3E09470-1320-45EB-BDD7-1046F1FFEA4B}) (Version: 2.0.37.0 - EquiMine Inc.) RealDownloader (HKLM-x32\...\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}) (Version: 1.3.3 - RealNetworks, Inc.) Hidden RealNetworks - Microsoft Visual C++ 2008 Runtime (HKLM-x32\...\{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}) (Version: 9.0 - RealNetworks, Inc) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM-x32\...\{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}) (Version: 10.0 - RealNetworks, Inc) Hidden RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30109 - Realtek Semiconductor Corp.) RealUpgrade 1.1 (HKLM-x32\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) SmartWebPrinting (HKLM-x32\...\{DC635845-46D3-404B-BCB1-FC4A91091AFA}) (Version: 130.0.457.000 - Hewlett-Packard) Hidden SolutionCenter (HKLM-x32\...\{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden Status (HKLM-x32\...\{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}) (Version: 130.0.469.000 - Hewlett-Packard) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.17.55 - Synaptics Incorporated) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.28223 - TeamViewer) Toolbox (HKLM-x32\...\{6BBA26E9-AB03-4FE7-831A-3535584CA002}) (Version: 130.0.648.000 - Hewlett-Packard) Hidden TrayApp (HKLM-x32\...\{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}) (Version: 130.0.422.000 - Hewlett-Packard) Hidden UnloadSupport (HKLM-x32\...\{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}) (Version: 11.0.0 - Hewlett-Packard) Hidden Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN) Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11-2 - Wacom Technology Corp.) WebReg (HKLM-x32\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.1100 - Broadcom Corporation) Windows Driver Package - Broadcom Corporation (BTHUSB) Bluetooth (03/24/2010 6.3.0.2501) (HKLM\...\AF09E130E2FD4D1BEFD1B9132AE624BAE0364719) (Version: 03/24/2010 6.3.0.2501 - Broadcom Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) XSplit Gamecaster (HKLM-x32\...\{86A133DA-6799-4E96-8200-D2A7E0C98C75}) (Version: 2.9.1701.1610 - SplitmediaLabs) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Janice\AppData\Local\GoToMeeting\8126\G2MOutlookAddin64.dll (LogMeIn, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2151132770-2338251114-259933141-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google) ContextMenuHandlers1: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-03-13] (AO Kaspersky Lab) ContextMenuHandlers2: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-03-13] (AO Kaspersky Lab) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google) ContextMenuHandlers4: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-03-13] (AO Kaspersky Lab) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2012-11-26] (Intel Corporation) ContextMenuHandlers6: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-03-13] (AO Kaspersky Lab) ContextMenuHandlers1_S-1-5-21-2151132770-2338251114-259933141-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ContextMenuHandlers4_S-1-5-21-2151132770-2338251114-259933141-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ContextMenuHandlers5_S-1-5-21-2151132770-2338251114-259933141-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Janice\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2018-01-22] (Dropbox, Inc.) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0BA5E2C6-1BD8-4A72-9F35-CDA507FE965D} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {0C76E88E-392F-468D-9B49-7FEB0D2CA7E2} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {0F13C450-443B-4F93-BC53-FD028DB90186} - System32\Tasks\Plus-HD-4.5-firefoxinstaller => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-firefoxinstaller.exe Task: {10532DA7-2B2B-4586-8181-A61860A9D178} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {145C5762-495D-4FE2-9F93-D92826864E65} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1931B8E5-2C32-4CB0-B79F-3636FDD39A35} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION Task: {254AFFAB-8094-4537-8929-E8EDFDA91E31} - System32\Tasks\G2MUpdateTask-S-1-5-21-2151132770-2338251114-259933141-1000 => C:\Users\Janice\AppData\Local\GoToMeeting\8199\g2mupdate.exe [2018-01-17] (LogMeIn, Inc.) Task: {322F1C43-6032-4F78-A0A4-544940A89875} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2151132770-2338251114-259933141-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.) Task: {37A2EA8A-6F62-4461-955D-58C7FC78C6CC} - System32\Tasks\Plus-HD-4.5-enabler => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-enabler.exe Task: {397DCDA3-5AE3-482D-91EB-DF84C5129E78} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {3E5B7A09-D82A-4474-84C1-B813AE0EEAEA} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2151132770-2338251114-259933141-1000UA1d237822fcfa072 => C:\Users\Janice\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.) Task: {464FAE3F-8C62-4B35-91F4-17DFEEDE0967} - System32\Tasks\{6BA7E79D-DC0C-5036-9C3C-700321FAB434} => C:\ProgramData\{64215EAF-D38A-E904-2D69-BC53E772E566}\CADDEB94-7D76-5C3F-D741-FB30BC4D75EA.exe <==== ATTENTION Task: {4781248D-89FB-4E33-9EBA-A9C54D4510AB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {52FB44AA-A8F6-40BB-A4D8-EFBB68214561} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2151132770-2338251114-259933141-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.) Task: {53D49187-A5B2-4602-9CAE-5FB5157C386B} - System32\Tasks\{17A42FCC-A00F-9867-509F-4EC6F169084D} => C:\ProgramData\{AA77D23A-1DDC-6591-18BE-A382A06A4BA1}\F69455BC-413F-E217-CD5F-3205834A32ED.exe <==== ATTENTION Task: {58FACDB2-9F2A-4BA4-AEA1-D270178E6E79} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION Task: {5B4D9E6C-180E-43D2-A616-70DEEFC3100A} - System32\Tasks\G2MUploadTask-S-1-5-21-2151132770-2338251114-259933141-1000 => C:\Users\Janice\AppData\Local\GoToMeeting\8199\g2mupload.exe [2018-01-17] (LogMeIn, Inc.) Task: {5D900B46-1FB9-4C71-8651-9B0E5945C457} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {5FE06A15-29FD-4E4F-A6EA-B7CB17AC1BFA} - System32\Tasks\{4010C010-F7BB-77BB-C8FA-B75F9A65D1ED} => C:\ProgramData\{C9BD2EDD-7E16-9976-003E-917F936EED22}\7407124C-C3AC-A5E7-E9F0-070F0FC0CA5F.exe <==== ATTENTION Task: {6162F778-E375-4A11-AF2A-88A80F1A0F73} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {6922CA7B-04D5-48BA-9D29-2A5236269866} - System32\Tasks\{A2E4AF55-154F-18FE-9F73-75B9EE402854} => C:\ProgramData\{D06EEB6E-67C5-5CC5-1E02-F9E1013B4C1B}\C7C13DF6-706A-8A5D-754F-DF4575CB2DC3.exe <==== ATTENTION Task: {722DF33D-0A1B-4052-9A13-F6670BD4D138} - System32\Tasks\HPCustParticipation HP ENVY 7640 series => C:\Program Files\HP\HP ENVY 7640 series\Bin\HPCustPartic.exe [2017-05-23] (HP Inc.) Task: {76DDE831-DF64-4DEE-91F1-3BD276522277} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2151132770-2338251114-259933141-1000UA => C:\Users\Janice\AppData\Local\Google\Update\GoogleUpdate.exe Task: {77328CDC-898D-46D6-A969-FB9E25B02FA0} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {7809E33E-4E8E-472C-8FEC-1DB6D90E25A3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {78B82307-5DD6-44E7-A8CC-55891F90F1DD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {7A4CE3E3-F02E-41E0-8C43-21954A9043FD} - System32\Tasks\DNSLOCKINGTON => C:\Program Files (x86)\DNS Unlocker\dnslockington.exe <==== ATTENTION Task: {86258BAA-1B36-4FDE-AD17-CA91EBEBB17B} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION Task: {86DFF89E-D413-40FE-A4E2-FC1CA45A8A39} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION Task: {8BE8652B-AB14-45C4-8250-D985419EDE13} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {928166E4-B087-4276-801C-00F20A73AE04} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {928C48C8-8FB3-4A3C-A973-5227BBBE4E05} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {93FFDD8D-3384-4F3A-815A-F6F485FA7237} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION Task: {9567437B-47C2-4BDD-91BB-DBBDA02715C5} - System32\Tasks\Plus-HD-4.5-updater => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-updater.exe Task: {959EACDA-1E67-4227-9DE9-0B14856853FF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {980F43EE-A69A-49AE-9966-79224170EACC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-25] (Google Inc.) Task: {9A4D17FD-E496-41BA-B602-A3E2701C219D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {9BE2A32B-5E5E-4533-A652-407B79A6C49F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {9C5FF7E7-DF56-41C2-BD54-3B5D4B60F9E7} - System32\Tasks\HPCustPartic.exe_{BC39F3AA-47F7-42E0-9492-B6882CF6B202} => C:\Program Files\HP\HP ENVY 7640 series\Bin\HPCustPartic.exe [2017-05-23] (HP Inc.) Task: {9CE253B2-D22F-4F37-BCEA-CF1278D6594E} - System32\Tasks\{127A9A06-A5D1-2DAD-1F58-F5841C93C78C} => C:\ProgramData\{316C3DDC-86C7-8A77-2EB2-8526EBB8CCF2}\B0F2A965-0759-1ECE-0600-6555DCBC0525.exe <==== ATTENTION Task: {A2F592B5-CB7B-4FFB-B49F-5CDF9B4B3D60} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION Task: {A64138A2-2A87-4E5F-B0EF-451CC33D4DE4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {B0947DA4-0EB6-43BE-B7D4-7495D3C3A0C7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {B1433CE3-34EF-4705-AAA3-4C7B9B8C73A9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-25] (Google Inc.) Task: {B220C7BA-7161-4D02-8F9F-F66AEC2867F7} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {B27447FE-5AE2-4816-8985-A4535B124585} - System32\Tasks\Plus-HD-4.5-codedownloader => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-codedownloader.exe Task: {B2BA4B56-B008-4EAC-8FFF-9844AF815AA9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {B5D9979D-C2EF-49A3-A5DD-C4298CDB19EE} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {BFCDD733-1ED9-4791-9FE0-588AB782D949} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2151132770-2338251114-259933141-1000Core => C:\Users\Janice\AppData\Local\Google\Update\GoogleUpdate.exe Task: {C1B277E6-3B5B-4A2A-8FB7-7A70ADC79B6B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION Task: {C91B000C-77AF-4E26-BEE0-247E7F61DEAA} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C9C0FA2C-02D5-45CD-AA04-BF01A6E02427} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D1E43840-3F43-45B2-AB4C-4E74699F606E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION Task: {D3157D7A-CCA3-46E6-96C6-DAADF664BA49} - System32\Tasks\Plus-HD-4.5-chromeinstaller => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-chromeinstaller.exe Task: {D70BA016-DF60-4C99-B190-DE453A2D7F4F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DF526AE7-DFC5-4351-9EBD-A1E3020E3189} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E3B94506-9850-4341-89F4-2F8A2AAB6A05} - System32\Tasks\{6373806D-D4D8-37C6-6B33-B2515CEEDBDE} => C:\ProgramData\{500FFA8A-E7A4-4D21-2392-F0610BB43347}\BF35FA86-089E-4D2D-4C22-93626AF9C958.exe <==== ATTENTION Task: {E9741D15-E219-436D-83A0-3445958F4A39} - System32\Tasks\{CCD26546-5B8E-7BA3-4925-110259BE1461} => C:\WINDOWS\system32\regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\98020145\b92e8c3b.dll" <==== ATTENTION Task: {EC7522D0-CF25-4004-AD8E-F4876BD7D4A9} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2151132770-2338251114-259933141-1000Core1d237822f9b2b46 => C:\Users\Janice\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.) Task: {EC975FCF-57CA-457E-9550-EFCE18C0F956} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FC3D6848-EECF-47C6-8BF7-05AC70404F2B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {FCD8C1E7-2276-4C04-AE95-A1BACE357C17} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FE760AE5-12FC-41F5-9D5A-38DEF93BD863} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2151132770-2338251114-259933141-1000Core1d237822f9b2b46.job => C:\Users\Janice\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2151132770-2338251114-259933141-1000UA1d237822fcfa072.job => C:\Users\Janice\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2151132770-2338251114-259933141-1000.job => C:\Users\Janice\AppData\Local\GoToMeeting\8199\g2mupdate.exe Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2151132770-2338251114-259933141-1000.job => C:\Users\Janice\AppData\Local\GoToMeeting\8199\g2mupload.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2151132770-2338251114-259933141-1000Core.job => C:\Users\Janice\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2151132770-2338251114-259933141-1000UA.job => C:\Users\Janice\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Plus-HD-4.5-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-chromeinstaller.exe/installcrx /agentregpath='Plus-HD-4.5' /extensionfilepath C:\Program Files (x86)\Plus-HD-4.5\39678.crx' /appid=39678 /srcid='000739' /subid='0' /zdata='0' /bic=789BC73E353345CD8E5048F6CCBBEA1BIE /verifier=d320b4d2c50f5f5a658f91da85d95019 /installerversion=1_31_153 /installerfullversion=1.31.153.0 /installationtime=1386037918 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com <==== ATTENTION Task: C:\WINDOWS\Tasks\Plus-HD-4.5-codedownloader.job => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-codedownloader.exeư/reinstallapp /agentregpath='Plus-HD-4.5' /appid=39678 /srcid='000739' /subid='0' /zdata='0' /bic=789BC73E353345CD8E5048F6CCBBEA1BIE /verifier=d320b4d2c50f5f5a658f91da85d95019 /installerversion=1_31_153 /installerfullversion=1.31.153.0 /installationtime=1386037918 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /codedownloaddomain=hxxp:/app-static.crossrider.com <==== ATTENTION Task: C:\WINDOWS\Tasks\Plus-HD-4.5-enabler.job => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-enabler.exeƅ/enablebho /agentregpath='Plus-HD-4.5' /appid=39678 /srcid='000739' /subid='0' /zdata='0' /bic=789BC73E353345CD8E5048F6CCBBEA1BIE /verifier=d320b4d2c50f5f5a658f91da85d95019 /installerversion=1_31_153 /installationtime=1386037918 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com <==== ATTENTION Task: C:\WINDOWS\Tasks\Plus-HD-4.5-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-firefoxinstaller.exe/installxpi /agentregpath='Plus-HD-4.5' /extensionfilepath C:\Program Files (x86)\Plus-HD-4.5\39678.xpi' /appid=39678 /srcid='000739' /subid='0' /zdata='0' /bic=789BC73E353345CD8E5048F6CCBBEA1BIE /verifier=d320b4d2c50f5f5a658f91da85d95019 /installerversion=1_31_153 /installerfullversion=1.31.153.0 /installationtime=1386037918 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /waitforbrowser=300 /extensionid=a892fa08-2d07-49e8-adce-f650222629ca@82592752-c212-4885-b999-cb2a1d2f9d09.com /extensionversion=0.93 /prefsbranch=aa892fa082d0749e8adcef650222629ca82592752c2124885b999cb2a1d2f9d09com39678 /updateurl=hxxps:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/39678.rdf <==== ATTENTION Task: C:\WINDOWS\Tasks\Plus-HD-4.5-updater.job => C:\Program Files (x86)\Plus-HD-4.5\Plus-HD-4.5-updater.exeǨ/runupdater /agentregpath='Plus-HD-4.5' /appid=39678 /srcid='000739' /subid='0' /zdata='0' /bic=789BC73E353345CD8E5048F6CCBBEA1BIE /verifier=d320b4d2c50f5f5a658f91da85d95019 /installerversion=1_31_153 /installationtime=1386037918 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /monetizationdomain=hxxp:/stats.syncstatsdata.com /geoserviceurl=hxxp:/ipgeoapi.com/ /updatejsondomain=hxxp:/update.srvstatsdata.com <==== ATTENTION ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2013-08-14 15:19 - 2013-08-14 15:19 - 000039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe 2017-09-29 05:41 - 2017-09-29 05:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2016-05-31 12:08 - 2014-12-12 13:27 - 001356568 ____N () C:\Program Files\Tablet\Wacom\libxml2.dll 2017-12-28 22:02 - 2017-12-28 22:02 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-12-28 22:02 - 2017-12-28 22:02 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-01-17 13:18 - 2018-01-17 13:19 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-01-17 13:18 - 2018-01-17 13:19 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-01-17 13:18 - 2018-01-17 13:19 - 024677376 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-01-03 10:24 - 2018-01-03 10:24 - 002550272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\skypert.dll 2012-11-26 23:54 - 2012-11-26 23:54 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2018-01-10 18:42 - 2018-01-10 18:42 - 000472576 _____ () C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\d0c18422059ed6f5a635d237c8afcc87\VistaBridgeLibrary.ni.dll 2017-12-28 22:02 - 2017-12-28 22:02 - 003657624 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 2017-12-28 22:02 - 2017-12-28 22:02 - 002470296 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll 2016-06-28 00:19 - 2016-06-28 00:19 - 000865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll 2013-09-13 19:51 - 2013-09-13 19:51 - 000087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2013-09-13 19:51 - 2013-09-13 19:51 - 001242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2011-01-12 08:59 - 2010-08-11 16:19 - 000056544 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STCoreXml.dll 2011-01-12 08:59 - 2010-08-11 16:19 - 000126176 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll 2011-01-12 08:59 - 2010-08-11 16:19 - 000113888 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll 2016-08-23 01:03 - 2016-08-23 01:03 - 000038576 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\QBCompressor.dll 2016-08-23 01:03 - 2016-08-23 01:03 - 000091312 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\QBProActiveCore.dll 2016-08-23 01:02 - 2016-08-23 01:02 - 000663216 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\FtuEngine.dll 2016-08-23 01:03 - 2016-08-23 01:03 - 000109232 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\QBMAPILibrary.dll 2016-08-22 23:35 - 2016-08-22 23:35 - 000630784 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\boost_regex-vc120-mt-1_55.dll 2016-08-22 23:34 - 2016-08-22 23:34 - 038715904 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\libcef.dll 2016-08-23 01:02 - 2016-08-23 01:02 - 000252592 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\boost_serialization-vc120-mt-1_55.dll 2016-08-23 01:02 - 2016-08-23 01:02 - 000697520 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\BackupLib.dll 2016-08-23 01:04 - 2016-08-23 01:04 - 000073392 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\zlib1.dll 2016-08-23 01:02 - 2016-08-23 01:02 - 001255600 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\FeaturesBridge.dll 2016-08-23 01:03 - 2016-08-23 01:03 - 000074928 _____ () C:\Program Files (x86)\Intuit\QuickBooks 2017\mbpopup.dll 2018-01-24 11:24 - 2018-01-22 03:19 - 000733000 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll 2018-01-24 11:24 - 2018-01-22 03:19 - 002079048 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\dropbox_crashpad.dll 2018-01-24 11:25 - 2018-01-22 03:19 - 000100296 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\_ctypes.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000018888 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\select.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000020808 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000035792 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000694224 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\unicodedata.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000021856 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000130512 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 001856864 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000022880 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd 2018-01-24 11:24 - 2018-01-22 03:19 - 000145864 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\pyexpat.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000116688 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\pywintypes27.dll 2018-01-24 11:25 - 2018-01-22 03:19 - 000105928 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32api.