Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Stamplive Chrome Browser


  • This topic is locked This topic is locked
2 replies to this topic

#1 erocker2015

erocker2015

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:46 AM

Posted 15 May 2015 - 10:55 AM

FBAR Logs

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-05-2015 02
Ran by Eddie (administrator) on ROCKERSEREBUS on 15-05-2015 11:41:12
Running from C:\Users\Eddie\Downloads
Loaded Profiles: Eddie (Available profiles: Eddie)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(SecureMix LLC) D:\Program Files (x86)\GlassWire\GWCtlSrv.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(CCP hf.) D:\Program Files (x86)\CCP\EVE\bin\exefile.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(SecureMix LLC) D:\Program Files (x86)\GlassWire\GlassWire.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SecureMix LLC) D:\Program Files (x86)\GlassWire\GWIdlMon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(The Pidgin developer community) D:\Program Files (x86)\Pidgin\pidgin.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(CCP hf.) D:\Program Files (x86)\CCP\EVE\bin\exefile.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(TeamSpeak Systems GmbH) D:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Nullsoft, Inc.) D:\Program Files (x86)\Winamp\winamp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CCP hf.) D:\Program Files (x86)\CCP\EVE\bin\exefile.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Eddie\Downloads\adwcleaner_4.203.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7158344 2013-03-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1278024 2013-03-08] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-08-29] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-18] (Oracle Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\...\Run: [Steam] => d:\Program Files (x86)\Steam\steam.exe [2888384 2015-05-11] (Valve Corporation)
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [25700400 2015-04-28] (Google)
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\...\Run: [GlassWire] => d:\Program Files (x86)\GlassWire\glasswire.exe [10587432 2015-03-11] (SecureMix LLC)
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3095840 2015-04-30] (Nota Inc.)
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\...\Run: [GoogleChromeAutoLaunch_6E09778F7F7CDD2F049D4FFBE8B798C3] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-05-05] (Google Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04] (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-25] (Oracle Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-14] (Microsoft Corporation.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-25] (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-14] (Microsoft Corporation.)
Tcpip\Parameters: [DhcpNameServer] 64.71.255.204 64.71.255.198
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-15] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-15] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-06] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-12] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-04-04] (Adobe Systems Inc.)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/ig/redirectdomain?brand=ASUT&bmod=ASUT"
CHR Profile: C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-24]
CHR Extension: (Google Docs) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-24]
CHR Extension: (Google Drive) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-24]
CHR Extension: (iCloud) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdilfkhpgihcibbahmoggdaeciachopd [2015-02-24]
CHR Extension: (YouTube) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-24]
CHR Extension: (Google Search) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-24]
CHR Extension: (Google Calendar) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-02-24]
CHR Extension: (Google Sheets) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-24]
CHR Extension: (iCloud Bookmarks) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2015-02-24]
CHR Extension: (Bookmark Manager) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Cisco WebEx Extension) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2015-02-24]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-12]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-03-08]
CHR Extension: (iCloud Dashboard) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgojgddhfhekopdpkocobommepgdeffb [2015-02-24]
CHR Extension: (Google Wallet) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-24]
CHR Extension: (Gmail) - C:\Users\Eddie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-24]
CHR HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1429504 2015-03-04] (Microsoft Corporation)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128 2011-05-24] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-27] (NVIDIA Corporation)
R2 GlassWire; d:\Program Files (x86)\GlassWire\GWCtlSrv.exe [6293288 2015-03-11] (SecureMix LLC)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-05-12] (SurfRight B.V.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-02-15] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-27] (NVIDIA Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R3 AU8168; C:\Windows\system32\DRIVERS\au630x64.sys [792648 2013-09-23] (Realtek                                            )
R3 CorsairCAHS1; C:\Windows\system32\drivers\CAHS164.sys [1308160 2011-06-17] (C-Media Electronics Inc)
R1 gwdrv; C:\Windows\system32\DRIVERS\gwdrv.sys [33296 2015-03-11] (SecureMix LLC)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [43664 2015-05-15] ()
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-14] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-27] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [40136 2015-03-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-02-05] (NVIDIA Corporation)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-15 11:41 - 2015-05-15 11:41 - 00021711 _____ () C:\Users\Eddie\Downloads\FRST.txt
2015-05-15 11:41 - 2015-05-15 11:41 - 00000000 ____D () C:\FRST
2015-05-15 11:40 - 2015-05-15 11:40 - 02106368 _____ (Farbar) C:\Users\Eddie\Downloads\FRST64.exe
2015-05-15 08:36 - 2015-05-15 08:36 - 02204160 _____ () C:\Users\Eddie\Downloads\adwcleaner_4.203.exe
2015-05-15 04:00 - 2015-05-15 04:00 - 00043664 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2015-05-15 00:18 - 2015-05-15 00:18 - 00000000 ____D () C:\ProgramData\Gyazo
2015-05-14 22:51 - 2015-05-14 22:51 - 02209792 _____ () C:\Users\Eddie\Downloads\adwcleaner_4.204.exe
