Additional scan result of Farbar Recovery Scan Tool (x86) Version: 06-11-2016 Ran by Elke (11-11-2016 16:18:12) Running from C:\Users\Elke\Downloads Microsoft Windows 7 Ultimate (X86) (2012-12-27 12:44:17) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2414527585-3944006083-3816331441-500 - Administrator - Disabled) Elke (S-1-5-21-2414527585-3944006083-3816331441-1000 - Administrator - Enabled) => C:\Users\Elke Guest (S-1-5-21-2414527585-3944006083-3816331441-501 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2414527585-3944006083-3816331441-1000\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.) Adobe Acrobat Reader DC - Nederlands (HKLM\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) Adobe Digital Editions 2.0 (HKLM\...\Adobe Digital Editions 2.0) (Version: 2.0.1 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM\...\Adobe Photoshop CS6) (Version: 13.0.0.0 - © The Computer Guy Tony) Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.) Akamai NetSession Interface (HKU\S-1-5-21-2414527585-3944006083-3816331441-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Angry Birds (HKLM\...\{01509AB1-84BB-4AB9-A142-38AFA0BBDA25}) (Version: 4.0.0 - Rovio Entertainment Ltd.) Angry Birds Rio (HKLM\...\{0D637670-BC00-4FAC-8E00-518EB7F65091}) (Version: 1.4.4 - Rovio) Angry Birds Space (HKLM\...\{FA4E4BC2-335B-4453-A381-0D111937E748}) (Version: 2.0.0 - Rovio Entertainment Ltd.) Angry Birds Star Wars (HKLM\...\{84389C53-9D0B-4417-AA5A-211BEE64BEC7}) (Version: 1.5.0 - Rovio Entertainment Ltd.) Angry Birds Star Wars II 1.51 (HKLM\...\Angry Birds Star Wars II 1.51) (Version: 1.51 - Cat-A-Cat) ANT Drivers Installer x86 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach) Belgium e-ID middleware 4.1.16 (build 1723) (HKLM\...\{4DDF16AE-8D5D-4027-A2D1-8CBB498E1723}) (Version: 4.1.1723 - Belgian Government) CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.41.3.0173 - DT Soft Ltd) Deluge 1.3.12 (HKLM\...\Deluge) (Version: - ) Elevated Installer (Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden FARO LS 1.1.501.0 (HKLM\...\{8F196892-666A-4A40-8587-6AE38F78A5C2}) (Version: 5.1.0.30630 - FARO Scanner Production) Fish Tales ver 1.0 (HKLM\...\FishTales_is1) (Version: 1.0 - Media Contact LLC) Freemake Audio Converter versie 1.1.0 (HKLM\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation) Garmin Express (HKLM\...\{d74c733b-9216-49f5-ae3a-14bf3a3d66f5}) (Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Garmin Express (Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.) Google Drive (HKLM\...\{3D7AB4D4-2E45-4986-BAC5-5B3CEED21FAA}) (Version: 1.32.3592.6117 - Google, Inc.) Google Earth (HKLM\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google) Google Earth Plug-in (HKLM\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden HP Deskjet 3520 series Basic Device Software (HKLM\...\{5C2ECF15-B7FF-4E0E-9D00-2000354BD9C2}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3520 series Help (HKLM\...\{C13E1F46-84FE-4D3B-8581-0F2F624C7EEC}) (Version: 27.0.0 - Hewlett Packard) HP Deskjet 3520 series Product Improvement Study (HKLM\...\{64A90D6D-E741-4BCD-935C-BB09F3AEBF98}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3520 series Setup Guide (HKLM\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard) HP FWUpdateEDO2 (HKLM\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard) HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (Version: 1.00.0001 - Microsoft) Hidden Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation) Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 14.2 - Intel) ISOBuddy (HKLM\...\ISOBuddy) (Version: - ) Java 8 Update 111 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) K-Lite Codec Pack 12.1.0 Full (HKLM\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP) Lenovo Mouse Suite (HKLM\...