Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

GMER BlueScreening and other Network Issues

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

GMER BlueScreening and other Network Issues

Unread postby JakeBakery » September 2nd, 2015, 6:41 pm

Over the past month or so I've been having small Issues with my computer. First was my Battle.Net client would stop working. (It was responding but not finishing the update process.) A friend of mine tried to help via TeamViewer but no luck so we gave up. Now after installing win10 things have gotten a whole lot worse. Google Chrome stopped working, talking about not being able to connect to the proxy my system was using, which is impossible because I dont have my system set up to use a proxy.
This next thing just started last night. counter strike had some texture problems with the home screen and now i cant access the steam community or update my games.
I've ran
AVG
MalwareByts
&
GMER
both AVG and MWB came up clean but not soon after running GMER I got the BlueScreen of Death both times I tried to run it.

I attached the 'Addition' file because it exceeded the maximum allowed characters.

FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:31-08-2015
Ran by Karrma (administrator) on KARRMA-PC (02-09-2015 15:39:34)
Running from C:\Users\Karrma\Desktop
Loaded Profiles: Karrma (Available Profiles: Karrma)
Platform: Windows 10 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(http://tortoisesvn.net) C:\Config.Msi\226392.rbf
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-26] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [14850168 2015-08-29] (Logitech Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3730344 2015-07-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\Run: [Spotify Web Helper] => C:\Users\Karrma\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-30] (Spotify Ltd)
HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\Run: [OneDrive] => C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\OneDrive.exe [382144 2015-08-29] (Microsoft Corporation)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\adobe air application installer.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\bf4.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\bf4_x86.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dosbox.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\drivernavigator.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dtlite.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\origin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\originer.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\originuninstall.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\sptdinst-x64.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ursaconsole.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\vid.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll [2015-08-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll [2015-08-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll [2015-08-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\FileSyncShell.dll [2015-08-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\FileSyncShell.dll [2015-08-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\FileSyncShell.dll [2015-08-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-2572198188-481956686-841600760-1000] => 127.0.0.1:9666
Tcpip\..\Interfaces\{9b93177e-408a-4af0-a3ad-a1d2964729d9}: [NameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2572198188-481956686-841600760-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM-x32 -> DefaultScope {A3F5C5D7-9D8E-4743-AABE-FC7DAF30446B} URL =
SearchScopes: HKU\S-1-5-21-2572198188-481956686-841600760-1000 -> {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://blekko.com/ws/?source=c3348dd4&t ... 68EAE32&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2572198188-481956686-841600760-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={CCD2CB2D-F015-4D6A-829D-8B65FB294262}&mid=a4268847bcd747d08a90f18676988c02-3db6f44a3e2703a145c84da4a37a016cbc27d0cd&lang=en&ds=AVG&coid=avgtbavg&cmpid=0415avt&pr=fr&d=2014-04-08 13:21:56&v=4.1.0.411&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2572198188-481956686-841600760-1000 -> {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> No File
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2014-05-19] (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Babylon toolbar helper -> {2EECD738-5844-4a99-B4B6-146BF802613B} -> No File
BHO-x32: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-24] (Oracle Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.1.0.411\AVG Web TuneUp.dll [2015-04-30] (AVG)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2014-05-19] (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-24] (Oracle Corporation)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/s ... tor/sw.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\3.1.0\ViProtocol.dll [2014-07-10] (AVG Secure Search)

FireFox:
========
FF ProfilePath: C:\Users\Karrma\AppData\Roaming\Mozilla\Firefox\Profiles\jar4vj51.default-1376886799739
FF NewTab: hxxp://www.bing.com/?pc=COSP&ptag=D0710 ... =CT3334470
FF DefaultSearchEngine: Bing
FF DefaultSearchEngine.US: Google
FF SearchEngineOrder.3: false
FF SelectedSearchEngine: Bing
FF Homepage: hxxps://www.google.com/
FF Keyword.URL:
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-31] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-31] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-22] (Adobe Systems, Inc.)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.4.0\\npsitesafety.dll [No File]
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-07-16] (DivX, LLC)
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-24] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-01] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.0.0.1 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-2572198188-481956686-841600760-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Karrma\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin HKU\S-1-5-21-2572198188-481956686-841600760-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Karrma\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin HKU\S-1-5-21-2572198188-481956686-841600760-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Karrma\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2012-08-20] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2572198188-481956686-841600760-1000: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Extension: Gif Delayer - C:\Users\Karrma\AppData\Roaming\Mozilla\Firefox\Profiles\jar4vj51.default-1376886799739\Extensions\jid1-mqCpKcAruymyAA@jetpack.xpi [2014-02-04]
FF Extension: Thumbnail Zoom Plus - C:\Users\Karrma\AppData\Roaming\Mozilla\Firefox\Profiles\jar4vj51.default-1376886799739\Extensions\thumbnailZoom@dadler.github.com.xpi [2014-02-04]
FF Extension: Adblock Plus - C:\Users\Karrma\AppData\Roaming\Mozilla\Firefox\Profiles\jar4vj51.default-1376886799739\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-08-19]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-04-06]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-04-06]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Web TuneUp\FireFoxExt\4.1.0.411
FF Extension: AVG Web TuneUp - C:\ProgramData\AVG Web TuneUp\FireFoxExt\4.1.0.411 [2015-04-30]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-07-20]

Chrome:
=======
CHR Profile: C:\Users\Karrma\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Docs) - C:\Users\Karrma\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-01]
CHR Extension: (Google Drive) - C:\Users\Karrma\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-01]
CHR Extension: (YouTube) - C:\Users\Karrma\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-01]
CHR Extension: (Google Search) - C:\Users\Karrma\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-01]
CHR Extension: (Gmail) - C:\Users\Karrma\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-01]
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [akhdblbjebmbllhinponghfmaekhlhob] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bghejdcdajlenjngcknlkkoakmmjfanb] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [cckdoammdligdedbakcgnmegjljgipjb] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [clmghkfhfkcfhpccgbafbailibgogkbi] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [eajjckckolcbgmmenaiiigegbadpeghb] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [eoepodkgpakekgncgnfnijcippobokhp] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [iadddcofhgaeeniecnhpopipbhijnphj] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [iedokolghlgkcnafplkbjeokfamliokd] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jddmfogomafbmjkfcpfpnjfgecnjffng] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kpmccjcnkhkgcipodalpmbpighkgiaif] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lopcjmbilgeapfldddijpgpahphngjdk] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mhgliccaogcekoldfmachhehepjdfobj] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nfkbfmjkmioenefhjdonleflegoephgm] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2572198188-481956686-841600760-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pedogdjgmjlabbbdhokgdafpglnjinhc] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [akhdblbjebmbllhinponghfmaekhlhob] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bghejdcdajlenjngcknlkkoakmmjfanb] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cckdoammdligdedbakcgnmegjljgipjb] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [clmghkfhfkcfhpccgbafbailibgogkbi] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eajjckckolcbgmmenaiiigegbadpeghb] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eoepodkgpakekgncgnfnijcippobokhp] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iadddcofhgaeeniecnhpopipbhijnphj] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iedokolghlgkcnafplkbjeokfamliokd] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jddmfogomafbmjkfcpfpnjfgecnjffng] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpmccjcnkhkgcipodalpmbpighkgiaif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [lopcjmbilgeapfldddijpgpahphngjdk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mffdcionknddopdmdnloanoafafkmckb] - C:\Users\Karrma\AppData\Roaming\OpenCandy\46C1F19CC73C4BD4888715C22DC9AD81\extension.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [mhgliccaogcekoldfmachhehepjdfobj] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nfkbfmjkmioenefhjdonleflegoephgm] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pedogdjgmjlabbbdhokgdafpglnjinhc] - https://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-02-15] (Advanced Micro Devices, Inc.) [File not signed]
R2 avgfws; C:\Program Files (x86)\AVG\AVG2015\avgfws.exe [1528432 2015-07-07] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3518376 2015-07-07] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [314304 2015-07-07] (AVG Technologies CZ, s.r.o.)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [448384 2014-12-26] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S4 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-26] (NVIDIA Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [192120 2015-08-29] (Logitech Inc.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-29] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-26] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-26] (NVIDIA Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-08-11] (Electronic Arts)
S4 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-03-15] ()
S4 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-13] ()
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2970424 2015-06-29] (AVG Technologies)
S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH)
S2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44856 2015-06-29] (AVG Technologies)
S2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36664 2015-06-29] (AVG Technologies)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-12-11] (VIA Technologies, Inc.)
S4 vToolbarUpdater18.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe [1875480 2015-04-30] (AVG Secure Search)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-29] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S4 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [656664 2014-08-19] (Wacom Technology, Corp.)
S4 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [620056 2015-04-30] ()

