Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015
Ran by Siharath at 2015-07-16 21:36:52
Running from C:\Users\Siharath\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2903595546-864337454-3497888183-500 - Administrator - Disabled)
Guest (S-1-5-21-2903595546-864337454-3497888183-501 - Limited - Disabled)
Siharath (S-1-5-21-2903595546-864337454-3497888183-1002 - Administrator - Enabled) => C:\Users\Siharath

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 6.2 - PainteR)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asus FaceID (HKLM-x32\...\{C4071085-DDF0-403F-90F9-27582FC22C9B}) (Version: 7.6.8.3 - ASUS)
ASUS GPU Tweak (HKLM\...\{7353D4C7-43E9-46A3-A1FF-79DD94A386F2}) (Version: 1.0.9 - ASUS)
ASUS Instant Key (HKLM-x32\...\{D97A1B80-131F-4692-9543-E652956D8B99}) (Version: 1.1.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.6 - ASUS)
ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 1.0.2 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.10 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0021 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.8 - ASUS)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5712.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.5712.52 - CyberLink Corp.) Hidden
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.311 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0031 - ASUS)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bruteforce Save Data (HKLM-x32\...\Bruteforce Save Data) (Version:  - )
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.88 - DivX, LLC)
ffdshow (remove only) (HKLM-x32\...\ffdshow) (Version:  - )
Fighter Factory Classic (HKLM-x32\...\VirtuallTek Fighter Factory Classic_is1) (Version: 1.2.0.2010 - VirtuallTek Systems)
FileZilla Client 3.9.0.6 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.6 - Tim Kosse)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3355 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1347.2) (HKLM\...\{302600C1-6BDF-4FD1-1312-148929CC1385}) (Version: 17.0.1312.0414 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{eff1d9d1-41fa-49ef-a986-082bfe49c293}) (Version: 16.8.0 - Intel Corporation)
IsoTools (HKLM-x32\...\{E53520BA-ECDA-42A6-8971-E96CBDD8523D}) (Version: 1.34.34.0 - 3K3Y Team)
iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
K-Lite Codec Pack 10.6.0 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 37.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 37.0.2 (x86 en-US)) (Version: 37.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
NVIDIA GeForce Experience 2.4.5.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.44 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA Photoshop Plug-ins 64 bit (HKLM-x32\...\{5E386C5B-CDE7-435A-B5C9-EC73A1B0553A}) (Version: 8.50 - )
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.39048 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.44 - NVIDIA Corporation) Hidden
SuperCopier2 (HKLM-x32\...\SuperCopier2) (Version:  - )
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.0.3.226 - ASUS Cloud Corporation)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.10.25 - WildTangent)
Windows Driver Package - ASUS (ATP) Mouse  (01/07/2014 1.0.0.197) (HKLM\...\2BEE838DC3D664A0CAB23AEA0332BB3877ED0685) (Version: 01/07/2014 1.0.0.197 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

