Jump to content


Photo
- - - - -

System struggling while running flash


  • Please log in to reply
17 replies to this topic

#1 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 25 November 2015 - 08:22 PM

First off - Thank you guys for taking the time to help everyone out with their problems , it is much appreciated.

 

 

I have a halfway decent gaming build that has been having problems with flash lately ever since the last update. It's most noteable playing flash ( browser ) games, used to I never had a problem. Now I will load a game and it will work fine for a few minutes then increasingly starts to clog up ( lower frame rates [ about 1/3 of what it should be ] and the over all ability to do nothing). I never had this problem in the past and I doubt it's a lack of hardware requirements or memory. I really need to give these games up but can't do it, but that's another story.

 

System specs: Win 7 64bit , intel i5-2500k @ 3.3ghz , 16gb ddr3 1600mhz ram , nvidia geforce GTX 670 ( 2gb GDDR5 dedicated ) , and about 1.5tb overall disk space

 

hijackthis log:

 

Scan saved at 9:10:19 PM, on 11/25/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17280)

FIREFOX: 42.0 (x86 en-US)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\XFastUsb\XFastUsb.exe
C:\Program Files (x86)\NETGEAR\WNDA3100v3\WNDA3100v3.EXE
C:\acidmax\mirc.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe
C:\Users\TRON\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://xfinity.comca...insDate03312013
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft..../?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft..../?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 203.232.208.116:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [XFastUsb] C:\Program Files (x86)\XFastUsb\XFastUsb.exe
O4 - HKLM\..\Run: [WNDA3100v3] C:\Program Files (x86)\NETGEAR\WNDA3100v3\WNDA3100v3.EXE

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {BAD4FE2C-503B-45CC-88CD-4B0574057D11} - http://clients.futur...y/FMSI_v420.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.ad...Plus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: prio32.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9462 bytes
 


Posted Image

#2 guestolo

guestolo

    Site Donator

  • Admin
  • PipPipPipPipPipPipPip
  • 16,247 posts

Posted 29 November 2015 - 07:17 AM

Log looks ok, but can I see the following please

Download the version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
It makes also another log (Addition.txt).
Copy and paste it's contents also


Do you want to post your own logs from FRST?
Follow the instructions posted Click Here


#3 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 29 November 2015 - 08:31 PM

FRST log

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-11-2015
Ran by TRON (administrator) on TRON-PC (29-11-2015 21:27:15)
Running from C:\Users\TRON\Desktop\New folder
Loaded Profiles: TRON (Available Profiles: TRON)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUsb\XFastUsb.exe
(NETGEAR) C:\Program Files (x86)\NETGEAR\WNDA3100v3\WNDA3100v3.EXE
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(mIRC Co. Ltd.) C:\acidmax\mirc.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Logitech Inc.) C:\Program Files\Logitech\SetPoint II\SetPointII.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(PeerBlock, LLC) C:\Program Files\PeerBlock\peerblock.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [XFastUsb] => C:\Program Files (x86)\XFastUsb\XFastUsb.exe [4942336 2011-09-20] (FNet Co., Ltd.)
HKLM-x32\...\Run: [WNDA3100v3] => C:\Program Files (x86)\NETGEAR\WNDA3100v3\WNDA3100v3.EXE [6243040 2014-10-13] (NETGEAR)
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: F - F:\Setup.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: K - K:\CD_Start.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {5516bf87-ea47-11df-8d35-806e6f6e6963} - E:\RunGame.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {a0be8b0e-eb5d-11df-beae-001bb9537594} - K:\LaunchU3.exe -a
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {d5090535-008f-11e0-9c17-001bb9537594} - K:\LaunchU3.exe -a
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...A8F59079A8D5}\localserver32:  <==== ATTENTION
AppInit_DLLs: prio.dll => C:\Program Files\Prio\prio.dll [17264 2012-11-08] (O&K Software)
AppInit_DLLs-x32: prio32.dll => C:\Program Files\Prio\prio32.dll [15216 2012-11-08] (O&K Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  No File
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-2601419243-2007584176-3567953189-1001] => 203.232.208.116:8080
Tcpip\Parameters: [DhcpNameServer] 10.168.8.1
Tcpip\..\Interfaces\{1B22B1B3-92F9-44DA-8BEF-CF582404D978}: [DhcpNameServer] 10.168.8.1
Tcpip\..\Interfaces\{5318A75E-9303-43C5-8DEF-912DE617EF72}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{69215A00-FABD-4345-BA37-C0E2803AF427}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{B8C6BD13-2DE8-486E-806B-F3FC12223C0C}: [DhcpNameServer] 10.168.8.1
Tcpip\..\Interfaces\{BBBE4295-7F11-4FE0-A833-A61F174ECBBA}: [DhcpNameServer] 68.87.68.166 68.87.74.166 192.168.1.1
Tcpip\..\Interfaces\{C1917B49-A9FF-4517-A65E-4087AF42D063}: [DhcpNameServer] 75.75.75.75 75.75.76.76

Internet Explorer:
==================





BHO: No Name -> {3706EE7C-3CAD-445D-8A43-03EBC3B75908} -> No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-11-27] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-27] (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-2601419243-2007584176-3567953189-1001 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File


Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: Google
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: XFINITY




FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2010-05-05] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-11-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-11-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-02] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-02] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-08-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011-05-04] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2011-06-07] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll [2010-11-07] (Apple Inc.)
FF SearchPlugin: C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\searchplugins\avg-secure-search.xml [2011-09-24]
FF Extension: FireFTP - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2015-11-28]
FF Extension: XFINITY Toolbar - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{4b9bcce8-a70b-402a-a7e1-db96831ee26f} [2011-08-17] [not signed]
FF Extension: NoScript - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-11-23]
FF Extension: GameZooks - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{8693cb76-1caf-4115-9bd7-6bab02330326}.xpi [2015-09-18]
FF Extension: Adblock Plus - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-25]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2015-11-04] [not signed]

Chrome:
=======
CHR Profile: C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-01]
CHR Extension: (Google Docs) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-01]
CHR Extension: (Google Drive) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-01]
CHR Extension: (YouTube) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-01]
CHR Extension: (Google Search) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-08]
CHR Extension: (Google Sheets) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-01]
CHR Extension: (Google Play Music) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2015-03-01]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-08]
CHR Extension: (Google Wallet) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-08]
CHR Extension: (Gmail) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-08]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AntiSpywareService; C:\Program Files (x86)\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe [616408 2009-06-17] ()
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-26] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-17] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-17] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2078216 2015-10-08] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-04] ()
S4 prio_svc; C:\Program Files\Prio\prio_svc.exe [12656 2012-11-08] ()
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2009-10-20] (CACE Technologies, Inc.)
S4 RunSwUSB; C:\Windows\runSW.exe [44104 2013-05-23] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 WSAC950; C:\Program Files (x86)\Belkin\F9L1109\v1\WifiSvc.exe [299008 2013-07-09] () [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dmodusb; C:\Windows\System32\DRIVERS\dmodusb.sys [32768 2008-12-16] (Windows ® Codename Longhorn DDK provider)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [31808 2011-10-07] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2011-09-20] (FNet Co., Ltd.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-17] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-17] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [47632 2009-10-20] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [19544 2009-09-28] ()
S3 PlantronicsGC; C:\Windows\System32\drivers\PLTGC.sys [1327104 2011-11-04] (C-Media Electronics Inc)
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [12288 2009-08-22] () [File not signed]
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [2355400 2013-07-09] (Realtek Semiconductor Corporation                           )
S3 tapoas; C:\Windows\System32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project)
R3 tapSF0901; C:\Windows\System32\DRIVERS\tapSF0901.sys [39104 2015-01-23] (Spotflux, Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [53760 2012-09-28] (Apple, Inc.) [File not signed]
S3 USBTINSP; C:\Windows\System32\DRIVERS\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 VST64HWBS2; C:\Windows\System32\DRIVERS\VSTBS26.SYS [411136 2009-06-10] (Conexant Systems, Inc.)
S3 VST64_DPV; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Conexant Systems, Inc.)
R3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [254976 2011-06-21] (Jungo)
S3 WNDA3100v3; C:\Windows\System32\DRIVERS\WNDA3100v3.sys [2222224 2014-10-08] (MediaTek Inc.)
R2 XilinxPC4Driver; C:\Windows\System32\drivers\xpc4drvr.sys [27384 2011-06-21] (Xilinx, Inc.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-29 21:26 - 2015-11-29 21:27 - 00000000 ____D C:\Users\TRON\Desktop\New folder
2015-11-29 21:26 - 2015-11-29 21:27 - 00000000 ____D C:\FRST
2015-11-29 21:25 - 2015-11-29 21:25 - 02350080 _____ (Farbar) C:\Users\TRON\Downloads\FRST64.exe
2015-11-25 21:09 - 2015-11-25 21:09 - 00388608 _____ (Trend Micro Inc.) C:\Users\TRON\Downloads\HijackThis.exe
2015-11-22 13:00 - 2015-11-20 07:26 - 01595392 _____ (3DMGAME) C:\Users\TRON\Desktop\Assassins Creed Syndicate v1.12-Update 1 Plus 19 Trainer.exe
2015-11-22 11:13 - 2015-11-22 11:52 - 00000000 ____D C:\Users\TRON\Documents\Assassin's Creed Syndicate
2015-11-22 11:13 - 2015-11-22 11:13 - 00000000 ____D C:\Users\TRON\AppData\Roaming\uplay
2015-11-22 11:03 - 2015-11-22 11:03 - 00000696 _____ C:\Users\TRON\Desktop\Assassin s Creed Syndicate.lnk
2015-11-22 11:03 - 2015-11-17 18:00 - 00000019 _____ C:\Users\TRON\Desktop\localization.lang
2015-11-22 11:00 - 2015-11-17 14:06 - 442475541 _____ C:\Users\TRON\Desktop\sounds_rus.pck
2015-11-22 10:59 - 2015-11-17 18:02 - 07132965 _____ C:\Users\TRON\Desktop\sounds_rus_install_3.pck
2015-11-22 10:59 - 2015-11-17 14:04 - 41910038 _____ C:\Users\TRON\Desktop\sounds_rus_install_2.pck
2015-11-22 10:59 - 2015-11-17 14:01 - 07911611 _____ C:\Users\TRON\Desktop\sounds_rus_install_1.pck
2015-11-14 19:03 - 2015-11-14 19:03 - 03048051 _____ (Pentair) C:\Users\TRON\Downloads\screenlogicconnect.exe
2015-11-14 19:03 - 2015-11-14 19:03 - 00002089 _____ C:\Users\Public\Desktop\ScreenLogic Connect.lnk
2015-11-14 19:03 - 2015-11-14 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pentair
2015-11-14 19:03 - 2015-11-14 19:03 - 00000000 ____D C:\Program Files (x86)\Pentair
2015-11-13 20:37 - 2015-11-13 14:34 - 01291776 _____ (3DMGAME) C:\Users\TRON\Desktop\Fallout 4 v1.0-v1.1.30 Plus 20 Trainer.exe
2015-11-13 07:07 - 2015-11-13 07:07 - 00000000 ____D C:\Users\TRON\AppData\Local\Fallout4
2015-11-13 07:04 - 2015-11-13 07:04 - 00000782 _____ C:\Users\TRON\Desktop\Play Fallout 4.lnk
2015-11-13 07:04 - 2015-11-13 07:04 - 00000743 _____ C:\Users\TRON\Desktop\visit www.nosteam.ro.lnk
2015-11-09 11:04 - 2015-11-02 08:16 - 00102704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-11-09 10:56 - 2015-11-02 12:10 - 11130672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-11-09 10:56 - 2015-11-02 12:10 - 01905456 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435887.dll
2015-11-09 10:56 - 2015-11-02 12:10 - 01564976 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435887.dll
2015-11-09 10:56 - 2015-11-02 12:10 - 00388024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-11-09 10:56 - 2015-11-02 12:10 - 00033607 _____ C:\Windows\system32\nvinfo.pb
2015-11-09 10:55 - 2015-11-02 12:10 - 42913912 _____ C:\Windows\system32\nvcompiler.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 37882160 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 22308472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 18361976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 16553376 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 15717672 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 14836064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 13527248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 12034440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 03158736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 02869880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 02490672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00877176 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00862000 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00689272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00673912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00500872 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00422240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00413816 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00369456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00177416 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00151184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-11-09 10:55 - 2015-11-02 12:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-11-09 10:52 - 2015-11-09 10:55 - 300325552 _____ (NVIDIA Corporation) C:\Users\TRON\Downloads\358.87-desktop-win8-win7-winvista-64bit-international-whql.exe
2015-11-07 17:39 - 2015-11-07 17:39 - 00000222 _____ C:\Users\TRON\Desktop\Call of Duty Black Ops III.url
2015-11-07 17:02 - 2015-11-07 17:02 - 00000535 _____ C:\Users\TRON\Desktop\New Text Document (3).txt
2015-11-06 19:31 - 2015-11-22 13:04 - 00000840 _____ C:\Users\Public\Desktop\Speccy.lnk
2015-11-06 19:31 - 2015-11-06 19:31 - 05127432 _____ (Piriform Ltd) C:\Users\TRON\Downloads\spsetup128.exe
2015-11-06 19:31 - 2015-11-06 19:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-11-06 19:31 - 2015-11-06 19:31 - 00000000 ____D C:\Program Files\Speccy
2015-11-04 06:59 - 2015-11-04 20:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-03 21:02 - 2015-01-08 09:12 - 04486144 _____ C:\Users\TRON\Desktop\BorderLands The Pre-Sequel V1.00 Trainer +19 MrAntiFun.EXE
2015-11-03 21:00 - 2014-12-27 03:03 - 00000000 ____D C:\Users\TRON\Desktop\Borderlands_The_Pre-Sequel+28Tr-LNG_v1.0.3
2015-11-03 19:41 - 2015-11-03 20:58 - 00000000 ____D C:\Users\TRON\Desktop\Borderlands The Pre-Sequel v 1.0.6
2015-11-03 19:29 - 2015-11-03 19:29 - 00001116 _____ C:\Users\TRON\Desktop\Borderlands The Pre-Sequel.lnk
2015-11-03 19:29 - 2015-11-03 19:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Catalyst