2015-05-13 05:34 - 2015-04-30 16:35 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 05:34 - 2015-04-30 16:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 02:40 - 2015-04-30 19:05 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-05-13 02:40 - 2015-04-30 18:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-05-13 02:40 - 2015-04-24 17:32 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-05-13 02:40 - 2015-04-09 20:34 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-05-13 02:40 - 2015-04-09 20:11 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-05-13 02:40 - 2015-03-19 21:56 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-05-13 02:40 - 2015-03-17 13:26 - 00467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-05-13 02:40 - 2015-03-12 20:29 - 00410017 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-05-13 02:40 - 2015-03-08 22:02 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-05-13 02:40 - 2015-03-04 19:09 - 01429504 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-05-13 02:40 - 2015-03-03 21:32 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-13 02:40 - 2015-03-03 21:12 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-13 02:40 - 2015-01-29 20:53 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-13 02:39 - 2015-04-21 13:14 - 24971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-13 02:39 - 2015-04-21 12:50 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-13 02:39 - 2015-04-21 12:50 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-13 02:39 - 2015-04-21 12:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-13 02:39 - 2015-04-21 12:37 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-05-13 02:39 - 2015-04-21 12:35 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-13 02:39 - 2015-04-21 12:31 - 06025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-13 02:39 - 2015-04-21 12:24 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-13 02:39 - 2015-04-21 12:13 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-05-13 02:39 - 2015-04-21 12:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-13 02:39 - 2015-04-21 12:09 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-05-13 02:39 - 2015-04-21 12:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-05-13 02:39 - 2015-04-21 12:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-05-13 02:39 - 2015-04-21 12:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-05-13 02:39 - 2015-04-21 12:04 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-13 02:39 - 2015-04-21 11:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-05-13 02:39 - 2015-04-21 11:58 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-05-13 02:39 - 2015-04-21 11:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-05-13 02:39 - 2015-04-21 11:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-05-13 02:39 - 2015-04-21 11:49 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-13 02:39 - 2015-04-21 11:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-05-13 02:39 - 2015-04-21 11:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-13 02:39 - 2015-04-21 11:40 - 14401536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-13 02:39 - 2015-04-21 11:38 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-05-13 02:39 - 2015-04-21 11:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-05-13 02:39 - 2015-04-21 11:36 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-05-13 02:39 - 2015-04-21 11:32 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-05-13 02:39 - 2015-04-21 11:31 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-13 02:39 - 2015-04-21 11:28 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-05-13 02:39 - 2015-04-21 11:27 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-13 02:39 - 2015-04-21 11:26 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-05-13 02:39 - 2015-04-21 11:26 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-05-13 02:39 - 2015-04-21 11:25 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-05-13 02:39 - 2015-04-21 11:17 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-13 02:39 - 2015-04-21 11:15 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-13 02:39 - 2015-04-21 11:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-05-13 02:39 - 2015-04-21 11:02 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-05-13 02:39 - 2015-04-21 10:58 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-13 02:39 - 2015-04-21 10:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-05-13 02:39 - 2015-04-13 18:48 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-05-13 02:39 - 2015-04-09 21:00 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-05-13 02:39 - 2015-04-09 20:50 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-05-13 02:39 - 2015-04-09 20:26 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-05-13 02:39 - 2015-04-08 18:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-05-13 02:39 - 2015-04-02 20:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-13 02:39 - 2015-04-02 20:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-05-13 02:39 - 2015-04-01 18:22 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-05-13 02:39 - 2015-04-01 18:20 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-05-13 02:39 - 2015-03-31 23:45 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-05-13 02:39 - 2015-03-31 22:31 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-05-13 02:39 - 2015-03-30 01:47 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-05-13 02:39 - 2015-03-26 23:27 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-05-13 02:39 - 2015-03-26 22:50 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-05-13 02:39 - 2015-03-26 22:48 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-05-13 02:39 - 2015-03-13 00:03 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-05-13 02:39 - 2015-03-13 00:03 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-05-13 02:39 - 2015-03-12 22:02 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-05-13 02:39 - 2015-03-12 21:11 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-05-13 02:39 - 2015-03-12 20:39 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-05-13 02:39 - 2015-03-10 21:49 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-05-13 02:39 - 2015-03-10 21:09 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-05-13 02:39 - 2015-03-05 23:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-05-13 02:39 - 2015-03-05 22:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-05-13 02:39 - 2015-03-05 22:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-05-13 02:39 - 2015-02-17 19:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-05-12 17:27 - 2015-05-12 17:27 - 00000000 ____D () C:\Program Files\McAfee
2015-05-10 16:52 - 2015-05-15 02:52 - 00002210 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-10 16:52 - 2015-05-10 16:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-09 00:57 - 2015-05-09 00:57 - 01874712 _____ (Microsoft Corporation) C:\Users\Eddie\Downloads\nis_full.exe
2015-05-09 00:55 - 2015-05-09 00:56 - 152365336 _____ (Microsoft Corporation) C:\Users\Eddie\Downloads\mpam-fe (1).exe
2015-05-09 00:53 - 2015-05-09 00:53 - 153162008 _____ (Microsoft Corporation) C:\Users\Eddie\Downloads\mpam-fe.exe
2015-05-07 09:46 - 2015-05-07 09:46 - 00000000 ____D () C:\Users\Default\AppData\Local\Google
2015-05-07 09:46 - 2015-05-07 09:46 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google
2015-05-02 11:25 - 2015-05-02 11:25 - 00016920 _____ () C:\Users\Eddie\Downloads\Anath.htm
