Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

another gameharbor.org


  • This topic is locked This topic is locked
3 replies to this topic

#1 daterxies

daterxies

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:54 PM

Posted 14 September 2014 - 09:01 AM

Thanks in advance... ive spent hours and downloaded quite a few different adware / malware removal stuff... i see the command window pop up on start up probably why they are not detecting it.
Attached File  FRST.txt   59.46KB   3 downloads
Attached File  Addition.txt   48.47KB   1 downloads
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-09-2014
Ran by Josh at 2014-09-14 08:56:55
Running from C:\Users\Josh\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33870 - BitTorrent Inc.)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version:  - The Fun Pimps)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.30.100.40709 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0709.1135.19003 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{EE0B4480-194D-C725-EDF8-6CE3FC4DDC89}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Archeage Beta (HKLM-x32\...\Glyph Archeage Beta) (Version:  - Trion Worlds, Inc.)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
avast! Internet Security (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Awesomium Redistributable (HKLM-x32\...\{5BCB064B-9F65-4E15-BAFB-669E72E54FD9}) (Version: 1.7.4.2 - SIX Networks GmbH)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.3.2.3825 - Electronic Arts)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Bridge Project (HKLM-x32\...\Steam App 232950) (Version:  - Halycon Media GmbH & Co. KG)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0709.1135.19003 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0423.449.6734 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0709.1135.19003 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0709.1135.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0709.1134.19003 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0709.1135.19003 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version:  - Relic Entertainment)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.2726.0 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.2726.0 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 Content Pack Essential (HKLM-x32\...\InstallShield_{7651DEE1-8B0D-41A0-90B8-D6D48380FE37}) (Version: 12 - CyberLink Corp.)
CyberLink PowerDirector 12 Content Pack Essential (x32 Version: 12 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 Content Pack Premium (HKLM-x32\...\InstallShield_{0219CB86-A833-4581-8FF1-78F303F93AC3}) (Version: 12 - CyberLink Corp.)
CyberLink PowerDirector 12 Content Pack Premium (x32 Version: 12 - CyberLink Corp.) Hidden
CyberLink Travel Pack 2012 Travel Pack 2 (HKLM-x32\...\InstallShield_{66D6469F-58C2-4CFA-B562-E1632065D89A}) (Version: Travel Pack 2 - CyberLink Corp.)
CyberLink Travel Pack 2012 Travel Pack 2 (x32 Version: Travel Pack 2 - CyberLink Corp.) Hidden
CyberLink WaveEditor 2 (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.0.4203 - CyberLink Corp.)
CyberLink WaveEditor 2 (x32 Version: 2.0.4203 - CyberLink Corp.) Hidden
D3DGear (HKLM\...\D3DGear_is1) (Version: 4.8.3 - D3DGear Technologies)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DCS World (HKLM-x32\...\Steam App 223750) (Version:  - Eagle Dynamics)
Dead Rising 3 (HKLM-x32\...\Dead Rising 3_is1) (Version: 1.0 - Релиз от R.G. Steamgames)
DownloadStudio (HKLM-x32\...\{B763CDE9-3E9C-4F19-BCAF-773D48ECD9F1}) (Version: 9.0.3.0 - Conceiva)
DownloadStudioEnglish9 (x32 Version: 9.0.3.0 - Conceiva) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
Dxtory version 2.0.127 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.127 - ExKode Co. Ltd.)
Elevated Installer (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Elite Dangerous Launcher version 0.3.1310.0 (HKLM-x32\...\{696F8871-C91D-4CB1-825D-36BE18065575}_is1) (Version: 0.3.1310.0 - Frontier Developments)
Endless Space (HKLM-x32\...\Steam App 208140) (Version:  - AMPLITUDE Studios)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON NX430 Series Printer Uninstall (HKLM\...\EPSON NX430 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
EVE Online (remove only) (HKLM-x32\...\EVE) (Version:  - CCP Games Ltd.)
Farming Simulator 2013 (HKLM-x32\...\Steam App 220260) (Version:  - Giants Software)
FileZilla Client 3.9.0.3 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.3 - Tim Kosse)