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-29 21:28 - 2010-11-07 12:02 - 00000000 ____D C:\Program Files\PeerBlock
2015-11-29 21:26 - 2009-07-13 22:20 - 00000000 ____D C:\Windows
2015-11-29 21:25 - 2015-01-10 20:59 - 00000000 ____D C:\acidmax
2015-11-29 21:24 - 2015-08-18 17:52 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-29 20:49 - 2013-02-11 16:08 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-29 14:49 - 2013-02-11 16:08 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-29 13:05 - 2013-10-12 11:00 - 00000544 _____ C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job
2015-11-27 22:46 - 2014-11-16 23:10 - 00000000 ____D C:\Users\TRON\AppData\Roaming\vlc
2015-11-27 19:12 - 2010-11-07 12:13 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-22 13:04 - 2015-10-10 18:16 - 00000949 _____ C:\Users\TRON\Desktop\Logitech Gaming Software 8.57.lnk
2015-11-22 13:00 - 2014-11-18 19:49 - 00000000 ____D C:\Users\TRON\Documents\FLiNGTrainer
2015-11-22 11:03 - 2014-11-17 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2015-11-20 20:38 - 2011-09-23 15:46 - 00000000 ____D C:\Users\TRON\AppData\Local\CrashDumps
2015-11-14 20:24 - 2009-07-13 23:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-14 20:24 - 2009-07-13 23:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-14 17:25 - 2011-05-07 19:57 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-14 17:25 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-13 07:07 - 2010-11-08 14:09 - 00000000 ____D C:\Users\TRON\Documents\My Games
2015-11-11 17:56 - 2009-07-14 00:13 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-11 17:56 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\inf
2015-11-11 03:24 - 2015-08-18 17:52 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-11 03:24 - 2015-08-18 17:52 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-11 03:24 - 2015-08-18 17:52 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-09 11:04 - 2013-10-01 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-09 11:04 - 2012-09-10 15:58 - 00000000 ____D C:\TEMP
2015-11-09 11:04 - 2011-05-07 19:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-07 17:26 - 2011-09-21 04:14 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-11-07 13:32 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF
2015-11-04 22:51 - 2015-01-19 20:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-02 12:10 - 2015-10-08 20:34 - 17515016 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-11-02 12:10 - 2015-10-08 20:34 - 15120736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-11-02 12:10 - 2015-10-08 20:34 - 12770752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-11-02 12:10 - 2015-10-08 20:34 - 03579000 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-11-02 12:10 - 2015-10-08 20:34 - 00468096 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-11-02 08:22 - 2011-01-07 19:50 - 06358648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-11-02 08:22 - 2011-01-07 19:49 - 02983216 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-11-02 08:22 - 2011-01-07 19:49 - 02554672 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-11-02 08:22 - 2011-01-07 19:49 - 00938616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-11-02 08:22 - 2011-01-07 19:49 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-11-02 08:22 - 2010-07-09 15:27 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

==================== Files in the root of some directories =======

2013-11-19 16:28 - 2013-11-20 20:04 - 0000249 _____ () C:\Users\TRON\AppData\Roaming\BreakingPoint_Login.ini
2014-02-17 16:48 - 2014-11-15 15:51 - 0003943 _____ () C:\Users\TRON\AppData\Roaming\LTspiceIV.ini
2013-10-04 08:30 - 2013-10-04 19:30 - 0000026 _____ () C:\Users\TRON\AppData\Roaming\prio.ini
2014-12-22 21:47 - 2014-12-22 21:47 - 0000000 ___SH () C:\Users\TRON\AppData\Local\LumaEmu
2011-11-15 15:42 - 2011-11-15 16:16 - 0002189 _____ () C:\Users\TRON\AppData\Local\TempfixPerms.vbs
2010-11-07 11:39 - 2010-11-07 11:39 - 0000056 ____H () C:\ProgramData\ezsidmv.dat

Some files in TEMP:
====================
C:\Users\TRON\AppData\Local\Temp\02e5b391de59434f4b9c98b716a91237.dll
C:\Users\TRON\AppData\Local\Temp\4e6cf5d72520e51ea54dbf30164d13e3.dll
C:\Users\TRON\AppData\Local\Temp\Bass.dll
C:\Users\TRON\AppData\Local\Temp\Bass.Net.dll
C:\Users\TRON\AppData\Local\Temp\BingBarSetup-Partner.exe
C:\Users\TRON\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpub6zc5.dll
C:\Users\TRON\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\TRON\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\TRON\AppData\Local\Temp\jre-8u40-windows-au.exe
C:\Users\TRON\AppData\Local\Temp\Lng.Dll
C:\Users\TRON\AppData\Local\Temp\mirc738.exe
C:\Users\TRON\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\TRON\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\TRON\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\TRON\AppData\Local\Temp\nvStInst.exe
C:\Users\TRON\AppData\Local\Temp\SkypeSetup.exe
C:\Users\TRON\AppData\Local\Temp\SRLDetectionLibrary8121594306983000867.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-20 00:41

==================== End of FRST.txt ============================


Posted Image

#4 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 29 November 2015 - 08:33 PM

addition

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-11-2015
Ran by TRON (2015-11-29 21:28:50)
Running from C:\Users\TRON\Desktop\New folder
Windows 7 Ultimate Service Pack 1 (X64) (2010-11-07 14:56:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2601419243-2007584176-3567953189-500 - Administrator - Disabled)
Guest (S-1-5-21-2601419243-2007584176-3567953189-501 - Limited - Disabled)
TRON (S-1-5-21-2601419243-2007584176-3567953189-1001 - Administrator - Enabled) => C:\Users\TRON

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Disabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Disabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

"Call of Duty - Ghosts" (HKLM-x32\...\{CE9AC577-B7E6-4909-B476-2E42F3714C00}_is1) (Version: 1.0.0.657763 (Update 5) - )
«Borderlands The Pre-Sequel» 1.0.7.0 (HKLM-x32\...\«Borderlands The Pre-Sequel»_is1) (Version: 1.0.7.0 - Take-Two Interactive Software, Inc)
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
AC Wi-Fi Dual-Band USB Adapter (HKLM-x32\...\{D4169298-7E3E-4C4C-8720-2C5B0457B9D2}) (Version: 1.0.0.15 - Belkin)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.0.16600 - Adobe Systems Inc.)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Reader X (10.1.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM-x32\...\{9ECF7817-DB11-4FBA-9DF1-296A578D513A}) (Version: 11.5.7.609 - Adobe Systems, Inc)
ASRock App Charger v1.0.4 (HKLM\...\ASRock App Charger_is1) (Version:  - ASRock Inc.)
ASRock eXtreme Tuner v0.1.54 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version:  - )
ASRock InstantBoot v1.26 (HKLM-x32\...\ASRock InstantBoot_is1) (Version:  - )
Assassin s Creed Syndicate v.1.12 (HKLM-x32\...\Assassin s Creed Syndicate_is1) (Version:  - )
Assassins Creed IV Black Flag v.1.07 (HKLM-x32\...\Assassins Creed IV Black Flag_is1) (Version:  - )
Batman Arkham Origins (HKLM-x32\...\{F9F98926-BC5F-41C3-A05A-2EB60300332E}) (Version: 6.0 - Black Box)
Battlefield Hardline version 1.0.0.0 (HKLM-x32\...\Battlefield Hardline_is1) (Version: 1.0.0.0 - )
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty Modern Warfare 3 version 1.0 (HKLM-x32\...\{4B7IL77L-LKS1-75B1-CODMW3-18CD6E6334R1}_is1) (Version: 1.0 - Activision)
Call of Duty: Advanced Warfare - Multiplayer (HKLM-x32\...\Steam App 209660) (Version:  - Sledgehammer Games)
Call of Duty: Black Ops III (HKLM-x32\...\Steam App 311210) (Version:  - Treyarch)
Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version:  - Treyarch)
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
Change MAC Address version 2.7.0.83 (HKLM-x32\...\Change MAC Address_is1) (Version: 2.7.0.83 - LizardSystems)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Crysis 3 (HKLM-x32\...\Crysis 3_is1) (Version:  - )
Dark Souls II Scholar of the First Sin v.1.0.1 (HKLM-x32\...\Dark Souls II Scholar of the First Sin_is1) (Version:  - )
DayZ Commander (HKLM-x32\...\{0170930E-68D6-4E85-88B2-82761CDE1F94}) (Version: 0.92.69 - Dotjosh Studios)
DEAD OR ALIVE 5 Last Round (HKLM-x32\...\REVBRE9SQUxJVkU1TGFzdFJvdW5k_is1) (Version: 1 - )
Dead Space 3 (HKLM-x32\...\Dead Space 3_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
DFO (HKLM-x32\...\{C1E5C0FB-527E-42C6-BCA0-0A37A6124AE4}) (Version: 1.01.0000 - Neople)
Dishonored - Game of the Year Edition (HKLM-x32\...\Dishonored - Game of the Year Edition_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, Panky)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
Dragonball Xenoverse (HKLM-x32\...\Dragonball Xenoverse_is1) (Version:  - )
Dying Light Be The Zombie DLC (HKLM-x32\...\RHlpbmdMaWdodA==_is1) (Version: 1 - )
erLT (x32 Version: 1.20.0137 - Logitech, Inc.) Hidden
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.96 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.96 - Etron Technology) Hidden
Fallout New Vegas - Ultimate Edition (HKLM-x32\...\Fallout New Vegas - Ultimate Edition_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, Panky)
Far Cry 4 (HKLM-x32\...\Far Cry 4_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
HEX (HKLM-x32\...\{6EDED3CB-CAC5-4200-A534-CCA1732EAF23}_is1) (Version:  - Gameforge)
HEX (HKLM-x32\...\{E31B651A-B48C-423C-8D0D-855756C8B7E8}_is1) (Version:  - HEX Entertainment)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
ircN (remove only) (HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\ircN) (Version:  - )
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Just Cause 2  Incl. All DLCs MULTI-5 1.0.0.2 (HKLM-x32\...\Just Cause 2  Incl. All DLCs MULTI-5 1.0.0.2) (Version:  - )
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
Logitech SetPoint 5.20 (HKLM\...\{D3120436-1358-4253-9EB2-257FFE8CE1D9}) (Version: 5.20 - Logitech)
Lords of the Fallen v.версия 1.6 (HKLM-x32\...\Lords of the Fallen_is1) (Version:  - )
LTspice IV (HKLM-x32\...\LTspice IV) (Version:  - )
Mad Max, âåðñèÿ 1.0.0.0 (HKLM-x32\...\Mad Max_is1) (Version: 1.0.0.0 - RePack by SEYTER)
Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.0.0.1047 - Marvell)
Mass Effect 3 (HKLM-x32\...\Mass Effect 3_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
MATLAB R2013b (HKLM\...\Matlab R2013b) (Version: 8.2 - The MathWorks, Inc.)
MegaTrainer eXperience V1.2.1.6 (HKLM-x32\...\MegaTrainer eXperience_is1) (Version:  - )
Metal Gear Solid Ground Zeroes ver. 1.0.0.1 (HKLM-x32\...\{55114499-28DF-19GH-37Y0-46KL5M686AC}_is1) (Version: 1.0.0.1 - Konami Digital Entertainment)
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM-x32\...\Steam App 287700) (Version:  - Konami Digital Entertainment)
Metro: Last Light Redux (HKLM-x32\...\Metro: Last Light Redux_is1) (Version:  - Deep Silver)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Middle-earth™ Shadow of Mordor (HKLM-x32\...\Middle-earth™ Shadow of Mordor) (Version: 1.0.1808.19 - WB Games)
mIRC (HKLM-x32\...\mIRC) (Version: 7.38 - mIRC Co. Ltd.)
Mortal Kombat X version Mortal Kombat X (HKLM-x32\...\Mortal Kombat X_is1) (Version: Mortal Kombat X - )
Mozilla Firefox 42.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 en-US)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
MPC-HC 1.7.8 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.8 - MPC-HC Team)
Mumble 1.2.3 (HKLM-x32\...\{B4E343DD-BAAB-4D59-AD9C-DEA0AFE09DF1}) (Version: 1.2.3 - Thorvald Natvig)
NETGEAR WNDA3100v3 (x32 Version: 1.0.0.8 - NETGEAR) Hidden
NETGEAR WNDA3100v3 Genie (HKLM-x32\...\InstallShield_{3DAC7DF2-7E2B-41EF-8E47-96DC70E1925C}) (Version: 1.0.0.8 - NETGEAR)
NVIDIA 3D Vision Driver 358.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 358.87 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Graphics Driver 358.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.87 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
One Piece Pirate Warriors 3: GOLD Edition (HKLM-x32\...\One Piece Pirate Warriors 3: GOLD Edition_is1) (Version:  - )
OpenSource Flash Video Splitter 1.0.0.5 (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: 1.0.0.5 - )
Origin (HKLM-x32\...\Origin) (Version: 8.5.0.4550 - Electronic Arts, Inc.)
Paint.NET v3.5.8 (HKLM\...\{9CF4A37B-A8C4-44D7-8C53-13B9D9594BB3}) (Version: 3.58.0 - dotPDN LLC)
PeerBlock 1.0.0 (r181) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.0.0.181 - PeerBlock, LLC)
Pentair ScreenLogic (HKLM-x32\...\{D10B9BEF-B4DF-4719-8617-E23B1994A9D7}) (Version: 5.2.580.0 - Pentair)
PlanetSide 2 Beta (HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\SOE-PlanetSide 2 Beta) (Version:  - Sony Online Entertainment)
Plantronics® GameCom 780 Software for Dolby® Headphone (HKLM-x32\...\{EB3C9064-9140-4279-9E51-965119402151}) (Version: 1.00.0001 - Plantronics)
Play withSIX (HKLM-x32\...\{D7F3EEAD-183C-47DE-BDC5-593539573F97}) (Version: 1.30.0476 - SIX Networks)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
Prio (HKLM\...\Prio) (Version: 2.0.0.2960 - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
qBittorrent 3.1.12 (HKLM-x32\...\qBittorrent) (Version: 3.1.12 - The qBittorrent project)
QuickTime (HKLM-x32\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Rage (HKLM-x32\...\Rage_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
ReaJPEG Pro 4.0 (HKLM-x32\...\ReaJPEG Pro_is1) (Version:  - )
Realm Of The Titans (HKLM-x32\...\Realm Of The Titans) (Version:  - )
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek)
Resident Evil 6 version 1 (HKLM-x32\...\UmVzaWRlbnQgRXZpbCA2_is1) (Version: 1 - )
RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition (HKLM-x32\...\RivaTuner) (Version: v2.24 MSI Master Overclocking Arena 2009 edition - Alexey Nicolaychuk)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Sleeping Dogs - Definitive Edition (HKLM-x32\...\Sleeping Dogs - Definitive Edition_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
Spec Ops The Line (HKLM-x32\...\Spec Ops The Line_is1) (Version:  - )
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
STAR WARS™ Battlefront™ Beta (HKLM-x32\...\{8A863B64-C9BE-4203-9ED7-92981CF690D3}) (Version: 1.0.3.51560 - Electronic Arts)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Switch Sound File Converter (HKLM-x32\...\Switch) (Version: 4.52 - NCH Software)
System Requirements Lab (HKLM-x32\...\{A92D0DBB-834A-4CAD-A434-F2232C692516}) (Version: 6.1.4.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{F698FE7D-B274-40E8-BB96-51EBE0B8C24C}) (Version: 2.2.3.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.11.1 - TeamSpeak Systems GmbH)
The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\{EAABE756-8A47-440F-AAC7-2F6BFF589169}) (Version: 6.0 - Black Box)
The Evil Within (HKLM-x32\...\The Evil Within_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
The Witcher 3 Wild Hunt v.1.0.2 (HKLM-x32\...\The Witcher 3 Wild Hunt_is1) (Version:  - )
THX TruStudio Pro (HKLM-x32\...\{12FAF8C2-0061-429D-B7B4-FF1C9C58A99C}) (Version: 1.0 - Creative Technology Limited)
TI-Nspire™ CAS Student Software (HKLM-x32\...\{E8CC9064-8382-4D5C-9E55-F88D9541FFC0}) (Version: 3.2.0.1219 - Texas Instruments Inc.)
Tomb Raider version 5.1 (HKLM-x32\...\{B810D8-DFD6-TmbRaid-89A5-CC4D47756DAF}_is1) (Version: 5.1 - Black_Box)
TOUKIDEN Kiwami (HKLM-x32\...\{XXXXXXXX-XXXX-XXXX-XXXX-BLACKBOX0052}) (Version: 6.0 - Black Box)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Warframe (HKLM-x32\...\{42401058-F9E0-4170-99E9-47A643E67FC6}) (Version: 1.0.0 - Digital Extremes)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 5.55 - NCH Software)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinPcap 4.1.1 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinRAR 4.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
WinZip 15.0 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240BE}) (Version: 15.0.9302 - WinZip Computing, S.L. )
XFastUsb (HKLM-x32\...\XFastUsb) (Version:  - )
Zombi (HKLM-x32\...\Zombi_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2601419243-2007584176-3567953189-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\TRON\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File