2015-04-30 23:16 - 2015-05-14 22:31 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-04-30 23:16 - 2015-04-30 23:16 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-30 23:16 - 2015-04-30 23:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-30 23:15 - 2015-04-30 23:15 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Eddie\Downloads\mbam-setup-2.1.6.1022.exe
2015-04-30 23:15 - 2015-04-30 23:15 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-30 23:15 - 2015-04-30 23:15 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-04-30 23:15 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-04-30 23:15 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-04-30 23:15 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-04-27 01:38 - 2015-04-27 01:38 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Eddie\Downloads\SpyHunter-Installer.exe
2015-04-27 01:38 - 2015-04-27 01:38 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Eddie\Downloads\SpyHunter-Installer (1).exe
2015-04-25 10:50 - 2015-05-15 09:00 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3183777059-3968788955-2477885685-1001
2015-04-25 10:45 - 2015-05-13 01:37 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit
2015-04-25 10:44 - 2015-04-25 10:44 - 02967032 _____ (Malwarebytes ) C:\Users\Eddie\Downloads\mbae-setup.exe
2015-04-25 00:41 - 2015-04-25 00:41 - 00000796 _____ () C:\Users\Eddie\Desktop\JRT.txt
2015-04-25 00:40 - 2015-04-25 00:40 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-ROCKERSEREBUS-Windows-8.1-(64-bit).dat
2015-04-25 00:40 - 2015-04-25 00:40 - 00000000 ____D () C:\RegBackup
2015-04-25 00:39 - 2015-04-25 00:40 - 02685461 _____ (Thisisu) C:\Users\Eddie\Downloads\JRT.exe
2015-04-21 20:42 - 2015-04-21 20:42 - 00001012 _____ () C:\Users\Eddie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\exefile.lnk
2015-04-20 16:40 - 2015-04-20 16:40 - 09063216 _____ () C:\WINDOWS\PE_File.dll
2015-04-20 16:40 - 2015-04-20 16:40 - 08997056 _____ () C:\WINDOWS\PE_Rom.dll
2015-04-20 16:40 - 2015-04-20 16:40 - 00000000 ____D () C:\Users\Eddie\Downloads\H87M-PRO-ASUS-M51AC-1002
2015-04-20 16:36 - 2015-04-20 16:36 - 00000000 ____D () C:\Users\Eddie\Downloads\MEI_Win8-1_VER95101658_5M
2015-04-20 16:35 - 2015-04-20 16:36 - 72817637 _____ () C:\Users\Eddie\Downloads\MEI_Win8-1_VER95101658_5M.zip
2015-04-20 16:35 - 2015-04-20 16:35 - 06989737 _____ () C:\Users\Eddie\Downloads\H87M-PRO-ASUS-M51AC-1002.zip
2015-04-17 20:22 - 2015-04-17 20:22 - 00000000 ____D () C:\WINDOWS\system32\appraiser
2015-04-16 10:02 - 2015-04-16 10:02 - 00021252 _____ () C:\Users\Eddie\Downloads\Neda,Zephan,Zahefeus,Pout,Arzieh,Nahrneder,Fanathor,Nakis,Zirsem,Rafeme,Chitiamem,Amafi,Hakana,Ashkoo,Rilera,Nandeza,Hezere,Kuhri,Ham,Ibani,Dimoohan,Timudan,Goudiyah,Baratar,Chamemi,Sassecho,Tegheon,Cabeki,Irmalin,Upt,V.htm
2015-04-16 10:02 - 2015-04-16 10:02 - 00021252 _____ () C:\Users\Eddie\Downloads\Neda,Zephan,Zahefeus,Pout,Arzieh,Nahrneder,Fanathor,Nakis,Zirsem,Rafeme,Chitiamem,Amafi,Hakana,Ashkoo,Rilera,Nandeza,Hezere,Kuhri,Ham,Ibani,Dimoohan,Timudan,Goudiyah,Baratar,Chamemi,Sassecho,Tegheon,Cabeki,Irmalin,U (1).htm
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-15 11:39 - 2015-02-24 22:58 - 00000000 ____D () C:\Users\Eddie\AppData\Roaming\.purple
2015-05-15 11:38 - 2015-03-03 04:03 - 01826194 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-15 11:35 - 2015-03-21 15:50 - 00000000 ____D () C:\AdwCleaner
2015-05-15 11:02 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-05-15 10:59 - 2015-03-16 22:43 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-15 10:51 - 2015-02-24 22:41 - 00000934 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-15 10:04 - 2015-02-24 23:03 - 00000000 ____D () C:\Users\Eddie\AppData\Roaming\TS3Client
2015-05-15 09:03 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-05-15 08:52 - 2013-08-29 06:17 - 00000000 ____D () C:\Program Files (x86)\ASUS
2015-05-15 08:52 - 2013-08-29 06:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-05-15 08:52 - 2013-08-29 06:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-05-15 08:44 - 2015-03-03 05:08 - 00000000 ____D () C:\Users\Eddie\OneDrive
2015-05-15 08:40 - 2015-02-24 22:41 - 00000930 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-15 08:39 - 2015-03-07 17:34 - 00000000 ___RD () C:\Users\Eddie\Google Drive
2015-05-15 08:38 - 2013-10-18 07:00 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-15 08:38 - 2013-08-22 10:46 - 00299318 _____ () C:\WINDOWS\setupact.log
2015-05-15 08:38 - 2013-08-22 10:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-15 08:38 - 2013-08-22 09:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-05-15 08:33 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-05-15 08:20 - 2013-08-29 06:22 - 00000000 ____D () C:\ProgramData\McAfee
2015-05-15 08:20 - 2013-08-22 10:44 - 00414448 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-15 08:17 - 2013-08-22 11:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-05-15 08:17 - 2013-08-22 09:36 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers
2015-05-15 08:16 - 2015-03-03 04:16 - 00000000 ____D () C:\Users\Eddie
2015-05-15 00:18 - 2015-04-11 00:18 - 00003756 _____ () C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2015-05-15 00:18 - 2015-04-11 00:18 - 00001005 _____ () C:\Users\Public\Desktop\Gyazo.lnk
2015-05-15 00:18 - 2015-04-11 00:18 - 00001005 _____ () C:\Users\Public\Desktop\Gyazo GIF.lnk
2015-05-15 00:18 - 2015-04-11 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2015-05-15 00:18 - 2015-04-11 00:18 - 00000000 ____D () C:\Program Files (x86)\Gyazo
2015-05-13 05:36 - 2012-07-26 03:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-05-13 05:34 - 2015-02-25 07:24 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-05-13 05:31 - 2015-02-25 07:24 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-13 05:27 - 2014-11-21 04:25 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-12 19:46 - 2015-02-24 22:41 - 00003906 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-12 19:46 - 2015-02-24 22:41 - 00003670 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-12 17:20 - 2014-11-21 04:34 - 00012652 _____ () C:\WINDOWS\PFRO.log
2015-05-10 16:52 - 2015-02-24 22:41 - 00000000 ____D () C:\Program Files (x86)\Google
2015-05-07 09:46 - 2015-03-07 17:34 - 00002065 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2015-05-07 09:46 - 2015-03-07 17:34 - 00002063 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2015-05-07 09:46 - 2015-03-07 17:34 - 00002053 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2015-05-07 09:46 - 2015-03-07 17:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-05-05 13:59 - 2014-11-21 12:03 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-05-05 13:59 - 2014-11-21 12:03 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-05 09:09 - 2015-03-10 16:55 - 00000000 ____D () C:\Users\Eddie\AppData\Roaming\EVEMon
2015-05-03 23:25 - 2015-03-11 13:16 - 00000000 ____D () C:\Users\Eddie\AppData\Roaming\Kodi
2015-04-23 20:27 - 2015-03-21 16:04 - 00000000 ____D () C:\Program Files\HitmanPro
2015-04-23 20:26 - 2015-03-21 16:03 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-04-17 20:39 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\AppCompat
2015-04-17 20:22 - 2014-11-21 11:56 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
 