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-11-04] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [67552 2015-04-14] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [293296 2015-06-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [253408 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [259040 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [226784 2015-06-10] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [295400 2015-06-15] (AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-05-29] (Disc Soft Ltd)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-10] (Logitech Inc.)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49264 2014-07-28] (Visicom Media Inc.)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35440 2014-05-13] (Visicom Media Inc.)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-29] (Microsoft Corporation)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
S3 tap0901t; C:\Windows\System32\drivers\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-02 15:39 - 2015-09-02 15:39 - 00033713 _____ C:\Users\Karrma\Desktop\FRST.txt
2015-09-02 15:27 - 2015-09-02 15:39 - 00000000 ____D C:\FRST
2015-09-02 15:17 - 2015-09-02 15:17 - 02188800 _____ (Farbar) C:\Users\Karrma\Desktop\FRST64.exe
2015-09-02 15:15 - 2015-09-02 15:15 - 00688992 _____ (Swearware) C:\Users\Karrma\Desktop\dds.scr
2015-09-02 15:03 - 2015-09-02 15:03 - 00016148 _____ C:\WINDOWS\system32\KARRMA-PC_Karrma_HistoryPrediction.bin
2015-09-02 14:45 - 2015-09-02 14:45 - 00280360 _____ C:\WINDOWS\Minidump\090215-27109-01.dmp
2015-09-02 14:42 - 2015-09-02 14:46 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-09-02 14:34 - 2015-09-02 14:45 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-02 14:34 - 2015-09-02 14:34 - 00359352 _____ C:\WINDOWS\Minidump\090215-45531-01.dmp
2015-09-02 14:33 - 2015-09-02 14:45 - 378643563 _____ C:\WINDOWS\MEMORY.DMP
2015-09-02 00:59 - 2015-09-02 00:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
2015-09-02 00:38 - 2015-09-02 00:53 - 17109714 _____ C:\Users\Karrma\Downloads\ROCCAT_Lua_DRV1.14.zip
2015-09-01 21:07 - 2015-09-01 21:07 - 00002332 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-01 21:07 - 2015-09-01 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-09-01 21:00 - 2015-09-01 21:07 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-01 21:00 - 2015-09-01 21:00 - 00929360 _____ (Google Inc.) C:\Users\Karrma\Downloads\ChromeSetup.exe
2015-09-01 01:32 - 2015-09-01 01:32 - 00000000 ____D C:\Users\Karrma\Downloads\Ernest Cline - Ready Player One (2011) -
2015-09-01 01:15 - 2015-09-01 01:15 - 02864184 _____ (Blizzard Entertainment) C:\Users\Karrma\Downloads\Battle.net-Setup-enUS(1).exe
2015-09-01 01:15 - 2015-09-01 01:15 - 00000000 ____D C:\ProgramData\Battle.net
2015-08-31 21:37 - 2015-08-31 21:39 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2015-08-31 21:26 - 2015-08-31 21:32 - 94449112 _____ (Logitech Inc.) C:\Users\Karrma\Downloads\LGS_8.72.98_x64_Logitech.exe
2015-08-31 21:16 - 2015-08-31 21:22 - 89180888 _____ (Logitech Inc.) C:\Users\Karrma\Downloads\LGS_8.72.98_x86_Logitech.exe
2015-08-31 21:09 - 2015-08-25 07:18 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-08-31 21:07 - 2015-08-31 21:07 - 00000000 ____D C:\WINDOWS\LastGood
2015-08-31 21:05 - 2015-08-25 11:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-08-31 21:05 - 2015-08-25 11:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-08-31 03:55 - 2015-08-31 03:55 - 00000000 ____D C:\Users\Karrma\AppData\Local\PeerDistRepub
2015-08-31 03:20 - 2015-08-31 03:20 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-30 14:37 - 2015-08-10 21:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-08-30 00:14 - 2015-08-30 00:14 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-30 00:14 - 2015-08-30 00:14 - 00001216 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-08-30 00:14 - 2015-08-30 00:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-29 22:18 - 2015-08-29 22:18 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-08-29 22:16 - 2015-08-30 15:47 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-29 22:16 - 2015-08-25 11:38 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-29 22:16 - 2015-08-25 11:38 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-08-29 22:16 - 2015-08-25 11:38 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-29 22:16 - 2015-08-25 11:38 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-29 22:16 - 2015-08-25 11:38 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-29 22:16 - 2015-08-25 11:38 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-29 22:16 - 2015-08-10 21:52 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-08-29 22:16 - 2015-08-07 04:07 - 01898288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435560.dll
2015-08-29 22:16 - 2015-08-07 04:07 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435560.dll
2015-08-29 21:19 - 2015-08-29 21:19 - 00009374 __RSH C:\ProgramData\ntuser.pol
2015-08-29 20:53 - 2015-08-29 20:53 - 00000000 ____D C:\Users\Karrma\AppData\Local\MicrosoftEdge
2015-08-29 20:33 - 2015-09-01 22:36 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-29 20:32 - 2015-08-29 19:39 - 00000000 __SHD C:\Recovery
2015-08-29 20:28 - 2015-08-29 20:28 - 00000000 ____D C:\Windows.old
2015-08-29 20:27 - 2015-08-29 20:27 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-29 20:18 - 2015-08-29 20:18 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-08-29 20:18 - 2015-08-29 20:18 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-29 20:18 - 2015-08-29 20:18 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-29 20:18 - 2015-08-29 20:18 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-29 20:18 - 2015-08-29 20:18 - 00000000 ____D C:\Program Files\MSBuild
2015-08-29 20:18 - 2015-08-29 20:18 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-29 20:18 - 2015-08-29 20:18 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-29 20:18 - 2015-08-29 20:18 - 00000000 ____D C:\inetpub
2015-08-29 20:17 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-29 20:17 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-29 20:17 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-29 20:17 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-29 20:17 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-29 20:17 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-29 20:12 - 2015-08-29 20:12 - 00002376 _____ C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-29 20:10 - 2015-08-29 20:10 - 00000000 ____D C:\Users\Karrma\AppData\Local\Publishers
2015-08-29 20:08 - 2015-08-29 20:27 - 00000000 ____D C:\Users\Karrma\AppData\Local\Packages
2015-08-29 20:08 - 2015-08-29 20:08 - 00009066 __RSH C:\Users\Karrma\ntuser.pol
2015-08-29 20:08 - 2015-08-29 20:08 - 00000020 ___SH C:\Users\Karrma\ntuser.ini
2015-08-29 20:08 - 2015-08-29 20:08 - 00000000 ____D C:\Users\Karrma\AppData\Local\TileDataLayer
2015-08-29 20:04 - 2015-08-29 20:04 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-29 19:50 - 2015-08-29 19:50 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-29 19:50 - 2015-08-29 19:50 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2015-08-29 19:50 - 2015-08-29 19:50 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-29 19:50 - 2015-08-29 19:50 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-08-29 19:50 - 2015-08-29 19:50 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-29 19:47 - 2015-08-29 19:47 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-29 19:45 - 2015-09-02 15:01 - 00000000 ____D C:\Users\Karrma
2015-08-29 19:45 - 2015-08-29 20:08 - 00000000 ___RD C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-29 19:45 - 2015-07-10 04:04 - 00000000 __RSD C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-29 19:45 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-29 19:45 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-29 19:45 - 2015-07-10 04:04 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-29 19:40 - 2015-09-01 01:30 - 01005534 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-29 19:40 - 2015-08-29 19:40 - 00961296 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-29 19:39 - 2015-08-29 19:40 - 00021209 _____ C:\WINDOWS\iis.log
2015-08-29 19:39 - 2015-07-10 03:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-29 19:37 - 2015-08-29 21:10 - 00008636 _____ C:\WINDOWS\system32\lvcoinst.log
2015-08-29 19:37 - 2015-08-29 19:47 - 00000000 ____D C:\Program Files\Common Files\logishrd
2015-08-29 19:37 - 2015-08-29 19:37 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-08-29 19:37 - 2015-08-29 19:37 - 00000000 ____D C:\Program Files\VIA
2015-08-29 19:35 - 2015-09-01 22:44 - 00012854 _____ C:\WINDOWS\PFRO.log
2015-08-29 19:35 - 2015-08-29 19:36 - 00026380 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-29 19:05 - 2015-08-29 20:04 - 00006487 _____ C:\WINDOWS\comsetup.log
2015-08-29 19:02 - 2015-08-29 20:05 - 00010449 _____ C:\WINDOWS\diagerr.xml
2015-08-29 19:02 - 2015-08-29 20:05 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2015-08-29 15:36 - 2015-08-29 15:36 - 01810648 _____ (Logitech Inc.) C:\WINDOWS\system32\CaptureAPO.dll
2015-08-29 15:36 - 2015-08-29 15:36 - 01273448 _____ (Logitech Inc.) C:\WINDOWS\system32\RenderAPO.dll
2015-08-29 07:52 - 2015-08-29 07:52 - 00597640 _____ (Logitech Inc.) C:\WINDOWS\system32\CapturePropPage.dll
2015-08-29 07:52 - 2015-08-29 07:52 - 00508552 _____ (Logitech Inc.) C:\WINDOWS\system32\RenderPropPage.dll
2015-08-25 23:23 - 2015-08-26 07:56 - 00000000 ____D C:\Users\Karrma\Downloads\Stronghold.3.Gold.MULTi8-PROPHET
2015-08-25 23:22 - 2015-08-25 23:22 - 00097117 _____ C:\Users\Karrma\Downloads\Stronghold.3.Gold.MULTi8-PROPHET [IPT].torrent
2015-08-25 05:52 - 2015-08-29 19:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-25 05:51 - 2015-08-25 05:51 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-08-25 05:51 - 2015-08-25 05:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2015-08-25 05:50 - 2015-08-25 05:53 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-25 05:50 - 2015-08-25 05:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-08-25 05:50 - 2015-08-25 05:50 - 00000000 __RHD C:\MSOCache
2015-08-25 05:50 - 2015-08-25 05:50 - 00000000 ____D C:\Users\Karrma\AppData\Local\Microsoft Help
2015-08-25 05:50 - 2015-08-25 05:50 - 00000000 ____D C:\Program Files\Microsoft Office
2015-08-25 05:27 - 2015-08-25 05:40 - 00000000 ____D C:\Users\Karrma\Downloads\Microsoft Word 2010 Englishx86
2015-08-25 05:26 - 2015-08-25 05:26 - 00028590 _____ C:\Users\Karrma\Downloads\Microsoft Word 2010 Englishx86 [IPT].torrent
2015-08-24 17:04 - 2015-08-24 17:04 - 00001806 _____ C:\Users\Karrma\Downloads\FirstBackup.spg
2015-08-24 05:16 - 2015-08-24 05:16 - 02508432 _____ (Sysinternals - http://www.sysinternals.com) C:\Users\Karrma\Downloads\procexp.exe
2015-08-24 05:12 - 2015-08-27 20:44 - 00000000 ____D C:\Users\Karrma\Desktop\balls
2015-08-24 05:10 - 2015-08-24 05:10 - 01186640 _____ C:\Users\Karrma\Downloads\ProcessExplorer.zip
2015-08-23 15:47 - 2015-08-23 15:47 - 02864184 _____ (Blizzard Entertainment) C:\Users\Karrma\Downloads\Battle.net-Setup-enUS.exe
2015-08-23 15:25 - 2015-08-23 16:12 - 00000000 ____D C:\Program Files\pia_manager
2015-08-23 15:25 - 2015-08-23 15:25 - 00031232 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tap0901.sys
2015-08-23 15:25 - 2015-08-23 15:25 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Titanium
2015-08-23 15:22 - 2015-08-23 15:24 - 25723531 _____ C:\Users\Karrma\Downloads\installer_win.exe
2015-08-23 15:08 - 2015-08-29 19:49 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-08-23 14:49 - 2015-08-23 14:49 - 03970746 _____ C:\Users\Karrma\Downloads\Battle.net-Agent-PC-Standalone.zip
2015-08-23 13:24 - 2015-08-23 13:24 - 03183672 _____ (Blizzard Entertainment) C:\Users\Karrma\Downloads\StarCraft-II-Setup-enUS.exe
2015-08-23 00:37 - 2015-08-23 00:37 - 00001144 _____ C:\Users\Karrma\Desktop\Wat.txt
2015-08-22 19:30 - 2015-08-22 19:30 - 00000000 ____D C:\Users\Karrma\Downloads\Ready Player One - Ernest Cline
2015-08-22 19:29 - 2015-08-22 19:29 - 00000641 _____ C:\Users\Karrma\Downloads\Ready Player One - Ernest Cline [IPT].torrent
2015-08-22 19:27 - 2015-08-24 05:18 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-08-20 11:36 - 2015-08-29 19:53 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StarCraft II
2015-08-20 11:22 - 2015-08-29 19:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2015-08-20 11:22 - 2015-08-22 18:50 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2015-08-20 11:22 - 2015-08-20 11:22 - 00000000 ____D C:\Users\Karrma\Documents\StarCraft II
2015-08-20 11:21 - 2015-08-20 11:35 - 00001093 _____ C:\Users\Public\Desktop\StarCraft II.lnk
2015-08-19 21:44 - 2015-08-29 20:04 - 00003126 _____ C:\WINDOWS\System32\Tasks\{16D1C916-849C-4EB2-B319-A8DAB2B47778}
2015-08-19 16:30 - 2015-07-22 09:48 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-08-19 03:48 - 2015-09-01 21:05 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\PortForward.com
2015-08-19 03:48 - 2015-08-29 19:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PortForward.com
2015-08-19 03:48 - 2015-08-19 03:48 - 00000000 ____D C:\Program Files (x86)\Portforward
2015-08-18 22:12 - 2015-07-16 13:12 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-08-18 22:12 - 2015-07-16 12:33 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-08-18 22:12 - 2015-07-16 12:05 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2015-08-18 22:06 - 2015-07-20 11:12 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-08-18 21:06 - 2015-08-18 21:05 - 03970746 _____ C:\Users\Karrma\Desktop\Battle.net-Agent-PC-Standalone.zip
2015-08-17 14:49 - 2015-08-17 14:49 - 00000000 ____D C:\ProgramData\IDM
2015-08-17 14:48 - 2015-08-17 14:48 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\IDM
2015-08-13 12:31 - 2015-08-17 14:02 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Octoshape
2015-08-13 02:03 - 2015-08-13 02:03 - 00001572 _____ C:\Users\Public\Desktop\Uplink.lnk
2015-08-08 03:15 - 2015-08-08 11:03 - 00000000 ____D C:\Users\Karrma\Downloads\Mad.Max.3.Beyond.Thunderdome.1985.DVDRiP.XViD-aGGr0
2015-08-08 03:13 - 2015-08-08 03:13 - 00017575 _____ C:\Users\Karrma\Downloads\Mad.Max.3.Beyond.Thunderdome.1985.DVDRiP.XViD-aGGr0 [IPT].torrent
2015-08-08 03:12 - 2015-08-08 03:12 - 00000000 ____D C:\Users\Karrma\Downloads\Uplink.Hacker.Elite-Sheppard22[GOG]
2015-08-08 03:11 - 2015-08-08 03:12 - 00014451 _____ C:\Users\Karrma\Downloads\Uplink.Hacker.Elite-Sheppard22[GOG] [IPT].torrent
2015-08-03 21:42 - 2015-08-06 00:28 - 00000000 ____D C:\Users\Karrma\Downloads\Mad.Max.2.The.Road.Warrior.1981.720p.BRRip.x264-x0r
2015-08-03 21:41 - 2015-08-03 21:41 - 00017303 _____ C:\Users\Karrma\Downloads\Mad.Max.2.The.Road.Warrior.1981.720p.BRRip.x264-x0r [IPT].torrent
2015-08-03 04:58 - 2015-08-03 20:53 - 00000000 ____D C:\Users\Karrma\Downloads\Prison.Architect.v33.ALPHA-OUTLAWS
2015-08-03 04:57 - 2015-08-03 04:57 - 00003597 _____ C:\Users\Karrma\Downloads\Prison.Architect.v33.ALPHA-OUTLAWS [IPT].torrent
2015-08-03 04:57 - 2015-08-03 04:57 - 00003597 _____ C:\Users\Karrma\Downloads\Prison.Architect.v33.ALPHA-OUTLAWS [IPT] (1).torrent
2015-08-03 02:25 - 2015-08-03 02:25 - 00000000 ____D C:\Users\Karrma\Downloads\Mad Max 1979 720p BRRip REPACK 6CH AAC x264-SSDD
2015-08-03 02:22 - 2015-08-03 02:22 - 00020941 _____ C:\Users\Karrma\Downloads\Mad Max 1979 720p BRRip REPACK 6CH AAC x264-SSDD [IPT].torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-02 15:05 - 2015-07-20 05:41 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-02 15:04 - 2015-07-20 05:41 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-02 15:03 - 2013-01-13 07:59 - 00000000 ____D C:\Users\Karrma\AppData\Local\TSVNCache
2015-09-02 15:02 - 2015-07-10 05:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-02 15:02 - 2015-07-10 05:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-02 15:02 - 2012-04-20 01:42 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-02 15:01 - 2015-07-10 02:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-09-02 14:48 - 2015-04-08 16:33 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-02 14:40 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-02 14:40 - 2014-01-10 02:56 - 00000000 ____D C:\WINDOWS\pss
2015-09-02 14:40 - 2012-04-20 02:29 - 00000000 ____D C:\ProgramData\MFAData
2015-09-02 14:16 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-09-02 14:15 - 2012-04-20 15:33 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Skype
2015-09-02 13:58 - 2014-02-22 18:33 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-02 13:55 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-02 13:54 - 2014-06-12 21:51 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\vlc
2015-09-02 02:46 - 2015-06-07 20:58 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-02 00:59 - 2012-04-20 00:35 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-01 22:44 - 2015-07-10 05:20 - 00222696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-01 22:36 - 2015-07-10 06:39 - 00000000 ___HD C:\$Windows.~BT
2015-09-01 22:19 - 2014-09-14 06:20 - 00000000 ____D C:\Users\Karrma\AppData\Local\Adobe
2015-09-01 21:00 - 2015-07-20 05:41 - 00003976 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-01 21:00 - 2015-07-20 05:41 - 00003744 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-01 00:32 - 2015-03-21 04:39 - 00000000 ____D C:\Users\Karrma\Desktop\Mis Desktop CleanUp
2015-08-31 21:42 - 2015-07-10 05:20 - 00028505 _____ C:\WINDOWS\setupact.log