==================== Restore Points =========================

13-11-2015 18:13:23 Windows Update
14-11-2015 19:03:20 Installed Pentair ScreenLogic
17-11-2015 17:51:56 Windows Update
21-11-2015 17:53:06 Windows Update
25-11-2015 17:51:51 Windows Update
29-11-2015 17:52:11 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {196F94D3-B0A2-475D-A52A-BD9B03542604} - System32\Tasks\{348CA24B-264A-405E-8118-38C185AF8437} => pcalua.exe -a C:\Users\TRON\Desktop\ARMA2_OA_Build_93586.exe -d C:\Users\TRON\Desktop
Task: {1E90A4F7-86D2-4BA1-B74B-66454FB7ED5D} - System32\Tasks\{11739F7A-A7AA-4B9A-9D0F-B20CBB9E2E32} => pcalua.exe -a "C:\Program Files (x86)\Steam\SteamApps\common\arma 2\BEsetup\setup_BattlEyeARMA2.exe" -d "C:\Program Files (x86)\Steam\SteamApps\common\arma 2\BEsetup"
Task: {239694A5-E3D9-45EB-9532-15BD9826FA4F} - System32\Tasks\{196253D2-B4B7-481A-9B4A-2E946D25ABB9} => pcalua.exe -a "C:\Users\TRON\Downloads\Games\WH40K2 (Retribution) Extract\Redist\aux_installer.exe" -d "C:\Users\TRON\Downloads\Games\WH40K2 (Retribution) Extract\Redist"
Task: {279CB54F-23D7-438E-A597-71603B7877BF} - System32\Tasks\{E210310C-BE48-4F19-92DA-D2C9446DCA0E} => pcalua.exe -a E:\Drivers\Audio\REALTEK\Win7-64_Win7_Vista64_Vista_XP64_XP(R251)\Setup.exe -d E:\Drivers\Audio\REALTEK\Win7-64_Win7_Vista64_Vista_XP64_XP(R251)\ -c /s /f2C:\Users\TRON\AppData\Local\Temp\HDA.log /z[-rpC:\Users\TRON\AppData\Local\Temp\HDASetup.log]
Task: {2EB8D673-8634-492A-B347-6BD3AB30FCF8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {312FBFFB-A2B2-4AF4-A3A7-5D8C5805C71B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)

Task: {3978CF28-E070-46C1-A473-7B23FD9FBECE} - System32\Tasks\{06EE6569-9EB5-4A95-B9DF-60A1DB6FBFFF} => pcalua.exe -a H:\Setups\ME(7.0.4.1197)\setup.exe -d H:\Setups\ME(7.0.4.1197)
Task: {39DB97C6-33F9-44B9-9A24-32859F3FA5CA} - System32\Tasks\{85A1638E-D38A-4F96-8F4C-6E5B2DCF9724} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {4C833122-D5B6-4D00-9A64-BDBD238C1E99} - System32\Tasks\MATLAB R2013b Startup Accelerator => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe [2013-08-05] ()
Task: {4D356BF4-C0B4-4378-A3C4-EC7CA6B34516} - System32\Tasks\{ECB47500-1E1D-4426-8B83-2A79B62BA441} => pcalua.exe -a "C:\Users\TRON\Desktop\Games\Hero\Hero Editor.exe" -d C:\Users\TRON\Desktop\Games\Hero
Task: {4D72BF9A-AB6D-44CB-BDDA-9D348CB003E1} - System32\Tasks\{D6DD6344-50FE-490B-869A-CFC53E37737C} => pcalua.exe -a C:\Users\TRON\Downloads\Diablo-III-8370-enUS-Installer-downloader.exe -d C:\Users\TRON\Downloads
Task: {4EB3C89E-7A1E-472E-8050-0B7F6D110692} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {5EF5A75E-9317-4B59-AF4A-B977EC58AAB7} - System32\Tasks\{90574B83-E7F3-4C2D-B1CC-FDEFD9EFE59B} => pcalua.exe -a "C:\Program Files (x86)\ComcastUI\Desktop Software\bin\kui.exe" -d "C:\Program Files (x86)\ComcastUI\Desktop Software\bin\"
Task: {754CC17E-3ED2-4C5D-9455-32B63016D428} - System32\Tasks\{08B63ADB-DA7B-4E7C-8364-DFE0EBB73870} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
Task: {7FA05C8C-CE1E-47DC-A8C0-05699F68F700} - System32\Tasks\{903612BA-1B90-4255-8D78-9AFD2B859897} => C:\Program Files (x86)\AVG\AVG10\avgui.exe
Task: {832C6478-5979-4681-B048-85B43483A89A} - System32\Tasks\{4DE6723E-79EC-4B70-932B-DB5C44A7DD57} => pcalua.exe -a "C:\Program Files (x86)\AVG\AVG10\avgmfapx.exe" -c /AppMode=SETUP /Uninstall

Task: {8D6EFBFC-8149-45DD-A679-353739C63042} - System32\Tasks\{4F96D9F2-3400-4ECC-9583-32956F0F49A9} => pcalua.exe -a "C:\Users\TRON\Downloads\dotnetfx3setup (1).exe" -d C:\Users\TRON\Downloads
Task: {9A80504F-97B6-4AAA-B498-B07765FD80F2} - System32\Tasks\{CE5469D9-CE84-4EC9-B63D-8C8514DF2929} => pcalua.exe -a "C:\Program Files (x86)\Origin\EAProxyInstaller.exe" -d C:\PROGRA~3\Origin\DOWNLO~1\{CP_GU~1 -c /proxyFullPath=C:\PROGRA~3\Origin\DOWNLO~1\{CP_GU~1\ORIGIN~1.EXE /proxyCmdLineArgs= /proxyCurrentDir=C:\PROGRA~3\Origin\DOWNLO~1\{CP_GU~1 /proxyShowUI=1 /proxyRegPath=C:\ProgramData\Origin\DownloadCache\staging.reg /proxyWait=1
Task: {A1965552-3CB4-4137-879C-B11F8B394C86} - System32\Tasks\{9281ED4C-9C9E-4099-992C-05894D884D9D} => C:\Program Files (x86)\Steam\SteamApps\common\the walking dead\WalkingDead101.exe
Task: {A5F0CAB7-907A-4361-BCF8-14FAAE37F88A} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: {C5250554-2A64-4CFB-9052-1AD3BD15AA83} - System32\Tasks\{47D8E142-9F9D-40CA-8491-DADB3C0EA819} => pcalua.exe -a "C:\Users\TRON\Downloads\Diablo 2 LOD\SETUP.EXE" -d "C:\Users\TRON\Downloads\Diablo 2 LOD"
Task: {D499294A-5A88-470B-BF8F-C0B3100F2B15} - System32\Tasks\{F1570431-D70E-4585-8C05-367345A8E444} => pcalua.exe -a "C:\Program Files\TeamSpeak 3 Client\plugins\ts3overlay\InstallHook.exe" -d "C:\Program Files\TeamSpeak 3 Client\plugins\ts3overlay\" -c 10000