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000022872 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000063312 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000024528 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32event.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000077120 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\fastpath.pyd 2018-01-24 11:24 - 2018-01-22 03:19 - 000020936 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\mmapfile.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000124880 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32file.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000116176 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32security.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000392656 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\pythoncom27.dll 2018-01-24 11:25 - 2018-01-22 03:22 - 000392520 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000026464 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000024016 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32clipboard.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000175560 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32gui.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000030160 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32pipe.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000043472 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32process.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000026056 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32job.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000048592 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32service.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000057808 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32evtlog.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000021840 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000023376 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winshell.compiled._winshell.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000022864 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\crashpad.compiled._Crashpad.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000066400 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winenumhandles.compiled._WinEnumHandles.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 001796928 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000084424 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\sip.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 001956160 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 003859272 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd 2018-01-24 11:25 - 2018-01-22 03:21 - 000155472 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000521032 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd 2018-01-24 11:25 - 2018-01-22 03:21 - 000050512 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineCore.pyd 2018-01-24 11:25 - 2018-01-22 03:21 - 000042312 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd 2018-01-24 11:25 - 2018-01-22 03:21 - 000131400 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000218960 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000204104 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000025440 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000060880 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32print.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000054616 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000024016 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32profile.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000022880 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000100704 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\windisplaytoast.compiled._DisplayToast.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000028616 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\win32ts.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000024416 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.shell32.compiled._winffi_shell32.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000022368 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000021856 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000022368 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000027496 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd 2018-01-24 11:25 - 2018-01-22 03:19 - 000349128 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winxpgui.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000101192 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtWinExtras.pyd 2018-01-24 11:25 - 2018-01-22 03:22 - 000023904 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000025432 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd 2018-01-24 11:24 - 2018-01-22 03:19 - 000036296 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\librsync.dll 2018-01-24 11:24 - 2018-01-22 03:21 - 000032608 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.pyd 2018-01-24 11:24 - 2018-01-22 03:19 - 000293392 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll 2018-01-24 11:25 - 2018-01-22 03:22 - 000021856 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.advapi32.compiled._winffi_advapi32.