Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please Help


  • Please log in to reply
16 replies to this topic

#1 CarpeFacinus

CarpeFacinus

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:50 AM

Posted 28 December 2016 - 05:52 PM

I've had this problem for months now and it keeps getting worse and worse. Back when it first started it would only randomly press the ctrl+alt+tab keys but it's gotten more worse to the point where it constantly presses the keys and freezes my mouse in place. It's also started to freeze my mouse and if I move my mouse up it would open the start menu and if I move it down it'll minimize all programs and making it go right would make a virtual desktop. What makes matters worse is that I don't know what it causing it so I seek your help.
 
Video to help understand:
h t t ps://sendvid.com/4gelbpx5 (I was not pressing any keys just moving my mouse)
 
EDIT:
It happens more frequently when I move my mouse

Edit: Link to possibly deceptive website deactivated to prevent anyone from inadvertently getting infected. Please do not visit that site without adequate malware protection enabled.~ Animal

BC AdBot (Login to Remove)

 


#2 kaljukass

kaljukass

  • Banned
  • 291 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:50 AM

Posted 28 December 2016 - 06:39 PM

Totally typical mismanaged and corrupted Windows.

What do you hope, to somebody come and make them works? 
I cannot see any question.
What do you hope, to somebody come and make them works?
I cannot see any question.
Clean computer,check system files, update drivers if needed.
If all this will not change nothing, make clean installation. Before installin, check disk for errors and fix errors if needed and possible.
But I want to say, this may be also related to mouse, if You uses wireless mouse.
If so, the mouse is usually not repairable.


#3 CarpeFacinus

CarpeFacinus
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:50 AM

Posted 28 December 2016 - 07:16 PM

 

Totally typical mismanaged and corrupted Windows.

What do you hope, to somebody come and make them works? 
I cannot see any question.
What do you hope, to somebody come and make them works?
I cannot see any question.
Clean computer,check system files, update drivers if needed.
If all this will not change nothing, make clean installation. Before installin, check disk for errors and fix errors if needed and possible.
But I want to say, this may be also related to mouse, if You uses wireless mouse.
If so, the mouse is usually not repairable.

 

Thats not very helpful...or credible.



#4 kaljukass

kaljukass

  • Banned
  • 291 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:50 AM

Posted 29 December 2016 - 10:14 AM

How do help you if you do not even talk about the computer anything, what operating system, when and how it was installed there, when the mistake appeared first time, and so on.
Also, you have not asked any specific questions.
How can somebody help you if nothing isn't known?



#5 CarpeFacinus

CarpeFacinus
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:50 AM

Posted 29 December 2016 - 01:07 PM

How do help you if you do not even talk about the computer anything, what operating system, when and how it was installed there, when the mistake appeared first time, and so on.
Also, you have not asked any specific questions.
How can somebody help you if nothing isn't known?

I can barely understand you so I feel you may not be fluent in English. If you need something known just ask instead of throwing insults at me.



#6 kaljukass

kaljukass

  • Banned
  • 291 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:50 AM

Posted 29 December 2016 - 01:30 PM

Looks like you're a troll.

Good night.



#7 CarpeFacinus

CarpeFacinus
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:50 AM

Posted 29 December 2016 - 01:35 PM

Looks like you're a troll.

Good night.

I don't see how I'm a troll. I still have a problem that still needs a serious solution. 



#8 Animal

Animal

    Bleepin' Animinion


  • Site Admin
  • 35,905 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where You Least Expect Me To Be
  • Local time:01:50 AM

Posted 29 December 2016 - 03:06 PM

While it's not appropriate to attack someone seeking help. It is incumbent on the person seeking help to respond with information requested. Otherwise the appearance of trollish behavior or lack of cooperation appears and people get frustrated.

So I urge the OP to cooperate and respond to questions asked if they wish to honestly try and resolve their issues. Not evade and apply circular logic. Otherwise BleepingComputer is probably not the best fit for your computer issue resolution needs.

The Internet is so big, so powerful and pointless that for some people it is a complete substitute for life.
Andrew Brown (1938-1994)


A learning experience is one of those things that say, "You know that thing you just did? Don't do that." Douglas Adams (1952-2001)


"Imagination is more important than knowledge. Knowledge is limited. Imagination circles the world." Albert Einstein (1879-1955)


Follow BleepingComputer on: Facebook | Twitter | Google+

#9 CarpeFacinus

CarpeFacinus
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:50 AM

Posted 29 December 2016 - 03:58 PM

While it's not appropriate to attack someone seeking help. It is incumbent on the person seeking help to respond with information requested. Otherwise the appearance of trollish behavior or lack of cooperation appears and people get frustrated.

So I urge the OP to cooperate and respond to questions asked if they wish to honestly try and resolve their issues. Not evade and apply circular logic. Otherwise BleepingComputer is probably not the best fit for your computer issue resolution needs.

I'm sorry that you believed that I was not cooperating I was simply stating that I can't understand him and that I don't know what information he needs.



#10 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,110 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:50 PM

Posted 29 December 2016 - 05:05 PM

from your initial post...

 

it would only randomly press the ctrl+alt+tab keys

It's also started to freeze my mouse

 

in this topic...  https://www.bleepingcomputer.com/forums/t/633468/ctrlalttab-being-spammed/

You stated It's not showing me everything on the screen it keeps cutting the posts in half

....yet you quoted the entire post from boopme ...

,,,, and you did not run any of the scans requested.

boopme also requested you send the scan results as a pm....from the lack of feedback in that topic I can only assume this did not happen either.

 

Obviously there is some problem with your pc....possibly caused by your using sites such as the one you used to link a video in your various posts. It is a nasty site....malware abounds there.....so it should be no surprise at all that your pc is doing strange things.

 

 

3Al62Pm.pngMiniToolBox

  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

SXvL3ZF.pngTDSSKiller

  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

zcMPezJ.pngAdwCleaner

  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

lv0mVRW.pngJunkware Removal Tool

  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

cvMlKv6.pngESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

 


Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#11 CarpeFacinus

CarpeFacinus
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:50 AM

Posted 29 December 2016 - 08:14 PM

MTB:

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Brody (administrator) on 29-12-2016 at 17:10:18
Running from "C:\Users\Brody\Desktop"
Microsoft Windows 10 Pro  (X64)
Model: MS-7821 Manufacturer: MSI
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
========================= IP Configuration: ================================
 