Task: {D79B680A-EF01-4969-87A6-FC7B1CC9265B} - System32\Tasks\{AC6D4DC2-F79E-4F57-9BEC-0CD3E96BF3F3} => pcalua.exe -a C:\Users\TRON\Desktop\pbsetup.exe -d C:\Users\TRON\Desktop
Task: {D8588ABF-14A2-4A01-B542-A501CB45551D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {DD8492A6-92DA-44FC-A500-2B96700216BD} - System32\Tasks\{D704E069-F705-4EE7-BBC9-A0B6B9B3F532} => pcalua.exe -a C:\Users\TRON\Downloads\doom31.3.1.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {E76B217E-8242-4E85-9E0E-F7D971923E49} - System32\Tasks\XboxStatTask => C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [2009-09-30] (Microsoft Corporation)
Task: {E9A54746-613B-4238-8CBF-ADA8A126AAE9} - System32\Tasks\{8C8E840D-C860-4E4E-9D33-D13BAB04A771} => C:\Program Files (x86)\TI Education\TI-Nspire CAS Student Software\TI-Nspire CAS Student Software.exe [2012-06-11] (Texas Instruments Incorporated)
Task: {EC84382F-E2F0-45C3-AC89-2ED722E581CE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {FD050026-958D-4A83-938B-856A1772DD8C} - System32\Tasks\{4EE77AA4-F19C-47A4-887C-0BB6D4A0CDAF} => pcalua.exe -a "C:\Users\TRON\Downloads\Games\Oblivion Extract\Shivering Isles\Setup\setup.exe" -d "C:\Users\TRON\Downloads\Games\Oblivion Extract\Shivering Isles\Setup"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job => C:\Program Files\MATLAB\R2013b\bin\win64\MATLABStartupAccelerator.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\TRON\Desktop\games\game - DOA5 Shortcut.lnk -> H:\DEAD OR ALIVE 5 Last Round\game.bat (No File) <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2011-09-26 22:08 - 2015-11-02 08:22 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-03-15 11:48 - 2012-02-17 19:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2012-12-14 08:18 - 2015-02-04 21:20 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-09-18 02:23 - 2014-09-18 02:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-10-14 13:51 - 2014-10-14 13:51 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 02:23 - 2014-09-18 02:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-10-14 13:51 - 2014-10-14 13:51 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-10-09 13:14 - 2014-10-09 13:14 - 00122880 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v3\Ralink.dll
2015-01-10 20:59 - 2004-03-04 19:02 - 00843776 _____ () C:\acidmax\libeay32.dll
2015-01-10 20:59 - 2004-03-04 18:59 - 00159744 _____ () C:\acidmax\ssleay32.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00113171 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 02396691 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00268307 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00027667 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00031251 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00066579 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 02043411 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00100371 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00244243 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00076307 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_vdr_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00045587 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00060947 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00531475 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00708627 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00114195 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00040467 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libstream_filter_rar_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00014867 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00133139 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 01512467 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00296979 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 01248787 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00054291 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00038419 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libglobalhotkeys_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 11148307 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00383507 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libupnp_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00118803 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00021011 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libpodcast_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00017427 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libmediadirs_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00014867 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libwindrive_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00189971 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00091667 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00067603 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00077331 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00025619 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00074259 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00016403 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00023059 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00021523 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00929299 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 01194003 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00144403 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libogg_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00292371 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00017939 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 01280019 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00018451 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00336403 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00344595 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00198675 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00027155 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00015891 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 01393171 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00146451 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00022035 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00733203 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00018963 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00026131 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00171027 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libopus_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00019475 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liba52_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00019987 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 10447379 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00746515 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\text_renderer\libfreetype_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00026643 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\sse2\libi420_yuy2_sse2_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00019987 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\mmx\libi420_yuy2_mmx_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00587283 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libswscale_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00113683 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\sse2\libi420_rgb_sse2_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00027667 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\sse2\libi422_yuy2_sse2_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00019987 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\mmx\libi422_yuy2_mmx_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00053779 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\mmx\libi420_rgb_mmx_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00016915 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00015379 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00032275 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00018963 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00020499 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00017427 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00015379 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00015379 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00013843 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libyuvp_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00068115 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00013843 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00018963 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 01496083 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00130579 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00168979 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00058899 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00019475 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00013331 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00014355 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00014867 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00014355 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00015379 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2014-07-22 18:29 - 2014-07-22 18:29 - 00025619 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2015-11-11 03:24 - 2015-11-11 03:24 - 17604296 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\sony.com -> sony.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\TRON\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AntiSpywareService => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: prio_svc => 2
MSCONFIG\Services: rpcapd => 3
MSCONFIG\Services: RunSwUSB => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: UmRdpService => 3
MSCONFIG\Services: WSAC950 => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AC950.lnk => C:\Windows\pss\AC950.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SetPointII.lnk => C:\Windows\pss\SetPointII.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^TRON^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk => C:\Windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: ComcastAntispyClient => "C:\Program Files (x86)\comcasttb\ComcastSpywareScan\ComcastAntispy.exe" /hide
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: GamecomSound => C:\Program Files\Plantronics\GameCom780\GameCom780.exe
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Kernel and Hardware Abstraction Layer => KHALMNPR.EXE
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Nvtmru => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
MSCONFIG\startupreg: PeerBlock => C:\Program Files\PeerBlock\peerblock.exe
MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RivaTunerStartupDaemon => "C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe" /S
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: THX Audio Control Panel => "C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" /r
MSCONFIG\startupreg: THXCfg64 => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
MSCONFIG\startupreg: UpdReg => C:\Windows\UpdReg.EXE
MSCONFIG\startupreg: {c06cbc77-4cba-e67b-f0ab-9c488764be6d} => "C:\Users\TRON\AppData\Local\{c06cbc77-4cba-e67b-f0ab-9c488764be6d}\{c06cbc77-4cba-e67b-f0ab-9c488764be6d}.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B58E0559-7438-4209-877B-B62D49E96390}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{A38792FA-5BF3-49C7-828E-36A417CE74AA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2953974C-DD12-4956-A4A8-C40E75527180}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{538C98B6-E4AF-4D68-8F46-E5B6D9819755}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{5019B3C7-11FF-42B3-825F-F4D3498DBB4B}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{7C542D5D-C650-4365-A891-487D6B1174C7}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{3E2971CE-ECC6-4B43-9514-F3B963D6AD90}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [TCP Query User{C3A48F0B-FAB9-4770-A264-90FB958A74F5}C:\program files (x86)\ti education\ti-nspire cas student software\ti-nspire cas student software.exe] => (Allow) C:\program files (x86)\ti education\ti-nspire cas student software\ti-nspire cas student software.exe
FirewallRules: [UDP Query User{0E465E6B-2A2D-4EC1-90F1-7D1314209BE5}C:\program files (x86)\ti education\ti-nspire cas student software\ti-nspire cas student software.exe] => (Allow) C:\program files (x86)\ti education\ti-nspire cas student software\ti-nspire cas student software.exe
FirewallRules: [{57C98C64-2652-47F8-A9F0-BA947F4BD543}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{33E96392-FCD7-4182-81B3-384F4AEF13BB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [TCP Query User{B9E47B9A-02C4-4664-93FF-8DC199424045}C:\program files (x86)\starcraft ii\starcraft ii.exe] => (Allow) C:\program files (x86)\starcraft ii\starcraft ii.exe
FirewallRules: [UDP Query User{8B4C8E89-EB71-4F47-911D-DA239D96FBB0}C:\program files (x86)\starcraft ii\starcraft ii.exe] => (Allow) C:\program files (x86)\starcraft ii\starcraft ii.exe
FirewallRules: [TCP Query User{7E673B0C-824A-4989-B85F-B3FCEE7A3D3F}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe
FirewallRules: [UDP Query User{F2C3A2E1-239A-4D38-B0C6-1CC299BAEA93}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe
FirewallRules: [{EECD007C-A1C9-4B90-9B76-E1A72E258372}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF078345-35D9-4F9C-95B4-CFAF04584B9D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{C17D70F8-E884-4435-9C17-2530669A12B0}C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe
FirewallRules: [UDP Query User{1C42D9CD-60C9-4812-86E5-F5FE1449C1F4}C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe
FirewallRules: [TCP Query User{785BA47C-567D-45FC-8340-5C56288403BB}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{7932B033-4A74-4139-8F8D-71B1239F1307}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{663B940A-8898-4866-A766-01F16D2E116B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{9E8CEEB4-BEAC-47F8-A581-988D636E9EAB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [TCP Query User{F08187E2-9914-4CA8-BA42-CDA8D3A8F2D0}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [UDP Query User{34AE8667-A259-42D1-B63E-2ADFA99590C9}C:\program files\comicrack\comicrack.exe] => (Allow) C:\program files\comicrack\comicrack.exe
FirewallRules: [TCP Query User{3887919B-885E-4D59-A331-BBED294837FF}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe
FirewallRules: [UDP Query User{DF83785A-E196-47BE-AACE-4469F77DEB30}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe
FirewallRules: [{8CBD60E3-DB80-4BA5-BA54-57649A5AD2B6}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{23E5D65A-995D-4A23-8DB4-B508864AACE1}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [TCP Query User{277B8644-0EBF-4DA6-982E-24ACD1457A7E}C:\program files (x86)\starcraft ii\versions\base22612\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base22612\sc2.exe
FirewallRules: [UDP Query User{90461E3A-A41F-4CBF-B3B5-89183AEBAA37}C:\program files (x86)\starcraft ii\versions\base22612\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base22612\sc2.exe
FirewallRules: [TCP Query User{A1A01ADF-1B5A-4188-953B-863BFC87BDF3}C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe
FirewallRules: [UDP Query User{99A6E819-D7A6-45F9-9E4B-5D0C302D9A16}C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2 beta\planetside2.exe
FirewallRules: [TCP Query User{2AB7B035-26CE-4B2F-B6A4-62D518E5BD57}C:\program files (x86)\ti education\ti-nspire cas student software\ti-nspire cas student software.exe] => (Allow) C:\program files (x86)\ti education\ti-nspire cas student software\ti-nspire cas student software.exe
FirewallRules: [UDP Query User{842F30AD-E57B-40FD-B0C2-FC50A54D6BD7}C:\program files (x86)\ti education\ti-nspire cas student software\ti-nspire cas student software.exe] => (Allow) C:\program files (x86)\ti education\ti-nspire cas student software\ti-nspire cas student software.exe