25-06-2015 02:27:20 Windows Update
02-07-2015 14:52:00 Scheduled Checkpoint
09-07-2015 15:12:17 Windows Update
13-07-2015 13:57:35 Windows Update
16-07-2015 15:22:59 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 22:55 - 2013-08-22 22:55 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00A98A70-E39F-45C0-9658-34DADB36952F} - \SmartWeb Upgrade Trigger Task No Task File <==== ATTENTION
Task: {0E5AC4A6-6DD8-4E87-824C-14F3042A217F} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2013-11-05] ()
Task: {1106AE4B-18FF-4A7E-9A3B-A5AE78EAC768} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-02-14] (AsusTek)
Task: {17B4B81A-8B23-4367-829B-F4CD4E1598D4} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2013-08-30] (ASUS)
Task: {21328FC9-BBBC-43F1-8C19-1B0603F60BBE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)
Task: {302A4BF2-C748-4A06-9260-60CFE966978D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-26] (Google Inc.)
Task: {3A4F9E4A-AFDB-4DE1-B04A-AEE76708519F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-01-17] (ASUSTek Computer Inc.)
Task: {42B166FF-8CF5-4F40-81AF-AAF4209A3815} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] ()
Task: {47810173-EE6B-4D30-8A98-A247B7AEBF95} - System32\Tasks\ASUS GPUTweak => C:\Program Files\ASUS\ASUS GPU Tweak\GPUTweak.exe [2014-03-07] (ASUS)
Task: {6E3DB63F-3E73-47DB-AE86-7C8B3A9A8B42} - System32\Tasks\P4GIntlCtrl => C:\Program Files\ASUS\P4G\IntlDPST.exe [2013-08-30] ()
Task: {9B48ECC3-2355-48C7-AA03-976DAD2F581C} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-05] (Realtek Semiconductor)
Task: {9B6062AA-E03E-43EA-BAC2-29606081FA36} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-02-24] (Realtek Semiconductor)
Task: {9D501C6B-D605-4E2C-BCA5-934628228B1E} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {B610D72E-BF99-44CB-89A9-0F19D556AFEF} - System32\Tasks\{DC19728F-E842-4478-AE30-522D2EF9086D} => pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\"
Task: {CD8C4FCD-B425-4567-8FBB-08CD234FBA42} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-03] (Microsoft Corporation)
Task: {D1A4491C-69A2-414C-9C10-C0D69F1025BA} - System32\Tasks\ASUS InstantOn Config => C:\Program Files\ASUS\P4G\InsOnCfg.exe
Task: {D9FEDD9C-961D-4685-ABA2-3A4392C7C280} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-26] (Google Inc.)
Task: {E90FC846-9AB3-4A8C-8D4B-BFE5060195F6} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-10-08] (ASUSTeK Computer Inc.)
Task: {EB928F8B-96D0-4777-8898-C830A7E4E1D5} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2013-10-08] (ASUS)
Task: {F0F55125-C58D-4FAF-8F2D-7160E32C6211} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {FA8C49B7-A7A8-4DC4-BA3C-74779B0995F3} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-03-09] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2014-05-04 04:27 - 2015-06-17 16:18 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-13 03:20 - 2015-02-13 03:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-02-13 03:20 - 2015-02-13 03:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-04 04:25 - 2013-08-27 08:59 - 00755728 _____ () C:\Windows\SYSTEM32\sqlite3.dll
2013-08-30 08:31 - 2013-08-30 08:31 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2014-05-02 04:59 - 2014-05-02 04:59 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-03-07 09:12 - 2014-03-07 09:12 - 00011264 _____ () C:\Program Files\ASUS\ASUS GPU Tweak\WMIProc.dll
2014-03-07 09:12 - 2014-03-07 09:12 - 00320000 _____ () C:\Program Files\ASUS\ASUS GPU Tweak\NavpiWrapper.dll
2014-05-04 04:26 - 2013-05-16 07:09 - 00463872 _____ () C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
2012-03-08 11:57 - 2012-03-08 11:57 - 00016384 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\ACVsWin.dll
2015-04-26 21:31 - 2015-04-26 21:31 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-04-26 21:31 - 2015-04-26 21:31 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-07-16 11:48 - 2015-07-16 11:48 - 02956800 _____ () C:\Program Files\AVAST Software\Avast\defs\15071501\algo.dll
2013-10-09 13:11 - 2013-10-09 13:11 - 00037968 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2013-09-10 10:53 - 2013-09-10 10:53 - 00162816 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-03-31 13:24 - 2015-06-04 06:36 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-03-12 21:57 - 2015-03-12 21:57 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-04 04:11 - 2013-09-04 09:22 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-10-16 18:45 - 2014-10-16 18:45 - 00035328 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-05-25 02:11 - 2014-05-25 02:11 - 00091648 _____ () C:\Program Files (x86)\FileZilla FTP Client\libgcc_s_sjlj-1.dll
2014-05-25 02:11 - 2014-05-25 02:11 - 00892416 _____ () C:\Program Files (x86)\FileZilla FTP Client\libstdc++-6.dll
2015-07-15 12:48 - 2015-07-14 07:25 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libglesv2.dll
2015-07-15 12:48 - 2015-07-14 07:25 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libegl.dll
2015-07-15 12:48 - 2015-07-14 07:25 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\Siharath\SkyDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-2903595546-864337454-3497888183-1002\Software\Classes\.exe:  =>  <===== ATTENTION!