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
D-Link DWA-130 Wireless N USB Adapter = Wi-Fi (Connected)
Microsoft KM-TEST Loopback Adapter = Npcap Loopback Adapter (Connected)
TAP Adapter V9 for Private Tunnel = Ethernet 2 (Media disconnected)
Killer e2200 Gigabit Ethernet Controller = Ethernet (Media disconnected)
TAP-Windows Adapter V9 = Ethernet 3 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global defaultcurhoplimit=64 icmpredirects=enabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="VirtualBox Host-Only Network" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Npcap Loopback Adapter" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : GamingPC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : cgocable.net
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Killer e2200 Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : D8-CB-8A-36-94-3D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter VirtualBox Host-Only Network:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
   Physical Address. . . . . . . . . : 0A-00-27-00-00-00
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1567:a00b:e0ee:2124%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.56.1(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 302645287
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1D-29-DB-7C-B8-A3-86-80-48-8E
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Npcap Loopback Adapter:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Npcap Loopback Adapter
   Physical Address. . . . . . . . . : 02-00-4C-4F-4F-50
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::2574:2f9b:79fc:7a23%16(Preferred) 
   Autoconfiguration IPv4 Address. . : 169.254.122.35(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.0.0
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 738328652
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1D-29-DB-7C-B8-A3-86-80-48-8E
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Ethernet 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : TAP Adapter V9 for Private Tunnel
   Physical Address. . . . . . . . . : 00-FF-62-1E-8D-D0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : TAP-Windows Adapter V9
   Physical Address. . . . . . . . . : 00-FF-11-12-F9-61
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : cgocable.net
   Description . . . . . . . . . . . : D-Link DWA-130 Wireless N USB Adapter
   Physical Address. . . . . . . . . : B8-A3-86-80-48-8E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::215c:fcdb:973f:86c5%17(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.0.108(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : December 28, 2016 5:40:38 PM
   Lease Expires . . . . . . . . . . : January 5, 2017 3:55:21 PM
   Default Gateway . . . . . . . . . : fe80::218:e7ff:fed0:55b6%17
                                       192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 62432134
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1D-29-DB-7C-B8-A3-86-80-48-8E
   DNS Servers . . . . . . . . . . . : 192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  UnKnown
Address:  192.168.0.1
 
Name:    google.com
Addresses:  2607:f8b0:400b:806::200e
 172.217.3.14
 
 
Pinging google.com [172.217.3.14] with 32 bytes of data:
Reply from 172.217.3.14: bytes=32 time=28ms TTL=54
Reply from 172.217.3.14: bytes=32 time=25ms TTL=54
 
Ping statistics for 172.217.3.14:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 25ms, Maximum = 28ms, Average = 26ms
Server:  UnKnown
Address:  192.168.0.1
 
Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
 2001:4998:44:204::a7
 2001:4998:c:a06::2:4008
 98.139.183.24
 98.138.253.109
 206.190.36.45
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=49ms TTL=53
Reply from 98.138.253.109: bytes=32 time=52ms TTL=53
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 49ms, Maximum = 52ms, Average = 50ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...d8 cb 8a 36 94 3d ......Killer e2200 Gigabit Ethernet Controller
 11...0a 00 27 00 00 00 ......VirtualBox Host-Only Ethernet Adapter
 16...02 00 4c 4f 4f 50 ......Npcap Loopback Adapter
  6...00 ff 62 1e 8d d0 ......TAP Adapter V9 for Private Tunnel
  3...00 ff 11 12 f9 61 ......TAP-Windows Adapter V9
 17...b8 a3 86 80 48 8e ......D-Link DWA-130 Wireless N USB Adapter
  1...........................Software Loopback Interface 1
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.108     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      169.254.0.0      255.255.0.0         On-link    169.254.122.35    266
   169.254.122.35  255.255.255.255         On-link    169.254.122.35    266
  169.254.255.255  255.255.255.255         On-link    169.254.122.35    266
      192.168.0.0    255.255.255.0         On-link     192.168.0.108    281
    192.168.0.108  255.255.255.255         On-link     192.168.0.108    281
    192.168.0.255  255.255.255.255         On-link     192.168.0.108    281
     192.168.56.0    255.255.255.0         On-link      192.168.56.1    266
     192.168.56.1  255.255.255.255         On-link      192.168.56.1    266
   192.168.56.255  255.255.255.255         On-link      192.168.56.1    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.56.1    266
        224.0.0.0        240.0.0.0         On-link     192.168.0.108    281
        224.0.0.0        240.0.0.0         On-link    169.254.122.35    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.56.1    266
  255.255.255.255  255.255.255.255         On-link     192.168.0.108    281
  255.255.255.255  255.255.255.255         On-link    169.254.122.35    266
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 17    281 ::/0                     fe80::218:e7ff:fed0:55b6
  1    306 ::1/128                  On-link
 11    266 fe80::/64                On-link
 17    281 fe80::/64                On-link
 16    266 fe80::/64                On-link
 11    266 fe80::1567:a00b:e0ee:2124/128
                                    On-link
 17    281 fe80::215c:fcdb:973f:86c5/128
                                    On-link
 16    266 fe80::2574:2f9b:79fc:7a23/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    266 ff00::/8                 On-link
 17    281 ff00::/8                 On-link
 16    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55808] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/29/2016 03:55:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: GAMINGPC)
Description: Package Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe+App was terminated because it took too long to suspend.
 
Error: (12/29/2016 02:26:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1125
 
Error: (12/29/2016 02:26:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1125
 
Error: (12/29/2016 02:26:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (12/29/2016 12:01:58 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
 
Error: (12/28/2016 11:16:10 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
 
Error: (12/28/2016 08:56:18 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: GAMINGPC)
Description: Activation of application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147009280 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/28/2016 08:37:29 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
 
Error: (12/28/2016 05:43:04 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: GAMINGPC)
Description: Activation of application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147009280 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/28/2016 05:41:07 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
 
 
System errors:
=============
Error: (12/29/2016 02:26:29 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (12/29/2016 12:23:46 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
 
Error: (12/29/2016 12:23:40 AM) (Source: Service Control Manager) (User: )
Description: The User Data Access_16b6101 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (12/29/2016 12:23:40 AM) (Source: Service Control Manager) (User: )
Description: The User Data Storage_16b6101 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (12/29/2016 12:23:40 AM) (Source: Service Control Manager) (User: )
Description: The Contact Data_16b6101 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (12/29/2016 12:23:40 AM) (Source: Service Control Manager) (User: )
Description: The Sync Host_16b6101 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (12/29/2016 12:23:40 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (12/28/2016 09:10:15 PM) (Source: Service Control Manager) (User: )
Description: The User Data Access_12dfe49 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (12/28/2016 09:10:15 PM) (Source: Service Control Manager) (User: )
Description: The User Data Storage_12dfe49 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (12/28/2016 09:10:15 PM) (Source: Service Control Manager) (User: )
Description: The Contact Data_12dfe49 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (12/29/2016 03:55:36 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: GAMINGPC)
Description: Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe+App
 
Error: (12/29/2016 02:26:35 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1125
 
Error: (12/29/2016 02:26:35 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1125
 
Error: (12/29/2016 02:26:35 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (12/29/2016 12:01:58 PM) (Source: Steam Client Service)(User: )
Description: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
 
Error: (12/28/2016 11:16:10 PM) (Source: Steam Client Service)(User: )
Description: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
 
Error: (12/28/2016 08:56:18 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: GAMINGPC)
Description: Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147009280
 
Error: (12/28/2016 08:37:29 PM) (Source: Steam Client Service)(User: )
Description: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
 
Error: (12/28/2016 05:43:04 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: GAMINGPC)
Description: Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147009280
 
Error: (12/28/2016 05:41:07 PM) (Source: Steam Client Service)(User: )
Description: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
 
 
CodeIntegrity Errors:
===================================
  Date: 2016-12-27 20:02:01.629
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.
 