2015-08-31 21:38 - 2014-07-20 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-08-31 21:36 - 2014-02-01 22:58 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-31 21:09 - 2013-11-13 07:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-31 21:09 - 2012-09-25 07:11 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-31 11:43 - 2012-10-03 00:15 - 00000000 ____D C:\Users\Karrma\AppData\Local\Spotify
2015-08-31 11:35 - 2012-10-03 00:14 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Spotify
2015-08-31 03:13 - 2014-02-22 18:33 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-30 04:35 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-30 02:23 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-30 02:23 - 2012-04-23 22:48 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Mozilla
2015-08-30 02:23 - 2012-04-19 23:53 - 00000000 ____D C:\Users\Karrma\AppData\Local\Google
2015-08-30 00:14 - 2015-04-06 03:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-29 22:17 - 2012-04-19 23:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-29 21:11 - 2015-07-10 02:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-29 20:33 - 2015-07-10 04:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-29 20:33 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-29 20:18 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-29 20:18 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-29 20:18 - 2015-07-10 04:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-08-29 20:18 - 2015-07-10 04:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-08-29 20:18 - 2015-07-10 04:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-08-29 20:18 - 2015-07-10 04:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-08-29 20:18 - 2015-07-10 04:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-29 20:18 - 2015-07-10 04:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-29 20:18 - 2015-07-10 04:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-08-29 20:18 - 2015-07-10 04:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-29 20:18 - 2015-07-10 04:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-29 20:18 - 2015-07-10 04:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-29 20:18 - 2015-07-10 04:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-29 20:18 - 2015-07-10 04:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-29 20:18 - 2015-07-10 04:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-29 20:18 - 2015-07-10 04:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-29 20:18 - 2015-07-10 04:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-29 20:18 - 2015-07-10 04:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-29 20:18 - 2015-07-10 04:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-29 20:18 - 2015-07-10 03:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-29 20:12 - 2015-03-04 00:24 - 00000000 ___RD C:\Users\Karrma\OneDrive
2015-08-29 20:09 - 2015-07-10 04:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-29 20:09 - 2015-07-10 04:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-29 20:09 - 2015-07-10 04:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-29 20:09 - 2015-07-10 04:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-29 20:06 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-29 20:04 - 2015-08-02 19:00 - 00003118 _____ C:\WINDOWS\System32\Tasks\{AEF9995E-06A4-4B44-B44B-6B49BC4AA857}
2015-08-29 20:04 - 2015-07-12 05:08 - 00003814 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2015-08-29 20:04 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-29 20:04 - 2015-06-07 13:39 - 00003098 _____ C:\WINDOWS\System32\Tasks\{F6E8B76C-DD56-4071-A92A-236852C0E069}
2015-08-29 20:04 - 2015-06-07 13:39 - 00003098 _____ C:\WINDOWS\System32\Tasks\{4C3A052C-F10C-4F0E-9FCD-BE2A6BBB5B53}
2015-08-29 20:04 - 2015-06-07 13:38 - 00003098 _____ C:\WINDOWS\System32\Tasks\{C76F3735-9E96-435B-982C-97FF9EB2D96B}
2015-08-29 20:04 - 2015-06-07 13:38 - 00003098 _____ C:\WINDOWS\System32\Tasks\{5E8097A0-D5A8-4AD1-A89C-B186167A41D0}
2015-08-29 20:04 - 2015-05-29 23:24 - 00004326 _____ C:\WINDOWS\System32\Tasks\Winupdate
2015-08-29 20:04 - 2015-05-29 23:24 - 00004304 _____ C:\WINDOWS\System32\Tasks\EssentialUpdateMachine
2015-08-29 20:04 - 2014-12-29 11:00 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-08-29 20:04 - 2014-12-19 03:44 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe Reader and Acrobat Manager
2015-08-29 20:04 - 2014-11-22 04:30 - 00002914 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-08-29 20:04 - 2014-11-21 12:07 - 00003954 _____ C:\WINDOWS\System32\Tasks\Google Update
2015-08-29 20:04 - 2014-09-26 13:53 - 00003630 _____ C:\WINDOWS\System32\Tasks\{51B01CF0-4FA4-451F-8471-E317A57FE00A}
2015-08-29 20:04 - 2014-08-20 22:51 - 00003270 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2015-08-29 20:04 - 2014-08-20 22:50 - 00003244 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2015-08-29 20:04 - 2014-08-20 22:50 - 00003242 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2015-08-29 20:04 - 2014-08-13 07:03 - 00003848 _____ C:\WINDOWS\System32\Tasks\DivX online update program
2015-08-29 20:04 - 2014-08-05 18:46 - 00003502 _____ C:\WINDOWS\System32\Tasks\{FEBDC505-BB4E-4071-B5D9-000BE71A401F}
2015-08-29 20:04 - 2014-08-05 18:36 - 00003528 _____ C:\WINDOWS\System32\Tasks\{CF9A3FE1-70EE-428D-BCF8-CE25B9669D29}
2015-08-29 20:04 - 2014-07-20 07:24 - 00003958 _____ C:\WINDOWS\System32\Tasks\DriverNavigator Scheduled Scan
2015-08-29 20:04 - 2014-03-01 13:18 - 00003122 _____ C:\WINDOWS\System32\Tasks\{DEF374E7-870B-4DC5-A449-34DAD1406F48}
2015-08-29 20:04 - 2013-12-07 22:16 - 00003098 _____ C:\WINDOWS\System32\Tasks\{96E856D6-BCD1-42A7-AB95-47BD6F1373F2}
2015-08-29 20:04 - 2013-12-07 22:16 - 00003098 _____ C:\WINDOWS\System32\Tasks\{669DB003-927C-417B-9A80-83AB52080304}
2015-08-29 20:04 - 2013-12-07 22:15 - 00003098 _____ C:\WINDOWS\System32\Tasks\{3BD95F9A-49E2-48DF-A160-AF3D62519EFC}
2015-08-29 20:04 - 2013-11-09 03:06 - 00003356 _____ C:\WINDOWS\System32\Tasks\{2C21EF52-DCDF-4537-8F96-3C5E02A93640}
2015-08-29 20:04 - 2013-11-09 03:04 - 00003134 _____ C:\WINDOWS\System32\Tasks\{E7DD4A5E-A9AC-45E1-9922-E8D8C6011361}
2015-08-29 20:04 - 2013-10-03 22:35 - 00003166 _____ C:\WINDOWS\System32\Tasks\{FA469CB3-FEC0-46B6-BDB1-55DEB9BE0A64}
2015-08-29 20:04 - 2013-10-03 22:35 - 00003166 _____ C:\WINDOWS\System32\Tasks\{2471CDE3-94AD-429B-A621-21A0939D165F}
2015-08-29 20:04 - 2013-03-23 16:00 - 00003048 _____ C:\WINDOWS\System32\Tasks\{4DAC32CA-AC4C-4B04-ABCE-68C0713A1723}
2015-08-29 20:04 - 2013-03-19 17:27 - 00003326 _____ C:\WINDOWS\System32\Tasks\{1C8A8008-CB5D-4E62-BC2B-8D348895A604}
2015-08-29 20:04 - 2013-01-22 18:54 - 00002816 _____ C:\WINDOWS\System32\Tasks\ROC_REG_JAN_DELETE
2015-08-29 20:04 - 2012-08-07 03:30 - 00003522 _____ C:\WINDOWS\System32\Tasks\{086B8907-D872-48C1-9D5A-B9625E770C5C}
2015-08-29 20:04 - 2012-04-20 02:37 - 00003386 _____ C:\WINDOWS\System32\Tasks\SidebarExecute
2015-08-29 20:04 - 2012-04-19 23:53 - 00004006 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2572198188-481956686-841600760-1000UA
2015-08-29 20:04 - 2012-04-19 23:53 - 00003610 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2572198188-481956686-841600760-1000Core
2015-08-29 20:03 - 2015-07-10 04:04 - 00000000 __RSD C:\WINDOWS\Media
2015-08-29 20:03 - 2015-07-10 04:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-29 20:00 - 2015-06-29 08:45 - 00000000 ____D C:\Program Files\Common Files\AV
2015-08-29 19:59 - 2015-07-10 04:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-08-29 19:59 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-29 19:59 - 2014-04-01 13:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-08-29 19:53 - 2015-07-30 20:02 - 00000000 ____D C:\WINDOWS\system32\W7NBC
2015-08-29 19:53 - 2015-07-10 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2015-08-29 19:53 - 2015-07-10 04:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-29 19:53 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-08-29 19:53 - 2015-06-27 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-29 19:53 - 2015-06-07 20:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-29 19:53 - 2015-04-08 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-29 19:53 - 2015-04-05 01:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard 8.6
2015-08-29 19:53 - 2015-03-26 00:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Singularity (64 bit) Viewer
2015-08-29 19:53 - 2015-03-04 00:29 - 00000000 ____D C:\WINDOWS\en
2015-08-29 19:53 - 2015-03-04 00:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-08-29 19:53 - 2015-02-04 03:39 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom
2015-08-29 19:53 - 2015-02-04 02:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bamboo Dock
2015-08-29 19:53 - 2014-12-16 01:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-08-29 19:53 - 2014-11-21 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015
2015-08-29 19:53 - 2014-11-01 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-08-29 19:53 - 2014-10-24 03:27 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e
2015-08-29 19:53 - 2014-09-15 07:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Alarm Clock
2015-08-29 19:53 - 2014-08-25 05:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2015-08-29 19:53 - 2014-08-07 04:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2015-08-29 19:53 - 2014-08-02 01:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDisplayEx
2015-08-29 19:53 - 2014-07-20 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIA
2015-08-29 19:53 - 2014-07-20 07:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverNavigator
2015-08-29 19:53 - 2014-06-12 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-29 19:53 - 2014-06-01 00:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
2015-08-29 19:53 - 2014-02-07 20:17 - 00000000 ____D C:\WINDOWS\SysWOW64\syncdb
2015-08-29 19:53 - 2014-02-03 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-29 19:53 - 2014-02-01 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-08-29 19:53 - 2014-01-29 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2015-08-29 19:53 - 2013-12-07 16:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-29 19:53 - 2013-09-09 18:52 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-08-29 19:53 - 2013-05-27 18:22 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-29 19:53 - 2012-06-13 00:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCsoft
2015-08-29 19:53 - 2012-04-23 22:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Privacy SafeGuard
2015-08-29 19:53 - 2012-04-23 20:40 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
2015-08-29 19:53 - 2012-04-20 00:24 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-29 19:53 - 2012-04-20 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-29 19:53 - 2009-07-13 22:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-29 19:50 - 2015-07-10 04:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-29 19:50 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-29 19:50 - 2015-07-10 04:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-29 19:50 - 2009-07-13 20:20 - 00000000 ____D C:\Users\Default.migrated
2015-08-29 19:49 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-08-29 19:49 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-08-29 19:49 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-29 19:49 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-29 19:49 - 2013-01-27 02:20 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2015-08-29 19:49 - 2012-04-23 20:32 - 00000000 ____D C:\WINDOWS\SysWOW64\spool
2015-08-29 19:48 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-08-29 19:48 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-08-29 19:48 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-29 19:48 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\schemas
2015-08-29 19:48 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\Resources
2015-08-29 19:48 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-08-29 19:48 - 2012-04-27 12:52 - 00000000 ____D C:\WINDOWS\system32\SPReview
2015-08-29 19:48 - 2012-04-27 12:51 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2015-08-29 19:48 - 2012-04-23 19:52 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2015-08-29 19:47 - 2015-07-10 04:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-08-29 19:47 - 2015-07-10 04:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-08-29 19:47 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-29 19:47 - 2015-07-10 04:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-29 19:47 - 2015-04-06 09:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-08-29 19:47 - 2014-10-12 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-29 19:47 - 2014-08-05 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SonicProjects
2015-08-29 19:47 - 2012-08-01 22:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2015-08-29 19:47 - 2012-07-23 01:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-08-29 19:47 - 2012-04-20 00:27 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-08-29 19:47 - 2012-04-19 23:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-08-29 19:47 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-29 19:46 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-29 19:46 - 2014-08-05 18:46 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SonicProjects
2015-08-29 19:46 - 2012-07-23 01:58 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-08-29 19:46 - 2012-04-20 17:47 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ventrilo
2015-08-29 19:46 - 2009-07-13 20:20 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-08-29 19:39 - 2015-07-10 02:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-29 19:35 - 2015-07-10 02:05 - 00000000 __RHD C:\Users\Default
2015-08-29 19:09 - 2009-07-13 21:45 - 00027392 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-29 19:09 - 2009-07-13 21:45 - 00027392 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-29 19:08 - 2012-04-20 01:24 - 01409614 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-27 22:17 - 2014-08-13 00:33 - 00007615 _____ C:\Users\Karrma\AppData\Local\Resmon.ResmonCfg
2015-08-26 17:37 - 2014-07-18 21:35 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-26 17:37 - 2013-12-19 00:40 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-26 17:36 - 2014-07-18 21:35 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-26 17:36 - 2013-12-19 00:40 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-25 23:04 - 2012-04-19 23:53 - 00067072 _____ C:\Users\Karrma\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-25 11:38 - 2012-09-25 07:11 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-08-25 11:38 - 2012-09-25 07:11 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-08-25 08:57 - 2012-09-25 07:11 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-25 08:57 - 2012-09-25 07:11 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-25 08:57 - 2012-09-25 07:11 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-25 08:57 - 2012-09-25 07:11 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-25 08:57 - 2012-09-25 07:11 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-25 08:57 - 2010-07-09 16:17 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-25 06:02 - 2012-09-25 07:11 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-25 05:51 - 2012-07-29 16:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-08-23 15:25 - 2013-05-07 20:44 - 00000000 ____D C:\Users\Karrma\AppData\Roaming\Apple Computer
2015-08-23 15:25 - 2013-05-07 20:44 - 00000000 ____D C:\Users\Karrma\AppData\Local\Apple Computer
2015-08-23 15:04 - 2015-02-08 08:29 - 00000000 __SHD C:\Users\Karrma\AppData\Local\EmieBrowserModeList
2015-08-23 15:04 - 2014-05-14 15:13 - 00000000 __SHD C:\Users\Karrma\AppData\Local\EmieUserList
2015-08-23 14:19 - 2015-03-26 00:45 - 00001094 _____ C:\Users\Public\Desktop\Singularity (64 bit) Viewer.lnk
2015-08-19 17:19 - 2012-04-20 15:33 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-19 17:19 - 2012-04-20 15:33 - 00000000 ____D C:\ProgramData\Skype
2015-08-19 03:48 - 2012-05-04 21:00 - 00000000 ____D C:\Users\Karrma\AppData\Local\Downloaded Installations
2015-08-18 22:30 - 2013-12-07 16:09 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-18 22:30 - 2013-12-07 16:09 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-18 22:20 - 2013-07-25 03:05 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-18 22:12 - 2012-04-27 12:50 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-13 16:06 - 2015-07-10 04:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2015-08-13 16:01 - 2012-10-27 11:12 - 00000000 ____D C:\Program Files (x86)\DivX
2015-08-13 16:01 - 2012-10-27 11:10 - 00000000 ____D C:\ProgramData\DivX
2015-08-13 15:59 - 2013-03-08 13:18 - 00000000 ____D C:\ProgramData\NexonUS
2015-08-13 15:47 - 2014-05-31 22:43 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-08-13 15:37 - 2015-06-30 18:16 - 00000000 ____D C:\Users\Karrma\Documents\Stalker-SHOC
2015-08-13 15:34 - 2014-07-05 03:43 - 00000000 ____D C:\Program Files (x86)\ManyCam
2015-08-13 15:31 - 2015-05-23 22:23 - 00000000 ____D C:\ProgramData\TechSmith
2015-08-13 02:02 - 2015-04-06 08:23 - 00000000 ____D C:\GOG Games
2015-08-11 18:09 - 2015-05-25 16:38 - 00000000 ____D C:\Users\Karrma\AppData\Local\CrashDumps
2015-08-11 00:19 - 2012-04-22 02:35 - 00000000 ____D C:\ProgramData\Origin
2015-08-11 00:18 - 2014-02-01 22:07 - 00000000 ____D C:\Program Files (x86)\Origin
2015-08-10 21:52 - 2015-06-27 22:32 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-08-09 16:54 - 2014-07-20 07:24 - 00000438 _____ C:\WINDOWS\Tasks\DriverNavigator Scheduled Scan.job
2015-08-03 12:12 - 2012-07-05 18:17 - 00033856 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\hamachi.sys