Some content of TEMP:
====================
C:\Users\Eddie\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Eddie\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Eddie\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Eddie\AppData\Local\Temp\nvStInst.exe
C:\Users\Eddie\AppData\Local\Temp\Quarantine.exe
C:\Users\Eddie\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-05-10 06:59
 
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-05-2015 02
Ran by Eddie at 2015-05-15 11:41:54
Running from C:\Users\Eddie\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3183777059-3968788955-2477885685-500 - Administrator - Disabled)
Eddie (S-1-5-21-3183777059-3968788955-2477885685-1001 - Administrator - Enabled) => C:\Users\Eddie
Guest (S-1-5-21-3183777059-3968788955-2477885685-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3183777059-3968788955-2477885685-1005 - Limited - Enabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.01.01 - ASUSTeK Computer Inc.)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\InstallShield_{5DA7ED45-2322-45AA-99B6-B8F94EBF859F}) (Version: 20.06.6362.4423 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 20.06.6362.4423 - Alcor Micro Corp.) Hidden
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
ASUS Easy Update 2 (HKLM-x32\...\{E7AA854E-6756-424E-84C2-4E47D5729AFF}) (Version: 3.00.06 - ASUSTeK Computer Inc.)
ASUS Music Maker (HKLM-x32\...\MAGIX_{5E00D8DF-905B-41C7-B562-C126DE3A4167}) (Version: 18.0.3.3 - MAGIX AG)
ASUS Music Maker (Version: 18.0.3.3 - MAGIX AG) Hidden
ASUS MX Suite (HKLM-x32\...\MAGIX_{9204F334-2A46-49F1-89C4-65CEB7AC1974}) (Version: 1.13.0.121 - MAGIX AG)
ASUS MX Suite (Version: 1.13.0.121 - MAGIX AG) Hidden
ASUS Video easy (HKLM-x32\...\MAGIX_{7DB84618-76E3-4999-A9A0-D7D756E14129}) (Version: 3.0.1.42 - MAGIX AG)
ASUS Video easy (Version: 3.0.1.42 - MAGIX AG) Hidden
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.18.159 - ASUS Cloud Corporation)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4127.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.4127.52 - CyberLink Corp.) Hidden
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
eManual (HKLM-x32\...\{0C84E634-EB68-4A54-B21E-A05EC87A4CC5}) (Version: 1.00.06 - ASUSTeK Computer Inc.)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{6C5F8503-55D2-4398-858C-362B7A7AF51C}) (Version: 2.1.31.0 - MAGIX AG)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galeria de Fotografias (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
GlassWire 1.0 (remove only) (HKLM-x32\...\GlassWire 1.0) (Version: 1.0.40 - SecureMix LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.152 - Google Inc.)
Google Drive (HKLM-x32\...\{35574F09-89F9-4B16-B69B-64F3E25901B8}) (Version: 1.21.9226.6034 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Gyazo 2.4 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.241 - SurfRight B.V.)
Homeworld Remastered Collection (HKLM-x32\...\Steam App 244160) (Version:  - Gearbox Software)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Kodi (HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\...\Kodi) (Version:  - XBMC-Foundation)
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller Driver 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.88 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Graphics Driver 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Miracast Virtual Audio 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 347.88 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - )
Raccolta foto (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6865 - Realtek Semiconductor Corp.)
Recon Software (HKLM-x32\...\InstallShield_{5116E722-70F6-42DD-8B0A-EC5136A78978}) (Version: 1.24 - Cooler Master)
Recon Software (x32 Version: 1.24 - Cooler Master) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15024.5 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.15024.5 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15024.8 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15024.8 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Συλλογή φωτογραφιών (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
影像中心 (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
照片库 (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
24-04-2015 06:43:04 Scheduled Checkpoint
03-05-2015 06:23:43 Scheduled Checkpoint
10-05-2015 07:19:08 Scheduled Checkpoint
12-05-2015 21:03:43 Checkpoint by HitmanPro
15-05-2015 08:52:34 Removed Why ASUS PC
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {0CE2B17D-0021-4B4C-8793-D1F63F971099} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-05-13] (Microsoft Corporation)
Task: {100CC36D-624C-4AC2-A43A-190473081E2B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-24] (Google Inc.)
Task: {41775C74-3EA3-48B1-908E-79A111FD7240} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-23] (Microsoft Corporation)
Task: {6B6D018C-029B-4378-B734-DA2700E68FA0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {85FDAA17-65DD-4DE1-986C-7E12B7C0185D} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {872FB7B9-BF29-4D66-AA46-987D117EF064} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {8EF130F4-B9CB-4476-8A02-5463BF0A914D} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {A9269738-52F3-44A7-918A-EAF9CA799398} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-04-30] ()
Task: {BDF1B9F9-71E6-4BBB-8346-BB32539AA9FF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-24] (Google Inc.)
Task: {E3EC89F0-0A5F-469E-A65C-12D5D4FFB00E} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2012-09-27] ()
Task: {EFB6DEAC-D363-4E56-9330-ABE0625025FE} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {F840152A-7F2B-4E7D-A38E-4929A9215A89} - System32\Tasks\ASUS\ASUS Easy Update 2 => C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe [2013-04-01] (ASUSTeK Computer Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-03-03 04:03 - 2015-03-13 12:16 - 00118472 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-08-29 06:18 - 2012-06-01 05:42 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2012-12-19 02:10 - 2012-12-19 02:10 - 00072192 _____ () C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
2014-09-18 03:23 - 2014-09-18 03:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-10-14 14:51 - 2014-10-14 14:51 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 03:23 - 2014-09-18 03:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-10-14 14:51 - 2014-10-14 14:51 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-02-28 05:14 - 2014-02-28 05:14 - 00173568 _____ () D:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-02-27 10:51 - 2014-02-27 10:51 - 01080832 _____ () D:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 10:51 - 2014-02-27 10:51 - 00833024 _____ () D:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-08-04 09:43 - 2014-08-04 09:43 - 00102344 _____ () D:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2014-08-04 09:43 - 2014-08-04 09:43 - 00108488 _____ () D:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-02-27 10:51 - 2014-02-27 10:51 - 00030208 _____ () D:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 10:51 - 2014-02-27 10:51 - 00233984 _____ () D:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-08-04 09:46 - 2014-08-04 09:46 - 00563656 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-08-04 09:46 - 2014-08-04 09:46 - 00579016 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-08-04 09:46 - 2014-08-04 09:46 - 00041928 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\ts3g15.dll
