Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Very slow startup, takes multiple tries


  • Please log in to reply

#1
blight3220

blight3220

    New Member

  • Member
  • Pip
  • 2 posts

Hello! I believe my computer is infected. Recently starting upt he computer takes a long time, staying on a black screen before finally going to the login screen. It takes at least 2 tries to even make it past the first screen (the bios bit or whatever).

 

I don't know if this is due to malware or not but I ran avira free version, it removed 6 threats but there's still the same issue. Here's the logs:

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-05-2015 01
Ran by yosir (administrator) on CMFORCE500 on 28-05-2015 22:13:41
Running from C:\Users\yosir\Desktop
Loaded Profiles: yosir (Available Profiles: yosir)
Platform: Windows 8.1 Pro (X64) OS Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
() C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13513288 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)
HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] (cFos Software GmbH)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8292120 2013-11-14] (Logitech Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2013-12-20] (FNet Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-03-31] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [127792 2015-05-08] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [728312 2015-04-16] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\Run: [ASRock A-Tuning] => [X]
HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\Run: [ASRockRuefi] => [X]
HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\Run: [Settings Manager] => /autostart
HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\MountPoints2: {604345c2-50e6-11e4-8287-bc5ff4e049aa} - "F:\Startme.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk [2013-12-20]
ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-674586988-653043452-3255515900-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://start.warwick.ac.uk/
HKU\S-1-5-21-674586988-653043452-3255515900-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.uk.msn.com/
SearchScopes: HKU\S-1-5-21-674586988-653043452-3255515900-1001 -> DefaultScope {08794FFC-DC36-40FA-954B-63DDB226AEA1} URL = https://uk.search.ya...p={searchTerms}
SearchScopes: HKU\S-1-5-21-674586988-653043452-3255515900-1001 -> {045DDA06-4173-4F2F-B4C8-8311DF4069AF} URL = http://uk.search.yah...p={searchTerms}
SearchScopes: HKU\S-1-5-21-674586988-653043452-3255515900-1001 -> {08794FFC-DC36-40FA-954B-63DDB226AEA1} URL = https://uk.search.ya...p={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\yosir\AppData\Roaming\Mozilla\Firefox\Profiles\1mxfntu5.default
FF SelectedSearchEngine: Yahoo!
FF Homepage: https://www.google.co.uk/
FF Keyword.URL: https://uk.search.ya...&type=293224&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-05-21] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-21] ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [2014-05-26] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Extension: Avira Browser Safety - C:\Users\yosir\AppData\Roaming\Mozilla\Firefox\Profiles\1mxfntu5.default\Extensions\[email protected] [2015-05-27]
FF Extension: NoScript - C:\Users\yosir\AppData\Roaming\Mozilla\Firefox\Profiles\1mxfntu5.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-20]
FF Extension: Tamper Data - C:\Users\yosir\AppData\Roaming\Mozilla\Firefox\Profiles\1mxfntu5.default\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2015-01-24]
FF Extension: Adblock Plus - C:\Users\yosir\AppData\Roaming\Mozilla\Firefox\Profiles\1mxfntu5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-20]
FF Extension: DownThemAll! - C:\Users\yosir\AppData\Roaming\Mozilla\Firefox\Profiles\1mxfntu5.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-01-13]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt

Chrome:
=======
CHR HomePage: Default -> hxxp://uk.search.yahoo.com/?type=293224&fr=spigot-yhp-ch
CHR StartupUrls: Default -> "hxxp://uk.search.yahoo.com/?type=293224&fr=spigot-yhp-ch"
CHR DefaultSearchKeyword: Default -> yahoo.com
CHR DefaultSearchURL: Default -> http://uk.search.yah...p={searchTerms}
CHR DefaultSuggestURL: Default -> http://ff.search.yah...d={searchTerms}
CHR Profile: C:\Users\yosir\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\yosir\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-20]
CHR Extension: (Google Drive) - C:\Users\yosir\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-20]
CHR Extension: (YouTube) - C:\Users\yosir\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-20]
CHR Extension: (Adblock Plus) - C:\Users\yosir\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-12-20]
CHR Extension: (Google Search) - C:\Users\yosir\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-20]
CHR Extension: (Google Wallet) - C:\Users\yosir\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-20]
CHR Extension: (Gmail) - C:\Users\yosir\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-20]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.goo...ice/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [827640 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [434424 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [434424 2015-04-16] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1185584 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [206072 2015-05-08] (Avira Operations GmbH & Co. KG)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1429504 2015-03-05] (Microsoft Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
S3 intelsba; C:\Program Files\Intel\Intel® Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [48832 2013-01-28] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [182248 2013-03-14] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-03-03] (Electronic Arts)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-19] (Realtek Semiconductor)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-12-21] (Advanced Micro Devices)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [152744 2015-04-16] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [132120 2015-04-16] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-04-16] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-21] (Disc Soft Ltd)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2014-10-13] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2013-12-20] (FNet Co., Ltd.)
S3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [4185600 2013-10-04] (Intel Corporation) [File not signed]
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21048 2013-03-14] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21048 2013-03-14] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-03-14] ()
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 sthid; C:\Windows\System32\drivers\sthid.sys [21216 2013-04-01] (Splashtop Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2015-05-22] ()
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]
S3 iwdbus; \SystemRoot\System32\drivers\iwdbus.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 XFDriver64; \??\C:\Program Files (x86)\Xfire2\XFDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-28 22:13 - 2015-05-28 22:14 - 00017957 _____ () C:\Users\yosir\Desktop\FRST.txt
2015-05-28 22:12 - 2015-05-28 22:13 - 00000000 ____D () C:\FRST
2015-05-28 22:10 - 2015-05-28 22:10 - 02108928 _____ (Farbar) C:\Users\yosir\Desktop\FRST64.exe
2015-05-27 20:11 - 2015-05-27 20:11 - 00000000 ____D () C:\Users\yosir\AppData\Roaming\Avira
2015-05-27 20:10 - 2015-04-16 15:23 - 00152744 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-05-27 20:10 - 2015-04-16 15:23 - 00132120 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-05-27 20:10 - 2015-04-16 15:23 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-05-27 20:10 - 2015-04-16 15:23 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-05-27 20:09 - 2015-05-27 20:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-05-27 20:09 - 2015-05-27 20:10 - 00000000 ____D () C:\ProgramData\Avira
2015-05-27 20:09 - 2015-05-27 20:10 - 00000000 ____D () C:\Program Files (x86)\Avira
2015-05-27 19:55 - 2015-05-28 22:07 - 00717999 _____ () C:\Windows\WindowsUpdate.log
2015-05-22 02:45 - 2015-05-22 02:45 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2015-05-22 02:45 - 2015-05-22 02:45 - 00000000 ____D () C:\ProgramData\ATI
2015-05-22 02:32 - 2015-05-22 02:32 - 00053564 _____ () C:\Windows\SysWOW64\CCCInstall_201505220232197497.log
2015-05-22 02:32 - 2015-05-22 02:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-05-22 02:32 - 2015-05-22 02:32 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2015-05-22 02:31 - 2015-05-22 02:31 - 00000000 ____D () C:\Windows\LastGood.Tmp
2015-05-19 14:57 - 2015-05-19 14:57 - 00006297 _____ () C:\Users\yosir\AppData\Local\recently-used.xbel
2015-05-18 20:35 - 2015-05-18 20:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-05-17 17:31 - 2015-05-28 06:54 - 00000080 _____ () C:\Users\yosir\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-05-17 17:31 - 2015-05-17 17:31 - 00000000 ____D () C:\Users\yosir\Documents\Rockstar Games
2015-05-17 17:31 - 2015-05-17 17:31 - 00000000 ____D () C:\Users\yosir\AppData\Local\Rockstar Games
2015-05-17 17:31 - 2015-05-17 17:31 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2015-05-17 17:30 - 2015-05-17 17:30 - 00000000 ____D () C:\Program Files\Rockstar Games
2015-05-15 11:22 - 2015-04-30 21:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-15 11:22 - 2015-04-30 21:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 15:43 - 2015-04-10 01:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-13 15:43 - 2015-04-10 01:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-13 15:43 - 2015-03-17 18:26 - 00467776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-05-13 15:43 - 2015-03-09 03:02 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-05-13 15:42 - 2015-05-01 00:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 15:42 - 2015-04-30 23:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 15:42 - 2015-04-24 22:32 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-13 15:42 - 2015-04-21 18:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 15:42 - 2015-04-21 17:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 15:42 - 2015-04-21 17:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 15:42 - 2015-04-21 17:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 15:42 - 2015-04-21 17:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 15:42 - 2015-04-21 17:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 15:42 - 2015-04-21 17:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 15:42 - 2015-04-21 17:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 15:42 - 2015-04-21 17:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-13 15:42 - 2015-04-21 17:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 15:42 - 2015-04-21 17:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 15:42 - 2015-04-21 17:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 15:42 - 2015-04-21 17:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-05-13 15:42 - 2015-04-21 17:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 15:42 - 2015-04-21 17:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 15:42 - 2015-04-21 16:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-05-13 15:42 - 2015-04-21 16:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 15:42 - 2015-04-21 16:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-05-13 15:42 - 2015-04-21 16:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 15:42 - 2015-04-21 16:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 15:42 - 2015-04-21 16:49 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 15:42 - 2015-04-21 16:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 15:42 - 2015-04-21 16:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 15:42 - 2015-04-21 16:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 15:42 - 2015-04-21 16:37 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-05-13 15:42 - 2015-04-21 16:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 15:42 - 2015-04-21 16:32 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-05-13 15:42 - 2015-04-21 16:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 15:42 - 2015-04-21 16:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-13 15:42 - 2015-04-21 16:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 15:42 - 2015-04-21 16:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 15:42 - 2015-04-21 16:26 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 15:42 - 2015-04-21 16:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 15:42 - 2015-04-21 16:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 15:42 - 2015-04-21 16:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 15:42 - 2015-04-21 16:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 15:42 - 2015-04-21 16:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 15:42 - 2015-04-21 15:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 15:42 - 2015-04-21 15:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 15:42 - 2015-04-13 23:48 - 04180480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 15:42 - 2015-04-10 02:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 15:42 - 2015-04-10 01:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 15:42 - 2015-04-10 01:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 15:42 - 2015-04-08 23:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 15:42 - 2015-04-03 01:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-13 15:42 - 2015-04-03 01:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-13 15:42 - 2015-04-01 23:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-13 15:42 - 2015-04-01 23:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-13 15:42 - 2015-04-01 04:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-13 15:42 - 2015-04-01 03:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-13 15:42 - 2015-03-30 06:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-13 15:42 - 2015-03-27 04:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 15:42 - 2015-03-27 03:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 15:42 - 2015-03-27 03:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 15:42 - 2015-03-20 02:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-13 15:42 - 2015-03-13 05:03 - 00239424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-13 15:42 - 2015-03-13 05:03 - 00154432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-13 15:42 - 2015-03-13 03:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-13 15:42 - 2015-03-13 02:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-13 15:42 - 2015-03-13 01:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-13 15:42 - 2015-03-13 01:29 - 00410017 _____ () C:\Windows\system32\ApnDatabase.xml
2015-05-13 15:42 - 2015-03-11 02:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 15:42 - 2015-03-11 02:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 15:42 - 2015-03-06 04:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 15:42 - 2015-03-06 03:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-13 15:42 - 2015-03-06 03:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-13 15:42 - 2015-03-05 00:09 - 01429504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-13 15:42 - 2015-03-04 02:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-13 15:42 - 2015-03-04 02:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-13 15:42 - 2015-02-18 00:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-13 15:42 - 2015-01-30 01:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-13 15:42 - 2014-11-14 07:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-05-13 04:14 - 2015-05-13 04:14 - 00000000 ____D () C:\Users\yosir\AppData\Local\LOOT
2015-05-13 03:07 - 2015-05-13 03:07 - 00001559 _____ () C:\Users\yosir\Desktop\skse_loader.exe - Shortcut.lnk
2015-05-01 23:14 - 2015-05-27 20:14 - 00000000 ____D () C:\Users\yosir\AppData\Roaming\Update Manager
2015-04-30 23:10 - 2015-04-30 23:10 - 00000000 __HDC () C:\ProgramData\{1C7A6EB7-BED0-4444-B0DA-4BFDCF83C380}
2015-04-30 22:42 - 2015-04-30 22:45 - 00000000 __HDC () C:\ProgramData\{7A86240F-63E1-4D58-83D3-E717B0CCAD94}