==================== Files in the root of some directories =======

2014-04-08 13:21 - 2014-09-03 21:25 - 0003741 _____ () C:\Program Files (x86)\Mozilla Firefoxwtu-secure-search.xml
2012-10-28 22:08 - 2013-01-24 15:08 - 0703117 _____ () C:\Users\Karrma\AppData\Roaming\technic-launcher.jar
2012-10-28 22:08 - 2013-01-23 18:20 - 0703104 _____ () C:\Users\Karrma\AppData\Roaming\technic-launcher.jar.bak
2014-08-28 00:14 - 2014-08-28 00:14 - 0000879 _____ () C:\Users\Karrma\AppData\Local\recently-used.xbel
2014-08-13 00:33 - 2015-08-27 22:17 - 0007615 _____ () C:\Users\Karrma\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
C:\Users\Karrma\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Karrma\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Karrma\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-29 19:35

==================== End of FRST.txt ============================
You do not have the required permissions to view the files attached to this post.
JakeBakery
Active Member
 
Posts: 1
Joined: September 2nd, 2015, 6:11 pm
Advertisement
Register to Remove

Re: GMER BlueScreening and other Network Issues

Unread postby Firefly » September 4th, 2015, 11:48 pm

Hi JakeBakery. My name is Firefly and I will help you with your computer. I ask you to follow a few ground rules while we are taking care of your computer:

I'm an Undergraduate trainee at MalwareRemovalUniversity (MRU), and as such my posts to you have to first be checked by a Teacher, because of this my replies to your posts may be slightly delayed. Please be patient and I'm sure we'll be able to resolve your problems.

Before we begin...please read and follow these important guidelines, so things will proceed smoothly.
  1. The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  2. You must have Administrator rights, permissions for this computer.
  3. DO NOT make any changes to your system, or run any tools other than those I provided. Do not delete, fix, uninstall, or install anything unless I tell you to.
  4. Only- post your problem at (1) one help site. Applying fixes from multiple help sites can cause problems.
  5. Print each set of instructions...if possible...your Internet connection will not be available during some fix processes.
  6. Only- reply to this thread, do not start another ... Please, continue responding, until I give you the "All Clean". If you are in progress at another forum, please simply let me know so I can dedicate my time to others who need help.
  7. Failure to respond for 3 days, will result in your topic being closed.

Please take time to read the Malware Removal Forum Guidelines and Rules where the conditions for receiving help at this forum are explained.

Malware removal:
Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Finally, there will be several items to handle in each post (usually) so I will try to break them into easier to digest sections which will be demarked with Green Bold Lettering

While I review your logs, please do some basic preparation for me:


Restore Point

First, before we do anything, we want to make sure we have made a backup of your computer's key information so that we can be sure to not make anything worse. Since you are running Windows 10, we will make a restore point.

To create a restore point (Win 10)
1. Search for Create a restore point from the taskbar and select it from the list of search results.
2. On the left side menu, click System Protection.
3. In the Protection Settings section, click the C: (system) drive.
4. Click the Create button.
5. Type a name for the System Restore file (The Date and Time will be added automatically). Please call it “before malware fix”


File Backup

For your safety and protection, I would advise backing up all your important documents, personal data files and photos as some infections may render your computer unbootable during or before the disinfection process. The safest practice is not to backup any files with the following file extensions:
exe, .scr, .ini, .htm, .html, .php, .asp, .xml, .zip, .rar, .cab as they may be infected.

All of the Windows systems we support have backup capabilities. These existing programs will allow you to back up your files to an external hard drive, USB drive or CD drive.

Do not back up your files to the hard drive of the computer we will be fixing. If the computer becomes unusable, your files will still be gone forever. Every photo, every document… gone. Seriously. Do this now.

Here are links to using the backup program in Windows 10: Windows 10

If you have internet connectivity, an alternative to backing your files up locally is to back your files up to the cloud, and there are a number of free and paid for services of this type available. A word of warning - if you have a lot of data to backup, an online service can take days, weeks, or months. In this case, please consider using a local backup method (external hard drive, USB, etc.)

One way or another, it is critical that you backup your data before proceeding.


Please let me know once you have completed these steps and we can continue with the cleaning.
User avatar
Firefly
Regular Member
 
Posts: 949
Joined: March 5th, 2014, 4:33 pm

Re: GMER BlueScreening and other Network Issues

Unread postby Firefly » September 4th, 2015, 11:49 pm

Addition.txt contents:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:31-08-2015
Ran by Karrma (2015-09-02 15:40:04)
Running from C:\Users\Karrma\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2572198188-481956686-841600760-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2572198188-481956686-841600760-503 - Limited - Disabled)
Guest (S-1-5-21-2572198188-481956686-841600760-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2572198188-481956686-841600760-1004 - Limited - Enabled)
Karrma (S-1-5-21-2572198188-481956686-841600760-1000 - Administrator - Enabled) => C:\Users\Karrma

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Internet Security 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security 2015 (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7 Days to Die (HKLM-x32\...\Steam App 251570) (Version: - The Fun Pimps)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{3096080B-BFA4-F2E5-0E2B-D289933054C5}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Arma 3 Alpha (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.22 - Atheros Communications Inc.)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6086 - AVG Technologies)
AVG 2015 (Version: 15.0.4409 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.6086 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (en-US) (x32 Version: 15.0.1001.604 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.604 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.604 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.1.0.411 - AVG Technologies)
Bamboo Dock (HKLM-x32\...\Bamboo Dock) (Version: 4.1 - Wacom Co., Ltd.)
Bamboo Dock (x32 Version: 4.1.0 - Wacom Europe GmbH) Hidden
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version: - The Behemoth)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.25648 - Electronic Arts)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
CDisplayEx 1.10.27 (HKLM\...\CDisplayEx_is1) (Version: - cdisplayex.com)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{263050F0-65B8-4288-9B70-90FAA1B8A1E7}) (Version: 0.9.107 - Dotjosh Studios)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - )
DriverNavigator 3.4.5 (HKLM\...\DriverNavigator_is1) (Version: 3.4.5.0 - Easeware)
Dropbox (HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
EaseUS Data Recovery Wizard 8.6 (HKLM\...\EaseUS Data Recovery Wizard 8.6_is1) (Version: - EaseUS)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
FaceRig (HKLM-x32\...\Steam App 274920) (Version: - Holotech Studios)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version: - Obsidian Entertainment)
Fractured Space (HKLM-x32\...\Steam App 310380) (Version: - Edge Case Games Ltd.)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Free Alarm Clock 3.1.0 (HKLM-x32\...\{8ED5A2F1-338F-4608-8AF7-BCD1ADC1E1F7}_is1) (Version: 3.1 - Comfort Software Group)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Guns of Icarus Online (HKLM-x32\...\Steam App 209080) (Version: - Muse Games)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
HydraVision (x32 Version: 4.2.108.0 - ATI Technologies Inc.) Hidden
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Killing Floor (HKLM-x32\...\Steam App 1250) (Version: - Tripwire Interactive)
Killing Floor 2 - SDK (HKLM-x32\...\Steam App 232150) (Version: - )
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version: - Tripwire Interactive)
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Life is Feudal: Your Own (HKLM-x32\...\Steam App 290080) (Version: - Bitbox Ltd.)
Logitech Gaming Software 8.72 (HKLM\...\Logitech Gaming Software) (Version: 8.72.98 - Logitech Inc.)
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
Logitech Webcam Software Driver Package (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Marvel Heroes 2015 (HKLM-x32\...\Steam App 226320) (Version: - Gazillion Entertainment)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Word 2010 (HKLM-x32\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minimum (HKLM-x32\...\Steam App 214190) (Version: - Human Head Studios)
Modular Combat (HKLM-x32\...\Steam App 349480) (Version: - Team ModCom)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 40.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 en-US)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla)
MP3 Skype recorder (HKLM-x32\...\{78A8FADA-B8DF-4AA4-AED7-C91EE58EB7E9}) (Version: 4.6.1.0 - Alexander Nikiforov)
NCsoft Launcher (HKLM-x32\...\{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}) (Version: 1.5.19002 - NCsoft)
Nether (HKLM-x32\...\Steam App 247730) (Version: - Phosphor Games)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 150210.101909 - Square Enix Ltd)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.7 - )
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.1.116 - Electronic Arts, Inc.)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.0.0.1 - GOG.com)
Pillars of Eternity Kickstarter Item (HKLM-x32\...\Pillars of Eternity Kickstarter Item_is1) (Version: 2.0.0.1 - GOG.com)
Pillars of Eternity Kickstarter Pet (HKLM-x32\...\Pillars of Eternity Kickstarter Pet_is1) (Version: 2.0.0.1 - GOG.com)
Pillars of Eternity Preorder Item and Pet (HKLM-x32\...\Pillars of Eternity Preorder Item and Pet_is1) (Version: 2.0.0.1 - GOG.com)
PlanetSide 2 Beta (HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\SOE-PlanetSide 2 Beta) (Version: - Sony Online Entertainment)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Port Forward Network Utilities (HKLM-x32\...\{88B1D36C-7B70-4C48-8D2F-AAB956ECF4C3}) (Version: 2.0.15 - Portforward, LLC)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5983 - Realtek Semiconductor Corp.)
ROCCAT Lua Mouse Driver (HKLM-x32\...\InstallShield_{0F5183CD-4A86-43A4-8CAA-1045871F54DE}) (Version: 1.14 - ROCCAT)
ROCCAT Lua Mouse Driver (x32 Version: 1.14 - ROCCAT) Hidden
rust. (HKLM-x32\...\Steam App 252490) (Version: - )
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.2200.0 - SAMSUNG Electronics Co., Ltd.)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.)
Singularity (64 bit) (remove only) (HKLM-x32\...\Singularity (64 bit)) (Version: - )
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version: - Rebellion)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Space Engineers (HKLM-x32\...\Steam App 244850) (Version: - )
Spotify (HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\Spotify) (Version: 1.0.12.161.g64b0797c - Spotify AB)
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: 1.0.0.15405 - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Telegram Desktop version 0.8.52 (HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.8.52 - Telegram Messenger LLP)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Forest (HKLM-x32\...\Steam App 242760) (Version: - Endnight Games Ltd)
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.9.6 - Electronic Arts)
Tom Clancy's Ghost Recon Phantoms - NA (HKLM-x32\...\Steam App 243870) (Version: - Ubisoft Singapore)
Tone2 Gladiator VSTi v2.2 (HKLM-x32\...\Tone2 Gladiator VSTi_is1) (Version: - )
TuneUp Utilities 2014 (en-US) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.2 - Tunngle.net GmbH)
Unity Web Player (HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Uplink (HKLM-x32\...\GOGPACKUPLINK_is1) (Version: 2.0.0.5 - GOG.com)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
WebM Project Directshow Filters (HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\webmdshow) (Version: - )
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.12 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.10 - Wacom Technology Corp.)
Widevine Media Optimizer Chrome 6.0.0 (HKLM-x32\...\optimizer_chrome) (Version: 6.0.0.12442 - Widevine Technologies)
Widevine Media Optimizer Chrome 6.0.0 (HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\optimizer_chrome) (Version: 6.0.0.12442 - Widevine Technologies)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 4.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wireshark 1.12.0 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.0 - The Wireshark developer community, http://www.wireshark.org)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Karrma\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2572198188-481956686-841600760-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Karrma\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

30-08-2015 02:23:02 Removed Google Talk Plugin
31-08-2015 21:35:46 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
31-08-2015 21:36:34 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
02-09-2015 00:56:38 Removed ROCCAT Lua Mouse Driver