\MouseSuite98) (Version: 6.60 - Lenovo) Lenovo System Update (HKLM\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0037 - Lenovo) Malwarebytes Anti-Malware versie 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Max en het Vreemde dier (HKLM\...\Max en het Vreemde dier) (Version: - ) MergeModule_x86 (Version: 9.1.00 - Sony Corporation) Hidden Metric Collection SDK (Version: 1.1.0005.00 - Lenovo Group Limited) Hidden Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Milky Bear Riches Raider 2 (HKLM\...\Milky Bear Riches Raider 2_is1) (Version: 1.0 - Media Contact LLC) Mozilla Firefox 49.0.2 (x86 nl) (HKLM\...\Mozilla Firefox 49.0.2 (x86 nl)) (Version: 49.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla) PlayMemories Home (HKLM\...\{93AA5B49-0994-4EF6-80F3-868C9CEA88ED}) (Version: 4.1.00.12152 - Sony Corporation) PMB_ModeEditor (Version: 9.1.00 - Sony Corporation) Hidden PMB_ServiceUploader (Version: 9.1.00 - Sony Corporation) Hidden QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.00042 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform) Skype Click to Call (HKLM\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.24 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) SOHLib for PlayMemories Home (Version: 1.0.3.02170 - Sony Corporation) Hidden SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.6595 - Analog Devices) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden tiptoi® Manager 3.0.4 (HKLM\...\9978-5763-2995-5228) (Version: 3.0.4 - Ravensburger AG) Tux Paint 0.9.21 (HKLM\...\Tux Paint_is1) (Version: - New Breed Software) Versie 1.0 (HKLM\...\Dora Dierenavonturen_is1) (Version: - atari) Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Windows Driver Package - Fedict SmartCard (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict) Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) YouTubeByClick (HKLM\...\{688DC10C-CACB-413C-9AEC-15D55F8E576D}) (Version: 2.2.17 - YouTubeByClick.com) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {053BD39C-8F12-45F3-B90B-DEA2A4644BD8} - System32\Tasks\{94BF1E35-8F89-4194-A96E-9E7DB3FB4051} => pcalua.exe -a "C:\Program Files\Shockwave.com\Diego's Rescue Adventure 3-D\Diego's Rescue Adventure 3-D.exe" -d C:\Users\Elke\Desktop Task: {06F3A2F7-BBE7-470B-A9A6-966697491A76} - System32\Tasks\{07F20230-E5F2-4415-95F1-9954CB0A5E94} => pcalua.exe -a C:\Users\Elke\Desktop\MAXIM\XaoS-3.4-win32-Installer.exe -d C:\Users\Elke\Desktop\MAXIM Task: {173C936D-C298-4E72-9D69-00B470F6ED78} - System32\Tasks\{032E0393-F581-48DF-BA10-99FE4E659B6C} => pcalua.exe -a C:\Users\Elke\Desktop\Droid4XInstaller.exe -d C:\Users\Elke\Desktop Task: {196AC59B-EA8D-42E4-931C-9F43E1906309} - System32\Tasks\HP AR Program Upload - 306fa1163424425b8575b45cda62b786b7339f673fc947889603a642cd08b529 => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {24094891-9104-42EF-9765-D0C50F9DC9F8} - System32\Tasks\Driver Booster SkipUAC (Elke) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe Task: {280C0892-3557-4B1B-8361-73920D335A44} - System32\Tasks\{47FDB303-4280-4499-8DB9-20BFCA064DA0} => pcalua.exe -a C:\Users\Elke\Desktop\MAXIM\RorPopLimit.exe -d C:\Users\Elke\Desktop\MAXIM Task: {2EF75043-A4BD-4A1A-B414-ECE8BF6F2088} - System32\Tasks\HP AR Program Upload - 6935414a800449a5b02fe2cbdca84b2abf75b9c067134545bbb4b534a7a22992 => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {38050136-C004-48CF-A93D-2BBD475C78A6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.) Task: {4498B1C4-1B07-4375-B0E1-3E3469C11FA3} - System32\Tasks\{4E26765F-B087-47A0-86E4-746433E9B8AA} => pcalua.exe -a C:\Users\Elke\Downloads\Setup.exe -d C:\Users\Elke\Downloads Task: {451295D6-C41C-460D-93F8-7D90600558F5} - System32\Tasks\HP AR Program Upload - d64f4c065aaf49ed9c0850e0492ade50bd391a4e47a94240aff56460bed0d106 => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {45266011-FFEE-4879-9600-75A5B45C073D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files\Lenovo\System Update\tvsuShim.exe [2016-09-10] () Task: {532F886D-01B4-4F29-8EF4-0A044C308217} - System32\Tasks\{B6D93ED4-7762-4440-85DD-E7CC65AA0170} => pcalua.exe -a "C:\Users\Elke\Downloads\PC_World.of.Zoo.Multi-Kulti.Full-Rip.