Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2015
Ran by Dani (administrator) on BATTLESTATION on 01-01-2015 19:19:37
Running from C:\Users\Dani\Downloads
Loaded Profile: Dani (Available profiles: Dani)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.2.0\ToolbarUpdater.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.2.0\loggingserver.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\JPN\JpnIME.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(BitTorrent Inc.) C:\Users\Dani\AppData\Roaming\BitTorrent\BitTorrent.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Flux Software LLC) C:\Users\Dani\AppData\Local\FluxSoftware\Flux\flux.exe
() C:\Program Files\Rainmeter\Rainmeter.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\main.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Corsair Components, Inc.) C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\JPN\JpnIME.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SndVol.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7573208 2014-04-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1385840 2014-04-15] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2464072 2014-11-06] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10801944 2014-07-28] (Logitech Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2014-10-08] (Power Software Ltd)
HKLM-x32\...\Run: [Corsair Utility Engine] => C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe [10545928 2014-12-22] (Corsair Components, Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3667472 2014-12-18] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [3081752 2014-12-29] ()
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\Run: [BitTorrent] => C:\Users\Dani\AppData\Roaming\BitTorrent\BitTorrent.exe [1381208 2014-12-11] (BitTorrent Inc.)
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30524520 2014-11-27] (Skype Technologies S.A.)
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\Run: [GoogleChromeAutoLaunch_8ACDE2C795C6776D0730277ADFF0527E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [856904 2014-12-05] (Google Inc.)
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7780120 2014-12-15] (SUPERAntiSpyware)
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\Run: [f.lux] => C:\Users\Dani\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\MountPoints2: D - "D:\setup.exe"
Startup: C:\Users\Dani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca
HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
SearchScopes: HKU\S-1-5-21-2892578887-3102353879-1160726384-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={9FEF3248-1E10-4FBB-908F-11DA51A6C156}&mid=4a300a8181b447cda1cb5adddeb39f45-42d1b1ee702e41d668f8929deab268765a67180a&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-12-29 19:34:02&v=4.0.5.7&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.0.5.7\AVG Web TuneUp.dll (AVG)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.0.5.7\AVG Web TuneUp.dll (AVG)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://support.asus.com/select/asusTek_sys_ctrl3.cab
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.2.0\ViProtocol.dll (AVG Secure Search)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Dani\AppData\Roaming\Mozilla\Firefox\Profiles\v9fallin.default
FF NewTab: hxxp://www.google.ca
FF DefaultSearchEngine: AVG Secure Search
FF SelectedSearchEngine: AVG Secure Search
FF Homepage: hxxp://www.google.ca
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.2.0\\npsitesafety.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKU\S-1-5-21-2892578887-3102353879-1160726384-1001: @nsroblox.roblox.com/launcher -> C:\Users\Dani\AppData\Local\Roblox\Versions\version-632471a80776450d\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2892578887-3102353879-1160726384-1001: @nsroblox.roblox.com/launcher64 -> C:\Users\Dani\AppData\Local\Roblox\Versions\version-632471a80776450d\\NPRobloxProxy64.dll ( ROBLOX Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Users\Dani\AppData\Roaming\Mozilla\Firefox\Profiles\v9fallin.default\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\wtu-secure-search.xml
FF Extension: FlashGot - C:\Users\Dani\AppData\Roaming\Mozilla\Firefox\Profiles\v9fallin.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-10-01]
Chrome:
=======
CHR HomePage: Default -> hxxp://gaben.amigocraft.net/
CHR StartupUrls: Default -> "hxxp://forum.porteus.org/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-08]
CHR Extension: (Open Reddit NSFW Links in Incognito Window) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\aedepcllfamehicoifddolbbnmahlkff [2014-09-08]
CHR Extension: (Google Docs) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-08]
CHR Extension: (Google Drive) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-08]
CHR Extension: (ROBLOX 3D Preview Plugin) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\begdomdbhchlodcakjoephdlnmkkljoa [2014-09-08]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-08]
CHR Extension: (Siggy Automator) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjdhemfmihbpmjpdjgagkdinfdmabgel [2014-09-08]
CHR Extension: (YouTube) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-08]
CHR Extension: (TagPro Capture the Flag) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\bommelfnddjcbmbcfhmhjikpfphlebjh [2014-09-08]
CHR Extension: (AVG Secure Search) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2014-12-29]
CHR Extension: (Google Tips) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnhacgcmhcgppboemgoobibkhlpglejb [2014-09-08]
CHR Extension: (Google Search) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-08]
CHR Extension: (Dark Vibe) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkckeanhmkjaechlhllmapjaaglgpcbj [2014-12-31]
CHR Extension: (Torrent Turbo Search App) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\eegbffmjdkflkcfncpfjjbggbdlnbdif [2014-09-08]
CHR Extension: (PanicButton) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2014-10-12]
CHR Extension: (Google Sheets) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-08]
CHR Extension: (internet Download Manager II) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\fojbiiochehfjkongghiipnnmjkjphob [2014-10-01]
CHR Extension: (Heroes & Generals) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbophcdhblbipoaacgchllkobdaolpge [2014-09-08]
CHR Extension: (AdBlock) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-08]
CHR Extension: (Hola Better Internet) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2014-10-22]
CHR Extension: (Blockchain) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\glaohkkooicollgefkkmndjcbblominl [2014-09-08]
CHR Extension: (Anime Release Notifier) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\hajchfikckiofgilinkpifobdbiajfch [2014-12-31]
CHR Extension: (Sniper Team) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgbbaloijjnkpigapgmocdpoblnlec [2014-09-08]
CHR Extension: (Japanese Kana) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnhmomiblghhhfjleapinggmnjhinign [2014-10-12]
CHR Extension: (PCMR heathen filter) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkhfdncjbccgbglmkeogfgpcalmjcebl [2014-11-15]
CHR Extension: (3D Action Games) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\loaciifbegkjbeddmolhfdmpmicbkadm [2014-09-08]
CHR Extension: (Chrono Download Manager) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\mciiogijehkdemklbdcbfkefimifhecn [2014-10-01]
CHR Extension: (Google Wallet) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-08]
CHR Extension: (Hover Zoom) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2014-12-18]
CHR Extension: (Tor) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohielanlcdleofjibfmjbbkaajdcpoil [2014-11-26]
CHR Extension: (Sniper Games) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\onjdoagkpggaokhecdopkkffjigjhgjp [2014-09-08]
CHR Extension: (Bitdefender QuickScan) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2014-12-02]
CHR Extension: (Gmail) - C:\Users\Dani\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-08]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
R2 AdobeActiveFileMonitor12.0; C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe [181152 2013-09-25] (Adobe Systems Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3432976 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [298080 2014-12-18] (AVG Technologies CZ, s.r.o.)