FirewallRules: [TCP Query User{628FC9B3-3BBD-4450-8C66-6D52DE34A3C4}C:\program files (x86)\common files\ti shared\jre\3.2.0\bin\java.exe] => (Allow) C:\program files (x86)\common files\ti shared\jre\3.2.0\bin\java.exe
FirewallRules: [UDP Query User{97E9BE64-6E64-4A58-B352-A448D377D40A}C:\program files (x86)\common files\ti shared\jre\3.2.0\bin\java.exe] => (Allow) C:\program files (x86)\common files\ti shared\jre\3.2.0\bin\java.exe
FirewallRules: [{F0EF58BB-6DFB-4488-9190-A8B32C89E727}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{BFBB70AC-ABDE-492B-B80A-9B239D0C0044}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{155E2C33-3831-43A4-8948-32FE64F23193}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{590C8E64-1CA4-4228-BECF-5C9EDF32BF56}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [TCP Query User{C54B3CF4-A3C9-4F6F-B716-12B3335BFFF1}C:\program files (x86)\baldur's gate enhanced edition\bgee.exe] => (Allow) C:\program files (x86)\baldur's gate enhanced edition\bgee.exe
FirewallRules: [UDP Query User{EB816CF9-2F9F-4D03-A5AB-4DD8FE960985}C:\program files (x86)\baldur's gate enhanced edition\bgee.exe] => (Allow) C:\program files (x86)\baldur's gate enhanced edition\bgee.exe
FirewallRules: [{9B0CED53-10D6-4CC9-AC5C-1FC2F3C510A3}] => (Allow) C:\Program Files (x86)\Dotjosh Studios\DayZ Commander\Current\DayZCommander.exe
FirewallRules: [{C5CD0140-2DB0-49A7-BB9F-EF3ACFDB7DD6}] => (Allow) C:\Program Files (x86)\Dotjosh Studios\DayZ Commander\Current\DayZCommander.exe
FirewallRules: [{61C811D8-5D95-45F9-8902-2587F0FAB058}] => (Allow) C:\Program Files (x86)\Dotjosh Studios\DayZ Commander\Current\DayZCommander.exe
FirewallRules: [{827F2481-34D3-45CB-88E2-038B9F08D47A}] => (Allow) C:\Program Files (x86)\Dotjosh Studios\DayZ Commander\Current\DayZCommander.exe
FirewallRules: [{6EA69B3E-FA2B-425F-B626-899F5BF52FCA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{EFC15BDD-4474-48DB-823F-F3F6FFE5FA04}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [TCP Query User{A63947E4-F2D0-4F54-A95E-5774DB37AF2C}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [UDP Query User{A112E3A9-6609-44A1-A8E1-8BC610B8CE8D}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [TCP Query User{8ADF85B4-EA85-415B-A46B-0D6C5E100787}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{E1B19CCC-553B-48B9-8B70-D0C2D733784B}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{B46A57E5-7139-4F97-9CD5-289E34F4D2A9}] => (Allow) LPort=2313
FirewallRules: [{263135D9-5E43-4EF1-A9D2-7F3B000387F7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B94C6BEC-E1AF-49D5-9D88-061187C7B7DF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CD70F87B-0FF4-4874-9693-F34116447445}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{9B72453D-2ECE-4714-A7BE-B211CAA8A657}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{A5C31A79-FB13-4EB8-9D89-83130A42439C}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{866F3188-2EED-41F8-B0BF-925146CE6611}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{86565D1B-ECF2-45D0-B73C-52D50FBD7F45}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{56844915-BC15-42F2-8A38-533FD8EDEA76}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6B6AA444-B7D6-4289-B655-8F2FFBDF33AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{72AF2073-A813-4FA5-9889-095D0D075A8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F83A3D88-783D-4802-9FF0-483D04793A69}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3940CFCC-FC9C-4A3C-A219-201BFF9443BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6B8DAEE7-6F05-4808-820B-D84D0B3C94FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9CEF0249-D02D-47F5-86F0-923E9CC5A035}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{04500A0C-901C-478B-BFCB-83E2DAFF2064}C:\breaking point\breakingpoint.exe] => (Allow) C:\breaking point\breakingpoint.exe
FirewallRules: [UDP Query User{358EE52E-0AA9-4CDC-99C6-B96F437262F2}C:\breaking point\breakingpoint.exe] => (Allow) C:\breaking point\breakingpoint.exe
FirewallRules: [TCP Query User{017BB030-5BBD-411D-BB1A-539B21034036}C:\users\tron\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\tron\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{E9F24B4E-9238-4CBE-BEA7-E6DC3DD55A58}C:\users\tron\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\tron\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{94885656-0FB1-4CCF-9B63-86BC72CF9EE0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{25FD0F5A-02C0-4F41-9168-BF51E32819A4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{3D2BEF1E-D986-47C4-AC8E-FA05E9F93B43}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\Benchmark.bat
FirewallRules: [{8B9EE4E0-E5A5-4358-9FBD-27100726210A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\Benchmark.bat
FirewallRules: [{1823FE87-45F8-4355-8CBE-3AF090A6B926}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{F17D35B9-3BF1-416A-89BA-0BCBE1BAA60A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{0BC72CED-5258-4504-89F1-23E2019F405A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\Benchmark.bat
FirewallRules: [{8CED4F87-CE13-47CC-9F37-E7B8E4FC3BED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\Benchmark.bat
FirewallRules: [{435D45BC-00A8-4352-B539-EE5C52BE7D18}] => (Allow) %SystemDrive%\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{EA25EDB2-7756-433E-AD87-675F71B01482}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D53DFD64-C3C2-4CD4-8D8C-99CBC965AE07}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CBC1EEA8-018B-44AE-918A-99C178BE9CF3}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3E00E7FF-A4B7-4C44-BE4C-015600D51C77}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{304D0B92-073F-444B-9819-C3B8FFF31A00}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{15CFE5E0-0E9A-427B-BF86-7354917AFA7A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{AD02D89D-8A3F-4644-937F-1E0F49E08E19}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{C4AAE3AB-9970-4285-9B5B-80AA47E1BFA0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [TCP Query User{9CB7350D-502D-44C3-A5DA-688CAF711B26}H:\resident evil 6\bh6.exe] => (Block) H:\resident evil 6\bh6.exe
FirewallRules: [UDP Query User{AAF9AAEF-59CB-42F5-AA7E-1CE2C871DC19}H:\resident evil 6\bh6.exe] => (Block) H:\resident evil 6\bh6.exe
FirewallRules: [TCP Query User{941E9BB2-74B2-4C95-AE7F-18C50BDF19F8}H:\far cry 4\bin\farcry4.exe] => (Allow) H:\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{E323CAB4-F854-4F55-95E3-36F320DF061C}H:\far cry 4\bin\farcry4.exe] => (Allow) H:\far cry 4\bin\farcry4.exe
FirewallRules: [{809C6E4C-689B-4B77-84C7-80CADE72F8CE}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{842058B6-F313-430C-8BFB-4EC122A976FC}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{37BF9FFB-5EC9-4D82-92AD-AFB1D5124D44}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{71A988E8-E65F-4B34-8B06-630FFDE7BE36}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9D331F5C-ACD5-47CC-9365-3AC0110B2CFE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5DF542E8-EB50-4B63-B959-73AA94DD4E3A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{C1EAC17F-418C-4FE3-BA1E-AF12F307335B}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{DEAF842D-6E20-4E06-82E2-E838296C4CD8}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [TCP Query User{7B5B6A95-C0E4-4998-8837-281B6E2F25E2}C:\ircn\system\mirc.exe] => (Allow) C:\ircn\system\mirc.exe
FirewallRules: [UDP Query User{86B7843C-7098-45ED-8359-433C66D66AB5}C:\ircn\system\mirc.exe] => (Allow) C:\ircn\system\mirc.exe
FirewallRules: [TCP Query User{889F3E36-F362-4E6C-BFCA-2775B0BC3C3B}H:\wolfenstein the new order\wolfneworder_x64.exe] => (Block) H:\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{71FEB16F-0D0F-40A5-BCC5-21475B3D4803}H:\wolfenstein the new order\wolfneworder_x64.exe] => (Block) H:\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [{5F975B5B-26B3-4924-B0F8-FC1CD99E7F70}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{92A6413F-E08F-4F8D-A38A-798CF8A7A413}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{B5CC5802-55A6-4F86-A292-375F293B05F9}C:\users\tron\downloads\2.2.1.25302_utorrent_2.2.1.25302.exe] => (Allow) C:\users\tron\downloads\2.2.1.25302_utorrent_2.2.1.25302.exe
FirewallRules: [UDP Query User{47550B25-3EAB-457F-90BC-9A7F99E7BD03}C:\users\tron\downloads\2.2.1.25302_utorrent_2.2.1.25302.exe] => (Allow) C:\users\tron\downloads\2.2.1.25302_utorrent_2.2.1.25302.exe
FirewallRules: [{7A475A9B-E2A2-4922-B338-91566B8495B9}] => (Allow) H:\WarFrame\Downloaded\Public\Warframe.exe
FirewallRules: [{BF0C61C2-753C-443F-8516-635E7854F4B9}] => (Allow) H:\WarFrame\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{C6EE21E0-D40F-4DED-9589-7A2F7668D251}] => (Allow) H:\WarFrame\Downloaded\Public\Warframe.exe
FirewallRules: [{01435848-3D30-46A8-9CA7-29ADE5E1C109}] => (Allow) H:\WarFrame\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{01FC9A6E-7173-4737-A1C8-E3821ECE4A7F}] => (Allow) H:\WarFrame\Downloaded\Public\Warframe.exe
FirewallRules: [{7675B780-3F25-4EBF-A501-939B4FB45CBA}] => (Allow) H:\WarFrame\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{7E50F049-E132-4147-8902-E9D397F0F162}] => (Allow) C:\Users\TRON\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{00308357-1A70-4DFE-B85C-5920C2660A15}] => (Allow) H:\WarFrame\Downloaded\Public\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{86862870-AA86-41CF-ABAD-0EA60AB7BA7C}C:\acidmax\mirc.exe] => (Allow) C:\acidmax\mirc.exe
FirewallRules: [UDP Query User{C2D7C3C7-B92A-42E2-A878-E5B510A0EB68}C:\acidmax\mirc.exe] => (Allow) C:\acidmax\mirc.exe
FirewallRules: [{5207CD7B-74E6-49E8-8C17-67618A37D548}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BE83AA87-A6C3-4579-BB72-1EE41B3BF687}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{AD376211-C191-4657-8082-A27F6BCB0A1B}H:\dying light\dyinglightgame.exe] => (Block) H:\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{270100B9-358B-4FF1-90F8-202C4D640E5B}H:\dying light\dyinglightgame.exe] => (Block) H:\dying light\dyinglightgame.exe
FirewallRules: [{94561933-D7CE-4B01-9BE2-8456334A5463}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{845F80B4-0DA3-4BD6-9F24-C87C45B5ABE9}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F5A9DF9B-36FC-4500-B64D-24478389A67E}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{1781686D-DD5B-4DA0-BDE8-2C26692906C6}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3A176B0D-06C8-4D82-862A-4D5B493A2141}] => (Allow) H:\Evolve\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{CBBB9530-FF87-4E3C-AED8-B6457B0645E8}] => (Allow) H:\Evolve\Bin64_SteamRetail\Evolve.exe
FirewallRules: [TCP Query User{52DEAC75-35E4-46C5-BC39-E60EB974251F}H:\evolve\bin64_steamretail\evolve.exe] => (Block) H:\evolve\bin64_steamretail\evolve.exe
FirewallRules: [UDP Query User{2E33A51A-2148-4367-B20D-3B9E6A95229C}H:\evolve\bin64_steamretail\evolve.exe] => (Block) H:\evolve\bin64_steamretail\evolve.exe
FirewallRules: [TCP Query User{E2B96667-76CF-4489-B840-35A604641763}H:\black op\call of duty black ops 2\sp.exe] => (Allow) H:\black op\call of duty black ops 2\sp.exe
FirewallRules: [UDP Query User{5847FCF9-D31C-46FD-B55B-6990CE94D1F8}H:\black op\call of duty black ops 2\sp.exe] => (Allow) H:\black op\call of duty black ops 2\sp.exe
FirewallRules: [{81D76680-811D-448A-8A7C-34361E6149B1}] => (Allow) H:\Call of Duty - Ghosts\iw6sp64_ship.exe
FirewallRules: [{E198606C-876A-4B9A-BE05-601062128BE8}] => (Allow) H:\Call of Duty - Ghosts\iw6sp64_ship.exe
FirewallRules: [TCP Query User{16E63871-9A77-4925-A86E-9C57FE783E9D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{DC02D04F-8D72-4EBD-A244-642ACD03905F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{BADFA755-4F96-4E79-A9FC-EDE1C8793FA8}H:\mass effect 3\binaries\win32\masseffect3.exe] => (Block) H:\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [UDP Query User{1050A18C-27C6-4C3B-BA9B-988D1C3A7B95}H:\mass effect 3\binaries\win32\masseffect3.exe] => (Block) H:\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [TCP Query User{85DE8D16-6E55-4E2F-99B6-B06A95DF6562}H:\neople\dfo\dfo.exe] => (Allow) H:\neople\dfo\dfo.exe
FirewallRules: [UDP Query User{BBFEB3E9-9D1E-4D36-8507-F20DD97B0970}H:\neople\dfo\dfo.exe] => (Allow) H:\neople\dfo\dfo.exe
FirewallRules: [{47E02E10-502C-4776-A85C-2300EF4ABD52}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{C88DA85B-4FAB-4195-87CE-00D69C154565}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [TCP Query User{B9F3A9AC-D2BE-4894-B637-B01D5AFDD734}H:\ gta v\gta5.exe] => (Allow) H:\ gta v\gta5.exe
FirewallRules: [UDP Query User{0FFD5384-9079-4E33-A425-78C9788B3C98}H:\ gta v\gta5.exe] => (Allow) H:\ gta v\gta5.exe
FirewallRules: [TCP Query User{1DCE228C-4306-4C19-BFE7-C8EA01BF8908}H:\spec ops the line\binaries\win32\specopstheline.exe] => (Block) H:\spec ops the line\binaries\win32\specopstheline.exe
FirewallRules: [UDP Query User{EC02A50B-CB6E-42F8-B544-72576EDF871E}H:\spec ops the line\binaries\win32\specopstheline.exe] => (Block) H:\spec ops the line\binaries\win32\specopstheline.exe
FirewallRules: [TCP Query User{45AE271E-E69E-46B8-A7CF-57CB1F6237E5}H:\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Block) H:\dishonored - game of the year edition\binaries\win32\dishonored.exe
FirewallRules: [UDP Query User{D85ADD37-A2B9-475F-A8E7-6D06A580D0C5}H:\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Block) H:\dishonored - game of the year edition\binaries\win32\dishonored.exe
FirewallRules: [{D625ACF1-D3F7-42A6-9AAF-CE0FC77A58E8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{C56E0383-28B4-4A90-BC2C-8697B4D16676}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{EF2567A3-8647-488E-8CE4-9C2CFD4DAED0}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{4B39A82F-FF38-489E-809A-AE5C57538B62}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{375B7070-5098-4E79-9759-F6FE0C0AA973}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{9A5E941E-28A2-4476-A1B6-874F14CBB1AA}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront Beta\starwarsbattlefront.exe
FirewallRules: [{0532AE2D-962B-494E-B5AC-32A37A8FA9BE}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront Beta\starwarsbattlefront.exe
FirewallRules: [TCP Query User{BF05F2C1-F368-46BB-88D3-93B04F2EFDE4}H:\r.g. catalyst\borderlands the pre-sequel\binaries\win32\borderlandspresequel.exe] => (Block) H:\r.g. catalyst\borderlands the pre-sequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{0B713EF1-3D47-4BDF-8B93-E9DDA6434E43}H:\r.g. catalyst\borderlands the pre-sequel\binaries\win32\borderlandspresequel.exe] => (Block) H:\r.g. catalyst\borderlands the pre-sequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [{B775921D-859D-4122-82BD-3D4F629D155B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C40BD4BE-4BB5-4E10-A6F8-DCD9B0393DB5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{661FF5FB-5836-4891-9E0F-4A04BD1E27B4}] => (Allow) H:\SteamLibrary\steamapps\common\Call of Duty Black Ops III\BlackOps3.exe
FirewallRules: [{B039DF3D-D001-4E33-910F-DDB8965E0801}] => (Allow) H:\SteamLibrary\steamapps\common\Call of Duty Black Ops III\BlackOps3.exe
FirewallRules: [{500A4D52-68B1-446C-B879-3C57C121CE62}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/20/2015 08:38:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 42.0.0.5780, time stamp: 0x5632d0a4
Faulting module name: mozglue.dll, version: 42.0.0.5780, time stamp: 0x5632ba58
Exception code: 0x80000003
Fault offset: 0x0000ed50
Faulting process id: 0xc94
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (11/19/2015 09:38:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 42.0.0.5780, time stamp: 0x5632d0a4
Faulting module name: mozglue.dll, version: 42.0.0.5780, time stamp: 0x5632ba58
Exception code: 0x80000003
Fault offset: 0x0000ed50
Faulting process id: 0x14a0
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (11/19/2015 09:09:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Fallout4.exe, version: 1.1.29.0, time stamp: 0x5627e510
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0x40000015
Fault offset: 0x00000000000740da
Faulting process id: 0x75c
Faulting application start time: 0xFallout4.exe0
Faulting application path: Fallout4.exe1
Faulting module path: Fallout4.exe2
Report Id: Fallout4.exe3