-TPTB\THQ\Blue Fang Games\SetupWOZ.exe" -d "C:\Users\Elke\Downloads\PC_World.of.Zoo.Multi-Kulti.Full-Rip.-TPTB\THQ\Blue Fang Games" Task: {5708E1A3-B5F4-4425-96D5-6BE1F82A708A} - System32\Tasks\HP AR Program Upload - 775a7c0c46af4cbda1a8fa85ffe4c8e851d471cb03414053b8a7b0eb3e2b8252 => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {5A8D4613-F0AF-4716-B2D8-8740322CD340} - System32\Tasks\{8D711F62-0DFE-44B4-8909-8B3A8D01FFC8} => C:\Program Files\Lucidity\revLoader.exe [2009-05-01] () Task: {5DC90D98-6344-4312-8F68-795CADFDBA78} - System32\Tasks\{04186986-6B36-4A8F-8264-7221156FD7B7} => pcalua.exe -a "C:\Users\Elke\Downloads\PC_World.of.Zoo.Multi-Kulti.Full-Rip.-TPTB\THQ\Blue Fang Games\MakeIcon.exe" -d "C:\Users\Elke\Downloads\PC_World.of.Zoo.Multi-Kulti.Full-Rip.-TPTB\THQ\Blue Fang Games" Task: {60B8A6E7-3CF3-49DA-96BF-F12190356181} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {775A45D7-E741-4367-92B7-FF5C5EF8042C} - \2pP -> No File <==== ATTENTION Task: {8638505E-B7AE-4901-A6FE-76DBA8946D70} - System32\Tasks\HP AR Program Upload - 53e87de216c64571ba7c7263db082b2b4919c46b9ad84b9aa903d5473321af71 => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {87E16982-78B9-4D34-B227-9990E1C7C470} - \PC-Mechanic Startup -> No File <==== ATTENTION Task: {91C2F380-BA5D-47DA-A910-BA93414DF75A} - \PC-Mechanic Maintenance -> No File <==== ATTENTION Task: {999BC5B4-AFC2-4BBE-A655-44739D8CAA99} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-04-18] () Task: {9B81319D-7E9F-4C47-BC83-2161CF7A2554} - System32\Tasks\HP AR Program Upload - 6350fe1aff094328b036724e73f5307de6efd2bee4634f5dbe4dade3bedea3bb => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {A327875B-D3B9-4881-9118-C6BAA2F3E267} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated) Task: {B13C2E37-D5DD-4F8A-8DC8-C433C45017BF} - System32\Tasks\HP AR Program Upload - bdd84ec8812b4e3587427456f27443bdade292f2faa746a3a6ae222a5cc6a4ad => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {B163F3CC-07BE-4C3B-ABD3-3D8525A42222} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files\Lenovo\System Update\tvsuShim.exe [2016-09-10] () Task: {B46013C0-1458-4193-B3A0-633520DD80AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {BFB69A03-F53C-4F3A-BE96-95D830DC3870} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {D959F3FE-C469-435E-9B16-774D07C97FC5} - System32\Tasks\Sony Corporation\Sony Home Network Library\SOHLib SOHDms => C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe [2014-01-16] (Sony Corporation) Task: {D9DB4E90-7597-478F-8954-54A74CE04CC0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd) Task: {DC49A321-9B5F-435A-A5E4-B19397B97EED} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo) Task: {E6B4ED3C-8C19-4B88-86A2-2173EA0AF948} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-10-25] () Task: {E886AAC8-6284-43C3-B806-75A8F3AAC148} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {FA35B551-BE40-4EB8-9750-4F73FE2E0107} - System32\Tasks\{B979215E-1C5A-4FDC-BEF3-D9125ABB521B} => pcalua.exe -a E:\Viva.exe -d E:\ Task: {FD02FA4A-F5FE-4344-84AA-BF51FF8ABC9D} - System32\Tasks\{D54376EB-8679-4639-A34F-A8CBA3200C61} => pcalua.exe -a "C:\Users\Elke\Desktop\Putt-Putt & Fatty Bear Collection.exe" -d C:\Users\Elke\Desktop (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2012-12-27 14:04 - 2010-04-22 14:04 - 00184320 ____N () C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe 2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2010-03-24 21:17 - 2010-03-24 21:17 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2006-09-19 09:07 - 2006-09-19 09:07 - 00827392 _____ () C:\Windows\vsnpstd3.exe 2012-12-27 14:04 - 2008-11-20 16:27 - 00020480 ____N () C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE 2012-12-27 14:04 - 2010-06-01 16:41 - 00155648 ____N () C:\Program Files\Lenovo\Lenovo Mouse Suite\PelElvDm.exe 2016-10-25 05:06 - 2016-09-10 11:13 - 00028544 _____ () C:\Program Files\Lenovo\System Update\SUService.exe 2016-10-01 00:36 - 2016-10-01 00:36 - 46476472 _____ () C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKU\S-1-5-21-2414527585-3944006083-3816331441-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-2414527585-3944006083-3816331441-1000\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2414527585-3944006083-3816331441-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 195.130.130.5 - 195.130.131.5 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{E9BE07EC-23C4-4F94-B006-ECE59642A41B}] => (Allow) C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E6FFAE4C-3839-4FCA-A602-A72CA83EE959}] => (Allow) C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2AFE69ED-2DF4-4D8E-9829-18A6295F37F1}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{01E31152-9819-43F9-9EB0-117460A7BEC3}C:\users\elke\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\elke\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{01ED1061-E067-43BD-A823-4E8EFFA89503}C:\users\elke\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\elke\appdata\local\akamai\netsession_win.exe FirewallRules: [{974030E5-F71E-4C97-A26F-431F6CFE6281}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{1274EF52-5F47-4098-A270-CFA6B87C56E4}C:\users\elke\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\elke\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{4F6CC729-CBCB-4135-95A0-CF71CEF62491}C:\users\elke\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\elke\appdata\local\akamai\netsession_win.exe FirewallRules: [{BB169500-D440-4475-A66F-32F5F0A1B0F7}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe FirewallRules: [{BE45F2AC-FBD8-4FAF-BD05-EDE7F5129D27}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{208A86A0-3AA2-40FB-B80F-F2D0E3314566}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [TCP Query User{BEF7079D-1D2A-480F-8BE8-0C485D711302}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{C76EB7A4-7CAB-4979-83F7-7D2F319670BA}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe FirewallRules: [{8F1A3B67-3A64-4453-BF45-661528BB44ED}] => (Allow) C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe FirewallRules: [{8D5FB9F1-1C01-4E57-ACB8-BAB294E582B4}] => (Allow) C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe FirewallRules: [{3954C128-59A3-4A96-A5C1-0F90552D7D08}] => (Allow) C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDs.exe FirewallRules: [{E3A024E7-72E4-4930-83B0-6D6E5E7112CF}] => (Allow) C:\Program Files\Sony\PlayMemories Home\PMBBrowser.exe FirewallRules: [{95D04DB2-A5EF-4C81-AE25-AC7CD97BC3E4}] => (Allow) C:\Program Files\Sony\PlayMemories Home\PMBBrowser.exe FirewallRules: [{4376E2F9-50FB-4218-BD1F-878E56C748DD}] => (Allow) C:\Program Files\Steam\Steam.exe FirewallRules: [{4494D873-1A5F-4463-9238-D772F3A2C84C}] => (Allow) C:\Program Files\Steam\Steam.exe FirewallRules: [{6956345D-2F41-46FB-8D3C-55CD55699013}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe FirewallRules: [{8221FCA0-1C13-4976-B679-1B9C6106EA5E}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe FirewallRules: [{8EFCC922-6B8C-4771-889F-FDCDF0C75985}] => (Allow) C:\Program Files\Steam\SteamApps\common\Remember Me\Binaries\Win32\RememberMe.exe FirewallRules: [{F89B3182-3677-48AC-938C-DD4602B6CCAA}] => (Allow) C:\Program Files\Steam\SteamApps\common\Remember Me\Binaries\Win32\RememberMe.exe FirewallRules: [{3A254076-B0DB-48FD-ACD2-5B8BA36B123D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{76ABC07B-80E8-4154-BE7F-520162B9B134}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{80B2AE35-2160-4E78-AA2C-BD8CF0F57FF2}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{9B81C4CE-E945-46E7-A495-2C95CC25FC0B}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe FirewallRules: [{B187496C-3F85-445F-8F63-2AE01A0C2125}] => (Allow) C:\Users\Elke\AppData\Local\Temp\nss135E.tmp\Installer-10150091.exe FirewallRules: [{7627D16A-7477-49F8-A04F-525B79A714C9}] => (Allow) C:\Users\Elke\AppData\Local\Temp\nss135E.tmp\Installer-10150091.exe FirewallRules: [{7C77D03D-FD37-4465-808E-5BABCDA92AD5}] => (Allow) C:\Users\Elke\AppData\Local\Temp\nssBB8E.tmp\Installer-10150091.exe FirewallRules: [{83740FFC-2230-4400-98F3-9F1E293599F9}] => (Allow) C:\Users\Elke\AppData\Local\Temp\nssBB8E.tmp\Installer-10150091.exe FirewallRules: [{1D874F28-8CFB-4F5E-B6FD-63991955FF55}] => (Allow) C:\Users\Elke\AppData\Local\Temp\nst99FB.tmp\Installer-10144014.exe FirewallRules: [{29474B98-F949-4E1D-890F-572CC6173B7E}] => (Allow) C:\Users\Elke\AppData\Local\Temp\nst99FB.tmp\Installer-10144014.exe FirewallRules: [{83142A26-C27B-4AFF-842A-212C5AEC7D46}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{D9C8CCC2-15C6-41A7-BC59-B22434673D20}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{D6C28CE4-FC84-4438-AAD3-FAE84BA577E0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{EC21BDFA-2334-4FAE-B94B-08FC5B3DABC4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{812CA011-4D7D-408B-B16C-815DCDBF8EF2}] => (Allow) C:\Program Files\Andy\andy.exe FirewallRules: [{8ED75721-25CC-4318-BADA-3C6F268C9FD8}] => (Allow) C:\Program Files\Andy\andy.exe FirewallRules: [{02591CDD-FB86-4D8B-ABFE-937A0A08D5BE}] => (Allow) C:\Program Files\Andy\HandyAndy.exe FirewallRules: [{37C272F1-FF63-4371-AE1F-118A685329D6}] => (Allow) C:\Program Files\Andy\HandyAndy.exe FirewallRules: [{5A5262B3-B46E-467E-8649-AEC27CDA32BF}] => (Allow) C:\Users\Elke\AppData\Roaming\Andy\Setup.exe FirewallRules: [{CE5A3C09-968B-40B7-81F7-E438E16C8F32}] => (Allow) C:\Users\Elke\AppData\Roaming\Andy\Setup.exe FirewallRules: [{BB416B84-1790-46CF-ADD4-DEDF4C2E3F05}] => (Allow) C:\Program Files\Droid4X\Droid4X.exe FirewallRules: [{45998B63-A876-4916-9682-089C8F61A12E}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe FirewallRules: [TCP Query User{A1312F63-54AF-4941-9293-737D131C3254}C:\users\elke\downloads\dora 33\fscommand\vividas_ep33.exe] => (Allow) C:\users\elke\downloads\dora 33\fscommand\vividas_ep33.exe FirewallRules: [UDP Query User{3A9BA603-E5A1-4701-86DE-E77F14D37578}C:\users\elke\downloads\dora 33\fscommand\vividas_ep33.exe] => (Allow) C:\users\elke\downloads\dora 33\fscommand\vividas_ep33.exe FirewallRules: [{95AD3C20-9888-4306-B9DB-19192D140C35}] => (Allow) C:\Program Files\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{9EEF5173-89BE-49FA-9D1C-8CC74D37B91A}] => (Allow) C:\Program Files\IObit\Driver Booster\DriverBooster.exe FirewallRules: [{767080F7-D0B1-4459-84E9-7ABA0748BCE6}] => (Allow) C:\Program Files\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{A7E3C033-35F2-4FFD-A10A-BEE9EF59F391}] => (Allow) C:\Program Files\IObit\Driver Booster\DBDownloader.exe FirewallRules: [{1FEC9D59-CA71-495E-B8DA-B09FA38EB30E}] => (Allow) C:\Program Files\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{928D9CCC-49D7-4DD1-B2C2-AA8236F297E0}] => (Allow) C:\Program Files\IObit\Driver Booster\AutoUpdate.exe FirewallRules: [{D4C94200-0871-4036-ACF4-A1C2EE54CB0A}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [TCP Query User{6E7B2227-CF1E-4008-AB22-0D529A0242C7}C:\program