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:34 - 2009-06-10 14:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {040ECDB1-BFF3-4EEE-9764-AE733BCC61D6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0716692C-7822-4ACB-AF8A-54CEBFD0CEC1} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {0BE2093B-C848-492F-BC4B-3BD3EC1622B9} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {0D02F5B2-F9D6-475A-83FF-8D639FC071AB} - System32\Tasks\{F6E8B76C-DD56-4071-A92A-236852C0E069} => C:\Program Files (x86)\Steam\Steam.exe [2015-08-19] (Valve Corporation)
Task: {0E9013F0-0CB4-48A2-BAF7-8A71BB89667F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {117298F9-81A9-4ECE-B5E5-E23D4DBF3BE6} - System32\Tasks\{5E8097A0-D5A8-4AD1-A89C-B186167A41D0} => C:\Program Files (x86)\Steam\Steam.exe [2015-08-19] (Valve Corporation)
Task: {11BAAC06-33D3-4BEE-B0F5-0ECCF21E5AF6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {188E0F94-F026-492F-8B4B-495DEBA7B7B3} - System32\Tasks\{16D1C916-849C-4EB2-B319-A8DAB2B47778} => C:\Program Files (x86)\StarCraft II\StarCraft II.exe [2015-08-20] (Blizzard Entertainment)
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1A6E7E24-4D2D-4AFD-A151-CEAAFF017EC7} - System32\Tasks\DriverNavigator Scheduled Scan => C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe [2013-12-23] (Easeware)
Task: {1C7C221B-4C74-4F60-99D4-20DB951E43E2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2572198188-481956686-841600760-1000UA => C:\Users\Karrma\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-19] (Google Inc.)
Task: {1E46AA23-A91E-449A-90F5-BEE2463FBE06} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {20BA3074-A7E0-48D7-B48B-D8BF783BF556} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {22698DA9-CE2A-44B8-BEC2-564662A40617} - System32\Tasks\{3BD95F9A-49E2-48DF-A160-AF3D62519EFC} => C:\Program Files (x86)\Steam\Steam.exe [2015-08-19] (Valve Corporation)
Task: {2307F341-EB2B-400B-BBDB-B40B6AE63E42} - System32\Tasks\{2C21EF52-DCDF-4537-8F96-3C5E02A93640} => pcalua.exe -a C:\Users\Karrma\Desktop\RiskOfRain\redist\vcredist_x86.exe -d C:\Users\Karrma\Desktop\RiskOfRain\redist
Task: {2587C1ED-8AED-4AEC-85C0-B20E077832E3} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {278E3500-65A5-48A3-8D1A-E3E2A7ABE077} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {2D46F28B-88F2-4D2E-93A4-AF2198BB5EFB} - System32\Tasks\ASUS\i-Setup002538 => C:\Windows\AMD_Chipset_V307320_Windows7\AsusSetup.exe [2008-08-01] (ASUSTek)
Task: {2F6E3490-0A14-4BF7-A1F9-164D99C2EB13} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {3180323D-6A72-4C77-811B-46D022967535} - System32\Tasks\{086B8907-D872-48C1-9D5A-B9625E770C5C} => pcalua.exe -a "C:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe" -d "c:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead"
Task: {34A627A6-1247-4813-BBD9-1321ED375D2B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {398D8489-82BF-43AA-AE5E-459F2290BA2B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3D65A690-E48A-46E6-8DDD-8770C4EC9533} - System32\Tasks\Google Update => C:\Users\Karrma\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-19] (Google Inc.)
Task: {3E403A76-F16E-4EAE-AA7D-CB7A057C8B55} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2015-07-10] (Microsoft Corporation)
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {44C9C219-6089-40BD-9D3A-703A7C5888A5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {4A45B091-8C2E-4E9A-A1F2-F9E48DBF74EC} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {4D454A21-8AC0-4F82-AD4C-D47C21D2C758} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {4E16E539-03CB-4C79-9275-36C9281D72E1} - System32\Tasks\{AEF9995E-06A4-4B44-B44B-6B49BC4AA857} => C:\Users\Karrma\Desktop\MediaCreationToolx64.exe
Task: {4EC72EAA-CED0-44FE-B465-13EEE4EAD886} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-31] (Adobe Systems Incorporated)
Task: {5F7FB508-5355-47D5-9CAC-0E9E9D4BE955} - System32\Tasks\{2471CDE3-94AD-429B-A621-21A0939D165F} => C:\Program Files (x86)\Steam\steamapps\common\Terraria\ItemariaPlus.exe
Task: {68FEB928-64C4-4DA0-8D4F-5F3203713524} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {6A1CD22B-622B-4606-87BD-E740E839A2FA} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-06-29] (AVG Technologies)
Task: {70487B51-882A-4AD1-AD30-2AC71BD62DEE} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2015-07-10] (Microsoft Corporation)
Task: {7052EFFF-8912-46F9-8695-04FF0B82EE28} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {73D782E9-7370-43DD-9D88-C2CD91012C99} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2572198188-481956686-841600760-1000Core => C:\Users\Karrma\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-19] (Google Inc.)
Task: {745DA86F-4377-49A8-ACB4-6091305D9943} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {76BF8A12-F96B-4895-90BA-3B4E295E10A9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {7820B450-3ECF-4EDF-8914-3C28FDD16AF3} - System32\Tasks\{DEF374E7-870B-4DC5-A449-34DAD1406F48} => Firefox.exe
Task: {78A674E5-A5F2-4825-A505-B434184A83B2} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {79D35038-BE6F-48C1-84D1-B6ECAC52716D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {7C738B6C-D811-419B-BE60-345C6E16C89C} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [2013-01-17] ()
Task: {7CB3B0AE-0D27-4946-BCAF-1771808EE825} - \BackgroundContainer Startup Task -> No File <==== ATTENTION
Task: {7EAED37E-B1C1-4997-81A7-FCAD637445C7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {8040B807-F0C6-4D45-B8DB-F8D61F731311} - System32\Tasks\{C76F3735-9E96-435B-982C-97FF9EB2D96B} => C:\Program Files (x86)\Steam\Steam.exe [2015-08-19] (Valve Corporation)
Task: {805A1A26-F4DA-4904-9763-6FAB73EF7186} - System32\Tasks\EssentialUpdateMachine => chp.exe <==== ATTENTION
Task: {85B38FFF-4883-4AD8-A902-CAA4C2E5B13E} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
Task: {889546D3-2C50-43A6-9D93-17CC7071267D} - System32\Tasks\{51B01CF0-4FA4-451F-8471-E317A57FE00A} => pcalua.exe -a "C:\Users\Karrma\Downloads\The SIMS 4-Deluxe Edition-SKIDROWCRACK\Crack.v4.And.Update.1\Crack-V4\Game\Bin\The.Sims.4.Launcher.exe" -d "C:\Users\Karrma\Downloads\The SIMS 4-Deluxe Edition-SKIDROWCRACK\Crack.v4.And.Update.1\Crack-V4\Game\Bin"
Task: {892A9315-AC1A-4F1B-BF88-C36A42FA9CE9} - System32\Tasks\{FEBDC505-BB4E-4071-B5D9-000BE71A401F} => pcalua.exe -a "C:\Users\Karrma\Desktop\fl shit\Sonic.Projects.OP-X.PRO.II.v1.0.Incl.Keygen-AiR\Setup.exe" -d "C:\Users\Karrma\Desktop\fl shit\Sonic.Projects.OP-X.PRO.II.v1.0.Incl.Keygen-AiR"
Task: {8A5569F3-902A-41F5-B3B7-02FB860BB500} - System32\Tasks\{4C3A052C-F10C-4F0E-9FCD-BE2A6BBB5B53} => C:\Program Files (x86)\Steam\Steam.exe [2015-08-19] (Valve Corporation)
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-07-10] (Microsoft Corporation)
Task: {8F4C3A2F-D807-437E-BAA4-10DF9721ED47} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {8FA614A2-2172-46E7-BEF4-04DD0C030F69} - System32\Tasks\DivX online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-09] ()
Task: {928D82DB-47BD-4B50-B517-4AA8FE06A829} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {95159395-493C-4018-B814-A8C41E2B0CAA} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9878634C-7A04-4001-B8F7-7CE665D7047C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {993BBECF-9683-47F8-8A79-985DB0A609FC} - System32\Tasks\Winupdate => chp.exe <==== ATTENTION
Task: {9AA3011F-4F3D-4A0D-8C58-F5F075BDAB1B} - System32\Tasks\{FA469CB3-FEC0-46B6-BDB1-55DEB9BE0A64} => C:\Program Files (x86)\Steam\steamapps\common\Terraria\ItemariaPlus.exe
Task: {9DB4BAC9-2546-4412-B87E-19DC7C82EE95} - System32\Tasks\{4DAC32CA-AC4C-4B04-ABCE-68C0713A1723} => D:\playcd.exe
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AB412A29-888A-4072-AAAB-E32D62D81F8C} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {ADDE6DF0-44BD-4B95-903C-707C237C922D} - System32\Tasks\{96E856D6-BCD1-42A7-AB95-47BD6F1373F2} => C:\Program Files (x86)\Steam\Steam.exe [2015-08-19] (Valve Corporation)
Task: {B4E78A21-62E6-49A8-8BEE-DA3D24F91EE4} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {BB0D9CB6-CCD1-4DE2-9242-1473F877FD8B} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent
Task: {C0E2C157-11BA-4D35-92F3-8D47E6427770} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C6FD806F-05B3-4EA2-BB90-34298897EBF9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CE6F60E2-A83D-4083-98A0-39F4F5B09E6F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D5043718-4388-490E-A070-6548615725FB} - System32\Tasks\{E7DD4A5E-A9AC-45E1-9922-E8D8C6011361} => C:\Users\Karrma\Desktop\RiskOfRain\RoR v1.0.0 Humble.exe
Task: {DA76D21D-3BC3-471A-A1E8-8F2E16D21944} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {DDEDD1B4-D2D7-4971-82CE-792C628650B1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {E34FE712-A563-44A1-BBDB-3E35C5B4AA4F} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {E522164E-43DB-4777-BE85-56F6E7B469CE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {E9F08F48-4A39-4CF9-A54A-3F026534A39C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {EA74AF14-1FD5-4432-AA5B-572433442E34} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {EB9A9974-4386-4CFF-9C9E-B4643563AF38} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {EC2684DB-08D3-4261-9164-14AD136079F6} - System32\Tasks\{CF9A3FE1-70EE-428D-BCF8-CE25B9669D29} => pcalua.exe -a "C:\Users\Karrma\Desktop\fl shit\Lennar.Digital.Sylenth1.VSTi.v2.2.1.1.x86.PROPER-VTX\VTXSetup.exe" -d "C:\Users\Karrma\Desktop\fl shit\Lennar.Digital.Sylenth1.VSTi.v2.2.1.1.x86.PROPER-VTX"
Task: {ECE16C35-F94A-4E21-9C09-46E0651A86C0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {ED32CD99-CE46-4414-B506-44A8C407F30E} - System32\Tasks\{669DB003-927C-417B-9A80-83AB52080304} => C:\Program Files (x86)\Steam\Steam.exe [2015-08-19] (Valve Corporation)
Task: {EEB9C228-6B7F-4C47-8849-D65EFA18910E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {F2A007C9-B848-4DAF-A123-F8A6EDEE9E81} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F5C64974-5212-4F36-A5A8-65FD7A01D861} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {F5EEB070-A99A-4FA9-BA1E-B9B72829FF9C} - System32\Tasks\ASUS\i-Setup002713 => C:\Windows\AMD_Chipset_V307320_Windows7\AsusSetup.exe [2008-08-01] (ASUSTek)
Task: {FF8453B2-3A27-47A0-85ED-EF6BBDC4D232} - System32\Tasks\{1C8A8008-CB5D-4E62-BC2B-8D348895A604} => pcalua.exe -a C:\Users\Karrma\Documents\PuckBuster\pbsetup.exe -d C:\Users\Karrma\Documents\PuckBuster

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DriverNavigator Scheduled Scan.job => C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2572198188-481956686-841600760-1000Core.job => C:\Users\Karrma\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2572198188-481956686-841600760-1000UA.job => C:\Users\Karrma\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe

==================== Loaded Modules (Whitelisted) ==============

2015-07-10 04:00 - 2015-07-10 04:00 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2012-09-25 07:11 - 2015-08-25 08:57 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-07-10 03:59 - 2015-07-10 03:59 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-06-29 01:24 - 2015-06-29 01:24 - 00718136 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-07-10 04:00 - 2015-07-10 04:00 - 02498296 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-06-29 01:24 - 2015-06-29 01:24 - 00862008 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-07-10 04:00 - 2015-07-10 04:00 - 02498296 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2012-04-20 00:24 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2009-11-24 16:36 - 2009-11-24 16:36 - 00125440 _____ () C:\Program Files (x86)\Notepad++\NppShell_01.dll
2015-07-10 03:59 - 2015-07-10 03:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 03:59 - 2015-07-10 03:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-07-10 04:00 - 2015-07-10 06:14 - 06579712 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 04:00 - 2015-07-10 06:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-07-10 04:00 - 2015-07-10 06:14 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 04:00 - 2015-07-10 06:14 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-03-06 17:07 - 2015-03-06 17:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-08-29 18:44 - 2015-08-29 18:44 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-06 17:07 - 2015-03-06 17:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-08-29 18:44 - 2015-08-29 18:44 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-04-19 18:33 - 2015-08-26 17:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\webcompanion.com -> hxxp://webcompanion.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2572198188-481956686-841600760-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Karrma\AppData\Local\Microsoft\Windows\Themes\1357280540.toulouse_beautifullie.png
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: Bonjour Service => 3
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: GfExperienceService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LBTServ => 3
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: PnkBstrA => 2
MSCONFIG\Services: rpcapd => 3
MSCONFIG\Services: Skype C2C Service => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: TuneUp.UtilitiesSvc => 2
MSCONFIG\Services: TunngleService => 3
MSCONFIG\Services: VIAKaraokeService => 2
MSCONFIG\Services: vToolbarUpdater18.4.0 => 2
MSCONFIG\Services: vToolbarUpdater3.1.0 => 2
MSCONFIG\Services: WTabletServiceCon => 2
MSCONFIG\Services: WtuSystemSupport => 2
MSCONFIG\startupfolder: C:^Users^Karrma^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AVG-Secure-Search-Update_0913a => C:\Users\Karrma\AppData\Roaming\AVG 0913a Campaign\AVG-Secure-Search-Update-0913a.exe /PROMPT --mid a4268847bcd747d08a90f18676988c02-3db6f44a3e2703a145c84da4a37a016cbc27d0cd --CMPID 0913a
MSCONFIG\startupreg: BACKGROUNDCONTAINER => "C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\Karrma\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun
MSCONFIG\startupreg: BambooCore => C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: EvtMgr6 => C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
MSCONFIG\startupreg: FreeAC => C:\Program Files (x86)\FreeAlarmClock\FreeAlarmClock.exe -autorun
MSCONFIG\startupreg: GoogleChromeAutoLaunch_8131AF727B636B32ED997EAC99E8CD77 => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HDAudDeck => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: ROC_ROC_APR2013_AV => C:\Users\Karrma\AppData\Roaming\AVG April 2013 Campaign\AVG-Secure-Search-Update.exe /PROMPT --mid a4268847bcd747d08a90f18676988c02-3db6f44a3e2703a145c84da4a37a016cbc27d0cd --CMPID ROC_APR2013_AV --CMPIDEXTRA 2013
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Karrma\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: UrsaSpellChecker => C:\Program Files (x86)\UrsaSpelling\UrsaConsole.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Karrma\AppData\Roaming\uTorrent\uTorrent.exe"
MSCONFIG\startupreg: vProt => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "BCSSync"
HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2572198188-481956686-841600760-1000\...\StartupApproved\Run: => "Spotify Web Helper"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [UDP Query User{DF51514A-12C5-4FD9-8D80-DC2D1FEDEBCC}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe
FirewallRules: [TCP Query User{2DC1AED2-2B1A-45B5-99B0-EBF0D705C499}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe
FirewallRules: [{7358FAF4-4539-4293-A8E2-73421E70210B}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base15405\SC2.exe
FirewallRules: [{E8110E13-D5F3-4CE1-8E83-4AD83A4E0B16}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base15405\SC2.exe
FirewallRules: [{F30182F5-8BA0-45E0-BAF8-C1E46546F12D}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{E458E59F-A7FC-4780-8211-3DE9DB64D34D}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{401306A9-C972-420A-B2E7-EEF3F84DB5B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{F43CB036-96AA-484A-B07B-6413989E450F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{AAA8E98C-F857-4AF8-844F-E630412CD0E8}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{46D5964B-6991-4B10-A94B-20B89AE23B92}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{E699049A-69DA-49D2-A05C-8271399B82E5}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{2B74734A-18C8-49F6-A9C6-E6A6F29913A5}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{99280921-F68C-4944-ABC1-880CB4FC6C0A}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{D9DE6B48-B24E-4610-95F9-284862A7348E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{6C3B75BB-1C1B-4B53-B13D-1916404460DC}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{95D224AD-D641-497E-AB98-720842A4D3AD}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{DEB97DEE-664C-4FC3-B749-9D5C04F9678E}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{8A39EA14-D02A-4616-AADA-A48A99E67E59}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{D795E9DD-3385-4D6F-AACD-D0724C7BC3CA}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{66E655C1-1A92-470D-AAAA-207D2F479E58}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{BBD2CAEB-7312-456C-9AFE-0A25F1D9F8CD}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{0F27F695-A500-49A6-ABB2-535905DBEF05}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{D6CFD713-E935-41EC-9134-4C13DD8B8E6E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{6273B4E9-0AD2-479E-A165-B79A7175B670}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{D234C5D2-3EE6-49F4-9161-98809AE43FD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Minimum\Binaries\Win32\MinGame-Win32-F.exe
FirewallRules: [{63812643-55D2-4224-BA05-8FE5302A39D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Minimum\Binaries\Win32\MinGame-Win32-F.exe
FirewallRules: [{AAE29C53-40A0-43DE-A8F5-63888DA3FC11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{D9467565-6B1C-4F6B-8D9E-358BD88A7A16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{680DFBF3-58A4-4E02-973E-8BE8F7CB01EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life is Feudal Your Own\yo_cm_client.exe
FirewallRules: [{D669BB19-27EA-4002-8B0D-EAC8EA5B1593}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life is Feudal Your Own\yo_cm_client.exe
FirewallRules: [{C1CEF261-6D37-4C14-B326-558904A24FA9}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{C5E9146B-7F8C-4C29-8F53-C77500BE1625}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{44CFC04B-EB42-4091-AFC3-736CE3789813}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{B6A37BD1-918A-4E96-84F0-04830C182503}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{FCCF3806-1AA1-4394-A493-D8B9EE5D28D6}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{56542B70-E3B5-4E88-9A1E-AC6F387E6989}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{CEE2358C-3923-493C-99B9-3B58453A4D51}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CB565BD4-F8FA-4BFE-A396-B54C99E36E9B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{97AC78CB-49EE-4DA0-85CF-24BE5E8F65DF}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{C240AC56-05E7-4284-A5FA-96C3B657B78A}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{C12C2733-DA20-4420-8170-DFC641747C74}] => (Allow) LPort=1900
FirewallRules: [{F58CA369-6E89-4BF9-9F40-24D1AF6DFEFE}] => (Allow) LPort=2869
FirewallRules: [{4D8079AD-7316-452A-906D-74F334DA66A4}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2841B734-059A-44E9-A6BC-6D315E08E611}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{7CF7DE66-8576-41D5-BDB2-D9BCBA3558C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{13E4294B-9AEB-4AFE-A3FE-9251D7360844}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{4A9C98AF-B847-494E-B9A6-F117D9287E42}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{28A77480-F20B-40A4-89B6-F47AFC0E70C4}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{F0B2BC50-8055-44C4-A765-10F646EB143B}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{AE3BF14E-8833-43A4-89AE-D3963A9FE314}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{8E12A6A7-4D44-4FD1-AF46-339BA49AA425}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{13AA300A-4668-43C4-B3D2-8A00F83CE0B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\fallout new vegas\FalloutNVLauncher.exe
FirewallRules: [{ED3DBF78-F6BB-4825-B497-563CF4265AA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\fallout new vegas\FalloutNVLauncher.exe
FirewallRules: [{7F2FC738-4CFD-4118-A4F5-0F924B78FF20}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{D616761A-BF98-44E1-840F-B66AFF63D6E1}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{D76ED251-331A-4C64-A304-97913F25B349}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{C5C77155-B546-4D32-A803-F06524657EF9}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{C40A5EA5-D219-4634-89FF-45C52E97CCEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\7 Days To Die\7DaysToDie_EAC.exe
FirewallRules: [{39E56096-3658-4A42-A54E-FCDAAFDFE8F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\7 Days To Die\7DaysToDie_EAC.exe
FirewallRules: [{3AC6B90A-64E9-4188-9B96-C47624508B41}] => (Allow) C:\ProgramData\EmailNotifier\EmailNotifier.exe
FirewallRules: [{19CC645C-BE80-4028-A343-D841304338EC}] => (Allow) C:\ProgramData\EmailNotifier\EmailNotifier.exe
FirewallRules: [{69948891-C63A-4E04-9E68-F01BA85A2084}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{18B5C927-BC8F-4B70-9062-7B026EC9781A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{ED1D69F3-C2CA-4DC8-9DAF-FBA71FF5B39A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{48E702A5-7A5B-4B0D-B843-C921BB4EE7EF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5A332C38-6FBC-456A-998E-D90E01AD7050}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{19DEF648-C4C2-4D7A-B9B3-72CE23A6EB3A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{52A5BFAD-526F-4D4F-B03E-D883A3ED9A54}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{9ACA40C5-E407-422C-9958-86AD2DAE80C4}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{944D760E-868B-4888-B931-BEC4C0E5F766}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{FD2E57CC-B6C2-4FB8-8024-56A58270E03D}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{65CF1AF9-8B1E-4DEA-901A-C707A30A12D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\7 Days To Die\7DaysToDie.exe
FirewallRules: [{5FAEE9AC-B4C6-421F-9C14-2296BD134CBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\7 Days To Die\7DaysToDie.exe
FirewallRules: [{D01F29A6-BB8F-44B5-BE9C-4892A41AF8D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{3DE902CC-40C5-4DF9-A605-F8AFBB11E88F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{83D81F6D-F5B4-4B63-8115-79FAAF44533E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{CF7F17CF-4AF2-4934-961A-A70E27999E65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{C3E2C7BC-A2E6-4C89-84A4-B2512B34FB1B}] => (Allow) C:\Users\Karrma\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [{0AF6B803-CC46-4B03-982B-5C9A1A437C91}] => (Allow) C:\Users\Karrma\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [{818BFE80-2FFB-46C1-9886-F62670083C27}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{2832FE7B-9348-44A3-A523-2D8D8C8C533F}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{BEF9DECC-9216-48AD-8D02-60E259053DA9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9BB7996F-0087-4F19-8AE4-239D46CB96DD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C220E8C1-C492-44AA-8B7C-F79BE804A7FD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{47B57B6B-3E74-46B5-8402-CBA279CD5512}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CEFDDBA4-8C1F-4878-BC93-D1BEABACF41F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{77B7F143-353B-4241-8F53-9A5AE79B949C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{E0EF9CEA-A654-454C-9290-6DC88ADB54B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{0DAEBE65-3559-4968-89F5-82CE01E91806}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{A8BEDD4A-B025-45E8-A23D-90EFD077BDEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{2D318917-DDBA-494B-89C3-6DD62CA76E15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{D116E358-05A1-4CD0-AF77-780521CA1C7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{E40662DE-8E70-447F-BC45-742FE482C386}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{A79DC30F-AC77-4F8C-94B7-A79EC8B6881F}] => (Allow) C:\Users\Karrma\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{B29F1D1C-14E3-435A-BA41-3A78166BFE77}] => (Allow) C:\Users\Karrma\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{CFF04F80-151F-48F9-B12E-B45FCDFD8027}] => (Allow) C:\Users\Karrma\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{3C3A03ED-851A-45DF-ACE0-38F551E5BFE5}] => (Allow) C:\Users\Karrma\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [UDP Query User{88BFFCEE-BAC7-4DD1-996F-C4E6524098B9}C:\users\karrma\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\karrma\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F4003C39-77D0-4447-928C-AD980D58A99D}C:\users\karrma\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\karrma\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{6F9CB3FD-0BC1-43BB-81B0-384C9C724A2B}C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe
FirewallRules: [TCP Query User{1BE13DEF-5235-4A51-AF0B-1F32A7E3BC72}C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe
FirewallRules: [UDP Query User{CF581395-AF00-4155-A0A5-54910412FB3B}C:\users\karrma\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\karrma\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{9C8D2C62-5A95-424F-99C6-577AF461205F}C:\users\karrma\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\karrma\appdata\roaming\spotify\spotify.exe
FirewallRules: [{260995E0-164F-44D8-8ECE-51909FC15DE4}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{48B67C7E-7B86-4C6A-8534-5A8D58335639}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{A56EADC4-E122-4DBC-8B44-61EB87937D8C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{4A8F01AE-8405-4628-B90F-37B046B4DB53}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{156099B2-1D76-4E2B-AAB4-9A01F745B85A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{36222750-B429-4F55-8780-0349285CF675}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{7127247C-2CAD-41C3-A0BE-2D74DCB2AEF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3682A74C-3F7C-46B9-B00E-2A5D4026F07F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{813C2949-2562-47AA-96AB-5C0DE3C1E924}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FC0AEAA0-328B-4888-BDAD-696209A29A4F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B75552EF-9DA4-4237-ADDE-9EF716777969}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{53FC7F1C-2AD0-459E-8A7E-94A199C2ED50}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{5E115882-92CE-439D-867A-C392772203DA}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{AA82A9BC-8C6B-4478-919D-2B135075EAC3}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{6117A3BE-3EFB-42AC-838A-BD51B4219890}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: TAP-Win32 Adapter V9 (Tunngle)
Description: TAP-Win32 Adapter V9 (Tunngle)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9 (Tunngle)
Service: tap0901t
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Win32 Adapter V9
Description: TAP-Win32 Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/02/2015 02:59:59 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Karrma-PC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147023170 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (09/02/2015 03:00:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchUI.exe, version: 10.0.10240.16384, time stamp: 0x559f3d35
Faulting module name: CortanaApi.dll, version: 0.0.0.0, time stamp: 0x559f391e
Exception code: 0x80000003
Fault offset: 0x000000000015a6d7
Faulting process id: 0xb44
Faulting application start time: 0xSearchUI.exe0
Faulting application path: SearchUI.exe1
Faulting module path: SearchUI.exe2
Report Id: SearchUI.exe3
Faulting package full name: SearchUI.exe4
Faulting package-relative application ID: SearchUI.exe5