Firefall (HKLM-x32\...\Steam App 227700) (Version:  - Red 5 Studios)
Garmin Express (HKLM-x32\...\{b43ffffb-1adc-4bcb-b277-7844ebff94da}) (Version: 3.2.17.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.17.0 - Garmin Ltd or its subsidiaries) Hidden
GIGABYTE VGA @BIOS (HKLM-x32\...\{AA12545D-5EB8-4078-AFD9-8E8DC0AE3A76}) (Version: 5.51 - GIGABYTE)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HE Auto Launcher (HKLM-x32\...\HE Auto Launcher) (Version:  - )
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.225 - SurfRight B.V.)
Intel® Chipset Device Software (Version: 10.0.17 - Intel Corporation) Hidden
Intel® Chipset Device Software (x32 Version: 10.0.17 - Intel® Corporation) Hidden
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Kinetic Void (HKLM-x32\...\Steam App 227160) (Version:  - Badland Studio)
LOOT (HKLM-x32\...\LOOT) (Version: 0.6.0 - LOOT Development Team)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mezzmo (HKCU\...\Mezzmo) (Version: 4.0.6.0 - Conceiva Pty. Ltd.)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4641.1003 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
MSI Afterburner 3.0.1 (HKLM-x32\...\Afterburner) (Version: 3.0.1 - MSI Co., LTD)
Mumble 1.2.7 (HKLM-x32\...\{CF8BBFA2-5502-4904-A9E9-8D5CAA8DF785}) (Version: 1.2.7 - Thorvald Natvig)
MusicBee 2.3 (HKLM-x32\...\MusicBee) (Version: 2.3 - Steven Mayall)
NewBlue Video Essentials for PowerDirector (HKLM\...\NewBlue Video Essentials for Cyberlink) (Version: 3.0 - NewBlue)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.51.0 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.4.10.297 - Electronic Arts, Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PlanetSide 2 (HKCU\...\SOE-PlanetSide 2) (Version:  - Sony Online Entertainment)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Sony Online Entertainment)
PlayerClientABTBETA (HKLM-x32\...\{f48c3d36-2732-4133-846c-93387597dfc1}) (Version: 2.22.0 - HeroEngine)
Prison Architect (HKLM-x32\...\Steam App 233450) (Version:  - Introversion Software)
Project Zomboid (HKLM-x32\...\Steam App 108600) (Version:  - The Indie Stone)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.2.0 - Electronic Arts)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7245 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.1.2 (HKLM-x32\...\RTSS) (Version: 6.1.2 - Unwinder)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.8 - SmartSound Software Inc.) Hidden
Software Updater (HKLM-x32\...\{6DFBE8A2-CDBF-453E-B34C-32F202FCEE4C}) (Version: 4.2.1 - SEIKO EPSON CORPORATION)
Sound Blaster Cinema (HKLM-x32\...\{8801CA65-921A-4CCC-9D63-879D1D0BAA97}) (Version: 1.00.05 - Creative Technology Limited)
Space Engineers (HKLM-x32\...\Steam App 244850) (Version:  - )
Spintires (HKLM-x32\...\Steam App 263280) (Version:  - Oovee® Game Studios)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1146 - SUPERAntiSpyware.com)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.31064 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
The Dead Linger (HKLM-x32\...\Steam App 245130) (Version:  - Sandswept Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.9.0.124 - PandoraTV)
The Wolf Among Us (HKLM-x32\...\VGhlV29sZkFtb25nVXM=_is1) (Version: 1 - )
Total War: ROME II (HKLM-x32\...\Steam App 214950) (Version:  - Creative Assembly)
TP-LINK TL-WDN4800 Driver (HKLM-x32\...\{FDA7E907-6539-42C1-9721-0239C281B336}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.74 - VSO Software)
Wildlife Park 3 (HKLM-x32\...\Steam App 287200) (Version:  - b-Alive)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 3.6 - Bazis)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinRAR 5.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
X Rebirth (HKLM-x32\...\Steam App 2870) (Version:  - Egosoft)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-1843087761-3388040796-2952334477-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Josh\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1843087761-3388040796-2952334477-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Josh\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1843087761-3388040796-2952334477-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Josh\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1843087761-3388040796-2952334477-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Josh\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1843087761-3388040796-2952334477-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Josh\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
 