Error: (11/18/2015 07:01:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 42.0.0.5780, time stamp: 0x5632d0a4
Faulting module name: mozglue.dll, version: 42.0.0.5780, time stamp: 0x5632ba58
Exception code: 0x80000003
Fault offset: 0x0000ed50
Faulting process id: 0xef4
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (11/16/2015 09:01:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Fallout4.exe, version: 1.1.29.0, time stamp: 0x5627e510
Faulting module name: Fallout4.exe, version: 1.1.29.0, time stamp: 0x5627e510
Exception code: 0xc000041d
Fault offset: 0x00000000016c723e
Faulting process id: 0x670
Faulting application start time: 0xFallout4.exe0
Faulting application path: Fallout4.exe1
Faulting module path: Fallout4.exe2
Report Id: Fallout4.exe3

Error: (11/12/2015 08:51:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: BorderlandsPreSequel.exe, version: 1.0.50.51527, time stamp: 0x55e90741
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x32ad0063
Faulting process id: 0x1094
Faulting application start time: 0xBorderlandsPreSequel.exe0
Faulting application path: BorderlandsPreSequel.exe1
Faulting module path: BorderlandsPreSequel.exe2
Report Id: BorderlandsPreSequel.exe3

Error: (11/10/2015 09:08:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: BorderlandsPreSequel.exe, version: 1.0.50.51527, time stamp: 0x55e90741
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x33580063
Faulting process id: 0x1450
Faulting application start time: 0xBorderlandsPreSequel.exe0
Faulting application path: BorderlandsPreSequel.exe1
Faulting module path: BorderlandsPreSequel.exe2
Report Id: BorderlandsPreSequel.exe3

Error: (11/09/2015 11:34:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GFExperience.exe, version: 17.12.8.0, time stamp: 0x54b8aef5
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xe0434352
Fault offset: 0x0000c42d
Faulting process id: 0x7d0
Faulting application start time: 0xGFExperience.exe0
Faulting application path: GFExperience.exe1
Faulting module path: GFExperience.exe2
Report Id: GFExperience.exe3

Error: (11/09/2015 11:34:06 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: GFExperience.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
   at System.Reactive.Concurrency.AsyncLock.Wait(System.Action)
   at System.Reactive.Concurrency.EventLoopScheduler+<>c__DisplayClass6`1[[System.Int64, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].<SchedulePeriodic>b__4(System.Reactive.Concurrency.IScheduler, System.Object)
   at System.Reactive.Concurrency.ScheduledItem`2[[System.TimeSpan, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].InvokeCore()
   at System.Reactive.Concurrency.ScheduledItem`1[[System.TimeSpan, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Invoke()
   at System.Reactive.Concurrency.EventLoopSchedulerWebsite removed for spammingn()
   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
   at System.Threading.ExecutionContextWebsite removed for spammingnInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContextWebsite removed for spammingn(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContextWebsite removed for spammingn(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()

Error: (11/08/2015 11:38:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: vlc.exe, version: 2.1.5.0, time stamp: 0x00000004
Faulting module name: vlc.exe, version: 2.1.5.0, time stamp: 0x00000004
Exception code: 0xc0000005
Fault offset: 0x000018c5
Faulting process id: 0x1678
Faulting application start time: 0xvlc.exe0
Faulting application path: vlc.exe1
Faulting module path: vlc.exe2
Report Id: vlc.exe3


System errors:
=============
Error: (11/27/2015 11:28:06 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (11/27/2015 11:28:06 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (11/14/2015 05:25:28 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126

Error: (11/12/2015 07:34:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (11/12/2015 07:34:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (11/11/2015 06:01:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (11/11/2015 06:01:19 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (11/11/2015 05:46:26 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126

Error: (11/11/2015 05:06:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Adobe Acrobat Update Service service to connect.

Error: (11/11/2015 05:05:23 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126


CodeIntegrity:
===================================
  Date: 2011-09-06 22:13:02.743
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:13:02.686
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:13:01.128
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:13:01.079
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:13:00.015
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:12:59.962
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:12:58.853
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:12:58.797
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:12:50.058
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2011-09-06 22:12:49.999
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel® Core™ i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 27%
Total physical RAM: 16366.7 MB
Available physical RAM: 11929.73 MB
Total Virtual: 32731.57 MB
Available Virtual: 27859.24 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:363.82 GB) (Free:40.05 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Recovery) (Fixed) (Total:8.79 GB) (Free:1 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive h: (Storage) (Fixed) (Total:931.51 GB) (Free:40.41 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 372.6 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=363.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=8.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: A5D488F6)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


Posted Image

#5 guestolo

guestolo

    Site Donator

  • Admin
  • PipPipPipPipPipPipPip
  • 16,247 posts

Posted 30 November 2015 - 08:12 AM

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished and the PC has rebooted.
  • Please post the content of that log file with your next answer.
  • You can also find the log file at C:\AdwCleaner
     
    In addition:
    -Junkware-Removal-Tool-

    Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
     

     
    Post the logs from Adwcleaner and JRT
In addition:
Download Security Check by screen317 from here
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Do you want to post your own logs from FRST?
Follow the instructions posted Click Here


#6 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 03 December 2015 - 09:57 PM

Sorry been super busy with work.

 

adwcleaner log

 

# AdwCleaner v5.023 - Logfile created 03/12/2015 at 22:53:09
# Updated 30/11/2015 by Xplode
# Database : 2015-12-03.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : TRON - TRON-PC
# Running from : C:\Users\TRON\Desktop\adwcleaner_5.023.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

Folder Found : C:\Program Files (x86)\comcasttb
Folder Found : C:\Program Files (x86)\OApps
Folder Found : C:\Program Files (x86)\AVG\AVG10\Toolbar
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\Ask
Folder Found : C:\ProgramData\blekko toolbars
Folder Found : C:\ProgramData\DeviceVM
Folder Found : C:\Users\TRON\AppData\Local\eSupport.com
Folder Found : C:\Users\TRON\AppData\Local\PackageAware
Folder Found : C:\Users\TRON\AppData\Local\28050
Folder Found : C:\Users\TRON\AppData\Local\28070
Folder Found : C:\Users\TRON\AppData\LocalLow\AVG Security Toolbar
Folder Found : C:\Users\TRON\AppData\LocalLow\comcasttb
Folder Found : C:\Users\TRON\AppData\LocalLow\Conduit
Folder Found : C:\Users\TRON\AppData\Roaming\DeviceVM
Folder Found : C:\Users\TRON\AppData\Roaming\DSite
Folder Found : C:\Users\TRON\AppData\Roaming\download Manager
Folder Found : C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\xfin_portal
Folder Found : C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}

***** [ Files ] *****

File Found : C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\searchplugins\avg-secure-search.xml

***** [ DLL ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\AppID\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4A11A6BD-7880-49BD-92D4-6F09D0BD3250}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{68DE31F7-43FF-4EE2-B88B-10665016970D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{F5A29F21-B121-48A0-A317-737AF8BB106A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1791C1B5-FFD0-4D4B-ABCD-7A7DF6EAA89C}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKCU\Software\AppDataLow\Software\xfin_portal
Key Found : HKLM\SOFTWARE\Conduit
Key Found : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Key Found : HKU\.DEFAULT\Software\AVG Secure Search
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\AVG Security Toolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CDF97FAE-8E02-4FEC-8D26-3CF452C736FC}

***** [ Web browsers ] *****


[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.CTID", "CT2786678");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.CurrentServerDate", "8-11-2010");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.DialogsAlignMode", "LTR");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.DownloadReferralCookieData", "");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.EMailNotifierPollDate", "Mon Nov 08 2010 13:04:44 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedLastCount5690698542593514850", 393);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375443753", "Mon Nov 08 2010 12:25:20 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375443759", "Mon Nov 08 2010 12:25:20 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444699", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444705", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444711", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444717", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444723", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444729", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444735", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444741", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedPollDate129301619375444747", "Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedTTL129301619375444699", 10);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedTTL129301619375444723", 15);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedTTL129301619375444735", 5);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FeedTTL129301619375444747", 5);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FirstServerDate", "7-11-2010");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FirstTime", true);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FirstTimeFF3", true);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FirstTimeSettingsDone", true);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.FixPageNotFoundErrors", false);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.GroupingServerCheckInterval", 1440);

[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.Initialize", true);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.InitializeCommonPrefs", true);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.InstallationType", "UnknownIntegration");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.InstalledDate", "Sun Nov 07 2010 11:02:06 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.IsGrouping", false);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.IsMulticommunity", false);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.IsOpenThankYouPage", false);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.IsOpenUninstallPage", false);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.LanguagePackLastCheckTime", "Mon Nov 08 2010 11:16:27 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);

[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.LastLogin_2.7.2.0", "Mon Nov 08 2010 13:04:49 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.LatestVersion", "2.7.2.0");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.Locale", "en");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.LoginCache", 4);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.MCDetectTooltipHeight", "83");

[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.MCDetectTooltipWidth", "295");

[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.SearchFromAddressBarIsInit", true);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.SearchInNewTabEnabled", true);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.SearchInNewTabLastCheckTime", "Mon Nov 08 2010 11:16:07 GMT-0500 (Eastern Standard Time)");


[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.SettingsCheckIntervalMin", 120);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.SettingsLastCheckTime", "Mon Nov 08 2010 11:16:07 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.SettingsLastUpdate", "1288989406");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Sun Nov 07 2010 11:02:05 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1246790578");

[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.UserID", "UN06953024906295391");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.WeatherNetwork", "");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.WeatherPollDate", "Mon Nov 08 2010 13:04:45 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.WeatherUnit", "F");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.alertChannelId", "1178763");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.clientLogIsEnabled", true);

[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.myStuffEnabled", true);
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.myStuffPublihserMinWidth", 400);

[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CT2786678.myStuffServiceIntervalMM", 1440);



[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CommunityToolbar.ToolbarsList", "CT2786678");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2786678");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Mon Nov 08 2010 11:16:07 GMT-0500 (Eastern Standard Time)");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("browser.search.defaultengine", "Ask.com");
[C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js] [Preference] Found : user_pref("browser.search.order.1", "Ask.com");


########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [19904 bytes] ##########
 


Posted Image

#7 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 03 December 2015 - 09:59 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 7 Ultimate x64
Ran by TRON (Administrator) on Thu 12/03/2015 at 22:55:04.50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 19

Successfully deleted: C:\ProgramData\apn (Folder)
Successfully deleted: C:\ProgramData\ask (Folder)
Successfully deleted: C:\ProgramData\blekko toolbars (Folder)
Successfully deleted: C:\Users\TRON\AppData\Local\{c06cbc77-4cba-e67b-f0ab-9c488764be6d} (Empty Folder)
Successfully deleted: C:\Users\TRON\AppData\Local\28050 (Folder)
Successfully deleted: C:\Users\TRON\AppData\Local\28070 (Folder)
Successfully deleted: C:\Users\TRON\AppData\Local\crashrpt (Folder)
Successfully deleted: C:\Users\TRON\AppData\Local\esupport.com (Folder)
Successfully deleted: C:\Users\TRON\AppData\Local\packageaware (Folder)
Successfully deleted: C:\Users\TRON\Appdata\LocalLow\avg security toolbar (Folder)
Successfully deleted: C:\Users\TRON\Appdata\LocalLow\comcasttb (Folder)
Successfully deleted: C:\Users\TRON\Appdata\LocalLow\conduit (Folder)
Successfully deleted: C:\Users\TRON\AppData\Roaming\download manager (Folder)
Successfully deleted: C:\Users\TRON\AppData\Roaming\dsite (Folder)
Successfully deleted: C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\extensions\{4b9bcce8-a70b-402a-a7e1-db96831ee26f}\chrome\data\search\engines_mystart.xml (File)
Successfully deleted: C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\searchplugins\avg-secure-search.xml (File)
Successfully deleted: C:\Program Files (x86)\comcasttb (Folder)
Successfully deleted: C:\Program Files (x86)\oapps (Folder)
Successfully deleted: C:\Program Files\privacysafeguard (Folder)