2014-02-27 10:51 - 2014-02-27 10:51 - 00159232 _____ () D:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2015-05-15 08:36 - 2015-05-15 08:36 - 02204160 _____ () C:\Users\Eddie\Downloads\adwcleaner_4.203.exe
2013-08-29 06:18 - 2015-05-15 08:38 - 00025600 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2013-08-29 06:18 - 2010-06-28 22:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2015-03-30 19:10 - 2015-03-27 23:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-04-28 21:33 - 2015-04-28 21:33 - 03441280 _____ () D:\Program Files (x86)\CCP\EVE\bin\blue.dll
2014-01-10 02:00 - 2013-12-09 13:15 - 00877568 _____ () D:\Program Files (x86)\CCP\EVE\bin\_ssl.pyd
2014-12-09 17:55 - 2014-12-09 17:55 - 00083072 _____ () D:\Program Files (x86)\CCP\EVE\bin\_ctypes.pyd
2014-12-09 17:52 - 2014-12-09 17:52 - 00205440 _____ () D:\Program Files (x86)\CCP\EVE\bin\_yaml.pyd
2014-01-10 02:00 - 2013-12-09 13:17 - 00631936 _____ () D:\Program Files (x86)\CCP\EVE\bin\d3dinfo.pyd
2014-01-10 02:00 - 2013-12-09 13:33 - 00461824 _____ () D:\Program Files (x86)\CCP\EVE\bin\pyFSD.pyd
2014-12-09 17:54 - 2014-12-09 17:54 - 00131200 _____ () D:\Program Files (x86)\CCP\EVE\bin\pyexpat.pyd
2014-01-10 02:04 - 2013-12-09 13:17 - 00276840 _____ () D:\Program Files (x86)\CCP\EVE\bin\ortp.dll
2014-01-10 02:00 - 2013-12-09 13:18 - 01150976 _____ () D:\Program Files (x86)\CCP\EVE\bin\ccpBrowserHost.pyd
2014-01-10 02:00 - 2013-12-09 13:16 - 00075080 _____ () D:\Program Files (x86)\CCP\EVE\bin\pychartdir27.pyd
2014-12-09 17:52 - 2014-12-09 17:52 - 00690816 _____ () D:\Program Files (x86)\CCP\EVE\bin\unicodedata.pyd
2015-04-28 21:33 - 2015-04-28 21:33 - 00631936 _____ () D:\Program Files (x86)\CCP\EVE\bin\pyEvePathfinder.dll
2015-04-28 21:33 - 2015-04-28 21:33 - 00130176 _____ () D:\Program Files (x86)\CCP\EVE\bin\_twitch.dll
2014-01-10 02:04 - 2013-12-09 13:17 - 00890368 _____ () D:\Program Files (x86)\CCP\EVE\bin\twitchsdk_32_release.dll
2014-01-10 02:04 - 2013-12-09 13:17 - 00394810 _____ () D:\Program Files (x86)\CCP\EVE\bin\libmp3lame-ttv.dll
2014-01-10 02:04 - 2013-12-09 13:17 - 00113171 _____ () D:\Program Files (x86)\CCP\EVE\bin\swresample-ttv-0.dll
2014-01-10 02:04 - 2013-12-09 13:17 - 00246332 _____ () D:\Program Files (x86)\CCP\EVE\bin\avutil-ttv-51.dll
2015-04-28 21:33 - 2015-04-28 21:33 - 00064640 _____ () D:\Program Files (x86)\CCP\EVE\bin\_ime.dll
2015-05-15 08:23 - 2015-04-16 13:40 - 00776192 _____ () D:\Program Files (x86)\Steam\SDL2.dll
2015-05-15 08:23 - 2015-04-22 22:16 - 04962816 _____ () D:\Program Files (x86)\Steam\v8.dll
2015-05-15 08:23 - 2015-05-11 18:03 - 02396352 _____ () D:\Program Files (x86)\Steam\video.dll
2015-05-15 08:23 - 2015-04-22 22:16 - 01556992 _____ () D:\Program Files (x86)\Steam\icui18n.dll
2015-05-15 08:23 - 2015-04-22 22:16 - 01187840 _____ () D:\Program Files (x86)\Steam\icuuc.dll
2015-03-03 00:52 - 2014-12-01 17:31 - 02396672 _____ () D:\Program Files (x86)\Steam\libavcodec-56.dll
2015-03-03 00:52 - 2014-12-01 17:31 - 00479744 _____ () D:\Program Files (x86)\Steam\libavformat-56.dll
2015-03-03 00:52 - 2014-12-01 17:31 - 00332800 _____ () D:\Program Files (x86)\Steam\libavresample-2.dll
2015-03-03 00:52 - 2014-12-01 17:31 - 00442880 _____ () D:\Program Files (x86)\Steam\libavutil-54.dll
2015-03-03 00:52 - 2014-12-01 17:31 - 00485888 _____ () D:\Program Files (x86)\Steam\libswscale-3.dll
2015-05-15 08:22 - 2015-05-11 18:03 - 00703168 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-05-15 08:39 - 2015-05-15 08:39 - 00098816 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32api.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00110080 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\pywintypes27.dll
2015-05-15 08:39 - 2015-05-15 08:39 - 00364544 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\pythoncom27.dll
2015-05-15 08:39 - 2015-05-15 08:39 - 00045568 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\_socket.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 01161216 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\_ssl.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00320512 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32com.shell.shell.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00713216 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\_hashlib.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 01175040 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\wx._core_.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00805888 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\wx._gdi_.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00811008 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\wx._windows_.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 01062400 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\wx._controls_.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00735232 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\wx._misc_.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00682496 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\pysqlite2._sqlite.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00128512 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\_elementtree.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00127488 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\pyexpat.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00087552 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\_ctypes.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00119808 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32file.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00108544 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32security.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00007168 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\hashobjs_ext.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00017408 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\usb_ext.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00167936 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32gui.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00018432 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32event.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00013824 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\common.time34.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00036864 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\_psutil_windows.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00038912 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32inet.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00011264 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32crypt.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00070656 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\wx._html2.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00027136 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\_multiprocessing.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00020480 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\_yappi.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00035840 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32process.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00686080 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\unicodedata.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00122368 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\wx._wizard.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00024064 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32pipe.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00010240 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\select.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00025600 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32pdh.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00525640 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\windows._lib_cacheinvalidation.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00017408 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32profile.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00022528 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\win32ts.pyd