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000181064 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL 2018-01-24 11:25 - 2018-01-22 03:22 - 000030544 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\wind3d11.compiled._wind3d11.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000024384 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\libEGL.DLL 2018-01-24 11:24 - 2018-01-22 03:21 - 001638208 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\libGLESv2.dll 2018-01-24 11:25 - 2018-01-22 03:22 - 000026464 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000545096 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd 2018-01-24 11:24 - 2018-01-22 03:21 - 000359232 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd 2018-01-24 11:25 - 2018-01-22 03:21 - 000038216 _____ () C:\Users\Janice\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngine.pyd ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 18:34 - 2014-05-01 18:02 - 000000141 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2151132770-2338251114-259933141-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: DockLoginService => 2 MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Dell Registration => C:\Program Files (x86)\System Registration\prodreg.exe /boot MSCONFIG\startupreg: DSUpdateLauncher => "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe" /NOCONSOLE /D="C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate" /RUNAS "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe" MSCONFIG\startupreg: Launcher => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe MSCONFIG\startupreg: TkBellExe => "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot HKLM\...\StartupApproved\Run32: => "Dell Webcam Central" HKLM\...\StartupApproved\Run32: => "iTunesHelper" HKU\S-1-5-21-2151132770-2338251114-259933141-1000\...\StartupApproved\Run: => "OneDrive" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{DB80D6C1-5BEE-4588-A77C-02A567474F71}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{DD1BBBCA-D3A1-4F12-963B-1ECA41B4AE17}] => (Allow) LPort=5357 FirewallRules: [{9ECB0EDD-33B2-4676-9B66-BF46B7DE32F1}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\Bin\DeviceSetup.exe FirewallRules: [{B52E9F17-09DC-46C2-98A3-76D597ADD681}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\bin\FaxPrinterUtility.exe FirewallRules: [{FB68783C-9835-4E7B-B350-EE5F5526CA33}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\bin\SendAFax.exe FirewallRules: [{A1A940CA-CBFA-4A05-A196-642892A3B62D}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\bin\DigitalWizards.exe FirewallRules: [{3FF7B9FF-16D5-43EC-A65E-EE6AD79FF601}] => (Allow) C:\Program Files\HP\HP ENVY 7640 series\bin\FaxApplications.exe FirewallRules: [{3158FDAA-1764-4D90-8635-7305B07760A1}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS1809\HPDiagnosticCoreUI.exe FirewallRules: [{A7267251-A11F-4C07-8116-8DE6BA1DC046}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS1809\HPDiagnosticCoreUI.exe FirewallRules: [{E8050F8A-1801-4879-9E7E-53C6C3B5A8A0}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{44A47B56-67A1-4C73-BAA5-A577787870AB}] => (Allow) LPort=2869 FirewallRules: [{320411C0-4D67-4C4A-B498-754141971EEF}] => (Allow) LPort=1900 FirewallRules: [{78B261AA-D256-4EDE-A737-B389268A7D1B}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{D4ABDA1F-A9DF-478D-9651-52A8F82ACCFF}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{406E0698-7C5A-4190-A566-1C7B987CF8B3}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{AB750F6D-2ECB-4786-8A3E-3A2AE20BBE48}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS288A\setup\hpznui40.exe FirewallRules: [{448BCDE3-455A-4D1C-B712-2314F455D983}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{3EF567F7-AFB9-4CCE-9E97-DC2C11331B08}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{35BDF800-2002-424A-B087-7E55241D4380}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe FirewallRules: [{A9B2148A-FC65-40C0-BD36-B36A1B7D6C58}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe FirewallRules: [{58796271-E47A-4EE9-A0F5-3B0EC74BECB6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{53D72A14-C59B-4278-936E-BA3679532894}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{0032906B-F141-46D8-B16E-CF7A5CFC3CD0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{DCAC01F6-8FC9-4E84-8D42-F9FC2B3666A9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{6987C0FB-9397-4F28-9B28-C58ACD9440DF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe FirewallRules: [{B77B9FFA-126B-4C9C-A88D-17A651DFC918}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{B11483C7-3E6F-4F20-A284-2C3672CB5BD1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe FirewallRules: [{EEB6C608-7F9E-4D75-A43A-4540B87059D2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{85B6D7D4-C5C0-4DF3-BBF7-73B3E84BF266}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe FirewallRules: [{576876EF-7AEF-47CF-BC66-66AB2CF385D5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe FirewallRules: [{E8B1FCBA-1684-4B6B-AF21-D8275C8A0B7A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe FirewallRules: [{E3B4F1D0-3382-411E-AD52-4FF7142B3A2E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe FirewallRules: [{F93AD45C-24A2-4211-BC0A-71E216800546}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe FirewallRules: [{FDAB2427-EA75-46A4-837D-196ADDD01211}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe FirewallRules: [{42B64737-A396-405A-8B57-1096DD55B518}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{95ACD9AE-8462-47B1-A0AB-97CCFFBD6647}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{9349BE13-7475-4B75-A67E-B1A9FCA0E539}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{354BA742-E677-4327-8B9D-CCE0DD84772B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{BCAE7D64-5BF0-4ADE-9C17-F8672D487A4F}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe FirewallRules: [{C1C4A36D-3840-471A-919B-12189E1717D7}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe FirewallRules: [{7C5F2EA9-BDE5-4434-B8A4-897AF732F3ED}] => (Allow) C:\Users\Janice\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{8B9191E8-CBA0-468F-B374-578AB9EAC4A7}] => (Allow) C:\Users\Janice\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{05F97599-CC33-49C7-8CE1-9976D845D3AF}C:\users\janice\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\janice\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{A58C686C-2FB9-47FC-840D-AF5C4C36F682}C:\users\janice\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\janice\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{56CD4E67-9461-485A-8A72-B9F96F8656CB}] => (Allow) C:\Users\Janice\AppData\Roaming\Mixi.DJ\Updater.exe FirewallRules: [{AF15283D-9648-477F-A170-DD72CB516BDF}] => (Allow) C:\Users\Janice\AppData\Roaming\Mixi.DJ\Updater.exe FirewallRules: [{B2E0F89A-3B0E-42F3-A5E0-2B3654E9B159}] => (Allow) C:\Users\Janice\AppData\Roaming\Mixi.DJ Addon\Updater.exe FirewallRules: [{CB1A4703-27F3-4622-8E1E-237FB524FBEB}] => (Allow) C:\Users\Janice\AppData\Roaming\Mixi.DJ Addon\Updater.exe FirewallRules: [{DC4D79F5-C3C5-4CD3-8AFB-2F22039DAF78}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{3BC1935D-7DF2-4CC6-B6E7-FC875A6A27DD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{BDCCE36F-3277-459A-807B-5F3780C7A4F9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{4636EC05-8D65-4BCC-B3AD-3231E5F68264}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{62240FD1-6D68-4D90-92F7-3A378923F8BA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{5079A970-FE13-4900-92A6-5CDD3755D597}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe FirewallRules: [{996E460B-14D3-4D4D-81FB-997BD1B40CDB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{F094BD6B-6580-4025-932E-41B0C16BFEAD}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{D2238E41-0DF5-40E3-9922-BC7B0332CF54}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{FF2B2563-5284-4CB3-A5B9-208F9B3A0D45}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{BB6F86B0-1A63-4286-B497-C17A1A71DEE0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{8C0B44C4-B6CA-48F2-9D35-E9D4B4B4648C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{1D4BBD61-928B-4E70-8052-5E72C3A790AB}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS16F0\HPDiagnosticCoreUI.exe FirewallRules: [{24168405-5435-43CB-A320-C48BF2315D21}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS16F0\HPDiagnosticCoreUI.exe FirewallRules: [{802AB1AB-0D25-41A6-BFF8-0DA8F4C75952}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS229C\HPDiagnosticCoreUI.exe FirewallRules: [{C945034F-E8E0-4651-BE2F-D43477B91430}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS229C\HPDiagnosticCoreUI.exe FirewallRules: [{CA467F0F-955A-469C-B38E-B3C11A128023}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS0CA8\HPDiagnosticCoreUI.exe FirewallRules: [{038C57B6-F85D-4676-89D0-20D1B36BE6A1}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS0CA8\HPDiagnosticCoreUI.exe FirewallRules: [{5E0D5920-FE27-4339-9BF6-C3AECB975E46}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe FirewallRules: [{5B1E532C-6ECF-457E-A7C0-18AB8BC7ABEF}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe FirewallRules: [{69A0C4DF-6757-45EF-A7E9-D56FE42017A5}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe FirewallRules: [{9E9C2E5D-F792-47F2-87FA-21535CE9ED06}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe FirewallRules: [{BF5CE273-31E5-4D78-817B-1D99B00D797C}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS7303\HPDiagnosticCoreUI.exe FirewallRules: [{0EC5A26D-7B79-4156-9099-5A5D9E62C889}] => (Allow) C:\Users\Janice\AppData\Local\Temp\7zS7303\HPDiagnosticCoreUI.exe ==================== Restore Points ========================= 08-01-2018 20:22:53 Scheduled Checkpoint 16-01-2018 14:50:14 Scheduled Checkpoint 25-01-2018 15:32:22 Scheduled Checkpoint ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (01/27/2018 12:08:23 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "C:\WINDOWS\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe". Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (01/27/2018 05:47:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname Janice-PC.local already in use; will try Janice-PC-2.local instead Error: (01/27/2018 05:47:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister 4 Janice-PC.local. Addr 192.168.1.92 Error: (01/27/2018 05:47:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.92:5353 16 Janice-PC.local. AAAA 2600:1700:9FE0:4F30:BDCB:965D:C333:F099 Error: (01/26/2018 09:45:42 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 5568234 Error: (01/26/2018 09:45:42 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 5568234 Error: (01/26/2018 09:45:42 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (01/26/2018 05:48:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2735 Error: (01/26/2018 05:48:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 2735 Error: (01/26/2018 05:48:45 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second System errors: ============= Error: (01/27/2018 12:06:57 PM) (Source: DCOM) (EventID: 10016) (User: Janice-PC) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user Janice-PC\Janice SID (S-1-5-21-2151132770-2338251114-259933141-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (01/27/2018 12:01:08 PM) (Source: DCOM) (EventID: 10016) (User: Janice-PC) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user Janice-PC\Janice SID (S-1-5-21-2151132770-2338251114-259933141-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (01/26/2018 08:06:53 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service. Error: (01/26/2018 05:19:26 PM) (Source: DCOM) (EventID: 10010) (User: Janice-PC) Description: The server Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca did not register with DCOM within the required timeout. Error: (01/26/2018 05:06:49 PM) (Source: DCOM) (EventID: 10016) (User: Janice-PC) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user Janice-PC\Janice SID (S-1-5-21-2151132770-2338251114-259933141-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (01/26/2018 05:06:48 PM) (Source: DCOM) (EventID: 10016) (User: Janice-PC) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user Janice-PC\Janice SID (S-1-5-21-2151132770-2338251114-259933141-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (01/26/2018 10:08:35 AM) (Source: DCOM) (EventID: 10016) (User: Janice-PC) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user Janice-PC\Janice SID (S-1-5-21-2151132770-2338251114-259933141-1000) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (01/26/2018 10:03:22 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} and APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (01/26/2018 10:03:22 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} and APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (01/26/2018 10:03:22 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} and APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. CodeIntegrity: =================================== Date: 2018-01-27 12:30:42.833 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:30:42.828 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:27:32.120 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:27:32.116 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:25:09.665 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:25:09.661 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:23:47.176 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:23:47.172 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:22:37.185 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-01-27 12:22:37.183 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz Percentage of memory in use: 89% Total physical RAM: 1910.68 MB Available physical RAM: 205.73 MB Total Virtual: 3830.68 MB Available Virtual: 1318.68 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:283.34 GB) (Free:218.54 GB) NTFS ==>[system with boot components (obtained from drive)] Drive e: (TOSHIBA) (Removable) (Total:14.43 GB) (Free:10.54 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 15496641) Partition 1: (Not Active) - (Size=94 MB) - (Type=DE) Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=283.3 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 14.4 GB) (Disk ID: 6EAC0CD0) Partition 1: (Not Active) - (Size=14.4 GB) - (Type=0C) ==================== End of Addition.txt ============================