Deleted the following from C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\prefs.js

user_pref(CT2786678.CTID, CT2786678);
user_pref(CT2786678.CurrentServerDate, 8-11-2010);
user_pref(CT2786678.DialogsAlignMode, LTR);
user_pref(CT2786678.DownloadReferralCookieData, );
user_pref(CT2786678.EMailNotifierPollDate, Mon Nov 08 2010 13:04:44 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedLastCount5690698542593514850, 393);
user_pref(CT2786678.FeedPollDate129301619375443753, Mon Nov 08 2010 12:25:20 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375443759, Mon Nov 08 2010 12:25:20 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444699, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444705, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444711, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444717, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444723, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444729, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444735, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444741, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedPollDate129301619375444747, Mon Nov 08 2010 12:25:19 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.FeedTTL129301619375444699, 10);
user_pref(CT2786678.FeedTTL129301619375444723, 15);
user_pref(CT2786678.FeedTTL129301619375444735, 5);
user_pref(CT2786678.FeedTTL129301619375444747, 5);
user_pref(CT2786678.FirstServerDate, 7-11-2010);
user_pref(CT2786678.FirstTime, true);
user_pref(CT2786678.FirstTimeFF3, true);
user_pref(CT2786678.FirstTimeSettingsDone, true);
user_pref(CT2786678.FixPageNotFoundErrors, false);
user_pref(CT2786678.GroupingServerCheckInterval, 1440);

user_pref(CT2786678.Initialize, true);
user_pref(CT2786678.InitializeCommonPrefs, true);
user_pref(CT2786678.InstallationAndCookieDataSentCount, 3);
user_pref(CT2786678.InstallationType, UnknownIntegration);
user_pref(CT2786678.InstalledDate, Sun Nov 07 2010 11:02:06 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.IsGrouping, false);
user_pref(CT2786678.IsMulticommunity, false);
user_pref(CT2786678.IsOpenThankYouPage, false);
user_pref(CT2786678.IsOpenUninstallPage, false);
user_pref(CT2786678.LanguagePackLastCheckTime, Mon Nov 08 2010 11:16:27 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.LanguagePackReloadIntervalMM, 1440);

user_pref(CT2786678.LastLogin_2.7.2.0, Mon Nov 08 2010 13:04:49 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.LatestVersion, 2.7.2.0);
user_pref(CT2786678.Locale, en);
user_pref(CT2786678.LoginCache, 4);
user_pref(CT2786678.MCDetectTooltipHeight, 83);

user_pref(CT2786678.MCDetectTooltipWidth, 295);

user_pref(CT2786678.SearchFromAddressBarIsInit, true);
user_pref(CT2786678.SearchInNewTabEnabled, true);
user_pref(CT2786678.SearchInNewTabIntervalMM, 1440);
user_pref(CT2786678.SearchInNewTabLastCheckTime, Mon Nov 08 2010 11:16:07 GMT-0500 (Eastern Standard Time));


user_pref(CT2786678.SettingsCheckIntervalMin, 120);
user_pref(CT2786678.SettingsLastCheckTime, Mon Nov 08 2010 11:16:07 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.SettingsLastUpdate, 1288989406);
user_pref(CT2786678.ThirdPartyComponentsInterval, 504);
user_pref(CT2786678.ThirdPartyComponentsLastCheck, Sun Nov 07 2010 11:02:05 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.ThirdPartyComponentsLastUpdate, 1246790578);

user_pref(CT2786678.UserID, UN06953024906295391);
user_pref(CT2786678.WeatherNetwork, );
user_pref(CT2786678.WeatherPollDate, Mon Nov 08 2010 13:04:45 GMT-0500 (Eastern Standard Time));
user_pref(CT2786678.WeatherUnit, F);
user_pref(CT2786678.alertChannelId, 1178763);
user_pref(CT2786678.clientLogIsEnabled, true);

user_pref(CT2786678.myStuffEnabled, true);
user_pref(CT2786678.myStuffPublihserMinWidth, 400);

user_pref(CT2786678.myStuffServiceIntervalMM, 1440);



user_pref(CommunityToolbar.ToolbarsList, CT2786678);
user_pref(CommunityToolbar.ToolbarsList2, CT2786678);
user_pref(CommunityToolbar.facebook.settingsLastCheckTime, Mon Nov 08 2010 11:16:07 GMT-0500 (Eastern Standard Time));
user_pref(browser.search.defaultengine, Ask.com);
user_pref(browser.search.order.1, Ask.com);




Registry: 5

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\AntiSpywareService (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{180780f0-b348-4b44-8210-94a8f3ee15b2} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CDF97FAE-8E02-4FEC-8D26-3CF452C736FC} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 12/03/2015 at 22:56:50.56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 


Posted Image

#8 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 03 December 2015 - 10:01 PM