  Date: 2016-12-26 20:57:57.136
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.
 
  Date: 2016-12-26 20:51:17.885
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.
 
  Date: 2016-12-22 17:26:37.467
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\KeyScrambler\x64\KeyScramblerIE.dll that did not meet the Store signing level requirements.
 
  Date: 2016-12-21 23:55:42.808
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.
 
  Date: 2016-12-17 00:25:33.030
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.
 
  Date: 2016-12-10 23:23:41.036
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-12-10 23:23:41.022
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-12-06 15:45:29.998
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2016-12-06 15:45:29.985
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
=========================== Installed Programs ============================
 
ACPI Driver Installer (HKLM-x32\...\553E35CD-0415-41bc-B39A-410375E88534) (Version: 2.1 - Intel Corporation)
ActivePerl 5.20.2 Build 2002 (64-bit) (HKLM\...\{C07C5E6C-2225-4668-896C-31A7D105A9BB}) (Version: 5.20.2002 - ActiveState)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
AppHelper (HKLM-x32\...\AppHelper) (Version: 1.0 - AppHelper)
Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{9F429DF7-F8DD-4980-9673-E6DACA012F6C}) (Version: 3.3 - Microsoft Corporation) Hidden
Arma 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 3 (HKLM\...\Steam App 107410) (Version:  - Bohemia Interactive)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Auto Clicker v1.9 (HKLM-x32\...\{C0A7E4F3-82CC-416B-82C6-BA06AACFD635}_is1) (Version: 1.9 - MurGee.com)
Azure AD Authentication Connected Service (HKLM-x32\...\{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Cheat Engine 6.5 (HKLM-x32\...\Cheat Engine 6.5_is1) (Version:  - Cheat Engine)
CodeBlocks (HKCU\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Day of Defeat: Source (HKLM-x32\...\Steam App 300) (Version:  - Valve)
DayZ (HKLM\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{668B7711-6DAF-465F-9BE2-F3C07C962131}) (Version: 0.92.117 - Dotjosh Studios)
DCS World 2 OpenAlpha (HKLM\...\DCS World 2 OpenAlpha_is1) (Version: 2.0 - Eagle Dynamics)
Discord (HKCU\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.)
Dotfuscator and Analytics Community Edition 5.18.1 (HKLM-x32\...\{9890DF1A-10E9-4236-94B1-1EFAA4099F13}) (Version: 5.18.1.2898 - PreEmptive Solutions) Hidden
Dual Monitor Tools (HKLM-x32\...\{BECF19E8-E8BE-4CF1-B2CD-8BE8B5E72C99}) (Version: 2.4.0.0 - GNE)
Entity Framework 6.1.3 Tools  for Visual Studio 2015 (HKLM-x32\...\{1A8A9739-BAD7-491F-B5B9-A79A2B965422}) (Version: 14.0.40302.0 - Microsoft Corporation)
EpicBot (HKLM-x32\...\EpicBot) (Version:  - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version:  - SCS Software)
Façade (HKLM-x32\...\{24E34264-D483-477C-A9A0-4E53F69834CF}) (Version: 1.1.2 - Procedural Arts)
Folder Lock (HKLM-x32\...\Folder Lock) (Version:  - New Softwares.net)
GameTracker Lite (HKLM-x32\...\GameTracker Lite) (Version:  - ClanServers Hosting LLC.)
Garry's Mod (HKLM\...\Steam App 4000) (Version:  - Facepunch Studios)
Git version 2.8.3 (HKLM\...\Git_is1) (Version: 2.8.3 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.32.7 - Google Inc.) Hidden
Gpg4win (2.2.5) (HKLM-x32\...\GPG4Win) (Version: 2.2.5 - The Gpg4win Project)
Grammarly (HKCU\...\Grammarly) (Version: 1.4.23 - Grammarly)
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version:  - Rockstar North)
Gyazo 3.2.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hacknet (HKLM\...\Steam App 365450) (Version:  - Team Fractal Alligator)
Half-Life 2: Deathmatch (HKLM-x32\...\Steam App 320) (Version:  - Valve)
Half-Life Dedicated Server Update Tool (HKLM-x32\...\Half-Life Dedicated Server Update Tool) (Version:  - )
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.7.4 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.29.01 - Hyperionics Technology LLC)
IIS 10.0 Express (HKLM\...\{5984D8DA-C1AF-4284-9C88-D7150425B315}) (Version: 10.0.1734 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - )
Imagix 4D Release 64bit Version 8.1.3 (HKLM-x32\...\Imagix 4D64bit Version 8.1.3) (Version: 64bit Version 8.1.3 - Imagix Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel® Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4170 - Intel Corporation)
Intel® Smart Connect Technology (HKLM\...\{3CC1CC76-AB3A-4360-AB6F-1355D05A2A17}) (Version: 5.0.10.2907 - Intel Corporation)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{ECCB31F5-435D-4F37-A98D-5854D3C62718}) (Version: 1.1.1 - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\3FD0C489-0F02-481a-A3E1-9754CD396761) (Version:  - Intel Corporation)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle)
Java 8 Update 73 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Java SE Development Kit 7 Update 79 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle)
Java SE Development Kit 8 Update 51 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180510}) (Version: 8.0.510.16 - Oracle Corporation)
Java SE Development Kit 8 Update 51 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180510}) (Version: 8.0.510.16 - Oracle Corporation)
Java SE Development Kit 8 Update 71 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180710}) (Version: 8.0.710.15 - Oracle Corporation)
join.me (HKCU\...\JoinMe) (Version: 2.14.1.2431 - LogMeIn, Inc.)
join.me.launcher (HKLM-x32\...\{910ECE43-4D0D-4FAB-BE1F-6992F0495624}) (Version: 1.0.624.0 - LogMeIn, Inc.) Hidden
KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.8.2.0 - QFX Software Corporation)
Killer Bandwidth Control Filter Driver (HKLM\...\{24BA7D32-B740-47A3-BE0E-2F4863A05D13}) (Version: 1.1.56.1120 - Rivet Networks) Hidden
Killer E220x Drivers (HKLM\...\{921ABFC0-9681-487D-9379-89C1712EFEBF}) (Version: 1.1.56.1120 - Rivet Networks) Hidden
Killer Network Manager (HKLM\...\{E21E50A4-4A55-4A7E-B1AA-16F8F9E255C8}) (Version: 1.1.56.1120 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.56.1120 - Rivet Networks)
League of Legends (HKLM-x32\...\{E80C09B5-A296-47E9-BD4B-BCCF2FDCA13E}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League Screensaver (HKLM-x32\...\LolScreenSaver) (Version: W0.1.19-0.11.13-beta - Riot Games)
LinkChecker 9.3 (HKLM-x32\...\LinkChecker_is1) (Version:  - )
LLVM (HKLM-x32\...\LLVM) (Version: 3.8.0 - LLVM)
LMMS 1.1.3 (HKLM-x32\...\LMMS) (Version: 1.1.3 - LMMS Developers)
Logitech Options (HKLM\...\LogiOptions) (Version:  - Logitech)
LSPD First Response (HKLM-x32\...\LSPD First Response) (Version: 0.3.1 - G17 Media)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Medal of Honor: Pacific Assault™ (HKLM-x32\...\{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}) (Version: 1.2.1.280 - Electronic Arts)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{3D3CEBE6-40EA-4C48-97FD-73828281AB4A}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{68BA34E8-9B9D-4A74-83F0-7D366B532D75}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 (HKLM-x32\...\{10569041-3f7b-4637-80ae-53dd6f8aed08}) (Version: 14.0.23107.156 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
Microsoft Web Platform Installer 5.0 (HKLM\...\{4D84C195-86F0-4B34-8FDE-4A17EB41306A}) (Version: 5.0.50430.0 - Microsoft Corporation)
Microsoft WebMatrix 3 (HKLM-x32\...\{48B838D1-587F-4701-B08B-12F3276D609F}) (Version: 2.0.1934 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MK LOL (HKCU\...\MK LOL) (Version:  - )
Mount Your Friends (HKLM\...\Steam App 296470) (Version:  - Stegersaurus Software Inc.)
Movavi Video Converter 16 (HKLM-x32\...\Movavi Video Converter 16) (Version: 16.0.1 - Movavi)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{EB3DF0F0-0525-4C5A-A2F8-DEC868A3075D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 en-US)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.16 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.8 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 5.0.0.25 - MSI)
MSI Kombustor 2.5.9 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version:  - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.011 - MSI)
MSI Smart Utilities (HKLM-x32\...\{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1) (Version: 2.0.0.11 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.02 - MSI)
MSI® Intel® Extreme Tuning Utility (HKLM-x32\...\{2267B034-BB59-4653-A84D-D3C3C2699AB4}) (Version: 6.0.2.101 - Intel Corporation) Hidden
MSI® Intel® Extreme Tuning Utility (HKLM-x32\...\{482c7431-75e2-4124-a453-6a294cd2c6a4}) (Version: 6.0.2.101 - Intel Corporation)
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
MySQL Connector C++ 1.1.6 (HKLM\...\{80EE5F65-5553-47A1-B6A9-8BF3211D21A3}) (Version: 1.1.6 - Oracle and/or its affiliates)
MySQL Connector J (HKLM-x32\...\{8A9B23F6-9C1D-4DB2-8254-EAB70EF4325B}) (Version: 5.1.36 - Oracle Corporation)
MySQL Connector Net 6.9.6 (HKLM-x32\...\{71458704-E552-4A3E-8BFA-4F61C1F70724}) (Version: 6.9.6 - Oracle)
MySQL Connector Python v2.1.2 for Python v3.4 (HKLM-x32\...\{A5B23D02-86A6-438A-8791-04396AD43638}) (Version: 2.1.2 - Oracle)
MySQL Connector/C 6.1 (HKLM\...\{ABC3A516-54E3-414B-B501-762E7FB2F9D5}) (Version: 6.1.6 - Oracle Corporation)
MySQL Connector/ODBC 5.3 (HKLM\...\{A1991404-2634-47E1-BC45-8F3B5014B1D1}) (Version: 5.3.4 - Oracle Corporation)
MySQL Documents 5.6 (HKLM-x32\...\{39E12863-FE9F-4F26-B0B7-946882D8490C}) (Version: 5.6.26 - Oracle Corporation)
MySQL Examples and Samples 5.6 (HKLM-x32\...\{D7C94327-B568-45D9-9EBA-E2167D2EE6F7}) (Version: 5.6.26 - Oracle Corporation)
MySQL Fabric 1.5.4 & MySQL Utilities 1.5.4 (HKLM-x32\...\{1F7D4F80-DF56-48DD-9FC5-220720F7517C}) (Version: 1.5.4 - Oracle Corporation)
MySQL Installer for Windows - Community (HKLM-x32\...\{3BA103F3-9F80-468F-A4D0-52ED5709B871}) (Version: 1.4.11.0 - Oracle Corporation)
MySQL Notifier 1.1.6 (HKLM-x32\...\{CB76A6E9-B184-461D-A8BE-7D0D73199545}) (Version: 1.1.6 - Oracle)
MySQL Server 5.6 (HKLM\...\{F9D015C6-E9AE-455D-8DDA-BE8B77F3004E}) (Version: 5.6.26 - Oracle Corporation)
MySQL Workbench 6.3 CE (HKLM\...\{40AFAA5A-72EE-45A7-B8D2-CC7E08C9370B}) (Version: 6.3.4 - Oracle Corporation)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
Nmap 7.31 (HKLM-x32\...\Nmap) (Version: 7.31 - )
Node.js (HKLM\...\{C59E8CC4-537F-4DF0-A02A-F9EFE8FD725A}) (Version: 7.2.0 - Node.js Foundation)
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team)
NovaBench 3.0.4 (HKLM-x32\...\{88603FC0-6B3C-442D-981E-E3D49F083548}_is1) (Version:  - Novawave Inc.)
Npcap 0.10 r9 (HKLM-x32\...\NpcapInst) (Version: 0.10 r9 - Nmap Project)
NVIDIA 3D Vision Driver 355.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.69 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA Graphics Driver 355.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.69 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OldSchool RuneScape Launcher 1.2.7 (HKLM-x32\...\{FEDDCE73-34B8-4980-90B8-8619A78C902C}) (Version: 1.2.7 - Jagex Ltd)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Oracle VM VirtualBox 5.0.12 (HKLM\...\{6F93731D-89E1-4A8F-BDA9-D104860DDB02}) (Version: 5.0.12 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.3.3.1921 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.100.227.0 - Overwolf Ltd.)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Paladins (HKLM\...\Steam App 444090) (Version:  - Hi-Rez Studios)
PAYDAY 2 (HKLM\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version:  - )
Pokémon Trading Card Game Online (HKLM-x32\...\{AC229317-036F-45B9-84CE-08625DCAC217}) (Version: 2.34.1 - The Pokémon Company International)
Port Forwarding Wizard Lite 1.5 (HKLM-x32\...\Port Forwarding Wizard Lite_is1) (Version:  - upredsun, Inc.)
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
PrivateTunnel (HKLM-x32\...\PrivateTunnel) (Version: 2.4.2.4 - OpenVPN Technologies)
proXPN 4.3.6.2 (HKLM-x32\...\proXPN) (Version: 4.3.6.2 - proXPN B.V)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Python 2.7.10 (HKLM-x32\...\{E2B51919-207A-43EB-AE78-733F9C6797C2}) (Version: 2.7.10150 - Python Software Foundation)
Python 3.4.3 (64-bit) (HKLM\...\{9529565f-e693-3f11-b3bf-8cd545f5f9a0}) (Version: 3.4.3150 - Python Software Foundation)
Python 3.5.0rc1 (32-bit) (HKCU\...\{0b8a8640-091b-40d0-8168-61c848855244}) (Version: 3.5.121.0 - Python Software Foundation)
Python 3.5.0rc1 Core Interpreter (32-bit) (HKLM-x32\...\{085E8F2F-72D1-463A-8FD6-BA444BE6F2FA}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.0rc1 Development Libraries (32-bit) (HKLM-x32\...\{EC70EAAE-0B83-47D5-959C-179C20C15DA4}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.0rc1 Documentation (32-bit) (HKLM-x32\...\{A4DCD59B-9E9A-45BA-91E5-96F367E73838}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.0rc1 Executables (32-bit) (HKLM-x32\...\{82B30A43-0AA6-4639-81D2-C3EDC5F60B3F}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.0rc1 pip Bootstrap (32-bit) (HKLM-x32\...\{0D8550C8-AFBE-48C6-8C89-66B8FE2F2207}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.0rc1 Standard Library (32-bit) (HKLM-x32\...\{8EF59D34-10C2-4610-823F-9A26A597C297}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.0rc1 Tcl/Tk Support (32-bit) (HKLM-x32\...\{4BF78DA3-FCBA-4600-AFA3-B9A909484B88}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.0rc1 Test Suite (32-bit) (HKLM-x32\...\{9C01BCC8-AA92-4EAF-8E0D-FE8D889F5DB2}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.0rc1 Utility Scripts (32-bit) (HKLM-x32\...\{DFA5DC0E-5D52-4AC3-8C76-2C12948CAA44}) (Version: 3.5.121.0 - Python Software Foundation) Hidden
Python 3.5.1 (64-bit) (HKCU\...\{b8440650-9dbe-4b7d-8167-6e0e3dcdf5d0}) (Version: 3.5.1150.0 - Python Software Foundation)
Python 3.5.1 Core Interpreter (64-bit) (HKLM\...\{2690DE23-49CD-4973-AA74-F77C4C852189}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Development Libraries (64-bit) (HKLM\...\{70D9C8DA-F1A1-43B0-B325-6263CD21E535}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Documentation (64-bit) (HKLM\...\{5C8D887B-998A-4708-9120-CE040C4A5B47}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Executables (64-bit) (HKLM\...\{39F30A3E-99D9-46E3-8582-7422FE54A1FB}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Launcher (32-bit) (HKLM-x32\...\{EC00AEF9-6544-4FEC-8152-C8949CDDCC85}) (Version: 3.5.150.0 - Python Software Foundation)
Python 3.5.1 pip Bootstrap (64-bit) (HKLM\...\{E98CFF92-01E0-4E30-8C72-3C82111091C2}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Standard Library (64-bit) (HKLM\...\{0F774261-D55F-4180-B266-A9E1C6F4CD7A}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Tcl/Tk Support (64-bit) (HKLM\...\{A47BAF5B-53CC-4E60-847A-E13CAF26F467}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Test Suite (64-bit) (HKLM\...\{A1B06412-F898-47C9-968F-D3B331ABB202}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Utility Scripts (64-bit) (HKLM\...\{34E72E6D-77E8-4C17-99B8-42497B7308C8}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.8.8 - Razer Inc.)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.19 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.810 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7673 - Realtek Semiconductor Corp.)
ROBLOX Player for Brody (HKCU\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - ROBLOX Corporation)
ROBLOX Studio for Brody (HKCU\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version:  - ROBLOX Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.0 - Rockstar Games)
Roslyn Language Services - x86 (HKLM-x32\...\{5B47029B-1E62-30FF-906E-694851C22782}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
RPG Maker MV (HKLM-x32\...\RPGMV_is1) (Version: 1.0.0.0 - KADOKAWA)
RuneMate (HKLM\...\5153-2584-1271-2038) (Version: 1.3.6.2 - )
RuneScape Launcher 1.2.5 (HKLM-x32\...\{BB1810FD-EB25-4A9D-ADDD-3543190D429A}) (Version: 1.2.5 - Jagex Ltd)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
Scammer Bingo version 4.0.0.3 (HKLM-x32\...\{A01A48AC-784D-4266-A97A-9E1683FD1CBC}_is1) (Version: 4.0.0.3 - WindowsLogic Productions)
ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions)
SearchModule (HKCU\...\{D2E9FE6A-7003-42A0-96F6-5569DFC2A3A8}_is1) (Version: 3.1.0.1865 - Goobzo LTD)
Security Task Manager 2.1h (HKLM-x32\...\Security Task Manager) (Version: 2.1h - Neuber Software)
SharpKeys (HKLM-x32\...\{58D335B6-B3C6-4465-AEC3-6442BC323723}) (Version: 2.1.1000 - RandyRants.com)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Sid Meier's Civilization IV (HKLM\...\Steam App 3900) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Beyond the Sword (HKLM\...\Steam App 8800) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Colonization (HKLM\...\Steam App 16810) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Warlords (HKLM\...\Steam App 3990) (Version:  - Firaxis Games)
Simple Port Forwarding (HKLM-x32\...\Simple Port Forwarding) (Version: 3.8.5 - PcWinTech.com)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15082.16 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15082.16 - Samsung Electronics Co., Ltd.)
Sound Blaster Cinema (HKLM-x32\...\{8801CA65-921A-4CCC-9D63-879D1D0BAA97}) (Version: 1.00.05 - Creative Technology Limited)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version:  - )
Team Explorer for Microsoft Visual Studio 2015 (HKLM-x32\...\{791295AE-3B0A-3222-9E69-26C8C106E8D1}) (Version: 14.0.23102 - Microsoft Corporation) Hidden
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
The Elder Scrolls V: Skyrim Special Edition (HKLM\...\Steam App 489830) (Version:  - Bethesda Game Studios)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.25.136.1020 - Electronic Arts Inc.)
The Stanley Parable (HKLM\...\Steam App 221910) (Version:  - Galactic Cafe)
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
TrailerWatch - TrailerWatch for Desktop (HKLM-x32\...\TrailerWatch) (Version: 6.1.0amt - TrailerWatch)
TypeScript Power Tool (HKLM-x32\...\{E51EAA08-F838-4CCE-B011-A82469BE6CC5}) (Version: 1.6.3.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{F0AF1E33-1CB9-4377-ABEE-4E4550A3F9BA}) (Version: 1.6.3.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.6.3.0 (HKLM-x32\...\{da31aa25-410a-4c1b-9ec0-114dd8dff786}) (Version: 1.6.23313.0 - Microsoft Corporation)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 5.3.2f1 - Unity Technologies ApS)
Universal CRT Extension SDK (HKLM-x32\...\{284FA9A0-CEDD-81D3-5A19-5858E95FD0C4}) (Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{ABD37F71-FC3F-F525-C7B3-BDD95F684C51}) (Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{74E0F5DD-514A-4F85-0EE0-1E2EBB8BFC8C}) (Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{4C8DCEB6-5D3C-90BD-6E31-A8342B9185FF}) (Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{DE0B03D4-5A26-DEEC-F62E-278EF28BA58E}) (Version: 10.0.10150 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 26.0 - Ubisoft)
Verdun (HKLM\...\Steam App 242860) (Version:  - M2H)
Victory: The Age of Racing (HKLM\...\Steam App 264120) (Version:  - Vae Victis Games)
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
YGOPro DevPro Launcher (HKLM-x32\...\{043FE158-FD1B-41AE-8139-5592C944D237}) (Version: 2.0.12 - DevPro, LLC)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 32%
Total physical RAM: 16332.79 MB
Available physical RAM: 11099.48 MB
Total Virtual: 33740.79 MB
Available Virtual: 25949.99 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Extra Stuff) (Fixed) (Total:223.03 GB) (Free:22.59 GB) NTFS
3 Drive e: (Good Stuff) (Fixed) (Total:931.51 GB) (Free:383.54 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\GAMINGPC
 