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-28 22:11 - 2013-12-20 20:10 - 00000928 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-28 22:07 - 2013-12-20 19:48 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-28 21:47 - 2013-12-20 20:10 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-28 16:00 - 2013-12-20 19:11 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-28 16:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-28 15:59 - 2013-12-20 23:50 - 00000000 ____D () C:\Users\yosir\AppData\Local\CrashDumps
2015-05-28 10:55 - 2015-01-10 03:18 - 00000000 ____D () C:\Users\yosir\AppData\Roaming\foobar2000
2015-05-27 23:06 - 2015-04-07 18:35 - 00000000 ____D () C:\Users\yosir\Desktop\FIFA 15
2015-05-27 23:06 - 2013-12-31 20:53 - 00000000 ____D () C:\Users\yosir\Desktop\LEGO Lord Of The Rings
2015-05-27 20:55 - 2013-12-20 03:07 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-674586988-653043452-3255515900-1001
2015-05-27 20:09 - 2013-12-20 16:46 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-27 10:18 - 2014-01-06 20:15 - 00000000 ____D () C:\Users\yosir\AppData\Roaming\uTorrent
2015-05-26 03:11 - 2013-12-20 20:12 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-22 02:51 - 2013-09-30 05:12 - 00865408 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-22 02:45 - 2013-12-20 03:34 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
2015-05-22 02:45 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-22 02:42 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-05-22 02:32 - 2013-12-20 16:47 - 00000000 ____D () C:\ProgramData\AMD
2015-05-22 02:24 - 2013-12-20 16:47 - 00000000 ____D () C:\Program Files\AMD
2015-05-22 02:01 - 2014-02-06 18:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-22 02:01 - 2013-08-22 15:44 - 00509128 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-21 17:16 - 2014-10-29 15:22 - 00000000 ____D () C:\Users\yosir\AppData\Local\Adobe
2015-05-21 17:16 - 2013-12-20 19:48 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-05-20 20:01 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-20 20:00 - 2015-04-04 14:02 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-05-20 20:00 - 2015-04-04 14:02 - 00000000 ___SD () C:\Windows\system32\GWX
2015-05-19 15:02 - 2014-01-30 02:29 - 00000000 ____D () C:\Users\yosir\.gimp-2.8
2015-05-17 23:05 - 2013-12-20 20:10 - 00003900 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-17 23:05 - 2013-12-20 20:10 - 00003664 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-17 17:21 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-05-17 01:46 - 2013-12-21 00:36 - 00000000 ____D () C:\Users\yosir\AppData\Local\Skyrim
2015-05-17 01:46 - 2013-12-20 23:14 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim
2015-05-16 22:19 - 2014-05-28 03:33 - 00000363 _____ () C:\Users\yosir\Desktop\my current best champs.txt
2015-05-15 12:15 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2015-05-15 11:22 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-05-15 11:22 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-14 05:16 - 2014-01-09 05:48 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-05-14 05:16 - 2013-12-20 04:20 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-14 05:13 - 2013-12-20 04:20 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-14 05:07 - 2013-09-30 04:59 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-14 05:05 - 2014-02-27 01:20 - 00000000 ____D () C:\Users\yosir\AppData\Local\Battle.net
2015-05-13 06:03 - 2014-02-27 01:20 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-05-10 02:38 - 2014-05-25 06:48 - 00000000 ____D () C:\Program Files (x86)\Tennis Elbow 2013
2015-05-08 12:33 - 2014-01-30 02:31 - 00000000 ____D () C:\Users\yosir\AppData\Local\gtk-2.0
2015-05-05 18:59 - 2013-08-22 16:38 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-05-05 18:59 - 2013-08-22 16:38 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-03 00:33 - 2013-12-21 17:49 - 00000000 ____D () C:\Users\yosir\Documents\Ableton Projects
2015-05-01 01:24 - 2013-12-21 16:04 - 00000000 ____D () C:\Users\yosir\AppData\Roaming\DAEMON Tools Lite
2015-04-30 23:22 - 2015-04-27 22:08 - 40655404 _____ () C:\Users\yosir\Desktop\A LVL PIECE ak ver.wav
2015-04-30 23:02 - 2013-12-21 17:51 - 00000000 ____D () C:\Users\yosir\Documents\VSTs
2015-04-30 22:41 - 2014-01-08 19:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments

==================== Files in the root of some directories =======

2015-04-27 00:15 - 2015-04-27 00:15 - 0000604 ____H () C:\Program Files (x86)\_43_S
2014-04-24 22:15 - 2014-04-24 22:19 - 0000096 _____ () C:\Users\yosir\AppData\Roaming\Camdata.ini
2014-04-24 22:15 - 2014-04-24 22:19 - 0000408 _____ () C:\Users\yosir\AppData\Roaming\CamLayout.ini
2014-04-24 22:15 - 2014-04-24 22:19 - 0000408 _____ () C:\Users\yosir\AppData\Roaming\CamShapes.ini
2014-04-24 22:15 - 2014-04-24 22:19 - 0004533 _____ () C:\Users\yosir\AppData\Roaming\CamStudio.cfg
2014-04-24 22:09 - 2014-04-24 22:15 - 0000096 _____ () C:\Users\yosir\AppData\Roaming\version2.xml
2012-05-03 12:12 - 2012-05-03 12:12 - 0000532 _____ () C:\Users\yosir\AppData\Local\datos.txt
2015-05-19 14:57 - 2015-05-19 14:57 - 0006297 _____ () C:\Users\yosir\AppData\Local\recently-used.xbel
2013-12-20 03:33 - 2013-12-20 03:33 - 0000003 _____ () C:\Users\yosir\AppData\Local\user_data.ini

Some files in TEMP:
====================
C:\Users\yosir\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-24 17:58

==================== End of log ============================

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015 01
Ran by yosir at 2015-05-28 22:14:44
Running from C:\Users\yosir\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-674586988-653043452-3255515900-500 - Administrator - Disabled)
Guest (S-1-5-21-674586988-653043452-3255515900-501 - Limited - Disabled)
yosir (S-1-5-21-674586988-653043452-3255515900-1001 - Administrator - Enabled) => C:\Users\yosir