==================== Restore Points  =========================
 
04-09-2014 22:25:31 Installed DirectX
05-09-2014 23:53:10 Installed DirectX
10-09-2014 01:53:49 Windows Update
12-09-2014 23:30:57 Installed SpyHunter
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 08:25 - 2014-09-13 22:17 - 00450770 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
 
There are 1000 more lines.
 
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {08A8498A-C0ED-4DE3-8DD8-1858CDFE27C6} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2871C594-FFE4-4170-BF6D-9AC2DDBE671D} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {29096BC5-7530-4951-AB4C-8BFF08707F1B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {2AE40120-E333-4DB1-AE4A-14F09F6323FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-21] (Google Inc.)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2E3C41AE-8F01-4849-B582-E32DCCCB535E} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {3138F01B-E39C-4676-9730-B2D47D1A4E2C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-09-09] (Microsoft Corporation)
Task: {3266CAA7-649E-44EE-91C0-BED5D4DAA69B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3D9EADD2-3BC2-416D-AEF4-F82B66C5AACA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09] (Adobe Systems Incorporated)
Task: {43263E81-4898-4009-997F-2466D9BBDFA0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-12] (AVAST Software)
Task: {43F35033-EE39-42BB-890C-2E155A909BA7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {4419851E-AC20-484A-B5ED-6E40EDC39B72} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-21] (Google Inc.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6AD5521C-2679-4967-B7E5-2A4C62F73A3F} - System32\Tasks\SUPERAntiSpyware Scheduled Task 493eba2e-79e6-4379-9ddd-d44b7793fbe7 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {7663F3D4-A715-4B9B-9E4E-8937B21D4571} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {790AB813-AB45-425C-8CEF-68152EDC330E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-08-01] (Microsoft Corporation)
Task: {83D0B0AE-320E-457D-B563-76C055AF7B16} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {89CAAD93-98E2-4EC7-A3A5-83B5F3914CA2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8C33C99D-0574-456F-8D2B-BC38752FA93D} - System32\Tasks\SUPERAntiSpyware Scheduled Task f8489060-6417-4b7f-a1ca-991fac567c8d => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {90A030D0-528C-4E8D-8DEE-30148189B325} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {ADFC56EB-2C28-4E55-9EA2-1ACAE1CB9855} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {B5806FF0-FAC1-4C2D-B390-BD56ABE789DB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {B61CC182-8288-4869-9219-C11408E525C7} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1843087761-3388040796-2952334477-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {C0F5AA7A-17FB-448C-BD61-86DB9B76131A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-08-25] (Microsoft Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 493eba2e-79e6-4379-9ddd-d44b7793fbe7.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task f8489060-6417-4b7f-a1ca-991fac567c8d.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-04-17 23:55 - 2014-04-17 23:55 - 00082432 _____ () C:\AMD\amdacpusrsvc.exe
2014-07-29 19:12 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-07-12 08:13 - 2014-07-12 08:13 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-08-11 18:51 - 2012-08-08 21:36 - 00390672 _____ () C:\Program Files\Cyberlink\Shared files\RichVideo64.exe
2014-08-25 17:13 - 2014-08-25 17:13 - 08892576 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-06-28 15:07 - 2012-11-01 11:23 - 00089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2014-06-28 15:07 - 2012-11-01 11:21 - 00325120 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2012-01-10 14:41 - 2014-07-12 20:28 - 00567880 _____ () C:\Program Files (x86)\puush\puush.exe
2014-08-23 21:53 - 2013-04-09 11:05 - 00846848 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2014-07-12 07:31 - 2014-07-12 07:31 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-09-13 11:19 - 2014-09-13 11:19 - 02862592 _____ () C:\Program Files\AVAST Software\Avast\defs\14091301\algo.dll
2014-09-14 08:29 - 2014-09-14 08:29 - 02862592 _____ () C:\Program Files\AVAST Software\Avast\defs\14091400\algo.dll