Administrator            Brody                    DefaultAccount           
Guest                    Guest1                   
 
 
**** End of log ****
 
TDSSKiller:
 
17:23:41.0514 0x3084  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
17:23:43.0172 0x3084  ============================================================
17:23:43.0173 0x3084  Current date / time: 2016/12/29 17:23:43.0172
17:23:43.0173 0x3084  SystemInfo:
17:23:43.0174 0x3084  
17:23:43.0174 0x3084  OS Version: 10.0.10586 ServicePack: 0.0
17:23:43.0174 0x3084  Product type: Workstation
17:23:43.0174 0x3084  ComputerName: GAMINGPC
17:23:43.0174 0x3084  UserName: Brody
17:23:43.0174 0x3084  Windows directory: C:\WINDOWS
17:23:43.0174 0x3084  System windows directory: C:\WINDOWS
17:23:43.0174 0x3084  Running under WOW64
17:23:43.0174 0x3084  Processor architecture: Intel x64
17:23:43.0174 0x3084  Number of processors: 4
17:23:43.0174 0x3084  Page size: 0x1000
17:23:43.0174 0x3084  Boot type: Normal boot
17:23:43.0174 0x3084  CodeIntegrityOptions = 0x00000001
17:23:43.0174 0x3084  ============================================================
17:23:43.0223 0x3084  KLMD registered as C:\WINDOWS\system32\drivers\25682439.sys
17:23:43.0223 0x3084  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 10586.103, osProperties = 0x19
17:23:43.0680 0x3084  System UUID: {29224F2D-5A40-4DB9-83DB-DE47302A93E4}
17:23:43.0995 0x3084  Drive \Device\Harddisk0\DR0 - Size: 0x37E4896000 ( 223.57 Gb ), SectorSize: 0x200, Cylinders: 0x7201, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:23:44.0012 0x3084  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:23:44.0406 0x3084  ============================================================
17:23:44.0406 0x3084  \Device\Harddisk0\DR0:
17:23:44.0406 0x3084  MBR partitions:
17:23:44.0406 0x3084  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1BE10000
17:23:44.0406 0x3084  \Device\Harddisk1\DR1:
17:23:44.0406 0x3084  MBR partitions:
17:23:44.0406 0x3084  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
17:23:44.0406 0x3084  ============================================================
17:23:44.0407 0x3084  C: <-> \Device\Harddisk0\DR0\Partition1
17:23:44.0446 0x3084  E: <-> \Device\Harddisk1\DR1\Partition1
17:23:44.0446 0x3084  ============================================================
17:23:44.0446 0x3084  Initialize success
17:23:44.0446 0x3084  ============================================================
 
AdwCleaner:
 
# AdwCleaner v6.041 - Logfile created 29/12/2016 at 17:17:20
# Updated on 16/12/2016 by Malwarebytes
# Database : 2016-12-29.2 [Server]
# Operating System : Windows 10 Pro  (X64)
# Username : Brody - GAMINGPC
# Running from : C:\Users\Brody\Desktop\adwcleaner_6.041.exe
# Mode: Scan
 
 
 
***** [ Services ] *****
 
Service Found:  Updater
Service Found:  softaal
Service Found:  SRepairDrv
Service Found:  tsnethlpx64
 
 
***** [ Folders ] *****
 
Folder Found:  C:\Users\Brody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
Folder Found:  C:\Users\Brody\AppData\Local\VirtualStore\Program Files (x86)\Tencent
Folder Found:  C:\ProgramData\SecTaskMan
Folder Found:  C:\ProgramData\TXQMPC
Folder Found:  C:\ProgramData\Application Data\SecTaskMan
Folder Found:  C:\ProgramData\Application Data\TXQMPC
Folder Found:  C:\WINDOWS\GJFix
Folder Found:  C:\Users\Brody\AppData\Local\Temp\Tencent
Folder Found:  C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent
 
 
***** [ Files ] *****
 
File Found:  C:\WINDOWS\SysNative\drivers\BDArKit.SYS
File Found:  C:\WINDOWS\SysNative\drivers\TAOKernelEx64.sys
File Found:  C:\END
File Found:  C:\WINDOWS\SysWOW64\drivers\TS888x64.sys
File Found:  C:\Users\Brody\AppData\Local\Temp\Utils.dll
 
 
***** [ DLL ] *****
 
No malicious DLLs found.
 
 
***** [ WMI ] *****
 
No malicious keys found.
 
 
***** [ Shortcuts ] *****
 
No infected shortcut found.
 
 
***** [ Scheduled Tasks ] *****
 
No malicious task found.
 
 
***** [ Registry ] *****
 
Key Found:  HKCU\Software\c91f57e594b086c308d3af54fee7aa1e
Key Found:  HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\SCService
Key Found:  [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\SCService
Key Found:  HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\NETTCPHANDLER
Key Found:  [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\NETTCPHANDLER
Key Found:  HKLM\SOFTWARE\Classes\metnsd
Key Found:  HKLM\SOFTWARE\Classes\MTview.bmp
Key Found:  HKLM\SOFTWARE\Classes\MTview.dib
Key Found:  HKLM\SOFTWARE\Classes\MTview.emf
Key Found:  HKLM\SOFTWARE\Classes\MTview.exif
Key Found:  HKLM\SOFTWARE\Classes\MTview.gif
Key Found:  HKLM\SOFTWARE\Classes\MTview.ico
Key Found:  HKLM\SOFTWARE\Classes\MTview.jfif
Key Found:  HKLM\SOFTWARE\Classes\MTview.jpe
Key Found:  HKLM\SOFTWARE\Classes\MTview.jpeg
Key Found:  HKLM\SOFTWARE\Classes\MTview.jpg
Key Found:  HKLM\SOFTWARE\Classes\MTview.png
Key Found:  HKLM\SOFTWARE\Classes\MTview.tif
Key Found:  HKLM\SOFTWARE\Classes\MTview.tiff
Key Found:  HKLM\SOFTWARE\Classes\MTview.wmf
Key Found:  HKLM\SOFTWARE\Classes\protector_dll.Protector
Key Found:  HKLM\SOFTWARE\Classes\protector_dll.Protector.1
Key Found:  HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
Key Found:  HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
Key Found:  HKLM\SOFTWARE\Classes\qmgcfiles
Key Found:  [x64] HKLM\SOFTWARE\Classes\metnsd
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.bmp
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.dib
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.emf
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.exif
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.gif
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.ico
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.jfif
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.jpe
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.jpeg
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.jpg
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.png
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.tif
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.tiff
Key Found:  [x64] HKLM\SOFTWARE\Classes\MTview.wmf
Key Found:  [x64] HKLM\SOFTWARE\Classes\protector_dll.Protector
Key Found:  [x64] HKLM\SOFTWARE\Classes\protector_dll.Protector.1
Key Found:  [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
Key Found:  [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
Key Found:  [x64] HKLM\SOFTWARE\Classes\qmgcfiles
Key Found:  HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
Key Found:  HKCU\Software\Classes\CLSID\{17EF1FFB-0545-4C9A-BE64-78FF53338475}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-86DB50A2FD64}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{176F706B-5175-479C-A3DF-32420F6FB01A}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{38BE2BE8-EB8E-41D1-9D94-3B1697094D47}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{53C267B2-B01D-410F-A4DD-A32962EE55F4}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{8804A543-42D3-4D71-9685-B0243D5526F3}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{A0F322D5-6A13-4CAB-84CF-FABB5690618E}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{AC3E336C-B524-47F0-9AA2-5F67AA056086}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{C68E9BB6-3DBD-4C4B-910B-C5D84A7EBB03}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{F577A1BA-D82D-4BB2-8430-B767285D081D}
Key Found:  HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E}
Key Found:  HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{29B6CFD5-0064-411A-8C42-9890C83F9921}
Key Found:  HKU\S-1-5-21-795098981-565660427-1219745884-1001\Software\INSTALLPATH\STATUS
Key Found:  HKU\S-1-5-21-795098981-565660427-1219745884-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D2E9FE6A-7003-42A0-96F6-5569DFC2A3A8}_is1
Key Found:  HKCU\Software\INSTALLPATH\STATUS
Key Found:  HKLM\SOFTWARE\SearchModule
Key Found:  HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D2E9FE6A-7003-42A0-96F6-5569DFC2A3A8}_is1
Key Found:  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AppHelper
Key Found:  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TrailerWatch
Key Found:  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
Key Found:  [x64] HKCU\Software\INSTALLPATH\STATUS
Key Found:  [x64] HKLM\SOFTWARE\SearchModule
Key Found:  [x64] HKLM\SOFTWARE\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
Key Found:  [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D2E9FE6A-7003-42A0-96F6-5569DFC2A3A8}_is1
Key Found:  HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Key Found:  HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Key Found:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\hao123.com
Key Found:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.hao123.com
Key Found:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\hao123.com
Key Found:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.hao123.com
Key Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Key Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Key Found:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\hao123.com
Key Found:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.hao123.com
Key Found:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\hao123.com
Key Found:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.hao123.com
Value Found:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [baiduAnTray]
Value Found:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [MTView]
Value Found:  HKU\S-1-5-21-795098981-565660427-1219745884-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [pcspeedup]
Value Found:  HKU\S-1-5-21-795098981-565660427-1219745884-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [SearchModule]
Value Found:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Sound+]
Value Found:  HKU\S-1-5-21-795098981-565660427-1219745884-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [YTDownloader]
Value Found:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [YTDownloader]
Value Found:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [IDSCPRODUCT]
Value Found:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [setup]
Value Found:  HKU\S-1-5-21-795098981-565660427-1219745884-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [OS Firewall]
Value Found:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [TrailerWatch]
Value Found:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [un]
Value Found:  HKU\S-1-5-21-795098981-565660427-1219745884-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Book Source]
Value Found:  HKU\S-1-5-21-795098981-565660427-1219745884-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [PCSpeedUp]
Key Found:  HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
Key Found:  HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP
Key Found:  HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP
Key Found:  HKLM\SYSTEM\CurrentControlSet\Control\Class\{0C95ABFE-4FB6-49DB-B22F-0E1F5FC4BEEC}
Key Found:  HKLM\SYSTEM\CurrentControlSet\Control\Class\{EEEFACB3-729F-4484-B66D-E7A7917BBFC1}
Key Found:  HKEY_CLASSES_ROOT\.qmgc
 
 
***** [ Web browsers ] *****
 
No malicious Firefox based browser items found.
Chrome pref Found:  [C:\Users\Brody\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - hxxps://ca.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ir_15_45&param1=1&param2=f%3D1%26
 
*************************
 
C:\AdwCleaner\AdwCleaner[S0].txt - [11293 Bytes] - [30/11/2016 15:34:28]
C:\AdwCleaner\AdwCleaner[S1].txt - [10670 Bytes] - [29/12/2016 17:17:20]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [10744 Bytes] ##########
 
Junkware Removal Tool:
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 10 Pro x64 
Ran by Brody (Administrator) on 2016-12-29 at 17:20:34.11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 2 
 
Successfully deleted: C:\end (File) 
Successfully deleted: C:\ProgramData\txqmpc (Folder) 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2016-12-29 at 17:21:58.56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
ESET Online Scanner:
 
C:\Users\All Users\Logishrd\LogiOptions\Software\Current\dma_x64.dll a variant of Win64/WebBar.B potentially unwanted application
C:\ProgramData\Logishrd\LogiOptions\Software\Current\dma_x64.dll a variant of Win64/WebBar.B potentially unwanted application cleaned by deleting
C:\Users\Brody\AppData\Local\Microsoft\Windows\INetCache\IE\JMMLQE50\logioptions_logitech[1].exe a variant of Win32/WebBar.D potentially unwanted application deleted
C:\Users\Brody\AppData\Local\Temp\brastub6_amobl_inst.exe a variant of Win32/TrojanDownloader.Adload.NQW trojan cleaned by deleting
C:\Users\Brody\AppData\Local\Temp\lu\nada_264_logioptions_logitech.exe a variant of Win32/WebBar.D potentially unwanted application deleted
C:\Users\Brody\Desktop\Extreme Injector v3.exe Win32/DllInject.DM potentially unsafe application cleaned by deleting
C:\Users\Brody\Desktop\Folders\Brody's Downloads\ManyCamWebInstaller.exe a variant of Win32/Toolbar.Visicom.F potentially unwanted application cleaned by deleting
C:\Users\Brody\Desktop\Folders\VBA\installer.exe a variant of Win32/InstallCore.ACZ potentially unwanted application cleaned by deleting
C:\Users\Brody\Desktop\Folders\VBA\LoveROMs_Pokemon - Ruby Version (U) .exe a variant of Win32/InstallCore.AGK potentially unwanted application cleaned by deleting
C:\Users\Brody\Documents\Extreme Injector.zip a variant of Win32/OutBrowse.CL potentially unwanted application deleted
E:\Extreme Injector v3.exe Win32/DllInject.DM potentially unsafe application cleaned by deleting
E:\Brody\Pictures\spsetup129.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted
E:\CSGOHack2\csgo-muhittin-sength-v15\gh.exe a variant of Win32/GameHack.AQG potentially unsafe application cleaned by deleting
E:\CSHACK\OTHER\CSH Inazuma VIP.exe a variant of Win32/GameHack.AQG potentially unsafe application cleaned by deleting
E:\Downloads\brutus-aet2.zip Win32/PSWTool.Brutus potentially unsafe application deleted
E:\Downloads\CheatEngine65 (1).exe a variant of Win32/OpenCandy.A potentially unsafe application deleted
E:\Downloads\CheatEngine65.exe a variant of Win32/OpenCandy.A potentially unsafe application deleted
E:\Downloads\CreatorSuite.zip a variant of MSIL/Packed.Confuser.N suspicious application deleted
E:\Downloads\csgo-muhittin-sength-v15_mpgh.net.rar a variant of Win32/GameHack.AQG potentially unsafe application deleted
E:\Downloads\DarkCometRAT531 (1).zip multiple threats deleted
E:\Downloads\Epicbot-Setup.exe a variant of Win32/InstallCore.AFF.gen potentially unwanted application cleaned by deleting
E:\Downloads\Extreme Injector v3.6.1 - by master131_mpgh.net.rar Win32/DllInject.DM potentially unsafe application deleted
E:\Downloads\Havij Adv. SQL Injection Tool 1.17 Crack  Latest .ace a variant of Win32/OutBrowse.CL potentially unwanted application deleted
E:\Downloads\Inazuma VIP_mpgh.net (1).rar a variant of Win32/GameHack.AQG potentially unsafe application deleted
E:\Downloads\Inazuma VIP_mpgh.net.rar a variant of Win32/GameHack.AQG potentially unsafe application deleted
E:\Downloads\installer.zip a variant of Win32/InstallCore.ACZ potentially unwanted application deleted
E:\Downloads\Kimcil Multihack Tools v6.7_mpgh.net.rar a variant of Win32/GameHack.ANZ potentially unsafe application deleted
E:\Downloads\LSPDFR 031 Install.rar a variant of Win32/OpenCandy.A potentially unsafe application deleted
E:\Downloads\ManyCamWebInstaller.exe a variant of Win32/Toolbar.Visicom.F potentially unwanted application cleaned by deleting
E:\Downloads\Predator Pain v13 released 3.1.2014 - Cracked by Meth.rar MSIL/Autorun.Spy.Agent.AU worm deleted
E:\Downloads\spsetup128.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted
E:\Downloads\Unconfirmed 227232.crdownload multiple threats deleted
E:\Downloads\VenesixInjector1.0.0.2.zip a variant of MSIL/DllInject.PZ potentially unsafe application deleted
E:\Program Files (x86)\Cheat Engine 6.5\standalonephase1.dat a variant of Win32/HackTool.CheatEngine.AF potentially unsafe application cleaned by deleting
E:\VenesixInjector\Assleech.dll a variant of Win32/Packed.VMProtect.ABO trojan cleaned by deleting
E:\VenesixInjector\HailHitler.dll a variant of Win32/Packed.VMProtect.ABO trojan cleaned by deleting
E:\VenesixInjector\Venesix.exe a variant of MSIL/DllInject.PZ potentially unsafe application cleaned by deleting


#12 CarpeFacinus

CarpeFacinus
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:50 AM

Posted 29 December 2016 - 08:17 PM

from your initial post...

 

it would only randomly press the ctrl+alt+tab keys

It's also started to freeze my mouse

 

in this topic...  https://www.bleepingcomputer.com/forums/t/633468/ctrlalttab-being-spammed/

You stated It's not showing me everything on the screen it keeps cutting the posts in half

....yet you quoted the entire post from boopme ...

,,,, and you did not run any of the scans requested.

boopme also requested you send the scan results as a pm....from the lack of feedback in that topic I can only assume this did not happen either.

 

Obviously there is some problem with your pc....possibly caused by your using sites such as the one you used to link a video in your various posts. It is a nasty site....malware abounds there.....so it should be no surprise at all that your pc is doing strange things.

 

 

3Al62Pm.pngMiniToolBox

  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

SXvL3ZF.pngTDSSKiller

  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

zcMPezJ.pngAdwCleaner

  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

lv0mVRW.pngJunkware Removal Tool

  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

cvMlKv6.pngESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

 

Sorry it took so long the last scan took 2 hours.



#13 CarpeFacinus

CarpeFacinus
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:50 AM

Posted 29 December 2016 - 11:22 PM

I've exhausted all my options I'm just going to clear my PC and hope that fixes it.



#14 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,110 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:50 PM

Posted 30 December 2016 - 03:19 AM

You have quite the 'laundry list' of unsafe applications, trojans, dodgy keys, values etc etc etc

 

I have just read your last post. I assume that means that you are going to Reset your PC

 

Info HERE 

 

HERE   

 

I dont think you gathered all the TDSS log....but if you are resetting, it probably is of no concern now.

 

What was your anti virus ??

 

I see you had malwarebytes......update it to version 3

 

There is a program called UNCHECKY    it keeps unrelated offers unchecked when you are installing software.

 

Quote: quietman7 (global moderator)..."Knowledge and the ability to use it is the best defensive tool anyone could have. An uninformed user can be their own worst enemy when acting in ignorance."


Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#15 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,110 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:50 PM

Posted 01 January 2017 - 06:03 PM

@ CarpeFacinus......Do you still require assistance ??

 

What do you mean by "Clearing" you PC.....???......if you mean you are going to simply delete old files etc etc....that will not cure your problems. Your PC is bordering on being Severely infected. 

 

Your call.


Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users