2015-05-15 08:39 - 2015-05-15 08:39 - 00078336 _____ () C:\Users\Eddie\AppData\Local\Temp\_MEI53882\wx._animate.pyd
2015-05-15 02:52 - 2015-05-05 00:06 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libglesv2.dll
2015-05-15 02:52 - 2015-05-05 00:06 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libegl.dll
2015-05-15 08:22 - 2015-05-11 15:01 - 36302728 _____ () D:\Program Files (x86)\Steam\bin\libcef.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00036878 _____ () D:\Program Files (x86)\Pidgin\libssp-0.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00671031 _____ () D:\Program Files (x86)\Pidgin\exchndl.dll
2015-02-24 22:57 - 2015-02-24 22:57 - 00904525 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2015-02-24 22:57 - 2015-02-24 22:57 - 00100352 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2015-02-24 22:57 - 2015-02-24 22:57 - 00279059 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2015-02-24 22:57 - 2015-02-24 22:57 - 00553382 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2015-02-24 22:57 - 2015-02-24 22:57 - 00216992 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 01274655 _____ () D:\Program Files (x86)\Pidgin\libxml2-2.dll
2015-02-24 22:57 - 2015-02-24 22:57 - 00177586 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00475580 _____ () D:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00021075 _____ () D:\Program Files (x86)\Pidgin\plugins\.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00020997 _____ () D:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00013253 _____ () D:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00024924 _____ () D:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015702 _____ () D:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00014147 _____ () D:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00018882 _____ () D:\Program Files (x86)\Pidgin\plugins\history.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00012865 _____ () D:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00019043 _____ () D:\Program Files (x86)\Pidgin\plugins\idle.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00018555 _____ () D:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015074 _____ () D:\Program Files (x86)\Pidgin\plugins\libaim.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00311021 _____ () D:\Program Files (x86)\Pidgin\liboscar.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00092398 _____ () D:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00328186 _____ () D:\Program Files (x86)\Pidgin\plugins\libgg.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00016005 _____ () D:\Program Files (x86)\Pidgin\plugins\libicq.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00107365 _____ () D:\Program Files (x86)\Pidgin\plugins\libirc.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00190464 _____ () D:\Program Files (x86)\Pidgin\libsasl.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00374169 _____ () D:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00150598 _____ () D:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00106671 _____ () D:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00123540 _____ () D:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00116071 _____ () D:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00152852 _____ () D:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00171123 _____ () D:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 02097721 _____ () D:\Program Files (x86)\Pidgin\libsilc-1-1-2.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00818985 _____ () D:\Program Files (x86)\Pidgin\libsilcclient-1-1-3.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00055880 _____ () D:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00021337 _____ () D:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00417758 _____ () D:\Program Files (x86)\Pidgin\libjabber.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00022832 _____ () D:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00236666 _____ () D:\Program Files (x86)\Pidgin\libymsg.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00019793 _____ () D:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00047934 _____ () D:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00021795 _____ () D:\Program Files (x86)\Pidgin\plugins\markerline.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00013456 _____ () D:\Program Files (x86)\Pidgin\plugins\newline.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00029225 _____ () D:\Program Files (x86)\Pidgin\plugins\notify.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00017023 _____ () D:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00029256 _____ () D:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015380 _____ () D:\Program Files (x86)\Pidgin\plugins\psychic.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015429 _____ () D:\Program Files (x86)\Pidgin\plugins\relnot.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015045 _____ () D:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00069625 _____ () D:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00031993 _____ () D:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00012004 _____ () D:\Program Files (x86)\Pidgin\plugins\ssl.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015978 _____ () D:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00030353 _____ () D:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00032020 _____ () D:\Program Files (x86)\Pidgin\plugins\ticker.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00018399 _____ () D:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00023851 _____ () D:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00029791 _____ () D:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00030771 _____ () D:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00037191 _____ () D:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00044494 _____ () D:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00102400 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslANONYMOUS.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00115712 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslCRAMMD5.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00140288 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslDIGESTMD5.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00102912 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslLOGIN.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00102912 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslPLAIN.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00486400 _____ () D:\Program Files (x86)\Pidgin\sqlite3.dll
2015-02-24 22:57 - 2015-02-24 22:57 - 00090496 _____ () D:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2013-10-18 06:58 - 2013-02-15 20:15 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2013-12-12 22:47 - 2013-12-12 22:47 - 00333824 _____ () D:\Program Files (x86)\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2015-05-15 02:52 - 2015-05-05 00:06 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Users\Eddie\OneDrive:ms-properties
 