2014-06-02 02:07 - 2014-06-02 02:07 - 00062464 _____ () C:\Program Files (x86)\Conceiva\Mezzmo\HS_REGEX.dll
2014-06-02 02:07 - 2014-06-02 02:07 - 00839680 _____ () C:\Program Files (x86)\Conceiva\Mezzmo\LIBEAY32.dll
2014-06-02 02:07 - 2014-06-02 02:07 - 00159744 _____ () C:\Program Files (x86)\Conceiva\Mezzmo\SSLEAY32.dll
2014-05-22 21:32 - 2014-05-22 21:32 - 00034304 _____ () C:\Program Files (x86)\Conceiva\Mezzmo\extension-functions.dll
2014-09-13 22:16 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-09-13 22:16 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-09-13 22:16 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-09-13 22:16 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-09-13 22:16 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-09-02 07:14 - 2014-09-02 07:14 - 00962560 _____ () A:\Origin\platforms\qwindows.dll
2014-09-02 07:14 - 2014-09-02 07:14 - 00024064 _____ () A:\Origin\imageformats\qgif.dll
2014-09-02 07:14 - 2014-09-02 07:14 - 00025088 _____ () A:\Origin\imageformats\qico.dll
2014-09-02 07:14 - 2014-09-02 07:14 - 00217088 _____ () A:\Origin\imageformats\qjpeg.dll
2014-09-02 07:14 - 2014-09-02 07:14 - 00261632 _____ () A:\Origin\imageformats\qmng.dll
2014-09-02 07:14 - 2014-09-02 07:14 - 00019968 _____ () A:\Origin\imageformats\qtga.dll
2014-09-02 07:14 - 2014-09-02 07:14 - 00302592 _____ () A:\Origin\imageformats\qtiff.dll
2014-09-02 07:14 - 2014-09-02 07:14 - 00018944 _____ () A:\Origin\imageformats\qwbmp.dll
2014-08-23 21:53 - 2013-01-22 14:40 - 01411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2014-08-23 21:53 - 2013-04-02 13:41 - 00193024 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2014-08-23 21:53 - 2013-04-02 13:41 - 00138752 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJWF\WJWF.dll
2014-08-23 21:53 - 2013-02-28 11:42 - 00115712 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJWF\WJWF_WPS_WIN7.DLL
2014-06-28 14:23 - 2013-11-13 10:19 - 00022656 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwinit.dll
2014-06-28 14:23 - 2013-11-13 10:18 - 00140416 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwcore.dll
2014-06-28 14:23 - 2013-11-13 10:18 - 00043136 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwutils.dll
2014-06-28 14:23 - 2013-11-13 10:19 - 00029312 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwstream.dll
2014-06-28 14:23 - 2013-11-13 10:18 - 00053376 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwhtml.dll
2014-06-28 14:23 - 2013-11-13 10:19 - 00059520 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwapp.dll
2014-06-28 14:23 - 2013-11-13 10:19 - 00041088 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwftp.dll
2014-06-28 14:23 - 2013-11-13 10:18 - 00024704 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwdir.dll
2014-06-28 14:23 - 2013-11-13 10:19 - 00037504 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwmime.dll
2014-06-28 14:23 - 2013-11-13 10:19 - 00072320 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwhttp.dll
2014-06-28 14:23 - 2013-11-13 10:18 - 00031360 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwcache.dll
2014-06-28 14:23 - 2013-11-13 10:18 - 00026752 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwfile.dll
2014-06-28 14:23 - 2013-11-13 10:18 - 00024704 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\wwwtrans.dll
2014-06-28 14:23 - 2012-05-10 08:06 - 00062464 _____ () C:\Program Files (x86)\Conceiva\DownloadStudio\HS_REGEX.dll
2014-07-12 07:31 - 2014-07-12 07:31 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-13 09:09 - 2014-08-13 09:09 - 00035328 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-05-24 11:41 - 2014-05-24 11:41 - 00091648 _____ () C:\Program Files (x86)\FileZilla FTP Client\libgcc_s_sjlj-1.dll
2014-05-24 11:41 - 2014-05-24 11:41 - 00892416 _____ () C:\Program Files (x86)\FileZilla FTP Client\libstdc++-6.dll
2014-09-12 18:57 - 2014-09-03 22:01 - 01098056 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libglesv2.dll
2014-09-12 18:57 - 2014-09-03 22:01 - 00174408 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libegl.dll
2014-09-12 18:57 - 2014-09-03 22:01 - 08577864 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\pdf.dll
2014-09-12 18:57 - 2014-09-03 22:01 - 00331592 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll
2014-09-12 18:57 - 2014-09-03 22:01 - 01660232 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
==================== Faulty Device Manager Devices =============
 
Name: FantomHD
Description: FANTOM DRIVE    
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: MICRONET
Service: WUDFWpdFs
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 
 
Name: PCI Simple Communications Controller
Description: PCI Simple Communications Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (09/14/2014 08:00:22 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -2143485936
 
Error: (09/14/2014 08:00:22 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {93E816F6-B8FD-44F8-B1C4-FDCB9992F90D}
 
Error: (09/14/2014 08:00:22 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {93E816F6-B8FD-44F8-B1C4-FDCB9992F90D}
 
Error: (09/14/2014 02:16:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_PcaSvc, version: 6.3.9600.16384, time stamp: 0x5215dfe3
Faulting module name: ntdll.dll, version: 6.3.9600.17114, time stamp: 0x53649e73
Exception code: 0xc0000008
Fault offset: 0x000000000009cbea
Faulting process id: 0x418
Faulting application start time: 0xsvchost.exe_PcaSvc0
Faulting application path: svchost.exe_PcaSvc1
Faulting module path: svchost.exe_PcaSvc2
Report Id: svchost.exe_PcaSvc3
Faulting package full name: svchost.exe_PcaSvc4
Faulting package-relative application ID: svchost.exe_PcaSvc5
 
Error: (09/13/2014 10:25:08 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file  for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program The Sims™ 4 because of this error.
 
Program: The Sims™ 4
File: 
 
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
 
Additional Data
Error value: 00000000
Disk type: 0
 
Error: (09/13/2014 10:25:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TS4.exe, version: 1.0.677.20, time stamp: 0x540a88b9
Faulting module name: TS4.exe, version: 1.0.677.20, time stamp: 0x540a88b9
Exception code: 0xc000001d
Fault offset: 0x01a57917
Faulting process id: 0x1a28
Faulting application start time: 0xTS4.exe0
Faulting application path: TS4.exe1
Faulting module path: TS4.exe2
Report Id: TS4.exe3
Faulting package full name: TS4.exe4
Faulting package-relative application ID: TS4.exe5
 
Error: (09/13/2014 09:17:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_PcaSvc, version: 6.3.9600.16384, time stamp: 0x5215dfe3
Faulting module name: ntdll.dll, version: 6.3.9600.17114, time stamp: 0x53649e73
Exception code: 0xc0000008
Fault offset: 0x000000000009cbea
Faulting process id: 0x418
Faulting application start time: 0xsvchost.exe_PcaSvc0
Faulting application path: svchost.exe_PcaSvc1
Faulting module path: svchost.exe_PcaSvc2
Report Id: svchost.exe_PcaSvc3
Faulting package full name: svchost.exe_PcaSvc4
Faulting package-relative application ID: svchost.exe_PcaSvc5
 
Error: (09/13/2014 05:33:43 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file  for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program The Sims™ 4 because of this error.
 
Program: The Sims™ 4
File: 
 
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
 
Additional Data
Error value: 00000000
Disk type: 0
 
Error: (09/13/2014 05:33:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TS4.exe, version: 1.0.677.20, time stamp: 0x540a88b9
Faulting module name: TS4.exe, version: 1.0.677.20, time stamp: 0x540a88b9
Exception code: 0xc000001d
Fault offset: 0x01a57917
Faulting process id: 0x46a4
Faulting application start time: 0xTS4.exe0
Faulting application path: TS4.exe1
Faulting module path: TS4.exe2
Report Id: TS4.exe3
Faulting package full name: TS4.exe4
Faulting package-relative application ID: TS4.exe5
 
Error: (09/12/2014 06:56:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: arma3.exe, version: 1.29.127.147, time stamp: 0x5410cf7f
Faulting module name: PhysX3_x86.dll, version: 3.2.4.1, time stamp: 0x5164246f
Exception code: 0xc0000005
Fault offset: 0x000def66
Faulting process id: 0x1c5c
Faulting application start time: 0xarma3.exe0
Faulting application path: arma3.exe1
Faulting module path: arma3.exe2
Report Id: arma3.exe3
Faulting package full name: arma3.exe4
Faulting package-relative application ID: arma3.exe5
 
 
System errors:
=============
Error: (09/14/2014 08:02:15 AM) (Source: DCOM) (EventID: 10010) (User: Home)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
 
Error: (09/14/2014 08:01:45 AM) (Source: DCOM) (EventID: 10010) (User: Home)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
 
Error: (09/14/2014 02:17:09 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Device Association Service service, but this action failed with the following error: 
%%1056
 
Error: (09/14/2014 02:17:04 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 
Error: (09/14/2014 02:17:04 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 
Error: (09/14/2014 02:17:04 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 
Error: (09/14/2014 02:17:03 AM) (Source: DCOM) (EventID: 10010) (User: Home)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
 
Error: (09/14/2014 02:17:03 AM) (Source: DCOM) (EventID: 10010) (User: Home)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
 
Error: (09/14/2014 02:16:14 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Network Connection Broker service, but this action failed with the following error: 
%%1056
 
Error: (09/14/2014 02:16:09 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Driver Foundation - User-mode Driver Framework service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (09/14/2014 08:00:22 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -2143485936
 
Error: (09/14/2014 08:00:22 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {93E816F6-B8FD-44F8-B1C4-FDCB9992F90D}
 
Error: (09/14/2014 08:00:22 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {93E816F6-B8FD-44F8-B1C4-FDCB9992F90D}
 
Error: (09/14/2014 02:16:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_PcaSvc6.3.9600.163845215dfe3ntdll.dll6.3.9600.1711453649e73c0000008000000000009cbea41801cfcfc25bdf2efbC:\Windows\System32\svchost.exeC:\Windows\SYSTEM32\ntdll.dllffb46a9d-3bde-11e4-8277-448a5b5ea799
 
Error: (09/13/2014 10:25:08 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: The Sims™ 4000000000
 
Error: (09/13/2014 10:25:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: TS4.exe1.0.677.20540a88b9TS4.exe1.0.677.20540a88b9c000001d01a579171a2801cfcfcb77a55555A:\downloads\The SIMS 4-Deluxe Edition-SKIDROWCRACK\Game\Bin\TS4.exeA:\downloads\The SIMS 4-Deluxe Edition-SKIDROWCRACK\Game\Bin\TS4.exeb9be2938-3bbe-11e4-8277-448a5b5ea799
 
Error: (09/13/2014 09:17:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_PcaSvc6.3.9600.163845215dfe3ntdll.dll6.3.9600.1711453649e73c0000008000000000009cbea41801cfcee5a31d3602C:\Windows\System32\svchost.exeC:\Windows\SYSTEM32\ntdll.dll4aef55ff-3bb5-11e4-8276-448a5b5ea799
 
Error: (09/13/2014 05:33:43 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: The Sims™ 4000000000
 
Error: (09/13/2014 05:33:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: TS4.exe1.0.677.20540a88b9TS4.exe1.0.677.20540a88b9c000001d01a5791746a401cfcfa2c1c8fdf5A:\downloads\The SIMS 4-Deluxe Edition-SKIDROWCRACK\Game\Bin\TS4.exeA:\downloads\The SIMS 4-Deluxe Edition-SKIDROWCRACK\Game\Bin\TS4.exe04047cd5-3b96-11e4-8276-448a5b5ea799
 
Error: (09/12/2014 06:56:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: arma3.exe1.29.127.1475410cf7fPhysX3_x86.dll3.2.4.15164246fc0000005000def661c5c01cfcee235c7bf5ba:\Steam\steamapps\common\Arma 3\arma3.exea:\Steam\steamapps\common\Arma 3\PhysX3_x86.dll76f95982-3ad8-11e4-8275-448a5b5ea799
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4670K CPU @ 3.40GHz
Percentage of memory in use: 26%
Total physical RAM: 16327.93 MB
Available physical RAM: 12037.8 MB
Total Pagefile: 18759.93 MB
Available Pagefile: 14862.25 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
 
==================== Drives ================================
 
Drive a: (New Volume) (Fixed) (Total:931.17 GB) (Free:559.42 GB) NTFS
Drive c: () (Fixed) (Total:232.88 GB) (Free:158.08 GB) NTFS
Drive g: (FantomHD) (Fixed) (Total:931.51 GB) (Free:549.35 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 0005F5B9)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F02A51C3)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================


BC AdBot (Login to Remove)

 


#2 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:54 AM

Posted 14 September 2014 - 01:23 PM

Hi there,

does this fix resolve the problem?


Please download this attached Attached File  fixlist.txt   151bytes   8 downloads and save it in the same directory as FRST.
  • Start FRST with Administrator privileges.
  • Press the Fix button.
  • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.
    Please copy and paste its contents in your next reply.


#3 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:54 AM

Posted 19 September 2014 - 03:33 PM

I haven't heard from you for some time.
Do you still need help?

#4 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:54 AM

Posted 29 September 2014 - 09:19 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users