Error: (09/02/2015 02:59:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchUI.exe, version: 10.0.10240.16384, time stamp: 0x559f3d35
Faulting module name: CortanaApi.dll, version: 0.0.0.0, time stamp: 0x559f391e
Exception code: 0x80000003
Fault offset: 0x000000000015a6d7
Faulting process id: 0xb7c
Faulting application start time: 0xSearchUI.exe0
Faulting application path: SearchUI.exe1
Faulting module path: SearchUI.exe2
Report Id: SearchUI.exe3
Faulting package full name: SearchUI.exe4
Faulting package-relative application ID: SearchUI.exe5

Error: (09/02/2015 02:59:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchUI.exe, version: 10.0.10240.16384, time stamp: 0x559f3d35
Faulting module name: CortanaApi.dll, version: 0.0.0.0, time stamp: 0x559f391e
Exception code: 0x80000003
Fault offset: 0x000000000015a6d7
Faulting process id: 0xa90
Faulting application start time: 0xSearchUI.exe0
Faulting application path: SearchUI.exe1
Faulting module path: SearchUI.exe2
Report Id: SearchUI.exe3
Faulting package full name: SearchUI.exe4
Faulting package-relative application ID: SearchUI.exe5

Error: (09/02/2015 02:59:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchUI.exe, version: 10.0.10240.16384, time stamp: 0x559f3d35
Faulting module name: CortanaApi.dll, version: 0.0.0.0, time stamp: 0x559f391e
Exception code: 0x80000003
Fault offset: 0x000000000015a6d7
Faulting process id: 0xa84
Faulting application start time: 0xSearchUI.exe0
Faulting application path: SearchUI.exe1
Faulting module path: SearchUI.exe2
Report Id: SearchUI.exe3
Faulting package full name: SearchUI.exe4
Faulting package-relative application ID: SearchUI.exe5

Error: (09/02/2015 02:59:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchUI.exe, version: 10.0.10240.16384, time stamp: 0x559f3d35
Faulting module name: CortanaApi.dll, version: 0.0.0.0, time stamp: 0x559f391e
Exception code: 0x80000003
Fault offset: 0x000000000015a6d7
Faulting process id: 0x8b4
Faulting application start time: 0xSearchUI.exe0
Faulting application path: SearchUI.exe1
Faulting module path: SearchUI.exe2
Report Id: SearchUI.exe3
Faulting package full name: SearchUI.exe4
Faulting package-relative application ID: SearchUI.exe5

Error: (09/02/2015 02:59:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchUI.exe, version: 10.0.10240.16384, time stamp: 0x559f3d35
Faulting module name: CortanaApi.dll, version: 0.0.0.0, time stamp: 0x559f391e
Exception code: 0x80000003
Fault offset: 0x000000000015a6d7
Faulting process id: 0x18c
Faulting application start time: 0xSearchUI.exe0
Faulting application path: SearchUI.exe1
Faulting module path: SearchUI.exe2
Report Id: SearchUI.exe3
Faulting package full name: SearchUI.exe4
Faulting package-relative application ID: SearchUI.exe5

Error: (09/02/2015 02:59:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchUI.exe, version: 10.0.10240.16384, time stamp: 0x559f3d35
Faulting module name: CortanaApi.dll, version: 0.0.0.0, time stamp: 0x559f391e
Exception code: 0x80000003
Fault offset: 0x000000000015a6d7
Faulting process id: 0x108
Faulting application start time: 0xSearchUI.exe0
Faulting application path: SearchUI.exe1
Faulting module path: SearchUI.exe2
Report Id: SearchUI.exe3
Faulting package full name: SearchUI.exe4
Faulting package-relative application ID: SearchUI.exe5

Error: (09/02/2015 02:59:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Karrma-PC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147023170 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (09/02/2015 02:59:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchUI.exe, version: 10.0.10240.16384, time stamp: 0x559f3d35
Faulting module name: CortanaApi.dll, version: 0.0.0.0, time stamp: 0x559f391e
Exception code: 0x80000003
Fault offset: 0x000000000015a6d7
Faulting process id: 0x594
Faulting application start time: 0xSearchUI.exe0
Faulting application path: SearchUI.exe1
Faulting module path: SearchUI.exe2
Report Id: SearchUI.exe3
Faulting package full name: SearchUI.exe4
Faulting package-relative application ID: SearchUI.exe5


System errors:
=============
Error: (09/02/2015 03:03:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Net.Pipe Listener Adapter service failed to start due to the following error:
%%1053

Error: (09/02/2015 03:03:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Net.Pipe Listener Adapter service to connect.

Error: (09/02/2015 03:02:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error:
%%1058

Error: (09/02/2015 03:02:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AVG Theme Extension service failed to start due to the following error:
%%1083

Error: (09/02/2015 03:00:02 PM) (Source: DCOM) (EventID: 10005) (User: Karrma-PC)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (09/02/2015 03:00:00 PM) (Source: DCOM) (EventID: 10005) (User: Karrma-PC)
Description: 1084WSearchUnavailable{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (09/02/2015 03:00:00 PM) (Source: DCOM) (EventID: 10005) (User: Karrma-PC)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (09/02/2015 03:00:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (09/02/2015 03:00:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network Location Awareness service depends on the DHCP Client service which failed to start because of the following error:
%%1068

Error: (09/02/2015 02:59:59 PM) (Source: DCOM) (EventID: 10005) (User: Karrma-PC)
Description: 1084WSearchUnavailable{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Microsoft Office:
=========================
Error: (09/02/2015 02:59:59 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Karrma-PC)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2147023170

Error: (09/02/2015 03:00:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SearchUI.exe10.0.10240.16384559f3d35CortanaApi.dll0.0.0.0559f391e80000003000000000015a6d7b4401d0e5cab6869b75C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exeC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dllcd3a8fbf-dc69-4d2a-901e-6227692b0271Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyCortanaUI

Error: (09/02/2015 02:59:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SearchUI.exe10.0.10240.16384559f3d35CortanaApi.dll0.0.0.0559f391e80000003000000000015a6d7b7c01d0e5cab617f84eC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exeC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll65eceb13-2e0c-49f7-9f47-b209ace2c91bMicrosoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyCortanaUI

Error: (09/02/2015 02:59:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SearchUI.exe10.0.10240.16384559f3d35CortanaApi.dll0.0.0.0559f391e80000003000000000015a6d7a9001d0e5cab5172093C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exeC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dlle6938b77-ab45-4869-b63e-723321cbb69eMicrosoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyCortanaUI

Error: (09/02/2015 02:59:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SearchUI.exe10.0.10240.16384559f3d35CortanaApi.dll0.0.0.0559f391e80000003000000000015a6d7a8401d0e5cab4d17454C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exeC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll7526536d-efd3-4af2-a465-07df70d36d81Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyCortanaUI

Error: (09/02/2015 02:59:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SearchUI.exe10.0.10240.16384559f3d35CortanaApi.dll0.0.0.0559f391e80000003000000000015a6d78b401d0e5cab381f6bdC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exeC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll2830c0d7-e47d-4acd-97f0-0d7f9c296d13Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyCortanaUI

Error: (09/02/2015 02:59:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SearchUI.exe10.0.10240.16384559f3d35CortanaApi.dll0.0.0.0559f391e80000003000000000015a6d718c01d0e5cab22da0d7C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exeC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dllf89db7ac-a58b-4410-8613-d70f2fef2f58Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyCortanaUI

Error: (09/02/2015 02:59:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SearchUI.exe10.0.10240.16384559f3d35CortanaApi.dll0.0.0.0559f391e80000003000000000015a6d710801d0e5cab0e72b42C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exeC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dlla90e2cdf-7e93-47f9-9b89-768c25e612f8Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyCortanaUI

Error: (09/02/2015 02:59:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Karrma-PC)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2147023170

Error: (09/02/2015 02:59:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SearchUI.exe10.0.10240.16384559f3d35CortanaApi.dll0.0.0.0559f391e80000003000000000015a6d759401d0e5caaf97503bC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exeC:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dllb164b7af-b293-4305-9712-d9f701910096Microsoft.Windows.Cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewyCortanaUI


==================== Memory info ===========================

Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 27%
Total physical RAM: 8190.18 MB
Available physical RAM: 5920.05 MB
Total Virtual: 16382.18 MB
Available Virtual: 14039.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:336.81 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 09D909D9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
User avatar
Firefly
Regular Member
 
Posts: 949
Joined: March 5th, 2014, 4:33 pm

Re: GMER BlueScreening and other Network Issues

Unread postby Firefly » September 5th, 2015, 12:20 pm

JakeBakery -

After you have completed the steps above, lets get started. Please do the following:


MGA Diagnostic Tool

Download MGA Diagnostic Tool to your Desktop. If you cannot access the internet, please download it on another computer, and copy to the desktop of the infected computer. It cannot be run from the USB!

  • Double click MGADiag.exe to launch the program.
  • Click Continue and let the scan run.
  • When finished it will have created a log.
  • Click Copy.
  • Next open Notepad.
    • Click Start > Run type Notepad click OK.
    • This will open an empty Notepad file.
    • Right click in the empty file and choose Paste to copy the log from MGA Diagnostics into it.
    • Save the file to your Desktop.
    • Close MGA Diagnostic Tool.
  • Copy/Paste the log in your next reply please.


CKScanner

Please download CKScanner ... Save it to your desktop.
This program should only be run once!
Make sure that CKScanner.exe is on the your desktop before running the application!

  1. Double-click on the CKScanner.exe icon... then click the Search For Files button.
  2. When the scan is finished (the cursor hourglass disappears) click the Save List To File button.
    A text file will be created on your desktop named "ckfiles.txt"
  3. Click OK at the file saved message box. Double-click on the ckfiles.txt icon on your desktop.
  4. Please copy/paste the contents of ckfiles.txt in your next reply.
User avatar
Firefly
Regular Member
 
Posts: 949
Joined: March 5th, 2014, 4:33 pm

Re: GMER BlueScreening and other Network Issues

Unread postby Gary R » September 8th, 2015, 11:14 am

Due to a lack of response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
Gary R
Administrator
Administrator
 
Posts: 25888
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire
Advertisement
Register to Remove


Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 290 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware