Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-05-2015 02 Ran by Alec at 2015-05-17 22:33:44 Running from C:\Users\Alec\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-88998690-3935351832-2280324733-500 - Administrator - Disabled) Alec (S-1-5-21-88998690-3935351832-2280324733-1001 - Administrator - Enabled) => C:\Users\Alec Guest (S-1-5-21-88998690-3935351832-2280324733-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-88998690-3935351832-2280324733-1002 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB} FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.) Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Flash Player 17 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.) Akamai NetSession Interface (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\Akamai) (Version: - Akamai Technologies, Inc) Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.) ARMA III (HKLM-x32\...\ARMA III_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) Autodesk 3ds Max 2015 (HKLM\...\Autodesk 3ds Max 2015) (Version: 17.3.374.0 - Autodesk) Autodesk 3ds Max 2015 (Version: 17.3.374.0 - Autodesk) Hidden Autodesk 3ds Max 2015 Populate Data (HKLM\...\{57E92DED-DC6C-41E5-B9E1-76D83BD2EABE}) (Version: 17.0.0.0 - Autodesk) Autodesk 3ds Max 2015 SP1 (Version: 17.1.149.0 - Autodesk) Hidden Autodesk 3ds Max 2015 SP3 (HKLM\...\Autodesk 3ds Max 2015 SP3) (Version: 17.3.374.0 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk) Autodesk Backburner 2015 (HKLM-x32\...\{8C5F38D2-8EFE-49A4-B3F5-BF3210FED168}) (Version: 15.0.0.0 - Autodesk) Autodesk DirectConnect 2015 64-bit (HKLM\...\Autodesk DirectConnect 2015 64-bit) (Version: 9.0.56.4 - Autodesk) Autodesk DirectConnect 2015 64-bit (Version: 9.0.56.4 - Autodesk) Hidden Autodesk DirectConnect 2015 64-bit Hotfix1 (HKLM\...\Autodesk DirectConnect 2015 64-bit_9001) (Version: 9.0.56.4 - Autodesk) Autodesk Inventor Server Engine for 3ds Max 2015 (HKLM\...\{9167CA34-4E48-49E3-8892-3C439739D2D3}) (Version: 17.0.2 - Autodesk) Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk) Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk) Autodesk Material Library Medium Resolution Image Library 2015 (HKLM-x32\...\{9F6466D9-6EFC-4A10-B931-C72D1A3F1763}) (Version: 5.2.9.100 - Autodesk) Autodesk Revit Interoperability for 3ds Max 2015 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2015) (Version: 15.0.166.0 - Autodesk) Autodesk Revit Interoperability for 3ds Max 2015 (Version: 15.0.166.0 - Autodesk) Hidden AVG PC TuneUp 2015 (en-US) (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden AVG PC TuneUp 2015 (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden Black Ops 2 - GSC Studio (HKLM-x32\...\{909C0DF9-6BBE-42BD-8FB2-0ADEBA3459B6}_is1) (Version: 15.1.2.0 - iMCS Productions) boostwebapp (HKLM-x32\...\{5146DB17-543C-4BC3-b888-EE3DC25B8616}) (Version: 1.1.0.31 - boostwebapp) <==== ATTENTION Call of Duty: Black Ops (HKLM-x32\...\Call of Duty: Black Ops_is1) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform) Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine) Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.1.200.13 - Citrix Systems, Inc.) Cloud Penguin (HKLM\...\Cloud Penguin) (Version: 1.3.5580.32927 - Cloud Penguin) CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - Cambridge Silicon Radio Limited.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dell 968 AIO Printer (HKLM\...\Dell 968 AIO Printer) (Version: - Dell, Inc.) Farming Simulator 15 (HKLM-x32\...\FarmingSimulator2015INT_is1) (Version: 1.2.0.0 - GIANTS Software) Farming Simulator 2011 (HKLM-x32\...\FarmingSimulator2011_PLATINUMEN_is1) (Version: 1.0 - GIANTS Software) FaxRedist (HKLM-x32\...\{2C8CC208-965C-48A1-90A8-DFB484358F1C}) (Version: 1.0.0 - ) GameSalad Creator (HKLM-x32\...\{2B1D8001-8F73-4E7D-938E-B1D732EF7E6B}) (Version: 0.10.5 - GameSalad) GIANTS Editor 6.0.3 64-bit (HKLM-x32\...\giants_editor_6.0.3_win64_is1) (Version: 6.0.3 - GIANTS Software GmbH) GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.152 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Grand Theft Auto Vice City (HKLM-x32\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - ) Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod) Idle Crawler (HKLM-x32\...