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\uTorrent) (Version: 3.4.3.40097 - BitTorrent Inc.)
ABL 2.9.2 (HKLM-x32\...\AudioRealism Bass Line 2_is1) (Version:  - AudioRealism)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{F88356F5-1AA4-BBE9-E6CF-5B1CF179D052}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version:  - ASRock Inc.)
ASRock Restart to UEFI v1.0.3 (HKLM-x32\...\ASRock Restart to UEFI_is1) (Version:  - )
ASRock SmartConnect v1.0.6 (HKLM\...\ASRock SmartConnect_is1) (Version:  - ASRock Inc.)
ASRock XFast RAM v2.0.28 (HKLM\...\ASRock XFast RAM_is1) (Version:  - ASRock Inc.)
A-Tuning v1.0.10.1 (HKLM-x32\...\A-Tuning_is1) (Version:  - )
Auslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 4.4.1.0 - Auslogics Labs Pty Ltd)
Avid License Control (HKLM-x32\...\{F187D064-F101-4E95-8D05-4027809AA0F8}) (Version: 3.0.1 - Avid Technology, Inc.)
Avira (HKLM-x32\...\{7bbb1cfc-958f-4118-8d23-7189d637f941}) (Version: 1.1.38.50000 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.38.50000 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.10.434 - Avira Operations GmbH & Co. KG)
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.5.510 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
DMGAudio EQuilibrium 1.04 (HKLM-x32\...\DMGAudio EQuilibrium_is1) (Version:  - DMGAudio)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dungeon Keeper 2 (HKLM\...\{4f94b43a-8a00-4ac4-bb94-269cf24aef97}.sdb) (Version:  - )
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version:  - Ubisoft)
FM Genie Scout 14 version 1.2 14.3.1 (HKLM-x32\...\FM Genie Scout 14_is1) (Version: 1.2 14.3.1 - )
foobar2000 v1.3.6 (HKLM-x32\...\foobar2000) (Version: 1.3.6 - Peter Pawlowski)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Imperfect Samples Player version 2.07 (HKLM-x32\...\{BCED3DF3-9572-4019-BEE6-6EC7B3D5D515}_is1) (Version: 2.07 - Imperfect Samples)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36702 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation)
Intel® Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.0.30.6644 - Intel® Corporation)
Intel® Smart Connect Technology 4.1 x64 (HKLM\...\{405EF630-AF8C-4A69-9CAF-6D5B8C1C005B}) (Version: 4.1.40.2143 - Intel)
Intel® Update Manager (x32 Version: 1.0.0.36888 - Intel Corporation) Hidden
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version:  - Tripwire Interactive)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
Live 8.2.1 (HKLM-x32\...\Live 8.2.1) (Version:  - )
Logitech Gaming Software 8.51 (HKLM\...\Logitech Gaming Software) (Version: 8.51.5 - Logitech Inc.)
Medieval II: Total War (HKLM-x32\...\Steam App 4700) (Version:  - The Creative Assembly)
Microsoft Excel 2010 (HKLM\...\Office14.EXCEL) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Middle-earth. Shadow of Mordor, âåðñèÿ 1.0.0.0 (HKLM-x32\...\Middle-earth. Shadow of Mordor_is1) (Version: 1.0.0.0 - RePack by SEYTER)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mount&Blade Warband (HKLM-x32\...\Mount&Blade Warband) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 38.0.1 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 en-GB)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst_is1) (Version:  - Namco Bandai Games)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.4.3.307 - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version:  - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version:  - Native Instruments)
Native Instruments The Giant (HKLM-x32\...\Native Instruments The Giant) (Version:  - Native Instruments)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.46.0 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version:  - Grinding Gear Games)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PCM Native Reverb Bundle (HKLM-x32\...\PCM Native Reverb Bundle) (Version:  - Lexicon)
PCM Native Reverb Bundle (x32 Version: 1.1.3 - Lexicon) Hidden
Pro Evolution Soccer 2014 (HKLM-x32\...\{5EFD3544-2371-4900-8ACA-F157BA80FB0C}) (Version: 1.00.0000 - KONAMI)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
REAPER (x64) (HKLM\...\REAPER) (Version:  - )
Reason 5.0 (HKLM-x32\...\Reason5_is1) (Version: 5.0 - Propellerhead Software AB)
ReDominator 1.0.1 (HKLM-x32\...\ReDominator_is1) (Version:  - AudioRealism)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version:  - )
reFX Vanguard 1.7.2 (HKLM-x32\...\reFX Vanguard 1.7.2_is1) (Version:  - )
Renoise 2.8.0 (x64) (HKLM\...\Renoise (x64)_is1) (Version: 2.8.0 - Renoise)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Rome: Total War (HKLM-x32\...\Steam App 4760) (Version:  - The Creative Assembly)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0000-1000-0000000FF1CE}_Office14.EXCEL_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0000-1000-0000000FF1CE}_Office14.WORD_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Settings Manager (HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\Settings Manager) (Version: 21.0.0.2 - Spigot, Inc.) <==== ATTENTION
Sibelius 7 OpenType Fonts (HKLM-x32\...\{623C2BD8-1B28-4F98-B578-E9D139827269}) (Version: 7.1.3 - Avid)
Sibelius 7.5 (HKLM\...\{BBADBAB3-56A4-444B-834E-D8730B574C3E}) (Version: 7.5.0.164 - Avid Technology)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Splashtop Software Updater (HKLM-x32\...\Splashtop Software Updater) (Version: 1.5.6.14 - Splashtop Inc.)
Splashtop Streamer (HKLM-x32\...\{B7C5EA94-B96A-41F5-BE95-25D78B486678}) (Version: 2.4.5.2 - Splashtop Inc.)
Star Wars JK II Jedi Outcast (HKLM-x32\...\{576E71DA-3000-48F6-9B21-B9A70D47DFCF}) (Version:  - )
Steinberg Cubase 5 (HKLM-x32\...\{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}) (Version: 5.1.2 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 1.0.0.1 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg HALionOne (HKLM-x32\...\{E70E7159-93B1-470D-9FBD-D8E9EF34B538}) (Version: 1.1.0.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Additional Content Set 01 (HKLM-x32\...\{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}) (Version: 1.0.0.001 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Expression Set (HKLM-x32\...\{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}) (Version: 1.0.1.0 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Set (HKLM-x32\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 1.0.0.005 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 1.0.0.006 - Steinberg Media Technologies GmbH)
Tennis Elbow 2013 1.0d (HKLM-x32\...\Tennis Elbow 2013) (Version: 1.0d - Mana Games)
The Sims" 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
The Sims" 3 70s, 80s, & 90s Stuff (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts)
The Sims" 3 Ambitions (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
The Sims" 3 Diesel Stuff (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
The Sims" 3 Fast Lane Stuff (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
The Sims" 3 Generations (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
The Sims" 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
The Sims" 3 Into the Future (HKLM-x32\...\{A0BBD6C7-B546-4048-B33A-F21F5C9F5B09}) (Version: 21.0.150 - Electronic Arts)
The Sims" 3 Island Paradise (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
The Sims" 3 Katy Perry's Sweet Treats (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
The Sims" 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
The Sims" 3 Master Suite Stuff (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
The Sims" 3 Movie Stuff (HKLM-x32\...\{D0087539-3C57-44E0-BEE7-D779D546CBE1}) (Version: 20.0.53 - Electronic Arts)
The Sims" 3 Outdoor Living Stuff (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
The Sims" 3 Pets (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
The Sims" 3 Seasons (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
The Sims" 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
The Sims" 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
The Sims" 3 Town Life Stuff (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
The Sims" 3 University Life (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
The Sims" 3 World Adventures (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
The Sims™ 3 + Expansions Uninstaller (HKLM-x32\...\The Sims™ 3 + Expansions Uninstaller) (Version: 1.0.0.11 - Electronic Arts)
Third Age - Total War 3.0 (Part 1of2) (HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\Third Age - Total War 3.0 (Part 1of2)) (Version:  - )
Third Age - Total War 3.0 (Part 2of2) (HKU\S-1-5-21-674586988-653043452-3255515900-1001\...\Third Age - Total War 3.0 (Part 2of2)) (Version:  - )
Tombraider (HKLM-x32\...\Tombraider_is1) (Version:  - )
Total War: ATTILA (HKLM-x32\...\Steam App 325610) (Version:  - Creative Assembly)
Total War: ROME II - Emperor Edition (HKLM-x32\...\Steam App 214950) (Version:  - Creative Assembly)
Uplay (HKLM-x32\...\Uplay) (Version: 4.2 - Ubisoft)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Without Within (HKLM-x32\...\Steam App 345650) (Version:  - InvertMouse)
XFast LAN v6.61 (HKLM\...\XFast LAN) (Version: 6.61 - cFos Software GmbH, Bonn)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.31 - ASRock Inc.)
Xfire (HKLM-x32\...\Xfire) (Version:  - )
Yu-Gi-Oh! The Dawn of a New Era version 4.4.0.3106 (HKLM-x32\...\{112C4AA2-D3CF-4E15-9AE8-5F672A2E59EE}_is1) (Version: 4.4.0.3106 - Kaiba Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