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2903595546-864337454-3497888183-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Siharath\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.16.250

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "DivXUpdate"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKLM\...\StartupApproved\Run32: => "SmartWeb"
HKU\S-1-5-21-2903595546-864337454-3497888183-1002\...\StartupApproved\StartupFolder: => "crossbrowse.lnk"
HKU\S-1-5-21-2903595546-864337454-3497888183-1002\...\StartupApproved\StartupFolder: => "SmartWeb.lnk"
HKU\S-1-5-21-2903595546-864337454-3497888183-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_364A3D825F3AE655A6426696BE2B39B4"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{80D1F6D0-AE97-42FD-9872-E6E8376E21C8}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{D8A633F2-09C3-423A-A821-CE2A5405E5DD}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{79AB2DA6-1034-4D45-B954-09E8580F6808}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BE04CBCB-760D-43C1-A8D4-AE32D05F3AEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C86E26A5-D5C4-4B63-ADCD-AD61F0CB5D06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7A5FF0D9-009D-4903-B274-E9AC37C8DBAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4333BD77-C220-4179-BE14-8DAEE6EE46F3}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{340ADFCC-CE48-4FC3-9C9D-A6082E8CA630}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{DA93C4BD-9832-49D0-9066-EED2A14C484B}] => (Allow) C:\Users\Siharath\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{06FB91BD-12A5-4188-8C33-85501E97B03B}] => (Allow) C:\Users\Siharath\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{32726D10-3883-49BA-B9DD-399A69322868}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CAFAD5AC-ADB2-44ED-A2FD-CD602D5BA712}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E52B1A38-A8AE-49C7-9482-92EA884F1F94}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{68466545-2B66-4355-9494-3F789EDAAF0E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3EFE8D91-4A72-471B-AFA8-65836C17414B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E7FEE4B3-7249-44C2-8BCC-1B8CA1EB9190}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1855910A-FA9D-4B99-88AA-21E50469DC58}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{1E5380D8-27A5-44D8-AC88-A90E07CF6E15}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{62B38DE8-33CE-46D1-92C8-8C008A58D2B2}] => (Block) %ProgramFiles%\Sony\Vegas Pro 13.0\ApplicationRegistration.exe
FirewallRules: [{4C530FC1-DA91-4497-A427-956221D83F2E}] => (Block) %ProgramFiles%\Sony\Vegas Pro 13.0\ErrorReportLauncher.exe
FirewallRules: [{557B2073-9353-4982-A1B5-DE24A9810F5D}] => (Block) %ProgramFiles%\Sony\Vegas Pro 13.0\ErrorReportClient.exe
FirewallRules: [{BD372E20-0F9F-4A4D-8DDB-54EE99826DD6}] => (Block) %ProgramFiles%\Sony\Vegas Pro 13.0\vegas130.exe
FirewallRules: [{A1EC1EAC-05C2-4DC0-BB79-68ADC67B6ED8}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC (64 Bit)\Photoshop.exe
FirewallRules: [{E057AE8C-D0F6-4796-8435-1E1ABE59BA78}] => (Block) %ProgramFiles% (x86)\Adobe\Update Management Tool\UMT.exe
FirewallRules: [{E04A640C-AB50-4E44-933D-C9F375E0786A}] => (Block) %ProgramFiles% (x86)\Adobe\Adobe Photoshop CC\Photoshop.exe
FirewallRules: [{B62F8388-F363-4D16-8927-1BB464EEAAD3}] => (Block) %ProgramFiles% (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe
FirewallRules: [{2B52549A-D8BF-485C-9E2C-1011493AE3C3}] => (Block) %ProgramFiles% (x86)\Photoshop CS6\Photoshop.exe
FirewallRules: [{7B214F16-3BC7-4217-AFC2-7288AB560918}] => (Block) %ProgramFiles% (x86)\Photoshop CS6\x64\Photoshop.exe