\57FD78B7-4A4B-5A45-90A8-F886376DE47C) (Version: 166.0.0.1703 - GREYSTONE VENTURES LP) <==== ATTENTION InputMapper (HKLM-x32\...\{2EF39E81-9525-40FB-90C4-CE2AF318FF3F}) (Version: 1.5.24.0 - DSDCS) Intel(R) Chipset Device Software (x32 Version: 10.0.14 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 13.6.1599 - McAfee, Inc.) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.) McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.210 - McAfee, Inc.) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden MFS (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\524cc66f48985a16) (Version: 1.0.0.8 - MFS) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation) Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft Visual Basic 2010 Express - ENU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation) Minecraft (HKLM-x32\...\{63227E62-F417-497E-9060-22B3A9A52D7A}) (Version: 1.0.1.0 - Mojang) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) MX vs ATV Reflex (HKLM-x32\...\MX vs ATV Reflex_is1) (Version: - ) MXGP (HKLM-x32\...\TVhHUA==_is1) (Version: 1 - ) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.2 - Notepad++ Team) NVIDIA 3D Vision Controller Driver 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation) NVIDIA 3D Vision Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation) NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation) NVIDIA Graphics Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation) Online Plug-in (x32 Version: 14.1.200.13 - Citrix Systems, Inc.) Hidden PowerISO (HKLM-x32\...\PowerISO) (Version: 4.8 - PowerISO Computing, Inc.) Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.70.314.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7233 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0218.1 - REALTEK Semiconductor Corp.) RepZ Installer (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\1b1c64cc2484e6cc) (Version: 1.0.2.24 - RepZ) Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.) Roll (HKLM-x32\...\RollerCoaster Tycoon Setup) (Version: - ) Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15022.8 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.15022.8 - Samsung Electronics Co., Ltd.) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.) Self-service Plug-in (x32 Version: 4.1.200.588 - Citrix Systems, Inc.) Hidden Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation) SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden SimCity 4 Deluxe (HKLM-x32\...\{A7A34FC9-DF24-4A36-00AD-D4EFE94CC116}) (Version: - ) SketchUp 2015 (HKLM\...\{319CD380-1AAB-4CAD-BE1D-59189A780FA6}) (Version: 15.2.685 - Trimble Navigation Limited) Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Tunngle version Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH) Unity Web Player (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\UnityWebPlayer) (Version: 5.0.1f1 - Unity Technologies ApS) Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16423 - Microsoft Corporation) WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 17-05-2015 10:25:31 Malwarebytes Anti-Rootkit Restore Point 17-05-2015 16:36:13 Removed SketchUp 2015 17-05-2015 16:38:32 Installed SketchUp 2015 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {122E3285-3F15-4566-AB0A-07262B3CBE10} - System32\Tasks\NetEngine => C:\ProgramData\NetEngine\bin\D10\netengine.exe [2015-05-17] () <==== ATTENTION Task: {2B4532E4-EC1A-4C4F-876A-90437BF3E6A3} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation) Task: {2D015971-24A9-4221-A0AD-FDDCBB36127E} - System32\Tasks\{7C02F3C8-7673-422F-90EE-DE8F467496E0} => pcalua.exe -a "C:\Users\Alec\Downloads\Call of Duty World at War\vcredist.exe" -d "C:\Users\Alec\Downloads\Call of Duty World at War" Task: {3F19C048-5068-4D85-9EB4-FF4AC033537E} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation) Task: {4455E884-CF0E-453F-98C0-C6555F6491F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-25] (Google Inc.) Task: {471BA3DA-2BD2-46A8-857C-7B4D4990CF17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-25] (Google