==================== Safe Mode (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, the associated entry will be removed from the registry.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Eddie\AppData\Roaming\Microsoft\Windows Photo Viewer\Windows Photo Viewer Wallpaper.jpg
DNS Servers: 64.71.255.204 - 64.71.255.198
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-3183777059-3968788955-2477885685-1001\...\StartupApproved\Run: => "puush"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{13708681-78AD-4426-BC2E-10C2A26375C5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{46AF24EE-1674-4436-AA4E-76CFBF882BE6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8F58D798-4109-4B01-9D47-B24314B6B3B8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{940A9B0F-1632-41EC-92BA-89FCF93B31C2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{227CA9F3-918F-4F55-B01B-AC27559B740A}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{893380BA-3B7B-437D-9B0D-1A179B267411}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{8751C3F1-6062-462C-AE44-EEBBB8E826BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{92A64815-EC92-49D4-BAB5-B9E99B24CD7B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2704BC89-6E00-4A09-90B3-52290DFF2671}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B1724F1A-CEF1-49DB-B518-28CB83070395}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{601A8443-3B11-4182-94D4-0CB8DFACC230}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{93261195-89B1-4A56-BD25-1BCE40E7785A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{B4FC3A2A-5485-4CC5-B6DE-67D215DC2337}D:\program files (x86)\ccp\eve\bin\exefile.exe] => (Allow) D:\program files (x86)\ccp\eve\bin\exefile.exe
FirewallRules: [TCP Query User{0749BF71-F31D-45CF-AB53-CC5351AC577D}D:\program files (x86)\ccp\eve\bin\exefile.exe] => (Allow) D:\program files (x86)\ccp\eve\bin\exefile.exe
FirewallRules: [{1B2595EC-96B1-4915-9677-DC476804278B}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{37615F37-B7D9-455C-9C1B-A55270BF333B}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{1AD72EB5-A810-49E6-868B-E1015C843CDA}] => (Allow) D:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{30938C67-7A9B-45C9-B8B8-573FC7DDB50D}] => (Allow) D:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{D5068D92-4C86-4EB2-BAC9-9FA41ED40C61}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{09F496BA-612B-414F-8DBC-E2069A6F686C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{8159B81B-FC68-457D-9017-AE7B6A5E77B9}] => (Allow) LPort=1900
FirewallRules: [{976399C4-32B2-4797-B806-5A0D16A15331}] => (Allow) LPort=2869
FirewallRules: [{8B8BEFCB-2F93-48D2-951C-57D747FE9053}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{984841DA-DB1B-4A16-BD0E-43007EA9637D}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{6CA2BFA8-64F0-485B-808D-27AE22B35682}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1915FBBE-D0C5-4924-8D7C-8108D3548785}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4B493815-3667-466A-9AB3-3BF2E1DC2594}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{2B4CD718-1E00-4E2A-9CAF-005B03B7A1E9}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{A5F636AA-A753-4B8C-AA27-7CE986D41956}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{04527F03-D603-4855-A776-C47F968B4D25}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{5689CB76-3EB5-406B-8794-F5D452EE641D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{BA763737-D6BC-4F99-B99E-BCE38EC4C609}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{1C602BA7-4A80-44A6-A8A8-02A24CC5EC29}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{43023F77-4E10-4A1D-A963-F2D31D4E4A6E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{7DC7FA3D-5864-4E5F-9C69-6EAC99E328CB}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Homeworld\HWLauncher\Launcher.exe
FirewallRules: [{F401DB5A-396B-4CD8-BB25-0333738E346D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Homeworld\HWLauncher\Launcher.exe
FirewallRules: [{64250DE5-FEC7-4529-9AED-703D51075C2B}] => (Allow) d:\Program Files (x86)\GlassWire\GWCtlSrv.exe
FirewallRules: [{A557B4C0-46B7-4FA6-872E-1D4AAAA6958A}] => (Allow) d:\Program Files (x86)\GlassWire\GWCtlSrv.exe
FirewallRules: [{051151F3-2080-4E45-B9CA-736337E1CFD9}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{93354BD6-3D01-428B-A591-9C6F73BA4A56}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [TCP Query User{CC34E775-7C1D-4680-8C87-F73024749DD6}D:\program files (x86)\kodi\kodi.exe] => (Allow) D:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{8FE7AFBA-DB12-421C-8AA3-5DFA4A812054}D:\program files (x86)\kodi\kodi.exe] => (Allow) D:\program files (x86)\kodi\kodi.exe
FirewallRules: [{5129DBEF-7035-419E-8D66-9F6452052A6B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{DC560A6F-9337-4701-A2A0-E601BF168712}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{DB1B47C5-F6FC-4D43-8B67-9B5A076FCAD0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (05/15/2015 08:55:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Faulting module name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Exception code: 0xc000041d
Fault offset: 0x0000a491
Faulting process id: 0x1d1c
Faulting application start time: 0xLiveUpdt.exe0
Faulting application path: LiveUpdt.exe1
Faulting module path: LiveUpdt.exe2
Report Id: LiveUpdt.exe3
Faulting package full name: LiveUpdt.exe4
Faulting package-relative application ID: LiveUpdt.exe5
 