R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240576 2013-10-07] (DTS, Inc)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-11-06] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-11-06] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19819848 2014-11-06] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-12-29] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R2 vToolbarUpdater18.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.2.0\ToolbarUpdater.exe [1850392 2014-12-29] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [260888 2014-12-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [203544 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [243480 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [124184 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [52000 2014-12-29] (AVG Technologies)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [277784 2014-09-24] (AVG Technologies CZ, s.r.o.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [48808 2014-11-25] (Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22696 2014-11-25] (Corsair)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2014-11-06] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38216 2014-10-03] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-07-19] (Corel Corporation)
R1 SafDskNT; C:\Windows\system32\drivers\SAFDSKNT.SYS [76112 2009-12-07] (PC Dynamics, Inc.)
S3 SaiK0728; C:\Windows\system32\DRIVERS\SaiK0728.sys [129024 2008-01-21] (Saitek)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2013-08-22] (Microsoft Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-01 19:19 - 2015-01-01 19:19 - 00027146 _____ () C:\Users\Dani\Downloads\FRST.txt
2015-01-01 19:19 - 2015-01-01 19:19 - 00000000 ____D () C:\FRST
2015-01-01 19:18 - 2015-01-01 19:18 - 02123264 _____ (Farbar) C:\Users\Dani\Downloads\FRST64.exe
2015-01-01 13:12 - 2015-01-01 13:12 - 00123934 _____ () C:\Users\Dani\Downloads\Lenstor-Patcher.rar
2015-01-01 13:09 - 2015-01-01 13:09 - 01356480 _____ () C:\Users\Dani\Downloads\Crack Camtasia Studio 8.4.3.exe
2014-12-31 17:38 - 2014-12-31 17:38 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2014-12-31 17:37 - 2014-12-31 17:37 - 00597304 _____ () C:\Users\Dani\Downloads\flux-setup.exe
2014-12-31 17:37 - 2014-12-31 17:37 - 00000000 ____D () C:\Users\Dani\AppData\Local\FluxSoftware
2014-12-30 22:48 - 2014-12-30 22:48 - 02347384 _____ (ESET) C:\Users\Dani\Downloads\esetsmartinstaller_enu.exe
2014-12-30 22:48 - 2014-12-30 22:48 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-12-30 22:41 - 2015-01-01 14:17 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-12-30 22:41 - 2014-12-30 22:41 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\SUPERAntiSpyware.com
2014-12-30 22:41 - 2014-12-30 22:41 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-12-30 22:41 - 2014-12-30 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-12-30 22:40 - 2014-12-30 22:41 - 20878816 _____ (SUPERAntiSpyware) C:\Users\Dani\Downloads\SUPERAntiSpyware.exe
2014-12-30 22:37 - 2014-12-30 22:38 - 04187592 _____ (Kaspersky Lab ZAO) C:\Users\Dani\Downloads\tdsskiller.exe
2014-12-30 20:14 - 2014-12-30 20:14 - 00184704 _____ () C:\Users\Dani\Downloads\qsinstaller.exe
2014-12-30 16:25 - 2014-12-30 16:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Rising 3
2014-12-30 14:58 - 2014-12-30 14:58 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-12-30 14:58 - 2014-12-30 14:58 - 00000000 ____D () C:\Program Files\CCleaner
2014-12-30 14:57 - 2014-12-30 14:57 - 05317104 _____ (Piriform Ltd) C:\Users\Dani\Downloads\ccsetup501.exe
2014-12-30 12:54 - 2015-01-01 18:59 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-30 12:54 - 2015-01-01 14:17 - 00000918 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-30 12:54 - 2014-12-30 12:54 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-30 12:54 - 2014-12-30 12:54 - 00003658 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-30 12:54 - 2014-12-30 12:54 - 00000000 ____D () C:\Users\Dani\AppData\Local\Deployment
2014-12-30 12:54 - 2014-12-30 12:54 - 00000000 ____D () C:\Users\Dani\AppData\Local\Apps\2.0
2014-12-30 12:54 - 2014-12-30 12:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-30 09:54 - 2014-12-30 22:51 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-30 09:54 - 2014-12-30 09:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-30 09:54 - 2014-12-30 09:54 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-30 09:54 - 2014-12-30 09:54 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-30 09:54 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-30 09:54 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-30 09:54 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-29 20:14 - 2014-12-29 20:14 - 00010983 _____ () C:\Users\Dani\Downloads\[BakaBT.146895v0] spiritedaway.torrent
2014-12-29 19:34 - 2014-12-30 03:13 - 00000000 ____D () C:\ProgramData\AVG Security Toolbar
2014-12-29 19:34 - 2014-12-29 23:39 - 00000000 ____D () C:\Users\Dani\AppData\Local\AVG Web TuneUp
2014-12-29 19:34 - 2014-12-29 19:33 - 00052000 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-12-29 19:33 - 2014-12-29 19:34 - 00000000 ____D () C:\ProgramData\AVG Web TuneUp