Inc.) Task: {74DDF3E4-E78E-4B2E-8A48-D00A0B0F742A} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation) Task: {784E3C2C-F341-42F3-99F9-4129A1592344} - System32\Tasks\{5541BBC3-0B1D-49C4-A5C3-C6E581C49BC6} => C:\Users\Alec\Downloads\Grand Theft Auto V\Launcher.exe Task: {89905277-72C7-40F8-BC15-33DE49D8EC5C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated) Task: {8F651410-00B2-41E0-AE05-082F1C10E4A9} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation) Task: {9A9EB1B3-65AC-48BE-933C-EBF4B3A89623} - System32\Tasks\SuperClick Auto Updater 1.10.0.16 Pending Update => C:\Program Files (x86)\SuperClick_1.10.0.16\Update\SuperClickAutoUpdateClient.exe Task: {A1224D2D-C68A-41EC-9E0F-24A20CECCF04} - System32\Tasks\Bidaily Synchronize Task[pr] => c:\programdata\{151ce7d2-4fd6-63bb-151c-ce7d24fd9f49}\sevenzip-setup-rx.exe <==== ATTENTION Task: {B538BA62-EB0E-4180-85E5-C3C75D3444B5} - System32\Tasks\SuperClick Auto Updater 1.10.0.16 Core => C:\Program Files (x86)\SuperClick_1.10.0.16\Update\SuperClickAutoUpdateClient.exe Task: {C37D1563-21F5-4917-BCCA-467B9CA63F53} - System32\Tasks\{14E0950E-30FF-4E5E-8EF0-EA140BCEDA69} => C:\Users\Alec\Downloads\Grand Theft Auto V\Launcher.exe Task: {C5B804D0-7B61-4088-86A9-236167771913} - System32\Tasks\PCMeter\Startup => C:\Users\Alec\Desktop\PCMeter\PCMeterV4\PCMeterV0.4.exe Task: {C758AF2D-2D0E-4C2D-A449-B8AA15DA3438} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation) Task: {F2443289-1CCC-423C-A5CE-A7BE71392177} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd) Task: {F5454A50-1237-41AA-86F8-2181AA6747CD} - System32\Tasks\Microsoft\Windows\Maintenance\Updater for IC => %LOCALAPPDATA%\57FD78B7-4A4B-5A45-90A8-F886376DE47C\Runner.exe <==== ATTENTION Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\Bidaily Synchronize Task[pr].job => c:\programdata\{151ce7d2-4fd6-63bb-151c-ce7d24fd9f49}\sevenzip-setup-rx.exe <==== ATTENTION Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-01-08 13:12 - 2015-01-08 13:12 - 02264576 _____ () C:\Program Files\BubbleSound\BubbleSound.dll 2015-01-12 17:30 - 2009-04-13 10:21 - 00045568 _____ () C:\Windows\System32\DLDOPMON.DLL 2015-01-12 17:30 - 2007-06-11 10:01 - 00049152 _____ () C:\Windows\System32\DLDOOEM.DLL 2015-01-12 17:30 - 2009-04-13 10:19 - 00081408 _____ () C:\Program Files (x86)\Dell 968 AIO Printer\ipcmt64.dll 2015-01-12 17:30 - 2007-07-18 07:45 - 00138240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\dldodrpp.dll 2014-12-18 11:37 - 2015-04-08 16:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-12-18 11:42 - 2014-01-28 14:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe 2007-10-05 10:31 - 2007-10-05 10:31 - 00034032 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\dldoserv.exe 2014-12-31 18:58 - 2014-12-31 18:58 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-12-18 11:48 - 2014-01-16 19:19 - 00044104 ____N () C:\Windows\runSW.exe 2014-12-18 11:48 - 2013-05-07 18:06 - 00096768 ____N () C:\Program Files (x86)\Realtek\REALTEK USB Wireless LAN Driver\WPSService20.exe 2014-05-12 04:49 - 2014-05-12 04:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2015-05-16 17:53 - 2015-05-15 16:22 - 03285960 _____ () C:\Users\Alec\AppData\Local\ospd_us_1069\upospd_us_1069.exe 2015-05-17 20:05 - 2015-05-17 20:05 - 00075776 _____ () C:\ProgramData\NetEngine\bin\D10\netengine.exe 2015-01-31 18:52 - 2014-12-04 21:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2015-01-31 18:52 - 2014-12-04 21:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2014-12-18 11:42 - 2015-05-17 10:27 - 00029696 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll 2014-12-18 11:42 - 2014-01-28 14:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll 2015-04-25 17:28 - 2015-03-27 22:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-05-17 17:07 - 2015-05-17 17:07 - 00140800 _____ () C:\Users\Alec\AppData\Roaming\jddsxwck\encecal.dll 2015-05-14 20:25 - 2015-05-04 23:06 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libglesv2.dll 2015-05-14 20:25 - 2015-05-04 23:06 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libegl.dll 2015-05-14 20:25 - 2015-05-04 23:06 