files\deluge\deluge.exe] => (Allow) C:\program files\deluge\deluge.exe FirewallRules: [UDP Query User{1AB38650-A915-4A61-A36E-8F440CBEAAD5}C:\program files\deluge\deluge.exe] => (Allow) C:\program files\deluge\deluge.exe FirewallRules: [{09531D43-E7C4-4D17-A856-E68A63311A5B}] => (Allow) C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B2F7E3FB-7675-476C-A48B-D8E7CD4AE13A}] => (Allow) C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E93EC75A-9BD7-47FB-897D-50849709999D}] => (Allow) C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AFBC555E-3B8E-42BB-AD96-2782B804AB82}] => (Allow) C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{087394A4-048B-47BB-9956-4CBFF8138940}] => (Allow) C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CC19BCF0-261C-497C-BEB9-9A4C6B4C0114}] => (Allow) C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0494198D-FDA4-4AFF-9D4A-ACBE997E733D}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe FirewallRules: [{CADDF98B-910D-4FC0-BF40-6DB81200C251}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe FirewallRules: [TCP Query User{57A1038F-6459-42CD-B484-AEF9A12364F4}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{CF12AD61-ADFB-4DCE-BD8A-3E036820D917}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{0A625430-D804-48BF-92CD-B87B25065097}C:\users\elke\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\elke\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe FirewallRules: [UDP Query User{0B150BF5-B4B5-4611-8FC8-F2595016F2E6}C:\users\elke\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\elke\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe FirewallRules: [{3E21D0B9-1F20-4652-AEF3-554C5DC88CD2}] => (Allow) C:\Program Files\Lenovo\System Update\uncserver.exe FirewallRules: [{9131D034-D1DB-43F8-BF04-25EB9D916FA5}] => (Allow) C:\Program Files\Lenovo\System Update\uncserver.exe FirewallRules: [{CCF9EA2D-6F0A-475C-B867-196332190722}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Restore Points ========================= ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: PCI Simple Communications Controller Description: PCI Simple Communications Controller Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: PCI Serial Port Description: PCI Serial Port Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Midi Device Description: Midi Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (11/11/2016 03:18:58 PM) (Source: MsiInstaller) (EventID: 11310) (User: Elke-PC) Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe. System error 0. Verify that you have access to that directory. Error: (11/11/2016 03:18:21 PM) (Source: MsiInstaller) (EventID: 11310) (User: Elke-PC) Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe. System error 0. Verify that you have access to that directory. Error: (11/11/2016 11:15:29 AM) (Source: MsiInstaller) (EventID: 11310) (User: Elke-PC) Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe. System error 0. Verify that you have access to that directory. Error: (11/11/2016 11:14:58 AM) (Source: MsiInstaller) (EventID: 11310) (User: Elke-PC) Description: Product: Akamai NetSession Interface -- Error 1310. Error writing to file: C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe. System error 0. Verify that you have access to that directory. Error: (11/11/2016 09:53:57 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: SpfService.exe, version: 1.3.0.9090, time stamp: 0x4e684be0 Faulting module name: ntdll.dll, version: 6.1.7600.16385, time stamp: 0x4a5bdadb Exception code: 0xc0000005 Fault offset: 0x0005dba9 Faulting process id: 0xaf8 Faulting application start time: 0x01d23be27a8af5f6 Faulting application path: C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 60f1c5cf-a7ec-11e6-a63e-001e372cd508 Error: (11/11/2016 07:11:52 AM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: The index cannot be initialized. Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (11/11/2016 07:11:52 AM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: The application cannot be initialized. Context: Windows Application Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (11/11/2016 07:11:52 AM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: The gatherer object cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (11/11/2016 07:11:52 AM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: Element not found. (HRESULT : 0x80070490) (0x80070490) Error: (11/11/2016 07:11:43 AM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: The plug-in in cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) System errors: ============= Error: (11/11/2016 02:25:06 PM) (Source: volsnap) (EventID: 35) (User: ) Description: The shadow copies of volume C: were aborted because the shadow copy storage failed to grow. Error: (11/11/2016 09:53:57 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The VAIO Entertainment Common Service service terminated unexpectedly. It has done this 1 time(s). Error: (11/11/2016 07:11:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (11/11/2016 07:11:52 AM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: The Windows Search service terminated with service-specific error %%-1073473535. Error: (11/10/2016 09:29:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The VAIO Entertainment Common Service service terminated unexpectedly. It has done this 4 time(s). Error: (11/10/2016 07:44:44 PM) (Source: cdrom) (EventID: 7) (User: ) Description: The device, \Device\CdRom1, has a bad block. Error: (11/10/2016 07:44:40 PM) (Source: cdrom) (EventID: 7) (User: ) Description: The device, \Device\CdRom1, has a bad block. Error: (11/10/2016 07:44:36 PM) (Source: cdrom) (EventID: 7) (User: ) Description: The device, \Device\CdRom1, has a bad block. Error: (11/10/2016 07:44:27 PM) (Source: cdrom) (EventID: 7) (User: ) Description: The device, \Device\CdRom1, has a bad block. Error: (11/10/2016 07:44:19 PM) (Source: cdrom) (EventID: 7) (User: ) Description: The device, \Device\CdRom1, has a bad block. CodeIntegrity: =================================== Date: 2015-10-14 17:32:14.343 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:32:13.880 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:32:11.292 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:32:11.276 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:28:30.211 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:28:30.195 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:28:22.547 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:28:22.547 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:27:39.343 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. Date: 2015-10-14 17:27:39.328 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz Percentage of memory in use: 56% Total physical RAM: 3045.3 MB Available physical RAM: 1323.66 MB Total Virtual: 6088.88 MB Available Virtual: 4480.3 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:74.44 GB) (Free:10.36 GB) NTFS Drive f: (Nieuw) (CDROM) (Total:4.18 GB) (Free:0 GB) UDF Drive g: (MOVIE poepelewoevie) (Fixed) (Total:698.51 GB) (Free:267.94 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 74.5 GB) (Disk ID: 7E92AA96) Partition 1: (Not Active) - (Size=993 KB) - (Type=42) Partition 2: (Active) - (Size=100 MB) - (Type=42) Partition 3: (Not Active) - (Size=74.4 GB) - (Type=42) Partition 4: (Not Active) - (Size=512 KB) - (Type=42) ======================================================== Disk: 1 (Size: 698.6 GB) (Disk ID: 22D71017) Partition: GPT. ==================== End of Addition.txt ============================