2014-12-29 19:33 - 2014-12-29 19:33 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-12-29 19:33 - 2014-12-29 19:33 - 00000000 ____D () C:\Program Files\AVG Web TuneUp
2014-12-29 19:33 - 2014-12-29 19:33 - 00000000 ____D () C:\Program Files (x86)\AVG Web TuneUp
2014-12-29 18:09 - 2014-12-29 18:09 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\AVG2015
2014-12-29 18:08 - 2014-12-29 18:08 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\TuneUp Software
2014-12-29 18:08 - 2014-12-29 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-12-29 18:00 - 2014-12-29 18:26 - 00000000 ____D () C:\ProgramData\AVG2015
2014-12-29 18:00 - 2014-12-29 18:00 - 00000000 ___HD () C:\$AVG
2014-12-29 18:00 - 2014-12-29 18:00 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-12-29 17:57 - 2015-01-01 15:13 - 00000000 ____D () C:\ProgramData\MFAData
2014-12-29 17:57 - 2014-12-29 18:13 - 00000000 ____D () C:\Users\Dani\AppData\Local\Avg2015
2014-12-29 17:57 - 2014-12-29 17:57 - 04637504 _____ (AVG Technologies) C:\Users\Dani\Downloads\avg_free_stb_all_2015_5557_cnet.exe
2014-12-29 17:57 - 2014-12-29 17:57 - 00000000 ____D () C:\Users\Dani\AppData\Local\MFAData
2014-12-29 12:59 - 2015-01-01 11:34 - 00282296 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-12-29 12:59 - 2014-12-29 13:07 - 00000000 ____D () C:\Users\Dani\Documents\BFBC2
2014-12-29 12:59 - 2014-12-29 12:59 - 00000000 ____D () C:\Users\Dani\AppData\Local\PunkBuster
2014-12-29 12:58 - 2014-10-30 06:25 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-29 12:47 - 2015-01-01 11:34 - 00282296 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-12-29 12:47 - 2015-01-01 11:08 - 00215128 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-12-29 12:47 - 2014-12-29 19:47 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-12-29 12:47 - 2014-12-29 12:58 - 02434856 _____ () C:\Windows\SysWOW64\pbsvc_bc2.exe
2014-12-26 22:55 - 2014-12-26 22:55 - 00000000 ____D () C:\Users\Dani\AppData\Local\CrashRpt
2014-12-26 21:10 - 2014-12-26 21:10 - 00000000 ____D () C:\Users\Dani\Documents\Criterion Games
2014-12-26 20:58 - 2014-12-26 20:59 - 04121406 _____ () C:\Users\Dani\Downloads\LedDisplayCtrl_v0.1.2b_win32_03_04_09.zip
2014-12-26 20:50 - 2014-12-26 20:50 - 13498122 _____ () C:\Users\Dani\Downloads\Jzsi a mocsrbl eszmletlen! Vide Pixter.wav
2014-12-26 20:32 - 2014-12-26 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LED Message Board
2014-12-26 20:32 - 2014-12-26 20:32 - 00000000 ____D () C:\Program Files (x86)\Dream Cheeky
2014-12-26 20:31 - 2014-12-26 20:31 - 00882688 _____ (Microsoft Corporation) C:\Users\Dani\Downloads\LEDMessageBoard_setup.exe
2014-12-25 11:13 - 2014-12-25 11:13 - 00013127 _____ () C:\Users\Dani\Downloads\Streak.zip
2014-12-24 22:56 - 2014-12-24 22:56 - 00034756 _____ () C:\Users\Dani\em5268.K70RGB_app115.bin.Ya5268
2014-12-24 22:45 - 2014-12-25 15:31 - 00000000 ____D () C:\Users\Dani\Documents\k70 RGB
2014-12-24 21:24 - 2014-12-24 21:24 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\Corsair
2014-12-24 21:24 - 2014-12-24 21:24 - 00000000 ____D () C:\Users\Dani\AppData\Local\Corsair
2014-12-24 21:24 - 2014-12-24 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Corsair Utility Engine
2014-12-24 21:24 - 2014-12-24 21:24 - 00000000 ____D () C:\Program Files (x86)\Corsair
2014-12-24 21:22 - 2014-12-24 21:22 - 48540584 _____ () C:\Users\Dani\Downloads\Vengeance-RGB-Corsair-Utility-Engine-v1.3.70.zip
2014-12-24 11:53 - 2014-12-24 11:54 - 00000000 ____D () C:\Users\Dani\Documents\Shadow Warrior Demo
2014-12-21 11:14 - 2014-12-21 11:14 - 00000000 ____D () C:\Users\Dani\AppData\Local\Help
2014-12-21 11:06 - 2014-12-21 11:06 - 00000530 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fractal Terrains.lnk
2014-12-21 11:06 - 2014-12-21 11:06 - 00000000 ____D () C:\FT
2014-12-21 11:05 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2014-12-21 10:34 - 2014-12-21 10:34 - 00000000 ____D () C:\Users\Dani\Documents\DND
2014-12-20 16:22 - 2014-12-20 16:24 - 129601362 _____ () C:\Users\Dani\Downloads\[AnimeOut] Akame ga Kill! - 05 [720p][Doki][Zii].mkv
2014-12-20 12:52 - 2014-12-20 12:52 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\Steam
2014-12-20 12:47 - 2014-12-20 12:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metal Gear Solid V Ground Zeroes
2014-12-18 21:28 - 2014-12-18 21:28 - 00035873 _____ () C:\Users\Dani\Downloads\FlashBench.zip
2014-12-18 20:48 - 2014-12-18 20:48 - 00042104 _____ () C:\Users\Dani\Downloads\[Rice]Danganronpa Batch (720P)(MP4).torrent
2014-12-16 19:46 - 2014-12-16 19:46 - 00000000 ____D () C:\Users\Dani\.cordova
2014-12-16 19:43 - 2014-12-16 19:56 - 00000000 ____D () C:\Users\Dani\AppData\Local\PhoneGap
2014-12-16 19:43 - 2014-12-16 19:43 - 00000000 ____D () C:\Users\Dani\Documents\_Phonegap
2014-12-16 19:42 - 2014-12-16 19:42 - 41318465 _____ () C:\Users\Dani\Downloads\PhoneGap-Desktop-Beta-0.1.1-win.zip
2014-12-14 19:03 - 2014-12-14 19:03 - 00000908 _____ () C:\Users\Dani\Documents\Downloads - Shortcut.lnk
2014-12-12 21:34 - 2014-12-12 21:34 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\vmconnect.exe
2014-12-12 21:34 - 2014-12-12 21:34 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\RemoteFileBrowse.dll
2014-12-12 21:34 - 2014-12-12 21:34 - 00144967 _____ () C:\Windows\system32\virtmgmt.msc