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Neltyjcoa => ""="service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, the associated entry will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-88998690-3935351832-2280324733-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Alec\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.254.254 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Alec\AppData\Local\Akamai\netsession_win.exe" MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: ConnectionCenter => "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup MSCONFIG\startupreg: CsrAudioguiCtrl => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe MSCONFIG\startupreg: CSRHarmonySkypePlugin => C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe MSCONFIG\startupreg: CsrHCRPServer => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe MSCONFIG\startupreg: CsrSyncMLServer => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe MSCONFIG\startupreg: Dell 968 AIO Printer => "C:\Program Files (x86)\Dell 968 AIO Printer\fm3032.exe" /s MSCONFIG\startupreg: dldomon.exe => "C:\Program Files (x86)\Dell 968 AIO Printer\dldomon.exe" MSCONFIG\startupreg: HarmonyUserStartup => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe MSCONFIG\startupreg: mcpltui_exe => "C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /runkey MSCONFIG\startupreg: MemoryCardManager => "C:\Program Files (x86)\Dell 968 AIO Printer\memcard.exe" MSCONFIG\startupreg: MouseDriver => TiltWheelMouse.exe MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup MSCONFIG\startupreg: Redirector => "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun MSCONFIG\startupreg: TrayApplication => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe MSCONFIG\startupreg: vksts => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{CBBA8D17-EB3E-498B-9F15-0E3802D14F4B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{7634106C-DF36-4130-8DA2-9A297D8DCE41}] => (Allow) LPort=2869 FirewallRules: [{9FADE37B-732E-4D32-BEC7-994EB66EFA1A}] => (Allow) LPort=1900 FirewallRules: [{8E766792-2242-4627-8067-27B148EF783D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{C800A05C-F2EB-4772-8D3D-AC1B97EC3077}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [{36BA3B02-8DF4-4C8D-9CD2-D0C6F0E09041}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe FirewallRules: [{0230928F-E569-4CEB-8DCE-7E612D573BB7}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe FirewallRules: [{F81DDDC2-E4F6-46E3-AC40-864649F7CE16}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe FirewallRules: [{8FEA1907-9961-430F-B101-7F8CBE808C56}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe FirewallRules: [{824712A0-2EBC-46D6-86C5-13914466D8F1}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe FirewallRules: [{14E25FF9-A9C8-4730-8237-3692C92CFEAE}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe FirewallRules: [{6DA12CC9-8A5C-4718-A74C-D05401384F01}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{A12DFDDC-42CA-4004-A076-AFE3F9613BC1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{942CC9C5-3A5F-4CEA-8155-F38910C448D3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{AC9C7FB0-B273-4B11-B03A-44BD727576B0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{7A590917-B823-406B-B44F-F816F0D0A6BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{0E37B5A7-6F8F-4CAA-9107-82042C6FAEF8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F141E729-3A9E-4EA0-A76D-74B47F01D8B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{583B293D-0723-401D-B5AB-F4AF190A8DFA}] => (Allow) C:\Program Files (x86)\Farming Simulator 2011\FarmingSimulator2011.exe FirewallRules: [{51B8E090-FAB1-4E52-BAD4-FEE542960DF2}] => (Allow) C:\Program Files (x86)\Farming Simulator 2011\FarmingSimulator2011.exe FirewallRules: [{8287F53A-5E09-4406-A6DC-6C91683185E0}] => (Allow) C:\Program Files (x86)\Farming Simulator 2011\game.exe FirewallRules: [{30CBFC60-703E-4189-8775-87C8F7870177}] => (Allow) C:\Program Files (x86)\Farming Simulator 2011\game.exe FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [{F85FE8DA-084E-44CB-AB6E-EC7510B61A96}] => (Allow) C:\Users\Alec\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BBAEF4A5-DF07-47B7-9375-32CC2EF69521}] => (Allow) C:\Users\Alec\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{068C5174-748C-42C9-9374-E554CB2126BF}] => (Allow) C:\Windows\SysWOW64\dldocoms.exe FirewallRules: [{B3230719-BCEE-43FF-8E2F-30AA52ED332D}] => (Allow) C:\Windows\SysWOW64\dldocoms.exe FirewallRules: [{E10B56AA-77A6-4B63-926F-CF856A5A643E}] => (Allow) C:\Windows\System32\dldocoms.exe FirewallRules: [{E46CC330-6673-4E70-A425-7CC6FA87484A}] => (Allow) C:\Windows\System32\dldocoms.exe FirewallRules: [{846591E7-8856-4744-8E87-C0AA3BEECF31}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\memcard.exe FirewallRules: [{5A403F7D-758F-42B5-B0EB-4FA67A93ADE7}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\memcard.exe FirewallRules: [{7F7F4CF1-E2A8-4656-B0B6-D88D53B81193}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldopswx.exe FirewallRules: [{3725BA6C-D033-465C-844A-68FA11E56058}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldopswx.exe FirewallRules: [{5FB37912-F006-4831-AA33-390F773AC058}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\dldomon.exe FirewallRules: [{21425CF7-10FC-4A90-B33C-DF6EDDCF7FF4}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\dldomon.exe FirewallRules: [{1F7EA3C6-4930-43E6-8DB0-C75AB35F38E5}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldotime.exe FirewallRules: [{67FC6D39-5AD1-4C31-AEC5-047461C26DC1}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldotime.exe FirewallRules: [{896789EC-022C-459B-9DD7-100848771805}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldojswx.exe FirewallRules: [{B4B3464C-B169-42FF-B5A3-DD7114C1E51B}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldojswx.exe FirewallRules: [{94DA4A80-157B-494D-8FC2-92425CB5DCCD}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\dldoaiox.exe FirewallRules: [{47FBDB3F-39F8-4847-8CA9-EF07470D62DA}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\dldoaiox.exe FirewallRules: [{1012B4C7-5D06-48D4-990F-69528F46478B}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\DLDOFax.exe FirewallRules: [{7A7C9F97-C576-4B2B-BF29-27AE72EF94E8}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\DLDOFax.exe FirewallRules: [TCP Query User{AD69E9BE-9CB2-493A-88F9-D6C2693BD509}C:\program files (x86)\dell 968 aio printer\dldomon.exe] => (Allow) C:\program files (x86)\dell 968 aio printer\dldomon.exe FirewallRules: [UDP Query User{B297C89F-6F92-4899-A1D2-51C25EFF5D1B}C:\program files (x86)\dell 968 aio printer\dldomon.exe] => (Allow) C:\program files (x86)\dell 968 aio printer\dldomon.exe FirewallRules: [TCP Query User{776406F4-7F26-4524-A2AB-6AE8C857A79F}C:\users\alec\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alec\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{13CC87E2-705B-41F2-B748-B3BAF4A98248}C:\users\alec\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alec\appdata\local\akamai\netsession_win.exe FirewallRules: [{24384125-5B2D-4027-B013-16D536CCFBE6}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe FirewallRules: [{A011F04C-9AB7-4273-99AC-E9BEC7383765}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe FirewallRules: [{2740B3D3-9C2A-4F7B-9B4C-2AD535E631B7}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe FirewallRules: [{75945017-0E56-411D-9533-F9F136B3B287}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe FirewallRules: [TCP Query User{7F1E303F-2FBA-48C4-86F4-7F7141B5C4EC}C:\users\alec\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alec\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{9DDA02A6-ACEF-4CA4-8711-73FEEDE786DA}C:\users\alec\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alec\appdata\local\akamai\netsession_win.exe FirewallRules: [{9DB1DD5B-EB9E-46C3-A819-AE34781FF057}] => (Allow) C:\Users\Alec\AppData\Local\Cloud Penguin\Cloud Penguin.exe FirewallRules: [{BA1707CC-3578-4542-A2FA-44F86CC17682}] => (Allow) LPort=1337 FirewallRules: [{14C32076-3FB1-4D95-9FCB-016D4DC3CC2A}] => (Allow) LPort=9775 FirewallRules: [{4166D8FA-FF97-4A64-852C-2F2AECB91022}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{DEB8ADB2-72AB-4078-8E33-364EDA85680B}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{D37A59B8-DEFD-449F-BEF0-1AD58D67FFB7}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{D08A38EE-FADE-42AD-A3F5-1BB8A8EA0981}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{6659FE87-1F80-4227-BFB2-98929777411A}] => (Allow) LPort=49199 FirewallRules: [{DE35B4FD-3961-44A8-82A6-CB205BDBB2AC}] => (Allow) LPort=5000 FirewallRules: [{0D6CEC65-C81B-4349-B1C0-BC6D84060831}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Faulty Device Manager Devices ============= Name: scfd_1_10_0_16 Description: scfd_1_10_0_16 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: scfd_1_10_0_16 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Event log errors: ========================= Application errors: ================== Error: (05/17/2015 04:38:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary tammgR119 service. System Error: Access is denied. . Error: (05/17/2015 04:38:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary tammgF119 service. System Error: Access is denied. . Error: (05/17/2015 04:36:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary tammgR119 service. System Error: Access is denied. . Error: (05/17/2015 04:36:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary tammgF119 service. System Error: Access is denied. . Error: (05/17/2015 04:35:42 PM) (Source: MsiInstaller) (EventID: 1013) (User: Alec-PC) Description: Product: SketchUp 2015 -- A newer version of SketchUp is already installed on this system. An older version cannot be installed unless the newer version is uninstalled first. Error: (05/17/2015 10:29:24 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (05/17/2015 10:28:38 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be Faulting module name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be Exception code: 0xc0000005 Fault offset: 0x00000000004e920f Faulting process id: 0xb00 Faulting application start time: 0xNvStreamNetworkService.exe0 Faulting application path: NvStreamNetworkService.exe1 Faulting module path: NvStreamNetworkService.exe2 Report Id: NvStreamNetworkService.exe3 Error: (05/17/2015 10:26:33 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: CsrBtOBEXService.exe, version: 2.1.63.0, time stamp: 0x4f68683b Faulting module name: CsrBtOBEXService.exe, version: 2.1.63.0, time stamp: 0x4f68683b Exception code: 0xc0000005 Fault offset: 0x0000000000006f58 Faulting process id: 0x1398 Faulting application start time: 0xCsrBtOBEXService.exe0 Faulting application path: CsrBtOBEXService.exe1 Faulting module path: CsrBtOBEXService.exe2 Report Id: CsrBtOBEXService.exe3 Error: (05/17/2015 10:25:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddWin32ServiceFiles: Unable to back up image of service volbukirog since QueryServiceConfig API failed System Error: Access is denied. . Error: (05/17/2015 10:25:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddWin32ServiceFiles: Unable to back up image of service TordukTiud since QueryServiceConfig API failed System Error: Access is denied. . System errors: ============= Error: (05/17/2015 10:25:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The jDtCUD service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service. Error: (05/17/2015 10:28:29 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: scfd_1_10_0_16 Error: (05/17/2015 10:28:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Net.Msmq Listener Adapter service depends on the Message Queuing service which failed to start because of the following error: %%1058 Error: (05/17/2015 10:26:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CSR OBEX Service service terminated unexpectedly. It has done this 2 time(s). Error: (05/17/2015 09:47:34 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The CSR OBEX Service service terminated unexpectedly. It has done this 1 time(s). Error: (05/16/2015 09:40:46 PM) (Source: NetBT) (EventID: 4319) (User: ) Description: A duplicate name has been detected on the TCP network. The IP address of the computer that sent the message is in the data. Use nbtstat -n in a command window to see which name is in the