Results of screen317's Security Check version 1.009  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Microsoft Security Essentials   
  (On Access scanning disabled!)
 Error obtaining update status for antivirus!  
`````````Anti-malware/Other Utilities Check:`````````
 "Call of Duty - Ghosts"
 JavaFX 2.1.1    
 Java 7 Update 51  
 Java 8 Update 25  
 Java version 32-bit out of Date!
 Adobe Flash Player 19.0.0.245  
 Adobe Reader 10.1.11 Adobe Reader out of Date!  
 Mozilla Firefox (42.0)
 Google Chrome (46.0.2490.86)
 Google Chrome (47.0.2526.73)
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````
 


Posted Image

#9 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 03 December 2015 - 10:10 PM

log from restarting after running AdWcleaner

 

# AdwCleaner v5.023 - Logfile created 03/12/2015 at 23:04:24
# Updated 30/11/2015 by Xplode
# Database : 2015-12-03.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : TRON - TRON-PC
# Running from : C:\Users\TRON\Desktop\adwcleaner_5.023.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\AVG\AVG10\Toolbar
[-] Folder Deleted : C:\ProgramData\DeviceVM
[-] Folder Deleted : C:\Users\TRON\AppData\Roaming\DeviceVM
[-] Folder Deleted : C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\xfin_portal
[-] Folder Deleted : C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}

***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{49BC4DD1-0E69-4611-9164-0009538C5E46}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A11A6BD-7880-49BD-92D4-6F09D0BD3250}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{68DE31F7-43FF-4EE2-B88B-10665016970D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F5A29F21-B121-48A0-A317-737AF8BB106A}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1791C1B5-FFD0-4D4B-ABCD-7A7DF6EAA89C}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49BC4DD1-0E69-4611-9164-0009538C5E46}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49BC4DD1-0E69-4611-9164-0009538C5E46}
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\YahooPartnerToolbar
[-] Key Deleted : HKCU\Software\AppDataLow\Software\xfin_portal
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Secure Search
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\AVG Security Toolbar

***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [3964 bytes] ##########
 


Posted Image

#10 guestolo

guestolo

    Site Donator

  • Admin
  • PipPipPipPipPipPipPip
  • 16,247 posts

Posted 04 December 2015 - 07:36 PM

You should update Java

Close down all browser windows and open "Programs and Features" from Control Panel and remove

Java 7 Update 51  
 Java 8 Update 25

 

After removal you can get the latest version from here

https://www.java.com/en/download/

 

Also, update your copy of Adobe Reader do plug security holes

Open Adobe Reader and click on HELP>> Check for updates

Follow the prompts

Recheck to ensure your right up to date

 

Can you run another scan with Farbar Recovery Scan Tool

Post the logs produced

Let me know how things are running now please

 

Do you want to post your own logs from FRST?
Follow the instructions posted Click Here


#11 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 10 December 2015 - 06:49 PM

Updated Java, adobe reader keeps saying its updated then still shows outdated version. and still having same initial problem with flash. Going to try to boot in safe mode and install adobe reader and will post logs then, sorry for late reply busy season at work 14 hours days.


Posted Image

#12 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 11 December 2015 - 08:37 PM

Finally got it had to do in safe mode for some reason.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:09-12-2015
Ran by TRON (administrator) on TRON-PC (11-12-2015 21:35:52)
Running from C:\Users\TRON\Desktop\New folder
Loaded Profiles: TRON (Available Profiles: TRON)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUsb\XFastUsb.exe
(NETGEAR) C:\Program Files (x86)\NETGEAR\WNDA3100v3\WNDA3100v3.EXE
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(mIRC Co. Ltd.) C:\acidmax\mirc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(PeerBlock, LLC) C:\Program Files\PeerBlock\peerblock.exe
() C:\Program Files (x86)\qBittorrent\qbittorrent.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [XFastUsb] => C:\Program Files (x86)\XFastUsb\XFastUsb.exe [4942336 2011-09-20] (FNet Co., Ltd.)
HKLM-x32\...\Run: [WNDA3100v3] => C:\Program Files (x86)\NETGEAR\WNDA3100v3\WNDA3100v3.EXE [6243040 2014-10-13] (NETGEAR)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: F - F:\Setup.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: K - K:\CD_Start.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {5516bf87-ea47-11df-8d35-806e6f6e6963} - E:\RunGame.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {a0be8b0e-eb5d-11df-beae-001bb9537594} - K:\LaunchU3.exe -a
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {d5090535-008f-11e0-9c17-001bb9537594} - K:\LaunchU3.exe -a
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...A8F59079A8D5}\localserver32:  <==== ATTENTION
AppInit_DLLs: prio.dll => C:\Program Files\Prio\prio.dll [17264 2012-11-08] (O&K Software)
AppInit_DLLs-x32: prio32.dll => C:\Program Files\Prio\prio32.dll [15216 2012-11-08] (O&K Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  No File
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-2601419243-2007584176-3567953189-1001] => 203.232.208.116:8080
Tcpip\Parameters: [DhcpNameServer] 10.168.8.1
Tcpip\..\Interfaces\{1B22B1B3-92F9-44DA-8BEF-CF582404D978}: [DhcpNameServer] 10.168.8.1
Tcpip\..\Interfaces\{5318A75E-9303-43C5-8DEF-912DE617EF72}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{69215A00-FABD-4345-BA37-C0E2803AF427}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{B8C6BD13-2DE8-486E-806B-F3FC12223C0C}: [DhcpNameServer] 10.168.8.1
Tcpip\..\Interfaces\{BBBE4295-7F11-4FE0-A833-A61F174ECBBA}: [DhcpNameServer] 68.87.68.166 68.87.74.166 192.168.1.1
Tcpip\..\Interfaces\{C1917B49-A9FF-4517-A65E-4087AF42D063}: [DhcpNameServer] 75.75.75.75 75.75.76.76

Internet Explorer:
==================


BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-05] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-05] (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)


Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: Google
FF SelectedSearchEngine: XFINITY




FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-09] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2010-05-05] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-02] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-02] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll [2010-11-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll [2010-11-07] (Apple Inc.)
FF Extension: FireFTP - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2015-11-28]
FF Extension: NoScript - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-11-23]
FF Extension: GameZooks - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{8693cb76-1caf-4115-9bd7-6bab02330326}.xpi [2015-09-18]
FF Extension: Adblock Plus - C:\Users\TRON\AppData\Roaming\Mozilla\Firefox\Profiles\paggcq8k.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-25]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2015-11-04] [not signed]

Chrome:
=======
CHR Profile: C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-01]
CHR Extension: (Google Docs) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-01]
CHR Extension: (Google Drive) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-01]
CHR Extension: (YouTube) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-01]
CHR Extension: (Google Search) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-08]
CHR Extension: (Google Sheets) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-01]
CHR Extension: (Google Play Music) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2015-03-01]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-08]
CHR Extension: (Google Wallet) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-08]
CHR Extension: (Gmail) - C:\Users\TRON\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-08]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-26] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-17] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-17] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2078216 2015-10-08] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-04] ()
S4 prio_svc; C:\Program Files\Prio\prio_svc.exe [12656 2012-11-08] ()
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2009-10-20] (CACE Technologies, Inc.)
S4 RunSwUSB; C:\Windows\runSW.exe [44104 2013-05-23] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 WSAC950; C:\Program Files (x86)\Belkin\F9L1109\v1\WifiSvc.exe [299008 2013-07-09] () [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dmodusb; C:\Windows\System32\DRIVERS\dmodusb.sys [32768 2008-12-16] (Windows ® Codename Longhorn DDK provider)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [31808 2011-10-07] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2011-09-20] (FNet Co., Ltd.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-17] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-17] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [47632 2009-10-20] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [19544 2009-09-28] ()
S3 PlantronicsGC; C:\Windows\System32\drivers\PLTGC.sys [1327104 2011-11-04] (C-Media Electronics Inc)
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [12288 2009-08-22] () [File not signed]
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [2355400 2013-07-09] (Realtek Semiconductor Corporation                           )
S3 tapoas; C:\Windows\System32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project)
R3 tapSF0901; C:\Windows\System32\DRIVERS\tapSF0901.sys [39104 2015-01-23] (Spotflux, Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [53760 2012-09-28] (Apple, Inc.) [File not signed]
S3 USBTINSP; C:\Windows\System32\DRIVERS\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 VST64HWBS2; C:\Windows\System32\DRIVERS\VSTBS26.SYS [411136 2009-06-10] (Conexant Systems, Inc.)
S3 VST64_DPV; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Conexant Systems, Inc.)
R3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [254976 2011-06-21] (Jungo)
S3 WNDA3100v3; C:\Windows\System32\DRIVERS\WNDA3100v3.sys [2222224 2014-10-08] (MediaTek Inc.)
R2 XilinxPC4Driver; C:\Windows\System32\drivers\xpc4drvr.sys [27384 2011-06-21] (Xilinx, Inc.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-11 21:34 - 2015-12-11 21:34 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-12-11 21:33 - 2015-12-11 21:33 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-12-11 21:33 - 2015-12-11 21:33 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2015-12-05 18:31 - 2015-12-05 18:31 - 00000000 ____D C:\Users\TRON\AppData\Roaming\Sun
2015-12-05 18:31 - 2015-12-05 18:31 - 00000000 ____D C:\Users\TRON\.oracle_jre_usage
2015-12-05 18:30 - 2015-12-05 18:30 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-12-05 18:30 - 2015-12-05 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-05 18:14 - 2015-12-05 18:14 - 00584288 _____ (Oracle Corporation) C:\Users\TRON\Downloads\jxpiinstall.exe
2015-12-03 22:58 - 2015-12-03 22:58 - 00852720 _____ C:\Users\TRON\Desktop\SecurityCheck.exe
2015-12-03 22:56 - 2015-12-03 22:56 - 00009116 _____ C:\Users\TRON\Desktop\JRT.txt
2015-12-03 22:53 - 2015-12-03 23:04 - 00000000 ____D C:\AdwCleaner
2015-12-03 22:52 - 2015-12-03 22:52 - 01736704 _____ C:\Users\TRON\Desktop\adwcleaner_5.023.exe
2015-12-03 22:51 - 2015-12-03 22:51 - 01599336 _____ (Malwarebytes) C:\Users\TRON\Desktop\JRT.exe
2015-11-29 21:26 - 2015-12-11 21:35 - 00000000 ____D C:\Users\TRON\Desktop\New folder
2015-11-29 21:26 - 2015-12-11 21:35 - 00000000 ____D C:\FRST
2015-11-29 21:25 - 2015-11-29 21:25 - 02350080 _____ (Farbar) C:\Users\TRON\Downloads\FRST64.exe
2015-11-25 21:09 - 2015-11-25 21:09 - 00388608 _____ (Trend Micro Inc.) C:\Users\TRON\Downloads\HijackThis.exe
2015-11-22 13:00 - 2015-11-20 07:26 - 01595392 _____ (3DMGAME) C:\Users\TRON\Desktop\Assassins Creed Syndicate v1.12-Update 1 Plus 19 Trainer.exe
2015-11-22 11:13 - 2015-11-22 11:52 - 00000000 ____D C:\Users\TRON\Documents\Assassin's Creed Syndicate
2015-11-22 11:13 - 2015-11-22 11:13 - 00000000 ____D C:\Users\TRON\AppData\Roaming\uplay
2015-11-22 11:03 - 2015-11-22 11:03 - 00000696 _____ C:\Users\TRON\Desktop\Assassin s Creed Syndicate.lnk
2015-11-22 11:03 - 2015-11-17 18:00 - 00000019 _____ C:\Users\TRON\Desktop\localization.lang
2015-11-22 11:00 - 2015-11-17 14:06 - 442475541 _____ C:\Users\TRON\Desktop\sounds_rus.pck
2015-11-22 10:59 - 2015-11-17 18:02 - 07132965 _____ C:\Users\TRON\Desktop\sounds_rus_install_3.pck
2015-11-22 10:59 - 2015-11-17 14:04 - 41910038 _____ C:\Users\TRON\Desktop\sounds_rus_install_2.pck
2015-11-22 10:59 - 2015-11-17 14:01 - 07911611 _____ C:\Users\TRON\Desktop\sounds_rus_install_1.pck
2015-11-14 19:03 - 2015-11-14 19:03 - 03048051 _____ (Pentair) C:\Users\TRON\Downloads\screenlogicconnect.exe
2015-11-14 19:03 - 2015-11-14 19:03 - 00002089 _____ C:\Users\Public\Desktop\ScreenLogic Connect.lnk
2015-11-14 19:03 - 2015-11-14 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pentair
2015-11-14 19:03 - 2015-11-14 19:03 - 00000000 ____D C:\Program Files (x86)\Pentair
2015-11-13 20:37 - 2015-11-13 14:34 - 01291776 _____ (3DMGAME) C:\Users\TRON\Desktop\Fallout 4 v1.0-v1.1.30 Plus 20 Trainer.exe
2015-11-13 07:07 - 2015-11-13 07:07 - 00000000 ____D C:\Users\TRON\AppData\Local\Fallout4
2015-11-13 07:04 - 2015-11-13 07:04 - 00000782 _____ C:\Users\TRON\Desktop\Play Fallout 4.lnk
2015-11-13 07:04 - 2015-11-13 07:04 - 00000743 _____ C:\Users\TRON\Desktop\visit www.nosteam.ro.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-11 21:36 - 2010-11-07 12:02 - 00000000 ____D C:\Program Files\PeerBlock
2015-12-11 21:33 - 2010-11-08 11:36 - 00000000 ____D C:\ProgramData\Adobe
2015-12-11 21:33 - 2010-11-08 11:36 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-12-11 21:32 - 2010-11-08 11:30 - 00000000 ____D C:\Users\TRON\AppData\Local\Adobe
2015-12-11 21:24 - 2015-08-18 17:52 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-11 20:59 - 2015-01-10 20:59 - 00000000 ____D C:\acidmax
2015-12-11 20:55 - 2013-02-11 16:08 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-11 13:05 - 2013-10-12 11:00 - 00000544 _____ C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job
2015-12-11 03:55 - 2013-02-11 16:08 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-10 19:01 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF
2015-12-10 18:49 - 2014-11-16 23:10 - 00000000 ____D C:\Users\TRON\AppData\Roaming\vlc
2015-12-09 07:24 - 2015-08-18 17:52 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-12-09 07:24 - 2015-08-18 17:52 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-09 07:24 - 2015-08-18 17:52 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-12-08 23:22 - 2009-07-13 23:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-08 23:22 - 2009-07-13 23:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-08 22:39 - 2010-11-07 09:57 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-12-06 14:36 - 2010-11-07 12:13 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-05 18:44 - 2014-01-24 16:42 - 00000000 ____D C:\ProgramData\Oracle
2015-12-05 18:31 - 2010-11-07 09:56 - 00000000 ____D C:\Users\TRON
2015-12-05 18:30 - 2010-11-07 09:44 - 00000000 ____D C:\Program Files (x86)\Java
2015-12-03 23:07 - 2011-05-07 19:57 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-03 23:07 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-02 03:50 - 2013-02-11 16:08 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-02 03:50 - 2013-02-11 16:08 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-29 21:29 - 2009-07-13 22:20 - 00000000 ____D C:\Windows
2015-11-22 13:04 - 2015-11-06 19:31 - 00000840 _____ C:\Users\Public\Desktop\Speccy.lnk
2015-11-22 13:04 - 2015-10-10 18:16 - 00000949 _____ C:\Users\TRON\Desktop\Logitech Gaming Software 8.57.lnk
2015-11-22 13:00 - 2014-11-18 19:49 - 00000000 ____D C:\Users\TRON\Documents\FLiNGTrainer
2015-11-22 11:03 - 2014-11-17 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2015-11-20 20:38 - 2011-09-23 15:46 - 00000000 ____D C:\Users\TRON\AppData\Local\CrashDumps
2015-11-13 07:07 - 2010-11-08 14:09 - 00000000 ____D C:\Users\TRON\Documents\My Games
2015-11-11 17:56 - 2009-07-14 00:13 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-11 17:56 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\inf

==================== Files in the root of some directories =======

2013-11-19 16:28 - 2013-11-20 20:04 - 0000249 _____ () C:\Users\TRON\AppData\Roaming\BreakingPoint_Login.ini
2014-02-17 16:48 - 2014-11-15 15:51 - 0003943 _____ () C:\Users\TRON\AppData\Roaming\LTspiceIV.ini
2013-10-04 08:30 - 2013-10-04 19:30 - 0000026 _____ () C:\Users\TRON\AppData\Roaming\prio.ini
2014-12-22 21:47 - 2014-12-22 21:47 - 0000000 ___SH () C:\Users\TRON\AppData\Local\LumaEmu
2011-11-15 15:42 - 2011-11-15 16:16 - 0002189 _____ () C:\Users\TRON\AppData\Local\TempfixPerms.vbs
2010-11-07 11:39 - 2010-11-07 11:39 - 0000056 ____H () C:\ProgramData\ezsidmv.dat

Some files in TEMP:
====================
C:\Users\TRON\AppData\Local\Temp\02e5b391de59434f4b9c98b716a91237.dll
C:\Users\TRON\AppData\Local\Temp\4e6cf5d72520e51ea54dbf30164d13e3.dll
C:\Users\TRON\AppData\Local\Temp\Bass.dll
C:\Users\TRON\AppData\Local\Temp\Bass.Net.dll
C:\Users\TRON\AppData\Local\Temp\BingBarSetup-Partner.exe
C:\Users\TRON\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpub6zc5.dll
C:\Users\TRON\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\TRON\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\TRON\AppData\Local\Temp\jre-8u40-windows-au.exe
C:\Users\TRON\AppData\Local\Temp\Lng.Dll
C:\Users\TRON\AppData\Local\Temp\mirc738.exe
C:\Users\TRON\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\TRON\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\TRON\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\TRON\AppData\Local\Temp\nvStInst.exe
C:\Users\TRON\AppData\Local\Temp\SkypeSetup.exe
C:\Users\TRON\AppData\Local\Temp\sqlite3.dll
C:\Users\TRON\AppData\Local\Temp\SRLDetectionLibrary8121594306983000867.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-30 00:30

==================== End of FRST.txt ============================


Posted Image

#13 guestolo

guestolo

    Site Donator

  • Admin
  • PipPipPipPipPipPipPip
  • 16,247 posts

Posted 12 December 2015 - 07:16 AM

I should of asked earlier, is the problem just with Firefox?\

Have you tried Google Chrome or IE?


Do you want to post your own logs from FRST?
Follow the instructions posted Click Here


#14 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 12 December 2015 - 08:18 AM

Yes it happens across all browsers ,and happens with any flash related browser game I try. They will work fine for a few minutes then it starts to decline to the point it's unplayable and I have to go to task manager and end process on flash and refresh the game page.

 

Happened a couple/few months ago after the last flash update.


Posted Image

#15 guestolo

guestolo

    Site Donator

  • Admin
  • PipPipPipPipPipPipPip
  • 16,247 posts

Posted 12 December 2015 - 05:13 PM

try the following:

Download and save to desktop Flash uninstaller from the following link

https://fpdownload.m...lash_player.exe

 

Close all browser windows then right click on the uninstaller and choose to "Run as Administrator"

Follow the prompts, when done, come back here

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.

CreateRestorePoint:
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: F - F:\Setup.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: K - K:\CD_Start.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {5516bf87-ea47-11df-8d35-806e6f6e6963} - E:\RunGame.exe
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {a0be8b0e-eb5d-11df-beae-001bb9537594} - K:\LaunchU3.exe -a
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...\MountPoints2: {d5090535-008f-11e0-9c17-001bb9537594} - K:\LaunchU3.exe -a
HKU\S-1-5-21-2601419243-2007584176-3567953189-1001\...A8F59079A8D5}\localserver32:  <==== ATTENTION
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  No File
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset c:\resetlog.txt
CMD: ipconfig /release
CMD: ipconfig /renew
EmptyFlash:
EmptyTemp:
Save the files as fixlist.txt in the same folder where the Farbar tool is running from.
Run FRST and click Fix only once and wait.
 
Restart the computer normally to reset the registry.
 
The tool will create a log (Fixlog.txt) please post it to your reply.
 
Please post that log
In addition try installing flash again for Firefox from the following link
Your looking for the exe file for the plugin based browser
After installation try flash again with Firefox, any improvement?

Do you want to post your own logs from FRST?
Follow the instructions posted Click Here


#16 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 01 January 2016 - 08:44 PM

after I did that today ( been out of town for work and didnt take pc , sorry for late response ), was using the pc today ran fine for a couple hours then all a sudden it died and rebooted. turned on about 10 mins same thing. opened it up super super dusty, mainly the heat sink for proc unit was clogged up with dust. got some canned air to clean it, pc been on for about 10-15 mins this time.


Posted Image

#17 guestolo

guestolo

    Site Donator

  • Admin
  • PipPipPipPipPipPipPip
  • 16,247 posts

Posted 03 January 2016 - 02:07 AM

Didn't see the log, but how's it running?


Do you want to post your own logs from FRST?
Follow the instructions posted Click Here


#18 Dachronic

Dachronic

    Member

  • Members
  • PipPipPip
  • 50 posts

Posted 03 January 2016 - 05:25 PM

I got that pc apart right now, after cleaning heatsink for cpu that was dust clogged temps were fine until I tried to game, gfx card jumped up to 70c in like 5 mins. Opened it up and found this https://www.flickr.c...2/shares/u7855b soon as I get everything cleaned I'll turn it on and post logs. The flash thing was still happening with flash games slowing down, still can't figure that out. after taking apart gpu and cleaning it I was getting idle temps of 25c as oppesed to 37c before and when running black ops 3 it was around 45c - 50cmax. In process of taking everything out and cleaning and maybe reapplying thermal paste to cpu/heatsink. Will post logs afterwards, again thanks for all your help and what you do for the forum/community


Posted Image