2014-12-12 21:34 - 2014-12-12 21:34 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hyper-V Management Tools
2014-12-12 21:34 - 2014-12-12 21:34 - 00000000 ____D () C:\Program Files\Hyper-V
2014-12-08 21:24 - 2014-12-08 21:24 - 00260888 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2014-12-02 20:14 - 2014-12-02 20:14 - 00000000 ____D () C:\Users\Dani\AppData\Local\FalloutNV
2014-12-02 19:58 - 2014-12-30 22:05 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\QuickScan
2014-12-02 19:56 - 2014-12-02 19:56 - 00000943 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Juarez Gunslinger.lnk
2014-12-02 18:51 - 2014-12-02 18:51 - 00000000 ____D () C:\Users\Dani\AppData\Local\GOFAST
2014-12-02 18:47 - 2014-12-02 18:47 - 00000000 ____D () C:\Users\Dani\GOFAST
2014-12-02 18:47 - 2014-12-02 18:47 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GOFAST
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-01 19:18 - 2014-09-07 19:57 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\BitTorrent
2015-01-01 19:17 - 2014-09-08 16:23 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\Skype
2015-01-01 19:11 - 2014-09-08 10:08 - 00003942 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5C2285DC-B939-467F-A649-7233A71D4E32}
2015-01-01 19:00 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\system32\sru
2015-01-01 16:51 - 2014-09-08 10:21 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-01 16:47 - 2014-09-07 19:41 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\ClassicShell
2015-01-01 16:41 - 2014-09-14 07:21 - 00000000 ____D () C:\Users\Dani\AppData\Local\CrashDumps
2015-01-01 16:18 - 2013-09-29 23:14 - 00865408 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-01 15:55 - 2014-09-08 10:01 - 01527058 _____ () C:\Windows\WindowsUpdate.log
2015-01-01 14:29 - 2014-09-08 10:10 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2892578887-3102353879-1160726384-1001
2015-01-01 14:29 - 2014-09-08 10:06 - 00000000 ___RD () C:\Users\Dani\SkyDrive
2015-01-01 14:16 - 2014-09-08 10:05 - 00000000 ____D () C:\Users\Dani
2015-01-01 14:15 - 2014-09-07 19:36 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-01 14:15 - 2013-08-22 09:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-01 13:28 - 2013-08-22 09:46 - 00028186 _____ () C:\Windows\setupact.log
2015-01-01 10:20 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-12-30 16:46 - 2013-09-29 23:02 - 00008186 _____ () C:\Windows\PFRO.log
2014-12-30 16:28 - 2014-09-08 16:29 - 00185173 _____ () C:\Windows\DirectX.log
2014-12-30 16:05 - 2014-09-19 20:39 - 00000000 ____D () C:\Users\Dani\AppData\Local\Skyrim
2014-12-30 12:54 - 2014-09-08 10:08 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-29 19:34 - 2014-11-08 20:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-29 18:27 - 2014-09-14 07:08 - 00000000 ____D () C:\Glorious Gaming
2014-12-29 18:26 - 2014-09-08 10:27 - 00000000 ____D () C:\Program Files\KMSpico
2014-12-29 18:13 - 2013-08-22 08:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-12-29 18:08 - 2013-08-22 10:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-12-29 13:26 - 2014-09-14 21:57 - 00000000 ____D () C:\Users\Dani\Documents\my games
2014-12-27 11:42 - 2013-08-22 08:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-12-26 16:27 - 2014-09-07 19:30 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-24 21:23 - 2014-09-08 10:05 - 00000000 ____D () C:\Users\Dani\AppData\Local\Packages
2014-12-22 16:23 - 2014-09-07 20:18 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\vlc
2014-12-22 11:56 - 2014-10-12 15:17 - 00000132 _____ () C:\Users\Dani\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-12-20 15:04 - 2014-10-11 17:31 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\Awesomium
2014-12-19 17:51 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\rescache
2014-12-19 17:10 - 2014-09-08 16:23 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-19 17:10 - 2014-09-08 16:23 - 00000000 ____D () C:\ProgramData\Skype
2014-12-18 21:06 - 2014-09-08 20:40 - 00000000 ____D () C:\Users\Dani\Documents\_homework
2014-12-16 17:57 - 2014-11-16 09:14 - 00033792 ___SH () C:\Users\Dani\Downloads\Thumbs.db
2014-12-13 16:16 - 2013-08-22 10:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-12-10 21:42 - 2014-09-08 19:39 - 00000000 ____D () C:\Users\Dani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2014-12-02 20:05 - 2014-09-07 20:02 - 00000000 ____D () C:\Users\Dani\Documents\torrents
Some content of TEMP:
====================
C:\Users\Dani\AppData\Local\Temp\58f0.exe
C:\Users\Dani\AppData\Local\Temp\dxwebsetup.exe
C:\Users\Dani\AppData\Local\Temp\ffmpeg15.exe
C:\Users\Dani\AppData\Local\Temp\ffmpeg19.exe
C:\Users\Dani\AppData\Local\Temp\readSTILog.dll
C:\Users\Dani\AppData\Local\Temp\x264enc6.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-25 21:20
==================== End Of Log ============================
Addition.txt:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-01-2015
Ran by Dani at 2015-01-01 19:20:07
Running from C:\Users\Dani\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3DMark (HKLM-x32\...\{F1A6C690-C12C-4E7A-B4BD-958678215418}) (Version: 1.0 - Futuremark)
A.V.A - Alliance of Valiant Arms (HKLM-x32\...\Steam App 102700) (Version: - RED DUCK Inc.)
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop Elements 12 (HKLM-x32\...\Adobe Photoshop Elements 12) (Version: 12.0 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5645 - AVG Technologies)
AVG 2015 (Version: 15.0.4257 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5645 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.0.5.7 - AVG Technologies)
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
Batman Arkham City v1.03. / RePack by Baracuda (HKLM-x32\...\{0964A279-1AD9-4267-A1D7-A6C352DBFDF2}_is1) (Version: - )
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version: - The Behemoth)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version: - DICE)
BitTorrent (HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\BitTorrent) (Version: 7.9.2.36804 - BitTorrent Inc.)
Brothers - A Tale of Two Sons (HKLM-x32\...\Steam App 225080) (Version: - Starbreeze Studios AB)
Call of Duty Advanced Warfare v1.2.0.4107 (HKLM-x32\...\Call of Duty Advanced Warfare_is1) (Version: 1.2.0.4107 - Scorp1oN)
Call of Juarez Gunslinger (c) Ubisoft version 1 (HKLM-x32\...\Q2FsbG9mSnVhcmV6R3Vuc2xpbmdlcg==_is1) (Version: 1 - )
Camtasia Studio 8 (HKLM-x32\...\{765AD29A-7EF5-4456-8F6F-83467E52AB52}) (Version: 8.4.3.1792 - TechSmith Corporation)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version: - The Behemoth)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - Torn Banner Studios)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
Contagion (HKLM-x32\...\Steam App 238430) (Version: - Monochrome LLC)
Corsair Utility Engine (HKLM-x32\...\{F2F5EB4E-4CEF-4F84-BDBF-1ED2CBC70CFF}) (Version: 1.3.70 - Corsair)
Counter-Strike Nexon: Zombies (HKLM-x32\...\Steam App 273110) (Version: - Nexon)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Cry of Fear (HKLM-x32\...\Steam App 223710) (Version: - Team Psykskallar)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
Dead Rising 3 Apocalypse Edition (HKLM-x32\...\Dead Rising 3 Apocalypse Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm)
Dead Rising 3 ver. 1.0.0.3 upd3 (HKLM-x32\...\{58867941-24SL-92CD-63R7-54LO6F3546AC}_is1) (Version: 1.0.0.3 upd3 - Deep Silver)
Dear Esther (HKLM-x32\...\Dear Esther_is1) (Version: - )
Defy Gravity (HKLM-x32\...\Steam App 96100) (Version: - Fish Factory Games)
Double Action: Boogaloo (HKLM-x32\...\Steam App 317360) (Version: - Double Action Factory)
Duty Calls (HKLM-x32\...\{0AEB967F-1D12-43C8-A59C-D93DA8EE4A4E}) (Version: 1.00.0000 - Duty Calls)
Elements 12 Organizer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
f.lux (HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\Flux) (Version: - )
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version: - Obsidian Entertainment)
Far Cry 4 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - )
FEZ (HKLM-x32\...\Steam App 224760) (Version: - Polytron Corporation)
ffdshow v1.3.4530 [2014-02-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4530.0 - )
FileZilla Client 3.9.0.5 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.5 - Tim Kosse)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
foobar2000 v1.3.3 (HKLM-x32\...\foobar2000) (Version: 1.3.3 - Peter Pawlowski)
Fractal Terrains (HKLM-x32\...\Fractal Terrains) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.15.0 - Futuremark Corporation)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version: - Coffee Stain Studios)
GOFAST (HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\GOFAST) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Gunpoint (HKLM-x32\...\Gunpoint_is1) (Version: - )
Halo: Spartan Assault (HKLM-x32\...\Steam App 277430) (Version: - Vanguard Games)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Insurgency (HKLM-x32\...\Steam App 222880) (Version: - New World Interactive)
Intel(R) Chipset Device Software (x32 Version: 10.0.14 - Intel(R) Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Interstellar Marines (HKLM-x32\...\Steam App 236370) (Version: - Zero Point Software)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version: - )
KMSpico v9.0.5.20131111 (HKLM\...\KMSpico_is1) (Version: 9.0.5.20131111 - )
LED Message Board (HKLM-x32\...\{9D942C9B-F247-41E7-A111-3EBA50F73834}) (Version: 1.2.2 - Dream Cheeky)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
LibreOffice 4.3.3.2 (HKLM-x32\...\{87C753BB-81E3-403B-BD87-6293F870B20B}) (Version: 4.3.3.2 - The Document Foundation)
Logitech Gaming Software 8.55 (HKLM\...\Logitech Gaming Software) (Version: 8.55.137 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Metal Gear Solid V Ground Zeroes (HKLM-x32\...\Metal Gear Solid V Ground Zeroes_is1) (Version: - )
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - 4A Games)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mind Path to Thalamus (HKLM-x32\...\Mind Path to Thalamus_is1) (Version: - )
Mountain (HKLM-x32\...\Steam App 313340) (Version: - David OReilly)
Mozilla Firefox 33.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 33.0.3 (x86 en-US)) (Version: 33.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0.3 - Mozilla)
My Game Long Name (HKLM\...\UDK-2cd69847-d58b-446c-b578-1b74cb4549c5) (Version: - Epic Games, Inc.)
Need for Speed: Hot Pursuit (HKLM-x32\...\Steam App 47870) (Version: - Criterion Games)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.52.1 - Black Tree Gaming)
NVIDIA 3D Vision Controller Driver 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation)
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
One Finger Death Punch (HKLM-x32\...\Steam App 264200) (Version: - Silver Dollar Games)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
ophcrack 3.6.0 (HKLM\...\ophcrack) (Version: 3.6.0 - OS Objectif Sécurité SA)
ORION: Prelude (HKLM-x32\...\Steam App 104900) (Version: - Spiral Game Studios)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Papers, Please (HKLM-x32\...\GOGPACKPAPERSPLEASE_is1) (Version: 2.0.0.4 - GOG.com)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version: - OVERKILL Software)
Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
POSTAL 2 (HKLM-x32\...\Steam App 223470) (Version: - Running With Scissors)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.1 - Power Software Ltd)
Prism Video File Converter (HKLM-x32\...\Prism) (Version: - NCH Software)
PSE12 STI Installer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
Python 3.4.1 (64-bit) (HKLM\...\{d54842cb-f761-30ba-881f-1ff821dc44df}) (Version: 3.4.1150 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.1 r2290 - )
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7233 - Realtek Semiconductor Corp.)
Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
ROBLOX Player for Dani (HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROBLOX Studio 2013 for Dani (HKU\S-1-5-21-2892578887-3102353879-1160726384-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
SafeHouse Explorer 3.01 (HKLM-x32\...\SafeHouseExplorer) (Version: 3.01.00.1 - PC Dynamics, Inc.)
Shadow Warrior Demo (HKLM-x32\...\Steam App 281150) (Version: - Flying Wild Hog)
SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden
Skype™ 6.22 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.107 - Skype Technologies S.A.)
SmoothVideo Project version 3.1.6 (HKLM-x32\...\SmoothVideo Project_is1) (Version: 3.1.6 - SVP)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - )
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version: - Team Meat)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1168 - SUPERAntiSpyware.com)
System Requirements Lab Detection (HKLM-x32\...\{0CDCF11C-1A06-4453-9357-ABE6C844E58A}) (Version: 2.0.0.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version: - Galactic Cafe)
The Vanishing of Ethan Carter (HKLM-x32\...\The Vanishing of Ethan Carter_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Tom Clancy's Ghost Recon Phantoms - NA (HKLM-x32\...\Steam App 243870) (Version: - Ubisoft Singapore)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Vegas Pro 12.0 (64-bit) (HKLM\...\{EE45F85E-ED91-11E2-9CD7-F04DA23A5C58}) (Version: 12.0.670 - Sony)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version: - )
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinHTTrack Website Copier 3.48-19 (HKLM-x32\...\WinHTTrack Website Copier_is1) (Version: 3.48.19 - HTTrack)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
x264vfw - H.264/MPEG-4 AVC codec for x64 (remove only) (HKLM-x32\...\x264vfw64) (Version: - )
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2892578887-3102353879-1160726384-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Dani\AppData\Local\Roblox\Versions\version-632471a80776450d\RobloxProxy64.dll (ROBLOX Corporation)
==================== Restore Points =========================
12-12-2014 21:34:00 Windows Modules Installer
21-12-2014 03:16:52 Scheduled Checkpoint
26-12-2014 14:03:58 Installed DirectX
29-12-2014 12:46:30 Installed DirectX
30-12-2014 16:26:56 Installed DirectX
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 08:25 - 2015-01-01 13:12 - 00001515 ____A C:\Windows\system32\Drivers\etc\hosts
69.162.120.132 www.google.ca
69.162.120.132 www.google.com.tr
69.162.120.132 www.google.co.in
69.162.120.132 www.ask.com
69.162.120.132 www.bing.com
69.162.120.132 search.yahoo.com
69.162.120.132 www.yahoo.com
69.162.120.132 us.yhs4.search.yahoo.com
69.162.120.132 r.search.yahoo.com
69.162.120.132 www.aol.com
69.162.120.132 search.aol.com
69.162.120.132 search.comcast.net
69.162.120.132 xfinity.comcast.net
69.162.120.132 search.avg.com
69.162.120.132 isearch.babylon.com
69.162.120.132 search.conduit.com
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {297C4340-E51D-402C-AFEA-32D8F9403855} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {602B178C-5D9C-4696-AE1C-40EFB13E0DE8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {8BE2EC82-77EC-47F4-ABB0-8F03A1F868F9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-30] (Google Inc.)
Task: {9B184BD8-C28F-43A8-88F9-6257B82D6AEC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {AAE7CF5C-1E0A-4785-BC30-5B0BF5EF3C90} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {DAD0D712-857D-4317-9736-F64C7FE3FC14} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {EE9E6E44-274D-4553-A562-80A2524A2C25} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-30] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-09-07 19:36 - 2014-07-02 13:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-09-07 19:33 - 2014-01-28 14:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2014-12-29 12:47 - 2014-12-29 19:47 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-12-29 19:33 - 2014-12-29 19:33 - 00159768 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.2.0\loggingserver.exe
2012-10-01 19:34 - 2012-10-01 19:34 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-05-01 14:29 - 2014-05-01 14:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-09-07 19:37 - 2014-11-06 12:08 - 00707400 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2014-09-07 19:37 - 2014-11-06 12:08 - 00854344 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2014-07-28 13:29 - 2014-07-28 13:29 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-07-28 13:32 - 2014-07-28 13:32 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-07-28 13:29 - 2014-07-28 13:29 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-07-28 13:31 - 2014-07-28 13:31 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-05-25 09:18 - 2014-05-25 09:18 - 00036536 _____ () C:\Program Files\Rainmeter\Rainmeter.exe
2014-05-25 09:18 - 2014-05-25 09:18 - 00747192 _____ () C:\Program Files\Rainmeter\Rainmeter.dll
2014-05-25 09:17 - 2014-05-25 09:17 - 00011776 _____ () C:\Program Files\Rainmeter\Plugins\RecycleManager.dll
2014-05-25 09:17 - 2014-05-25 09:17 - 00056832 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.DLL
2014-12-29 19:33 - 2014-12-29 19:33 - 03081752 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
2014-09-07 19:45 - 2015-01-01 14:15 - 00032768 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2014-09-07 19:33 - 2014-01-28 14:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2014-12-29 19:33 - 2014-12-29 19:33 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.2.0\log4cplusU.dll
2014-09-09 16:08 - 2012-11-20 15:13 - 00264192 _____ () C:\Program Files (x86)\Razer\Razer Game Booster\D3DX8Wrapper.dll
2014-09-09 16:08 - 2013-11-12 08:57 - 00098304 _____ () C:\Program Files (x86)\Razer\Razer Game Booster\EasyHook32.dll
2014-09-06 11:44 - 2014-09-06 11:44 - 00035328 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-05-24 11:41 - 2014-05-24 11:41 - 00091648 _____ () C:\Program Files (x86)\FileZilla FTP Client\libgcc_s_sjlj-1.dll
2014-05-24 11:41 - 2014-05-24 11:41 - 00892416 _____ () C:\Program Files (x86)\FileZilla FTP Client\libstdc++-6.dll
2012-10-01 19:33 - 2012-10-01 19:33 - 06522480 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-12-22 19:30 - 2014-12-22 19:30 - 00093696 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\LuaQtWrapperLibrary.dll
2014-12-22 19:33 - 2014-12-22 19:33 - 00226816 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\quazip.dll
2014-12-22 19:28 - 2014-12-22 19:28 - 00196608 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\lua52.dll
2014-02-01 23:28 - 2014-02-01 23:28 - 00705024 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\libGLESv2.dll
2014-02-01 23:33 - 2014-02-01 23:33 - 00866816 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\qtplugins\platforms\qwindows.dll
2014-02-01 23:28 - 2014-02-01 23:28 - 00043008 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\libEGL.dll
2014-02-01 23:33 - 2014-02-01 23:33 - 00242176 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\qtplugins\imageformats\qjpeg.dll
2014-02-01 23:34 - 2014-02-01 23:34 - 00220672 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\qtplugins\imageformats\qmng.dll
2014-02-01 23:49 - 2014-02-01 23:49 - 00168448 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\qtplugins\mediaservice\wmfengine.dll
2014-12-29 19:33 - 2014-12-29 19:33 - 01686552 _____ () C:\Program Files (x86)\AVG Web TuneUp\TBAPI.dll
2014-12-30 12:54 - 2014-12-05 20:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-30 12:54 - 2014-12-05 20:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-12-30 12:54 - 2014-12-05 20:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-30 12:54 - 2014-12-05 20:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
2014-09-07 19:50 - 2014-12-01 16:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-09-07 19:50 - 2014-12-01 16:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-09-07 19:50 - 2014-12-01 16:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-09-07 19:50 - 2014-12-01 16:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-09-07 19:51 - 2014-11-11 13:47 - 00774656 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-12-05 05:10 - 2014-12-01 19:29 - 05002752 _____ () C:\Program Files (x86)\Steam\v8.dll
2014-09-07 19:51 - 2014-12-19 18:38 - 02226880 _____ () C:\Program Files (x86)\Steam\video.dll
2014-12-05 05:10 - 2014-12-01 19:29 - 01612800 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2014-12-05 05:10 - 2014-12-01 19:29 - 01210368 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-09-07 19:50 - 2014-12-01 16:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2014-09-07 19:50 - 2014-12-19 18:38 - 00696000 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-09-07 19:50 - 2014-12-19 18:38 - 34641288 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-09-07 19:50 - 2014-12-19 18:38 - 01709960 _____ () C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Dani\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
========================= Accounts: ==========================
Administrator (S-1-5-21-2892578887-3102353879-1160726384-500 - Administrator - Disabled)
Dani (S-1-5-21-2892578887-3102353879-1160726384-1001 - Administrator - Enabled) => C:\Users\Dani
Guest (S-1-5-21-2892578887-3102353879-1160726384-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2892578887-3102353879-1160726384-1005 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
Name: Ethernet Controller
Description: Ethernet Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: PCI Simple Communications Controller
Description: PCI Simple Communications Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/01/2015 04:41:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: deadrising3.exe, version: 1.0.0.3, time stamp: 0x54233d6c
Faulting module name: nvwgf2umx.dll, version: 9.18.13.4052, time stamp: 0x53b4437c
Exception code: 0xc00000fd
Fault offset: 0x00000000001925b5
Faulting process id: 0x1bb8
Faulting application start time: 0xdeadrising3.exe0
Faulting application path: deadrising3.exe1
Faulting module path: deadrising3.exe2
Report Id: deadrising3.exe3
Faulting package full name: deadrising3.exe4
Faulting package-relative application ID: deadrising3.exe5
Error: (01/01/2015 02:17:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (01/01/2015 02:17:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/01/2015 01:07:13 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (12/31/2014 08:09:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (12/31/2014 08:09:05 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (12/31/2014 05:36:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (12/31/2014 05:27:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (12/31/2014 05:24:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BFBC2Game.exe version 1.0.1.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1fe8
Start Time: 01d0254883c16c8a
Termination Time: 783
Application Path: C:\Program Files (x86)\Steam\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
Report Id: c8d9fe6d-913b-11e4-8274-e41f3fee3535
Faulting package full name:
Faulting package-relative application ID:
Error: (12/31/2014 05:23:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program BFBC2Game.exe version 1.0.1.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1160
Start Time: 01d02548551f81b0
Termination Time: 2047
Application Path: C:\Program Files (x86)\Steam\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
Report Id: 973336ce-913b-11e4-8274-e41f3fee3535
Faulting package full name:
Faulting package-relative application ID:
System errors:
=============
Error: (01/01/2015 02:15:31 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Crash dump initialization failed!
Error: (12/31/2014 05:26:07 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 5:24:17 PM on 12/31/2014 was unexpected.
Error: (12/31/2014 01:33:02 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 1:31:48 PM on 12/31/2014 was unexpected.
Error: (12/30/2014 04:46:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 4:44:41 PM on 12/30/2014 was unexpected.
Error: (12/30/2014 10:27:11 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:26:00 AM on 12/30/2014 was unexpected.
Error: (12/29/2014 03:44:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Service KMSELDI service terminated unexpectedly. It has done this 1 time(s).
Error: (12/29/2014 03:41:27 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Background Intelligent Transfer Service service hung on starting.
Error: (12/29/2014 03:35:04 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 3:34:29 PM on 12/29/2014 was unexpected.
Error: (12/29/2014 00:58:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB2267602 (Definition 1.191.1097.0).
Error: (12/28/2014 10:50:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Service KMSELDI service terminated unexpectedly. It has done this 1 time(s).
Microsoft Office Sessions:
=========================
Error: (01/01/2015 04:41:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: deadrising3.exe1.0.0.354233d6cnvwgf2umx.dll9.18.13.405253b4437cc00000fd00000000001925b51bb801d0260059a71d62C:\Glorious Gaming\Dead Rising 3\install\Dead Rising 3\deadrising3.exeC:\Windows\SYSTEM32\nvwgf2umx.dllfb65df24-91fe-11e4-8277-bb0b7ca3d0f9
Error: (01/01/2015 02:17:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (01/01/2015 02:17:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/01/2015 01:07:13 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Dani\Downloads\esetsmartinstaller_enu.exe
Error: (12/31/2014 08:09:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (12/31/2014 08:09:05 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (12/31/2014 05:36:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (12/31/2014 05:27:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (12/31/2014 05:24:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: BFBC2Game.exe1.0.1.01fe801d0254883c16c8a783C:\Program Files (x86)\Steam\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exec8d9fe6d-913b-11e4-8274-e41f3fee3535
Error: (12/31/2014 05:23:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: BFBC2Game.exe1.0.1.0116001d02548551f81b02047C:\Program Files (x86)\Steam\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe973336ce-913b-11e4-8274-e41f3fee3535
CodeIntegrity Errors:
===================================
Date: 2014-12-29 12:58:41.908
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:41.892
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:37.517
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:36.346
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:36.299
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:36.236
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:36.205
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:36.205
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:32.248
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-12-29 12:58:32.248
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Percentage of memory in use: 31%
Total physical RAM: 8134.92 MB
Available physical RAM: 5611.52 MB
Total Pagefile: 9767.01 MB
Available Pagefile: 6038.81 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.17 GB) (Free:159.38 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 931.5 GB) (Disk ID: 74849C87)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)
==================== End Of Log ============================
DESCRIPTION:
I am using Chrome version 39.0.2171.95 (Official Build) m, on Windows 8.1. I am having some problems. Whenever I try to search anything in the omnibox, I get the following page:
Your connection is not private
Attackers might be trying to steal your information from www.google.ca (for example, passwords, messages, or credit cards).
Reloa www.google.ca normally uses encryption to protect your information. When Chrome tried to connect to www.google.ca this time, the website sent back unusual and incorrect credentials. Either an attacker is trying to pretend to be www.google.ca, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Chrome stopped the connection before any data was exchanged.
You cannot visit www.google.ca right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.
NET::ERR_CERT_COMMON_NAME_INVALID
I get similar warnings if I try to do a search from the omnibox in Internet Explorer and Firefox. However, typing addresses works, and I can visit any website. Yes, my system clock is synchronized. When I visit www.google.com, it takes me to the page, but the URL in the omnibox always says: http://www.google.ca/?gfe_rd=cr&ei=Nmqj ... 8Qf294HYDw. Same thing happens when I try bing.com
If I try to search something from google.com, it redirects me to something called "gooqte.com". For example, if I search the term "chrome", my URL box says: http://www.gooqte.com/search?q=chrome.
Yes, I have considered that it might be malware or a virus. I have run multiple malware and virus scans with various different software, with none of them yielding any results. I've tried rebooting multiple times, reinstalling Chrome, but nothing works.
What is this and how can I fix it? It is really annoying.
Checked the certificate info on the Privacy Error page, it says the subject is www.courseadoptions.com. Also, is there any way to solve this without wiping my hard drive? I really don't want to do that...
I've recorded a video showcasing a few of the problems: https://drive.google.com/file/d/0B6EOui ... sp=sharing