FirewallRules: [TCP Query User{33BD88C9-E9A3-496C-9FBC-7FAFD7547B6B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{FEA0044B-8246-407D-8A4A-8E8C97383C47}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{3A94A188-4342-4A66-B045-73A53C5D8DB7}] => (Block) %ProgramFiles% (x86)\AnvSoft\Any Video Converter Ultimate\AVCUltimate.exe
FirewallRules: [{A6D1C6BF-5819-42B4-B426-9608D50CA612}] => (Block) %ProgramFiles%\dBpoweramp\MusicConverter.exe
FirewallRules: [{9A0022A3-EFF0-4108-B360-8D3B17B0A6CD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{885B38E3-55A6-4F6C-BB55-FA51B2939885}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6D2A4310-DA9E-4B7B-BD41-04F4C82D4888}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{788F7464-0C96-4312-8D5C-823EED135063}] => (Block) %ProgramFiles%\Nitro\Pro 9\x86\Nitro_Scan2PDFApp.exe
FirewallRules: [{D710CB66-C9BD-419F-BAB4-E5FF4B841D2E}] => (Block) %ProgramFiles%\Nitro\Pro 9\AddinSetupTool.exe
FirewallRules: [{F01C1A4C-2BFD-491E-99C1-CA57D362F9E6}] => (Block) %ProgramFiles%\Nitro\Pro 9\BsSndRpt64.exe
FirewallRules: [{A7FC0AB3-9B10-476A-8073-6F40E70CE414}] => (Block) %ProgramFiles%\Nitro\Pro 9\Connection.exe
FirewallRules: [{86A6E5E8-11FE-4A28-ABA5-D38D67400EDF}] => (Block) %ProgramFiles%\Nitro\Pro 9\ControlActivation.exe
FirewallRules: [{CCE74ECF-697A-471E-8EE0-6963F69A2BF8}] => (Block) %ProgramFiles%\Nitro\Pro 9\Nitro_UpdateService.exe
FirewallRules: [{5F7D396E-814C-4D7C-8046-B5AD7ED4DA6F}] => (Block) %ProgramFiles%\Nitro\Pro 9\NitroAssistant.exe
FirewallRules: [{F66CB05D-9C50-40F0-96FA-A09670E2031C}] => (Block) %ProgramFiles%\Nitro\Pro 9\NitroPDF.exe
FirewallRules: [{BF60DF97-BB25-4E57-88AC-F3A4A68CC076}] => (Block) %ProgramFiles%\Nitro\Pro 9\NitroPDFDriverCreator.exe
FirewallRules: [{B4F2FCA7-7519-455F-9B29-C724B2DD625B}] => (Block) %ProgramFiles%\Nitro\Pro 9\NitroPDFDriverService9x64.exe
FirewallRules: [{2E1726C6-39C1-473C-8D20-F9475ED28E8C}] => (Block) %ProgramFiles%\Nitro\Pro 9\NitroPDFKissMetricsTool.exe
FirewallRules: [{BA78BDEA-443F-42C5-935C-7813B658BE0A}] => (Block) %ProgramFiles%\Nitro\Pro 9\NitroPDFSupportTools.exe
FirewallRules: [{8A1E624F-3BAB-49DF-B751-0346E03F8DFB}] => (Block) %ProgramFiles%\Nitro\Pro 9\NitroPrinterInstallerx64.exe
FirewallRules: [{626405A2-2517-45D8-8D10-4D0281758159}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{D9FD5D2D-7D77-42C4-A7C8-7E6C1D27E31A}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{738CDEFA-5E59-4D2F-8E22-66FFA9EED642}] => (Block) %ProgramFiles% (x86)\Coupoon\UpdateCheck.exe
FirewallRules: [{106B983B-1DF1-4977-9095-202EC6FA9989}] => (Block) %ProgramFiles% (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
FirewallRules: [{E9F53EB7-C1D2-4035-9FAA-732C0FE12BE1}] => (Block) %ProgramFiles% (x86)\Crossbrowse\Crossbrowse\Application\utility.exe
FirewallRules: [{B93C232D-50F8-4D80-92BF-24A765AF4124}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{02A8FC3F-8064-45CE-B8CF-8D9382581039}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{531AF60F-8412-4C73-B5DE-51F2A69A55C5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/16/2015 09:21:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AutoKMS.exe, version: 2.5.3.0, time stamp: 0x54c2b458
Faulting module name: KERNELBASE.dll, version: 6.3.9600.17415, time stamp: 0x54505737
Exception code: 0xe0434352
Fault offset: 0x0000000000008b9c
Faulting process id: 0x65c
Faulting application start time: 0xAutoKMS.exe0
Faulting application path: AutoKMS.exe1
Faulting module path: AutoKMS.exe2
Report Id: AutoKMS.exe3
Faulting package full name: AutoKMS.exe4
Faulting package-relative application ID: AutoKMS.exe5

Error: (07/16/2015 09:21:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: AutoKMS.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Management.ManagementException
Stack:
   at System.Management.ManagementException.ThrowWithExtendedInfo(System.Management.ManagementStatus)
   at System.Management.ManagementObjectCollection+ManagementObjectEnumerator.MoveNext()
   at ..(System.String, ., System.String, System.String)
   at ...ctor()
   at ..(.)
   at ..()

Error: (07/16/2015 09:06:16 PM) (Source: nlsX86cc) (EventID: 0) (User: )
Description: Stop request seennlsX86cc error: 0

Error: (07/16/2015 08:31:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: JAMES)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'

Error: (07/16/2015 08:30:52 PM) (Source: MsiInstaller) (EventID: 1002) (User: JAMES)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'

Error: (07/16/2015 06:34:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LogonUI.exe, version: 6.3.9600.17415, time stamp: 0x5450541b
Faulting module name: ntdll.dll, version: 6.3.9600.17736, time stamp: 0x550f4336
Exception code: 0xc00000fd
Fault offset: 0x000000000001c29e
Faulting process id: 0x23d0
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report Id: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5

Error: (07/16/2015 01:11:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 46719

Error: (07/16/2015 01:11:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 46719

Error: (07/16/2015 01:11:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2015 01:11:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31079


System errors:
=============
Error: (07/16/2015 09:01:20 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1053AvastVBoxSvcUnavailable{F319F1B8-7587-4146-AF9C-0D6D77819BF1}

Error: (07/16/2015 09:01:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AvastVBox COM Service service failed to start due to the following error: 
%%1053

Error: (07/16/2015 09:01:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the AvastVBox COM Service service to connect.

Error: (07/16/2015 07:15:40 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys

Error: (07/16/2015 01:14:18 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1053AvastVBoxSvcUnavailable{F319F1B8-7587-4146-AF9C-0D6D77819BF1}

Error: (07/16/2015 01:14:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AvastVBox COM Service service failed to start due to the following error: 
%%1053

Error: (07/16/2015 01:14:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the AvastVBox COM Service service to connect.

Error: (07/16/2015 01:12:54 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 12:46:20 PM on ‎7/‎16/‎2015 was unexpected.

Error: (07/16/2015 12:23:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Peripheral Subject service failed to start due to the following error: 
%%2

Error: (07/16/2015 11:45:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Peripheral Subject service failed to start due to the following error: 
%%2


Microsoft Office:
=========================
Error: (07/16/2015 09:21:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AutoKMS.exe2.5.3.054c2b458KERNELBASE.dll6.3.9600.1741554505737e04343520000000000008b9c65c01d0bfbd75ac51a2C:\Windows\AutoKMS\AutoKMS.exeC:\Windows\system32\KERNELBASE.dll0299189f-2bb1-11e5-829e-8086f23e8383

Error: (07/16/2015 09:21:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: AutoKMS.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Management.ManagementException
Stack:
   at System.Management.ManagementException.ThrowWithExtendedInfo(System.Management.ManagementStatus)
   at System.Management.ManagementObjectCollection+ManagementObjectEnumerator.MoveNext()
   at ..(System.String, ., System.String, System.String)
   at ...ctor()
   at ..(.)
   at ..()

Error: (07/16/2015 09:06:16 PM) (Source: nlsX86cc) (EventID: 0) (User: )
Description: Stop request seennlsX86cc error: 0

Error: (07/16/2015 08:31:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: JAMES)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)

Error: (07/16/2015 08:30:52 PM) (Source: MsiInstaller) (EventID: 1002) (User: JAMES)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)

Error: (07/16/2015 06:34:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LogonUI.exe6.3.9600.174155450541bntdll.dll6.3.9600.17736550f4336c00000fd000000000001c29e23d001d0bf939c699493C:\Windows\system32\LogonUI.exeC:\Windows\SYSTEM32\ntdll.dllb9b189d6-2b99-11e5-829c-8086f23e8383

Error: (07/16/2015 01:11:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 46719

Error: (07/16/2015 01:11:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 46719

Error: (07/16/2015 01:11:38 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2015 01:11:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31079


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4700HQ CPU @ 2.40GHz
Percentage of memory in use: 20%
Total physical RAM: 16267.02 MB
Available physical RAM: 12940.91 MB
Total Virtual: 20875.02 MB
Available Virtual: 17042.14 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:126.85 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:537.8 GB) (Free:512.56 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: C74FF01B)

Partition: GPT Partition Type.

==================== End of log ============================