Error: (05/15/2015 08:55:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Faulting module name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Exception code: 0xc0000005
Fault offset: 0x0000a491
Faulting process id: 0x1d1c
Faulting application start time: 0xLiveUpdt.exe0
Faulting application path: LiveUpdt.exe1
Faulting module path: LiveUpdt.exe2
Report Id: LiveUpdt.exe3
Faulting package full name: LiveUpdt.exe4
Faulting package-relative application ID: LiveUpdt.exe5
 
Error: (05/15/2015 08:40:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Adera.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1b48
 
Start Time: 01d08f0c49416465
 
Termination Time: 4294967295
 
Application Path: C:\Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe\Adera.exe
 
Report Id: 91074385-faff-11e4-be83-ac220b8cd396
 
Faulting package full name: Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe
 
Faulting package-relative application ID: App
 
Error: (05/15/2015 08:40:40 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROCKERSEREBUS)
Description: Activation of app Microsoft.Adera_8wekyb3d8bbwe!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (05/15/2015 08:40:27 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: ROCKERSEREBUS)
Description: App Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe+App did not launch within its allotted time.
 
Error: (05/15/2015 08:27:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Faulting module name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Exception code: 0xc000041d
Fault offset: 0x0000a491
Faulting process id: 0x620
Faulting application start time: 0xLiveUpdt.exe0
Faulting application path: LiveUpdt.exe1
Faulting module path: LiveUpdt.exe2
Report Id: LiveUpdt.exe3
Faulting package full name: LiveUpdt.exe4
Faulting package-relative application ID: LiveUpdt.exe5
 
Error: (05/15/2015 08:27:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Faulting module name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Exception code: 0xc0000005
Fault offset: 0x0000a491
Faulting process id: 0x620
Faulting application start time: 0xLiveUpdt.exe0
Faulting application path: LiveUpdt.exe1
Faulting module path: LiveUpdt.exe2
Report Id: LiveUpdt.exe3
Faulting package full name: LiveUpdt.exe4
Faulting package-relative application ID: LiveUpdt.exe5
 
Error: (05/15/2015 04:25:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Dependent Assembly Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (05/14/2015 10:33:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Faulting module name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Exception code: 0xc000041d
Fault offset: 0x0000a491
Faulting process id: 0x2d4
Faulting application start time: 0xLiveUpdt.exe0
Faulting application path: LiveUpdt.exe1
Faulting module path: LiveUpdt.exe2
Report Id: LiveUpdt.exe3
Faulting package full name: LiveUpdt.exe4
Faulting package-relative application ID: LiveUpdt.exe5
 
Error: (05/14/2015 10:33:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Faulting module name: LiveUpdt.exe, version: 2.0.0.0, time stamp: 0x5155445a
Exception code: 0xc0000005
Fault offset: 0x0000a491
Faulting process id: 0x2d4
Faulting application start time: 0xLiveUpdt.exe0
Faulting application path: LiveUpdt.exe1
Faulting module path: LiveUpdt.exe2
Report Id: LiveUpdt.exe3
Faulting package full name: LiveUpdt.exe4
Faulting package-relative application ID: LiveUpdt.exe5
 
 
System errors:
=============
Error: (05/15/2015 08:37:46 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel® Capability Licensing Service Interface service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.
 
Error: (05/15/2015 08:37:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The BBUpdate service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (05/15/2015 08:37:46 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (05/15/2015 08:37:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Steam Client Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (05/15/2015 08:37:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (05/15/2015 08:37:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Rapid Storage Technology service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (05/15/2015 08:37:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The FABS - Helping agent for MAGIX media database service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (05/15/2015 08:37:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (05/15/2015 08:37:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The SAMSUNG Mobile Connectivity Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (05/15/2015 08:37:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The NVIDIA Streamer Service service terminated unexpectedly.  It has done this 1 time(s).
 
 
Microsoft Office Sessions:
=========================
Error: (05/15/2015 08:55:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: LiveUpdt.exe2.0.0.05155445aLiveUpdt.exe2.0.0.05155445ac000041d0000a4911d1c01d08f0cfd59bb1eC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exeC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exeba37acc6-fb01-11e4-be83-ac220b8cd396
 
Error: (05/15/2015 08:55:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: LiveUpdt.exe2.0.0.05155445aLiveUpdt.exe2.0.0.05155445ac00000050000a4911d1c01d08f0cfd59bb1eC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exeC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exeb9da0cfc-fb01-11e4-be83-ac220b8cd396
 
Error: (05/15/2015 08:40:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Adera.exe0.0.0.01b4801d08f0c494164654294967295C:\Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe\Adera.exe91074385-faff-11e4-be83-ac220b8cd396Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbweApp
 
Error: (05/15/2015 08:40:40 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROCKERSEREBUS)
Description: Microsoft.Adera_8wekyb3d8bbwe!App-2144927142
 
Error: (05/15/2015 08:40:27 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: ROCKERSEREBUS)
Description: Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe+App
 
Error: (05/15/2015 08:27:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: LiveUpdt.exe2.0.0.05155445aLiveUpdt.exe2.0.0.05155445ac000041d0000a49162001d08f0a79d78191C:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exeC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exebdcbe9ac-fafd-11e4-be82-ac220b8cd396
 
Error: (05/15/2015 08:27:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: LiveUpdt.exe2.0.0.05155445aLiveUpdt.exe2.0.0.05155445ac00000050000a49162001d08f0a79d78191C:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exeC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exebca4302b-fafd-11e4-be82-ac220b8cd396
 
Error: (05/15/2015 04:25:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"C:\Program Files (x86)\CyberLink\PowerDVD10\Activate.exe
 
Error: (05/14/2015 10:33:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LiveUpdt.exe2.0.0.05155445aLiveUpdt.exe2.0.0.05155445ac000041d0000a4912d401d08e8cad00757cC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exeC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.execaff7377-faaa-11e4-be81-ac220b8cd396
 
Error: (05/14/2015 10:33:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LiveUpdt.exe2.0.0.05155445aLiveUpdt.exe2.0.0.05155445ac00000050000a4912d401d08e8cad00757cC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.exeC:\Program Files (x86)\ASUS\ASUS Easy Update\LiveUpdt.execa1ec916-faaa-11e4-be81-ac220b8cd396
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-4770 CPU @ 3.40GHz
Percentage of memory in use: 29%
Total physical RAM: 16291.13 MB
Available physical RAM: 11523.84 MB
Total Pagefile: 18723.13 MB
Available Pagefile: 11914.1 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB
 
==================== Drives ================================
 
Drive c: (Windows) (Fixed) (Total:149.22 GB) (Free:86.11 GB) NTFS
Drive d: (Data) (Fixed) (Total:759.21 GB) (Free:684.66 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: D098B613)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================
 
Please advise me if you need anything else.
 
 
 


BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,669 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:46 AM

Posted 20 May 2015 - 11:00 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/576276 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,669 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:46 AM

Posted 25 May 2015 - 11:05 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users