20-05-2015 19:58:13 Windows Update
28-05-2015 09:24:19 Scheduled Checkpoint

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A779EBA-8D9C-4D6D-A0A6-BEFDC9ABCEEB} - System32\Tasks\{A2D265EC-0E2D-4212-BA74-56C46F420624} => Firefox.exe http://ui.skype.com/...all?page=tsMain
Task: {2062945B-316C-494A-B61B-C9FF6ADB6A78} - System32\Tasks\Intel® Small Business Advantage\Notifier => C:\Program Files\Intel\Intel® Small Business Advantage\UI\SBA_Notifier.exe [2013-01-28] (Intel Corporation)
Task: {3C3BA034-3379-4936-9D35-51CA5F71CF15} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {4679FF44-4DDC-4255-8EB2-14775C68AFCB} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {90FE9373-3B27-4503-8D23-BA24E84C4350} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-20] (Google Inc.)
Task: {94A86C86-CFF7-47EE-B799-E2AAAA1D9930} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-05-14] (Microsoft Corporation)
Task: {9C5E9B7A-0098-4990-A952-2F895BBB40A7} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation)
Task: {A303F49C-06FC-419B-9855-2C6DF746847D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {BEA9D257-7A1F-410D-AC62-29C91E998DCD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-21] (Adobe Systems Incorporated)
Task: {DDAE08E6-2621-4CB2-B4DA-8C862F7A6C0A} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation)
Task: {E0871FC9-7D68-44B2-8AA2-450856294DBA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-20] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2013-03-14 15:42 - 2013-03-14 15:42 - 00182248 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
2013-03-14 15:42 - 2013-03-14 15:42 - 00059880 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\NetworkHeuristic.dll
2013-08-22 13:30 - 2013-08-22 09:30 - 03447296 _____ () C:\Windows\system32\HPScanTRDrvWn8.dll
2012-07-24 13:06 - 2012-07-24 13:06 - 00119808 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe
2011-08-15 21:12 - 2011-08-15 21:12 - 02603520 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll
2012-06-14 12:57 - 2012-06-14 12:57 - 00015872 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll
2011-08-15 21:12 - 2011-08-15 21:12 - 01006592 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll
2011-08-15 21:15 - 2011-08-15 21:15 - 00382464 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll
2011-08-17 17:41 - 2011-08-17 17:41 - 00400384 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll
2011-08-17 17:48 - 2011-08-17 17:48 - 00322048 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll
2011-08-17 17:48 - 2011-08-17 17:48 - 00195584 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll
2011-08-15 20:23 - 2011-08-15 20:23 - 00062464 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll
2012-06-14 12:56 - 2012-06-14 12:56 - 00481792 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll
2012-06-14 13:06 - 2012-06-14 13:06 - 00500064 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
2012-06-14 12:55 - 2012-06-14 12:55 - 00013824 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll
2011-07-19 17:05 - 2011-07-19 17:05 - 14978048 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtWebKit4.dll
2011-08-15 21:17 - 2011-08-15 21:17 - 09224704 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll
2011-07-19 17:04 - 2011-07-19 17:04 - 00317952 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\phonon4.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\yosir\SkyDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-674586988-653043452-3255515900-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\yosir\AppData\Roaming\Mozilla\Firefox\Desktop Background.bmp
DNS Servers: 192.168.1.254