Conflict state. Error: (05/16/2015 08:08:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Uninstall Paper Tray service failed to start due to the following error: %%2 Error: (05/16/2015 08:08:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The SC 1.10.0.16 Client Service service failed to start due to the following error: %%2 Error: (05/16/2015 08:08:31 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Net.Msmq Listener Adapter service depends on the Message Queuing service which failed to start because of the following error: %%1058 Error: (05/16/2015 08:08:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Workstation Tool service failed to start due to the following error: %%2 Microsoft Office Sessions: ========================= Error: (05/17/2015 04:38:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Details: AddLegacyDriverFiles: Unable to back up image of binary tammgR119 service. System Error: Access is denied. Error: (05/17/2015 04:38:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Details: AddLegacyDriverFiles: Unable to back up image of binary tammgF119 service. System Error: Access is denied. Error: (05/17/2015 04:36:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Details: AddLegacyDriverFiles: Unable to back up image of binary tammgR119 service. System Error: Access is denied. Error: (05/17/2015 04:36:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Details: AddLegacyDriverFiles: Unable to back up image of binary tammgF119 service. System Error: Access is denied. Error: (05/17/2015 04:35:42 PM) (Source: MsiInstaller) (EventID: 1013) (User: Alec-PC) Description: Product: SketchUp 2015 -- A newer version of SketchUp is already installed on this system. An older version cannot be installed unless the newer version is uninstalled first.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (05/17/2015 10:29:24 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (05/17/2015 10:28:38 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920fb0001d090b6144ed51dC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe638e2315-fca9-11e4-84b4-6805ca2ceaa7 Error: (05/17/2015 10:26:33 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: CsrBtOBEXService.exe2.1.63.04f68683bCsrBtOBEXService.exe2.1.63.04f68683bc00000050000000000006f58139801d090b16ede3012C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exeC:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe18e1478d-fca9-11e4-a496-6805ca2ceaa7 Error: (05/17/2015 10:25:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Details: AddWin32ServiceFiles: Unable to back up image of service volbukirog since QueryServiceConfig API failed System Error: Access is denied. Error: (05/17/2015 10:25:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Details: AddWin32ServiceFiles: Unable to back up image of service TordukTiud since QueryServiceConfig API failed System Error: Access is denied. CodeIntegrity Errors: =================================== Date: 2015-05-17 22:24:32.041 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:23:47.984 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:21:47.320 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:19:46.640 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:17:45.983 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:15:45.324 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:13:44.641 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:11:43.981 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:09:43.327 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. Date: 2015-05-17 22:07:42.692 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz Percentage of memory in use: 63% Total physical RAM: 8135.29 MB Available physical RAM: 2954.26 MB Total Pagefile: 16268.78 MB Available Pagefile: 9559.98 MB Total Virtual: 8192 MB Available Virtual: 8191.84 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:931.41 GB) (Free:609.6 GB) NTFS Drive d: (Farming Simulator 15) (CDROM) (Total:1.87 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5AC11AA7) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== End Of Log ============================