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{07385FC1-845B-4216-8676-F1B203F2AFDE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D08F4158-8BDD-4478-9916-8239BEC5B37D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{842E2C21-7A95-4EFF-A056-563945BA4F76}] => (Allow) C:\Users\yosir\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [TCP Query User{45DCB9BA-066B-4AAD-935E-DB9777668BD4}C:\users\yosir\desktop\jka\gamedata\jamp.exe] => (Allow) C:\users\yosir\desktop\jka\gamedata\jamp.exe
FirewallRules: [UDP Query User{E1679B78-A49D-4443-872D-376C91460DFD}C:\users\yosir\desktop\jka\gamedata\jamp.exe] => (Allow) C:\users\yosir\desktop\jka\gamedata\jamp.exe
FirewallRules: [TCP Query User{3ABB56CD-B07E-4DB3-A16D-4AC9081E30F4}C:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win32\udk.exe
FirewallRules: [UDP Query User{E9198725-0FA9-4E70-B8BB-F7C846BEB30A}C:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win32\udk.exe
FirewallRules: [TCP Query User{CD109AA6-AC09-4A68-85BA-7FB4BB07C56A}C:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\udk.exe
FirewallRules: [UDP Query User{8A09ECF0-6E30-47EA-B0AD-E57E76583088}C:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\udk.exe
FirewallRules: [TCP Query User{440ED24E-841B-4730-89DB-2934BFD9BBD1}C:\blizzard shiz\diablo iii\diablo iii.exe] => (Allow) C:\blizzard shiz\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{6C7E5437-FFC0-470D-ADF6-9F80CAD5F7FF}C:\blizzard shiz\diablo iii\diablo iii.exe] => (Allow) C:\blizzard shiz\diablo iii\diablo iii.exe
FirewallRules: [{1AC92278-0EBE-44EE-9363-6C348EDDEA57}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{62563C32-C64D-4181-A430-F6582A9EDBC6}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{5122A15F-ACCD-44E4-8D13-649005DF22CC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{CF8A0572-637A-488C-8B08-3F348937BA66}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{8A989814-F954-4E8B-ABCC-A27DB3B869F6}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{E31C9B87-A72E-4FA4-800A-C5A24D019236}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{631315A8-3330-4A92-BCBA-1FECC0947CE8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{10156148-64F6-4157-A8B4-6E24A53A540A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [TCP Query User{DD684438-0947-40D8-8197-5378D4E1F0B9}C:\blizzard shiz\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\blizzard shiz\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [UDP Query User{4307BB89-2F1B-4F60-9F8E-84DE350E0AEE}C:\blizzard shiz\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\blizzard shiz\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [TCP Query User{D7A0C071-B987-4790-9DC3-FBD6EEA052B9}C:\program files (x86)\xfire\xfire.exe] => (Allow) C:\program files (x86)\xfire\xfire.exe
FirewallRules: [UDP Query User{EFAF8E4F-F32B-465E-836B-7194A0FFD32F}C:\program files (x86)\xfire\xfire.exe] => (Allow) C:\program files (x86)\xfire\xfire.exe
FirewallRules: [TCP Query User{55F3759F-FA7C-491C-9DF3-D62A581D3EEE}C:\program files (x86)\steam\steamapps\common\torchlight ii\torchlight2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\torchlight ii\torchlight2.exe
FirewallRules: [UDP Query User{8884B449-4F2F-47C9-942C-0AA6B7C423F0}C:\program files (x86)\steam\steamapps\common\torchlight ii\torchlight2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\torchlight ii\torchlight2.exe
FirewallRules: [{BC39CD26-2D34-47AE-A2E9-ECB1CC11D79F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{0FF089A4-6C39-41D1-85D9-A8C838758423}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{EDA7A0E3-9777-44A6-B9E0-513E232A7ADA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4ED1BB7A-612A-49A5-8FA6-8D7983E0DD20}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{50CBBCF3-5585-443F-BB26-14FA7084C64E}] => (Allow) C:\Users\yosir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6C60ED3F-2150-4850-92BA-534E8E598EF9}] => (Allow) C:\Users\yosir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{97602F71-B33C-45A7-B2D5-B8AB2C14B7FB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{C9FDDFD2-08D4-492D-9529-26CEB63778DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{042392E3-38A0-44F5-894E-F28124C0546A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{87DDB5A5-E614-4117-BD57-058E366410CB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{83119F95-15D2-4187-B963-F0A044B962A0}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{CE28F867-2BBD-405B-93A7-C650092A0C34}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{163D8807-DB11-4609-A38B-700C60C839F8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{2EA48645-F32E-4F0C-9221-F3BCA47B6C41}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{AF5FA835-1110-44B7-A02E-321396BC168B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{1FCAA569-D11D-4EE8-8EB5-3A3EC1D4BCF3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{905DC356-6245-475D-AC4C-304430E3C0B1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5D6329ED-2624-48C3-8AB6-E2EFBEAAC9A4}] => (Allow) LPort=2869
FirewallRules: [{96CA4A43-99E1-49CA-B3E8-62447D95D553}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{023F055C-A73C-4356-B2F0-FB401C1E8A33}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [UDP Query User{C223B7E4-DC3F-484C-8D6F-4CE74AED8D6B}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [TCP Query User{A77AA33A-C27B-4DCA-9422-99F8EFD99DFC}C:\program files (x86)\tennis elbow 2013\tenniselbow.exe] => (Allow) C:\program files (x86)\tennis elbow 2013\tenniselbow.exe
FirewallRules: [UDP Query User{368BAFFD-98E6-4653-8B14-2D0573B43DF3}C:\program files (x86)\tennis elbow 2013\tenniselbow.exe] => (Allow) C:\program files (x86)\tennis elbow 2013\tenniselbow.exe
FirewallRules: [TCP Query User{58DECE6D-FBBF-431D-B2FD-8B79C8FC071C}C:\program files (x86)\lucasarts\star wars jk ii jedi outcast\gamedata\jk2mp.exe] => (Allow) C:\program files (x86)\lucasarts\star wars jk ii jedi outcast\gamedata\jk2mp.exe
FirewallRules: [UDP Query User{7C72DECD-1383-4BAE-ADEB-BF9FE92D7C9E}C:\program files (x86)\lucasarts\star wars jk ii jedi outcast\gamedata\jk2mp.exe] => (Allow) C:\program files (x86)\lucasarts\star wars jk ii jedi outcast\gamedata\jk2mp.exe
FirewallRules: [TCP Query User{436D6D47-A6D5-4A29-A0D9-E53BEFE87688}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{7972431C-1F5E-40AA-8ADE-47C0CF5BDE4F}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{15058CBC-20E2-4FC2-8C5D-18AB3197A1C0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{A3D3AEFF-FF94-479E-9167-B6194B27D19E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [TCP Query User{7988515F-85C3-4DBF-98C8-840ACC6810C3}C:\gog games\divinity - original sin\shipping\eocapp.exe] => (Allow) C:\gog games\divinity - original sin\shipping\eocapp.exe
FirewallRules: [UDP Query User{FF1DDA30-BE19-43E0-993B-7F5FC6630866}C:\gog games\divinity - original sin\shipping\eocapp.exe] => (Allow) C:\gog games\divinity - original sin\shipping\eocapp.exe
FirewallRules: [{D12D952F-BF7A-416E-9969-C1618184B45F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{122978CF-12D1-4783-A706-6E6044B1D500}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{62DFA605-7963-40FF-A47A-8CD88A2A717A}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{034FEED3-1E7C-4573-A92C-F0A101586133}C:\blizzard shiz\starcraft ii\versions\base32283\sc2.exe] => (Allow) C:\blizzard shiz\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{CE7E0E62-E1BD-45DA-9738-58B7C3465101}C:\blizzard shiz\starcraft ii\versions\base32283\sc2.exe] => (Allow) C:\blizzard shiz\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{9496560C-1A2E-4123-92D6-AB534B08F48F}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{F042CABD-41B0-47E3-B062-8659370A6608}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{2ABBF2E2-74C2-4680-BA8C-3C79C949F677}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{7D279236-AEEB-4801-B0FD-C232348FE655}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{F9455466-7B61-4DD5-88B6-992C24576920}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{AAD818FD-4330-4F29-B527-AF6633623B6D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{2B802096-044D-41C5-8000-B0132245AA86}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{C88A19A4-9094-4731-A1A0-B4106958BF45}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{036C3FC7-AAD4-4AE6-98D7-C53D694E4B1E}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{64DAD802-4A59-4F2B-89B6-E734C2DFD0E0}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{63551D3C-8D05-4646-92C2-885822DED960}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{CE3FD3A6-0922-4FD2-8B7A-890BD204B4B8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{738ED8EC-706D-4D14-84AC-5623098264C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{BF74D9CB-E31D-4154-9E3D-7994CDC4D90A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{594D395D-4CF7-499D-B9DC-18D0951584D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{A1E0CB89-9BE5-4529-AF15-2692A5EB4DDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1A9B147E-78FE-4F36-81C9-916A14D1B82B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{7255AEDE-E7E5-4994-9040-C486FC767D5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{38CF7728-49EB-465A-9B27-247700579720}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{FA29D2DC-4529-4530-A872-F2FA363732F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{6FB11850-EC35-432B-ABBE-C754384C9FE0}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{1287BA26-9FA5-4919-8D86-CA40CA50188C}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{44393C54-AB05-40CE-8B88-880A766BD508}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{84997865-EF66-45FB-96F8-07C0A75184EE}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{50F51F9F-ECC6-4074-9C19-F589655501AD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{13210A4B-6157-4BEB-934E-1BA064A53A04}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [TCP Query User{6247BA4A-E18B-4F60-A298-9106C89B25F0}C:\program files (x86)\heroes of the storm\versions\base33353\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base33353\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{6BF3A28A-9AAC-4E0A-98EC-37F2C8AC4BF7}C:\program files (x86)\heroes of the storm\versions\base33353\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base33353\heroesofthestorm_x64.exe
FirewallRules: [{69E23097-2794-4ECD-BEE6-8547B86AA0A5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{5A138C15-744F-405C-A609-4E4FA7BE1EF6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{2EC68CA9-E919-4E2D-A5A5-C1D017B66655}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{9ECCA1D8-D4DC-4C75-BFC2-A2A8807048FD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{DC090CCC-F4ED-4B58-895A-81A2173ABF2A}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{943DA77A-A301-4457-B5FA-F215C983BB24}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{61E061FD-8E30-4E3F-83D9-8268BB4939FC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3E80C970-1DAD-415E-9BD0-1B457B7766CA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6472EF9B-DD7B-43BE-B3A3-B802F54BB53C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{8AD7CEF2-9570-43FF-9CB1-9C015C2D4491}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [TCP Query User{BF0E9AEC-4221-48DE-957A-0D6DA1FDF73E}C:\program files (x86)\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{DD2229F0-2FAB-4B81-9DB6-6069902FD98D}C:\program files (x86)\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe
FirewallRules: [{DCBD98DE-16DD-4990-A657-1EED2D2CB345}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{1E76067A-DA28-4AD0-93FF-01FCF8470B2D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{566B8AB8-16C0-455D-AAF6-7A6DCA896166}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Without Within\without_within.exe
FirewallRules: [{8B790A90-6224-4F17-A059-E650FF52B539}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Without Within\without_within.exe
FirewallRules: [TCP Query User{885613E9-3558-477A-8EB4-1C19363007AD}C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe
FirewallRules: [UDP Query User{D96BDC60-7CF6-4FAC-B915-53AC69DC2E62}C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe
FirewallRules: [{896BD4B4-77A5-47B5-A923-49F765F36570}] => (Allow) C:\Users\yosir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D4739A08-0FDE-422B-B0AD-387F5D24B7A1}] => (Allow) C:\Users\yosir\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{88A93B85-771D-437F-BD83-6384573B30C6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW.exe
FirewallRules: [{6837D5D1-3F53-4101-9E93-860EB5534028}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW.exe
FirewallRules: [{D1AD9C53-BE58-4439-9D89-8B23E91EB74B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW-BI.exe
FirewallRules: [{42FB5E11-209E-4C0C-8C25-41F91F31CA65}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW-BI.exe
FirewallRules: [TCP Query User{5980F472-8ED9-41B6-B870-201F14238125}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{5B8F2F62-318B-40DD-B6B5-B9753B1A8424}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [{400575FB-DD42-480C-B25E-75B2F3FB36D9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Medieval II Total War\medieval2.exe
FirewallRules: [{B71D255A-AD46-48BE-8BF7-56CC83AC0C8F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Medieval II Total War\medieval2.exe
FirewallRules: [{1DAC770A-F1FA-45ED-8C9D-E693FEA90B09}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{968533F2-FBDF-4C89-90D6-187E3252ADF8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [TCP Query User{3E644261-565C-4359-9A43-B137113835CE}C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe
FirewallRules: [UDP Query User{4E1949A9-36F3-4F1C-82E7-9CABFFF763D0}C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe
FirewallRules: [TCP Query User{55C53EDC-ECE0-451A-8C91-31721359DC32}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A19257C0-1DB0-4461-B0D8-71B31FB1726D}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [{F49A40DF-8B63-4A27-8C04-E48A7AC8C6C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{D9309EEC-B0B5-40EF-8007-FF72332EABF6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{A9F89D67-3C8D-40EF-8074-8AD7B9566D85}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{5BC7A8CF-DEE9-4606-A698-0F64AF8498D1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [TCP Query User{ECF030C4-392D-41F7-A5B7-EE33ACEE570B}C:\users\yosir\desktop\fifa 15\fifa15.exe] => (Block) C:\users\yosir\desktop\fifa 15\fifa15.exe
FirewallRules: [UDP Query User{D7F53A03-BD3B-4033-A2CF-55568B85EE3C}C:\users\yosir\desktop\fifa 15\fifa15.exe] => (Block) C:\users\yosir\desktop\fifa 15\fifa15.exe
FirewallRules: [{48829C01-9F2D-4947-981D-266B237EAE85}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Attila\launcher\launcher.exe
FirewallRules: [{49580CBF-B0E9-4E6E-843B-9BA1AC6A5059}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Attila\launcher\launcher.exe
FirewallRules: [{E298BBEC-260B-4BA4-B8A8-E8111D663738}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{80A3A791-7377-4246-BBB9-1CD08B8428D0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{4D62BCE9-F6EB-4F32-ABE4-E6A114567A30}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{2262742B-A75E-440A-BD19-8511248C80DC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{12E50611-0C7A-437C-A26F-30DEFC530950}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{DE3CF6D2-3A5F-4921-99C4-14A09514A89C}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{764E7647-9712-45BD-831A-1A3C3E20860C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FF36D828-14FD-41AD-8923-384282CD8484}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{EC2AA779-A97A-41BF-AD1F-C07AA41A8172}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/28/2015 09:24:28 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (05/28/2015 01:37:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GTA5.exe, version: 1.0.350.1, time stamp: 0x5540c256
Faulting module name: GTA5.exe, version: 1.0.350.1, time stamp: 0x5540c256
Exception code: 0xc0000005
Fault offset: 0x0000000001133400
Faulting process ID: 0x1434
Faulting application start time: 0xGTA5.exe0
Faulting application path: GTA5.exe1
Faulting module path: GTA5.exe2
Report ID: GTA5.exe3
Faulting package full name: GTA5.exe4
Faulting package-relative application ID: GTA5.exe5

Error: (05/27/2015 01:14:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: jamp.exe, version: 1.0.1.0, time stamp: 0x3faa8a05
Faulting module name: ntdll.dll, version: 6.3.9600.17736, time stamp: 0x550f42c2
Exception code: 0xc0000409
Fault offset: 0x00026582
Faulting process ID: 0xb78
Faulting application start time: 0xjamp.exe0
Faulting application path: jamp.exe1
Faulting module path: jamp.exe2
Report ID: jamp.exe3
Faulting package full name: jamp.exe4
Faulting package-relative application ID: jamp.exe5

Error: (05/21/2015 08:19:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: jamp.exe, version: 1.0.1.0, time stamp: 0x3faa8a05
Faulting module name: ntdll.dll, version: 6.3.9600.17736, time stamp: 0x550f42c2
Exception code: 0xc0000409
Fault offset: 0x00026582
Faulting process ID: 0xd98
Faulting application start time: 0xjamp.exe0
Faulting application path: jamp.exe1
Faulting module path: jamp.exe2
Report ID: jamp.exe3
Faulting package full name: jamp.exe4
Faulting package-relative application ID: jamp.exe5

Error: (05/20/2015 09:02:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: FlashPlayerPlugin_17_0_0_169.exe, version: 17.0.0.169, time stamp: 0x5529da64
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc000041d
Fault offset: 0x05c96ad8
Faulting process ID: 0x1914
Faulting application start time: 0xFlashPlayerPlugin_17_0_0_169.exe0
Faulting application path: FlashPlayerPlugin_17_0_0_169.exe1
Faulting module path: FlashPlayerPlugin_17_0_0_169.exe2
Report ID: FlashPlayerPlugin_17_0_0_169.exe3
Faulting package full name: FlashPlayerPlugin_17_0_0_169.exe4
Faulting package-relative application ID: FlashPlayerPlugin_17_0_0_169.exe5

Error: (05/20/2015 07:58:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (05/19/2015 06:48:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program League of Legends.exe version 5.9.0.318 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 558

Start Time: 01d0925bd4cbe969

Termination Time: 4294967295

Application Path: C:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.89\deploy\League of Legends.exe

Report Id: 34b51dd9-fe4f-11e4-82b1-bc5ff4e049aa

Faulting package full name:

Faulting package-relative application ID:

Error: (05/19/2015 06:45:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program League of Legends.exe version 5.9.0.318 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1900

Start Time: 01d0925b26ec1124

Termination Time: 4294967295

Application Path: C:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.89\deploy\League of Legends.exe

Report Id: dd9db042-fe4e-11e4-82b1-bc5ff4e049aa

Faulting package full name:

Faulting package-relative application ID:

Error: (05/16/2015 11:20:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: jamp.exe, version: 1.0.1.0, time stamp: 0x3faa8a05
Faulting module name: ntdll.dll, version: 6.3.9600.17736, time stamp: 0x550f42c2
Exception code: 0xc0000409
Fault offset: 0x00026582
Faulting process ID: 0xf80
Faulting application start time: 0xjamp.exe0
Faulting application path: jamp.exe1
Faulting module path: jamp.exe2
Report ID: jamp.exe3
Faulting package full name: jamp.exe4
Faulting package-relative application ID: jamp.exe5

Error: (05/16/2015 02:53:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: jamp.exe, version: 1.0.1.0, time stamp: 0x3faa8a05
Faulting module name: ntdll.dll, version: 6.3.9600.17736, time stamp: 0x550f42c2
Exception code: 0xc0000409
Fault offset: 0x00026582
Faulting process ID: 0x129c
Faulting application start time: 0xjamp.exe0
Faulting application path: jamp.exe1
Faulting module path: jamp.exe2
Report ID: jamp.exe3
Faulting package full name: jamp.exe4
Faulting package-relative application ID: jamp.exe5


System errors:
=============
Error: (05/28/2015 04:00:19 PM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (05/28/2015 04:00:19 PM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (05/28/2015 11:03:44 AM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/28/2015 11:03:14 AM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/28/2015 10:46:44 AM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/28/2015 10:46:14 AM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/28/2015 09:39:03 AM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/28/2015 09:38:33 AM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/28/2015 09:16:08 AM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/28/2015 09:15:38 AM) (Source: DCOM) (EventID: 10010) (User: CMForce500)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}


Microsoft Office:
=========================
Error: (05/28/2015 09:24:28 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (05/28/2015 01:37:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: GTA5.exe1.0.350.15540c256GTA5.exe1.0.350.15540c256c00000050000000001133400143401d098c9f6aad9fbC:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exeC:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exec7f0ae10-04d1-11e5-82b3-bc5ff4e049aa

Error: (05/27/2015 01:14:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: jamp.exe1.0.1.03faa8a05ntdll.dll6.3.9600.17736550f42c2c000040900026582b7801d098120f18601eC:\Users\yosir\Desktop\JKA\GameData\jamp.exeC:\Windows\SYSTEM32\ntdll.dll5cb767da-0405-11e5-82b3-bc5ff4e049aa

Error: (05/21/2015 08:19:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: jamp.exe1.0.1.03faa8a05ntdll.dll6.3.9600.17736550f42c2c000040900026582d9801d093fb0b8d5d3dC:\Users\yosir\Desktop\JKA\GameData\jamp.exeC:\Windows\SYSTEM32\ntdll.dll53afd4dc-ffee-11e4-82b1-bc5ff4e049aa

Error: (05/20/2015 09:02:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: FlashPlayerPlugin_17_0_0_169.exe17.0.0.1695529da64unknown0.0.0.000000000c000041d05c96ad8191401d093302c582e04C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exeunknown360ef8aa-ff2b-11e4-82b1-bc5ff4e049aa

Error: (05/20/2015 07:58:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (05/19/2015 06:48:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: League of Legends.exe5.9.0.31855801d0925bd4cbe9694294967295C:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.89\deploy\League of Legends.exe34b51dd9-fe4f-11e4-82b1-bc5ff4e049aa

Error: (05/19/2015 06:45:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: League of Legends.exe5.9.0.318190001d0925b26ec11244294967295C:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.89\deploy\League of Legends.exedd9db042-fe4e-11e4-82b1-bc5ff4e049aa

Error: (05/16/2015 11:20:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: jamp.exe1.0.1.03faa8a05ntdll.dll6.3.9600.17736550f42c2c000040900026582f8001d090265751a068C:\Users\yosir\Desktop\JKA\GameData\jamp.exeC:\Windows\SYSTEM32\ntdll.dllb4d381e5-fc19-11e4-82b1-bc5ff4e049aa

Error: (05/16/2015 02:53:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: jamp.exe1.0.1.03faa8a05ntdll.dll6.3.9600.17736550f42c2c000040900026582129c01d08f7af5f3c87dC:\Users\yosir\Desktop\JKA\GameData\jamp.exeC:\Windows\SYSTEM32\ntdll.dll48a5dcd2-fb6e-11e4-82b0-bc5ff4e049aa


==================== Memory info ===========================

Processor: Intel® Core™ i5-4570 CPU @ 3.20GHz
Percentage of memory in use: 24%
Total physical RAM: 8111.44 MB
Available physical RAM: 6114.51 MB
Total Pagefile: 10671.44 MB
Available Pagefile: 8180.03 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.17 GB) (Free:163.56 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6D3BE180)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)

==================== End of log ============================


  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP