Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Firefox crashes constantly, BSoD also occurring frequently

Started by Tyranoid , Sep 06 2015 12:54 AM
firefox crash bsod

  • Please log in to reply

#1
Tyranoid
Posted 06 September 2015 - 12:54 AM

Tyranoid

    New Member

  • Member
  • Pip
  • 2 posts

Hi GeeksToGo!

 

In the last twenty-four hours, I've been experiencing my Firefox browser crash constantly.  It's difficult for me to pin down exactly under what circumstances the browser will crash.  Sometimes it happens shortly after I open it.  Other times it will happen after ten to fifteen minutes of use.  But if there's one thing for certain, it's crashing a lot more within the last twenty-four hours than ever before.  Another problem I'm having all of a sudden is my PC is crashing to the tune of blue screen of death.  I'm also unable to determine why this is occurring, but I specifically recall seeing it happen one time after witnessing my Firefox browser crash.  I can't say for certain that my browser crashing is sometimes resulting in the BSoD, but as both problems suddenly started to manifest in the last day I do believe they're symptomatic of the same problem.

 

My usual PC habits haven't changed, except I opened Skype for the first time in several months last night.  It's worth noting that my version of Skype was not the latest one, so it's possible that my system was compromised as a result of opening it.

 

In attempting to resolve my problem, I first tried running Avast's Smart Scan.  It discovered some plugins and search bars that I didn't even know I had, and suggested I remove them, which I did.  They were all variations of the same name: SaveSense.  Removing them didn't resolve the issues I was experiencing with Firefox and my PC crashing, but it did seem to result in my Firefox browser re-enabling a lot of old add-ons that I had disabled a long time ago.  Maybe my Firefox preferences were changed or corrupted somehow.  The next thing I tried was running the latest version of Malwarebytes Anti-Spyware.  It also discovered over a hundred files it suggested I remove, which I did, but none of them were marked as critical threats and removing them didn't resolve my issues either.

 

I have Avast! Free Antivirus 2015 and SUPERAntiSpyware Professional protecting my PC at all times.  SUPERAntiSpyware is automatically updated and performs a scan nightly.

 

If anyone could offer me some insight, suggestions, or possible solutions to the issues I described, I would really, really appreciate it.  My FRST logs are below.  Thank you so much!

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:04-09-2015
Ran by Leo V (administrator) on LEO1 (06-09-2015 01:28:24)
Running from C:\Users\Leo V\Desktop
Loaded Profiles: Leo V (Available Profiles: Leo V & Classic .NET AppPool & DefaultAppPool)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
() C:\ProgramData\Premium\EasyLife Updater\EasyLife Updater.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
() C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(PC Pitstop LLC) C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
() C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\USBKVM Switcher\USBKVM.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDCTrayTool.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDevCentralService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(ACD Systems) C:\Program Files (x86)\ACD Systems\ACDSee\15.0\ACDSee15InTouch2.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11545192 2010-11-02] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613536 2010-10-27] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-10-27] (Atheros Commnucations)
HKLM\...\Run: [IntelliType Pro] => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1464944 2012-11-02] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2076272 2012-11-02] (Microsoft Corporation)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552 2012-09-26] (CANON INC.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-26] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-18] ()
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [UnlockerAssistant] => C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590656 2015-05-15] (Razer Inc.)
HKLM-x32\...\Run: [LGODDFU] =>  blrun
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
HKLM-x32\...\Run: [ACSW15EN] => C:\Program Files (x86)\ACD Systems\ACDSee\15.0\ACDSee15InTouch2.exe [1135304 2012-12-17] (ACD Systems)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-07-01] (Avast Software s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7930136 2015-07-31] (SUPERAntiSpyware)
HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\Run: [Rainlendar2] => C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [2598496 2013-03-10] ()
HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [8300568 2015-07-24] (Binary Fortress Software)
HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\Run: [Google Update] => C:\Users\Leo V\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-03-29] (Google Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-01] (Avast Software s.r.o.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\USBKVM Switcher.lnk [2012-04-06]
ShortcutTarget: USBKVM Switcher.lnk -> C:\Program Files (x86)\USBKVM Switcher\USBKVM.exe ()
Startup: C:\Users\Leo V\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2014-10-15]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Leo V\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Hauppauge Device Central Tray Tool.lnk [2013-01-18]
ShortcutTarget: Hauppauge Device Central Tray Tool.lnk -> C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDCTrayTool.exe (Hauppauge Computer Works, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{83FB85E2-4C39-413D-A146-174E9CFF562F}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-3834653655-4198564282-1810959525-1000 -> DefaultScope {CFD8FE8C-1670-4E7E-B698-C9505636E45A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-01] (Avast Software s.r.o.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-05] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-01] (Avast Software s.r.o.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-05] (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
DPF: HKLM-x32 {0E5F0222-96B9-11D3-8997-00104BD12D94} hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default
FF DefaultSearchEngine: Yahoo!
FF DefaultSearchEngine.US: Yahoo!
FF DefaultSearchUrl: hxxp://www.bing.com/search?FORM=BSRTDF&PC=BBSR&q=
FF SearchEngineOrder.1: Search the web (Babylon)
FF SelectedSearchEngine: Yahoo!
FF Homepage: www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-12] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
FF Plugin HKU\S-1-5-21-3834653655-4198564282-1810959525-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Leo V\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-3834653655-4198564282-1810959525-1000: @talk.google.com/O1DPlugin -> C:\Users\Leo V\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-3834653655-4198564282-1810959525-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Leo V\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
FF Plugin HKU\S-1-5-21-3834653655-4198564282-1810959525-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Leo V\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
FF Plugin HKU\S-1-5-21-3834653655-4198564282-1810959525-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
FF user.js: detected! => C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\user.js [2012-04-24]
FF user.js: detected! => C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\user.js [2012-04-24]
FF Plugin ProgramFiles/Appdata: C:\Users\Leo V\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Leo V\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\searchplugins\rightstufcom.xml [2010-07-20]
FF Extension: Xmarks - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\Extensions\foxmarks@kei(2).com [2012-04-06]
FF Extension: Xmarks - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\Extensions\[email protected] [2015-06-09]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2012-04-06]
FF Extension: IE Tab - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\Extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9} [2015-06-09]
FF Extension: Image Zoom - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi [2013-04-17]
FF Extension: Linkification - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\Extensions\{35106bca-6c78-48c7-ac28-56df30b51d2a}.xpi [2015-06-03]
FF Extension: PDF Download - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\Extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}.xpi [2015-06-03]
FF Extension: Adblock Plus - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-10-20]
FF Extension: Xmarks - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\[email protected] [2015-05-28]
FF Extension: image fetcher - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\[email protected] [2012-04-06]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2012-04-06]
FF Extension: Adblock Plus - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}(2) [2012-04-06]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\[email protected] [2012-04-06]
FF Extension: facepaste - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\[email protected] [2014-09-25]
FF Extension: No Name - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\[email protected] [2013-08-03]
FF Extension: No Name - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\[email protected] [2014-11-29]
FF Extension: Image Zoom - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi [2012-04-06]
FF Extension: Linkification - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{35106bca-6c78-48c7-ac28-56df30b51d2a}.xpi [2015-05-28]
FF Extension: Bulk Image Downloader - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{524B8EF8-C312-11DB-8039-536F56D89593}.xpi [2013-01-16]
FF Extension: ScrapBook - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{53A03D43-5363-4669-8190-99061B2DEBA5}.xpi [2012-04-06]
FF Extension: Quick Translator - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi [2014-12-05]
FF Extension: NoScript - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-04-12]
FF Extension: Search by Image for Google - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{ab4b5718-3998-4a2c-91ae-18a7c2db513e}.xpi [2012-12-29]
FF Extension: Adblock Plus - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-04-06]
FF Extension: Download Sort - C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\Extensions\{D9808C4D-1CF5-4f67-8DB2-12CF78BBA23F}.xpi [2015-05-28]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-08-27]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-04-06]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\[email protected]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\[email protected]
FF Extension: Freemake Youtube Download Button - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\[email protected] [2014-01-05]

Chrome:
=======
CHR Profile: C:\Users\Leo V\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (avast! SafePrice) - C:\Users\Leo V\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-09-06]
CHR Extension: (Avast Online Security) - C:\Users\Leo V\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-09-06]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Leo V\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11]
CHR Extension: (Skype Click to Call) - C:\Users\Leo V\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-09-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Leo V\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-13]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-01]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-08-12] (SUPERAntiSpyware.com)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-10-15] (Adobe Systems) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [52896 2010-10-27] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-07-01] (Avast Software s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [4507176 2015-07-24] (Binary Fortress Software)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242880 2015-07-02] (Foxit Software Inc.)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-04-24] (Freemake) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-26] (NVIDIA Corporation)
R3 HcwDevCentralService; C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDevCentralService.exe [370072 2012-10-03] (Hauppauge Computer Works, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MySQL; C:\Program Files\MySQL\MySQL Server 5.5\my.ini [8961 2015-03-21] () [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-26] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-26] (NVIDIA Corporation)
R2 PCPitstop Scheduling; C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe [86216 2012-11-15] (PC Pitstop LLC)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-04] ()
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]
S2 Updater Service for StartNow Toolbar; C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-07-01] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-07-01] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-01] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-07-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-07-01] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-07-01] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-07-01] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-07-01] ()
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 hcwE5bda; C:\Windows\System32\drivers\hcwE5bda.sys [792320 2012-12-20] (Hauppauge Computer Work, Inc.)
S3 hcwhdpvr; C:\Windows\System32\DRIVERS\hcwhdpvr.sys [192072 2012-03-26] (Hauppauge, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-06] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
R3 rzdaendpt; C:\Windows\System32\DRIVERS\rzdaendpt.sys [33448 2014-12-30] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-04] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-03-03] (Razer, Inc.)
R3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [31912 2014-12-30] (Razer Inc)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2010-11-26] ()
U5 UnlockerDriver5; C:\Program Files (x86)\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-06 01:27 - 2015-09-06 01:28 - 00030420 _____ C:\Users\Leo V\Desktop\FRST.txt
2015-09-06 01:27 - 2015-09-06 01:27 - 00000000 ___RD C:\Users\Leo V\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-09-06 01:15 - 2015-09-06 01:28 - 00000000 ____D C:\FRST
2015-09-06 01:14 - 2015-09-06 01:14 - 02188800 _____ (Farbar) C:\Users\Leo V\Desktop\FRST64.exe
2015-09-05 22:34 - 2015-09-05 22:34 - 00001030 _____ C:\Users\Leo V\Desktop\Miranda IM.lnk
2015-09-05 22:33 - 2015-09-05 22:33 - 00001355 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2015-09-05 22:33 - 2015-09-05 22:33 - 00000000 ____D C:\Users\Public\Foxit Software
2015-09-05 22:33 - 2015-09-05 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2015-09-05 22:27 - 2015-09-06 01:26 - 00030468 _____ C:\Windows\PFRO.log
2015-09-05 22:24 - 2015-09-05 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-05 22:20 - 2015-09-06 01:26 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-05 22:20 - 2015-09-05 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-05 22:20 - 2015-09-05 22:20 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-05 22:20 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-09-05 22:20 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-09-05 21:35 - 2015-09-05 21:35 - 00000000 ___HD C:\$Windows.~BT
2015-09-05 21:26 - 2015-09-05 21:26 - 00000000 ____D C:\Users\Leo V\AppData\Local\NVIDIA
2015-09-05 21:26 - 2015-08-26 19:37 - 01423120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-09-05 21:26 - 2015-08-26 19:37 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-09-05 21:26 - 2015-08-26 19:36 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-09-05 21:26 - 2015-08-26 19:36 - 01710568 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-09-05 21:25 - 2015-08-25 09:08 - 00574072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-09-05 21:24 - 2015-08-25 13:46 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 37819184 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 16637336 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 15512888 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 13661160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 12185152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 11089200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-05 21:24 - 2015-08-25 13:46 - 03527696 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 03112904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 02940720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 02627704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 01106672 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 01075320 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 01064752 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 00945456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 00944736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-09-05 21:24 - 2015-08-25 13:46 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-09-05 21:24 - 2015-08-25 13:46 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-09-05 21:24 - 2015-08-10 23:52 - 00072504 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-09-05 21:24 - 2015-08-10 23:52 - 00069416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-09-05 21:24 - 2015-08-10 23:52 - 00050472 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-09-05 21:14 - 2015-08-25 13:46 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435582.dll
2015-09-05 21:14 - 2015-08-25 13:46 - 01558648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435582.dll
2015-09-05 21:12 - 2015-09-05 21:12 - 00000000 ____D C:\NVIDIA
2015-09-05 21:10 - 2015-09-05 21:12 - 302380336 _____ (NVIDIA Corporation) C:\Users\Leo V\Desktop\355.82-desktop-win8-win7-winvista-64bit-international-whql.exe
2015-09-05 21:10 - 2015-09-05 21:10 - 00000000 ____D C:\Windows\Sun
2015-09-05 21:09 - 2015-09-05 21:09 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-09-05 21:09 - 2015-09-05 21:09 - 00000000 ____D C:\Users\Leo V\AppData\Roaming\Sun
2015-09-05 21:09 - 2015-09-05 21:09 - 00000000 ____D C:\Users\Leo V\.oracle_jre_usage
2015-09-05 21:09 - 2015-09-05 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-05 21:08 - 2015-09-05 21:09 - 00000000 ____D C:\ProgramData\Oracle
2015-09-05 21:08 - 2015-09-05 21:08 - 00584288 _____ (Oracle Corporation) C:\Users\Leo V\Desktop\jxpiinstall.exe
2015-09-05 21:08 - 2015-09-05 21:08 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-05 21:06 - 2015-09-05 21:06 - 00003822 _____ C:\Windows\System32\Tasks\klcp_update
2015-09-05 21:06 - 2015-09-05 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-09-05 21:06 - 2015-09-05 21:06 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2015-09-05 21:06 - 2015-08-24 13:00 - 00126976 _____ C:\Windows\system32\ff_vfw.dll
2015-09-05 21:06 - 2015-08-24 13:00 - 00112128 _____ C:\Windows\SysWOW64\ff_vfw.dll
2015-09-05 21:06 - 2015-06-22 08:25 - 00254976 _____ C:\Windows\system32\xvidvfw.dll
2015-09-05 21:06 - 2015-06-22 08:25 - 00240128 _____ C:\Windows\SysWOW64\xvidvfw.dll
2015-09-05 21:06 - 2015-06-22 08:24 - 00729088 _____ C:\Windows\system32\xvidcore.dll
2015-09-05 21:06 - 2015-06-22 08:24 - 00655872 _____ C:\Windows\SysWOW64\xvidcore.dll
2015-09-05 21:06 - 2015-02-28 10:22 - 03571200 _____ (x264vfw project) C:\Windows\system32\x264vfw64.dll
2015-09-05 21:06 - 2015-02-28 10:21 - 03591680 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll
2015-09-05 21:06 - 2012-07-21 05:55 - 00180736 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2015-09-05 21:06 - 2012-07-21 05:54 - 00122880 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm
2015-09-05 21:06 - 2011-12-07 12:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2015-09-05 21:06 - 2011-12-07 12:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2015-09-05 21:04 - 2015-09-05 21:04 - 41563740 _____ ( ) C:\Users\Leo V\Desktop\K-Lite_Codec_Pack_1140_Mega(1).exe
2015-09-05 16:11 - 2015-09-05 16:11 - 00000000 ____D C:\Users\Leo V\AppData\Local\Binary Fortress Software
2015-09-03 17:09 - 2015-09-06 01:26 - 00001747 _____ C:\Windows\setupact.log
2015-09-03 17:09 - 2015-09-03 17:09 - 00000000 _____ C:\Windows\setuperr.log
2015-08-30 23:12 - 2015-09-01 21:26 - 00000534 _____ C:\Users\Leo V\Desktop\To do.txt
2015-08-27 18:10 - 2015-08-27 23:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-19 03:00 - 2015-08-10 20:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-19 03:00 - 2015-08-10 20:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-19 03:00 - 2015-08-10 19:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-08-19 03:00 - 2015-08-10 19:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-08-17 19:26 - 2015-08-18 17:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-08-15 20:39 - 2015-08-15 20:39 - 00001257 _____ C:\Users\Leo V\Desktop\waifu2x_win_koroshell.lnk
2015-08-12 03:11 - 2015-07-30 08:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 03:11 - 2015-07-30 08:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-11 23:54 - 2015-07-28 15:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-11 23:54 - 2015-07-28 15:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-11 23:54 - 2015-07-28 15:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-11 23:54 - 2015-07-28 15:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-11 23:54 - 2015-07-28 15:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-11 23:54 - 2015-07-28 15:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-11 23:54 - 2015-07-28 15:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-11 23:54 - 2015-07-28 14:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-11 23:54 - 2015-07-15 13:15 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-11 23:54 - 2015-07-15 13:15 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-08-11 23:54 - 2015-07-15 13:15 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-08-11 23:54 - 2015-07-15 13:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-11 23:54 - 2015-07-15 13:12 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-11 23:54 - 2015-07-15 13:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-08-11 23:54 - 2015-07-15 13:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-08-11 23:54 - 2015-07-15 13:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-08-11 23:54 - 2015-07-15 13:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-08-11 23:54 - 2015-07-15 13:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-08-11 23:54 - 2015-07-15 13:10 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-08-11 23:54 - 2015-07-15 13:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-08-11 23:54 - 2015-07-15 13:10 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-08-11 23:54 - 2015-07-15 13:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-11 23:54 - 2015-07-15 13:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-08-11 23:54 - 2015-07-15 13:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-08-11 23:54 - 2015-07-15 13:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-08-11 23:54 - 2015-07-15 13:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 13:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:59 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-08-11 23:54 - 2015-07-15 12:59 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-08-11 23:54 - 2015-07-15 12:56 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-11 23:54 - 2015-07-15 12:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-08-11 23:54 - 2015-07-15 12:55 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-08-11 23:54 - 2015-07-15 12:55 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-08-11 23:54 - 2015-07-15 12:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-08-11 23:54 - 2015-07-15 12:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-08-11 23:54 - 2015-07-15 12:54 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-08-11 23:54 - 2015-07-15 12:54 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-08-11 23:54 - 2015-07-15 12:54 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-08-11 23:54 - 2015-07-15 12:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-08-11 23:54 - 2015-07-15 12:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-08-11 23:54 - 2015-07-15 12:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-08-11 23:54 - 2015-07-15 12:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-08-11 23:54 - 2015-07-15 12:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-08-11 23:54 - 2015-07-15 12:53 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-08-11 23:54 - 2015-07-15 12:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-08-11 23:54 - 2015-07-15 12:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-08-11 23:54 - 2015-07-15 12:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-08-11 23:54 - 2015-07-15 12:53 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-08-11 23:54 - 2015-07-15 12:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-08-11 23:54 - 2015-07-15 12:48 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 12:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 11:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-08-11 23:54 - 2015-07-15 11:46 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-08-11 23:54 - 2015-07-15 11:46 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-08-11 23:54 - 2015-07-15 11:37 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-08-11 23:54 - 2015-07-15 11:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-08-11 23:54 - 2015-07-15 11:34 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 11:34 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 11:34 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-11 23:54 - 2015-07-15 11:34 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-11 23:53 - 2015-07-20 19:39 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-08-11 23:53 - 2015-07-20 19:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-08-11 23:53 - 2015-07-16 15:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-08-11 23:53 - 2015-07-16 15:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-08-11 23:53 - 2015-07-16 15:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-11 23:53 - 2015-07-16 15:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-11 23:53 - 2015-07-16 15:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-08-11 23:53 - 2015-07-16 15:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-11 23:53 - 2015-07-16 15:35 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-08-11 23:53 - 2015-07-16 15:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-11 23:53 - 2015-07-16 15:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-11 23:53 - 2015-07-16 15:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-08-11 23:53 - 2015-07-16 15:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-11 23:53 - 2015-07-16 15:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-11 23:53 - 2015-07-16 15:21 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-08-11 23:53 - 2015-07-16 15:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-11 23:53 - 2015-07-16 15:21 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-08-11 23:53 - 2015-07-16 15:12 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-11 23:53 - 2015-07-16 15:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-11 23:53 - 2015-07-16 15:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-11 23:53 - 2015-07-16 14:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-08-11 23:53 - 2015-07-16 14:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-11 23:53 - 2015-07-16 14:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-08-11 23:53 - 2015-07-16 14:51 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-11 23:53 - 2015-07-16 14:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-08-11 23:53 - 2015-07-16 14:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-08-11 23:53 - 2015-07-16 14:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-08-11 23:53 - 2015-07-16 14:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-08-11 23:53 - 2015-07-16 14:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-11 23:53 - 2015-07-16 14:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-08-11 23:53 - 2015-07-16 14:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-08-11 23:53 - 2015-07-16 14:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-08-11 23:53 - 2015-07-16 14:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-08-11 23:53 - 2015-07-16 14:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-08-11 23:53 - 2015-07-16 14:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-08-11 23:53 - 2015-07-16 14:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-11 23:53 - 2015-07-16 14:35 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-08-11 23:53 - 2015-07-16 14:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-11 23:53 - 2015-07-16 14:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-08-11 23:53 - 2015-07-16 14:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-11 23:53 - 2015-07-16 14:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-08-11 23:53 - 2015-07-16 14:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-08-11 23:53 - 2015-07-16 14:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-08-11 23:53 - 2015-07-16 14:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-08-11 23:53 - 2015-07-16 14:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-08-11 23:53 - 2015-07-16 14:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-11 23:53 - 2015-07-16 14:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-11 23:53 - 2015-07-16 14:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-11 23:53 - 2015-07-16 14:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-08-11 23:53 - 2015-07-16 14:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-08-11 23:53 - 2015-07-16 14:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-08-11 23:53 - 2015-07-16 14:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-11 23:53 - 2015-07-16 13:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-08-11 23:53 - 2015-07-16 13:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-11 23:53 - 2015-07-16 13:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-11 23:53 - 2015-07-16 13:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-08-11 23:53 - 2015-07-14 22:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-11 23:53 - 2015-07-10 12:51 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-11 23:53 - 2015-07-10 12:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-08-11 23:53 - 2015-07-10 12:51 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-11 23:53 - 2015-07-10 12:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-11 23:53 - 2015-07-10 12:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-11 23:53 - 2015-07-10 12:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-08-11 23:52 - 2015-07-30 13:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-11 23:52 - 2015-07-30 13:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-11 23:52 - 2015-07-30 13:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-11 23:52 - 2015-07-30 13:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-08-11 23:52 - 2015-07-30 13:06 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-11 23:52 - 2015-07-30 13:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-08-11 23:52 - 2015-07-30 13:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-08-11 23:52 - 2015-07-30 12:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-11 23:52 - 2015-07-30 12:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-11 23:52 - 2015-07-30 12:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-08-11 23:52 - 2015-07-30 12:57 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-11 23:52 - 2015-07-30 12:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-08-11 23:52 - 2015-07-30 12:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-08-11 23:52 - 2015-07-30 11:56 - 03208192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-11 23:52 - 2015-07-30 11:52 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-11 23:52 - 2015-07-30 11:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-11 23:52 - 2015-07-20 13:12 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-11 23:52 - 2015-07-20 13:12 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-08-11 23:52 - 2015-07-20 13:12 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-08-11 23:52 - 2015-07-20 12:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-11 23:52 - 2015-07-20 12:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-11 23:52 - 2015-07-20 12:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-11 23:52 - 2015-07-20 12:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-11 23:52 - 2015-07-20 12:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-08-11 23:52 - 2015-07-14 22:19 - 02004992 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-11 23:52 - 2015-07-14 22:19 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-11 23:52 - 2015-07-14 22:14 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-08-11 23:52 - 2015-07-14 22:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-08-11 23:52 - 2015-07-14 21:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-11 23:52 - 2015-07-14 21:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-11 23:52 - 2015-07-14 21:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-08-11 23:52 - 2015-07-14 21:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-08-11 23:52 - 2015-07-10 12:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-11 23:52 - 2015-07-10 12:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-11 23:52 - 2015-07-09 12:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-11 23:52 - 2015-07-09 12:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-11 23:52 - 2015-07-09 12:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-11 23:52 - 2015-07-01 15:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-11 23:52 - 2015-07-01 15:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-11 23:52 - 2015-07-01 15:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-11 23:52 - 2015-07-01 15:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-11 23:52 - 2015-05-09 13:26 - 00493504 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-08-11 01:08 - 2015-08-25 13:46 - 17082392 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-08-11 01:08 - 2015-08-25 13:46 - 14635792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-08-11 01:08 - 2015-08-25 13:46 - 12515016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-08-11 01:08 - 2015-08-11 01:08 - 01906832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435382.dll
2015-08-11 01:08 - 2015-08-11 01:08 - 01568056 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435382.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-06 01:28 - 2012-05-02 11:07 - 00000000 ____D C:\Users\Leo V\AppData\Local\CrashDumps
2015-09-06 01:27 - 2012-07-05 17:32 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-09-06 01:26 - 2015-03-29 00:58 - 00000944 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3834653655-4198564282-1810959525-1000UA.job
2015-09-06 01:26 - 2014-06-13 23:45 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-06 01:26 - 2013-12-18 00:05 - 00000000 ____D C:\Users\Leo V\.rainlendar2
2015-09-06 01:26 - 2013-07-12 22:28 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-06 01:26 - 2013-01-13 20:51 - 00000000 ____D C:\ProgramData\PCPitstop
2015-09-06 01:26 - 2012-12-30 23:04 - 00000448 ____H C:\Windows\Tasks\EasyLife UpdaterUpdaterTask{F7D72BC1-A723-4F46-BACF-122B46CC1C3F}.job
2015-09-06 01:26 - 2012-04-07 09:57 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2015-09-06 01:26 - 2012-04-06 21:06 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-06 01:26 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-06 01:01 - 2012-07-03 17:36 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-06 00:58 - 2014-09-06 18:09 - 00000000 ____D C:\Users\Leo V\AppData\Local\DisplayFusion
2015-09-06 00:31 - 2014-06-13 23:45 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-05 23:48 - 2012-04-06 23:48 - 00000528 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 6198c2b2-d11f-407f-bad5-bf148233a030.job
2015-09-05 23:22 - 2015-03-29 00:58 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3834653655-4198564282-1810959525-1000Core.job
2015-09-05 22:36 - 2009-07-13 23:45 - 00020496 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-05 22:36 - 2009-07-13 23:45 - 00020496 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-05 22:34 - 2012-10-27 15:14 - 00000000 ____D C:\Users\Leo V\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Miranda IM
2015-09-05 22:34 - 2012-04-06 22:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Miranda IM
2015-09-05 22:33 - 2012-04-25 18:05 - 00000000 ____D C:\Users\Leo V\AppData\Roaming\Foxit Software
2015-09-05 22:33 - 2009-07-14 00:13 - 00899216 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-05 22:31 - 2015-07-15 16:38 - 01410405 _____ C:\Windows\WindowsUpdate.log
2015-09-05 22:25 - 2014-01-05 19:45 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-09-05 22:25 - 2012-12-14 20:45 - 00000000 ____D C:\Users\Leo V\AppData\Roaming\Skype
2015-09-05 22:24 - 2012-12-14 20:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-05 22:24 - 2012-12-14 20:45 - 00000000 ____D C:\ProgramData\Skype
2015-09-05 22:23 - 2012-04-06 23:51 - 00000000 ____D C:\Users\Leo V\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-05 22:23 - 2012-04-06 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-05 22:23 - 2012-04-06 23:51 - 00000000 ____D C:\Program Files\WinRAR
2015-09-05 22:20 - 2012-04-06 23:41 - 00000000 ____D C:\Users\Leo V\AppData\Roaming\Malwarebytes
2015-09-05 22:20 - 2012-04-06 23:41 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-05 22:20 - 2012-04-06 23:41 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2015-09-05 21:46 - 2009-07-14 00:08 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-09-05 21:35 - 2012-04-07 12:28 - 00000000 ____D C:\Windows\Panther
2015-09-05 21:30 - 2012-05-07 21:48 - 00891338 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-09-05 21:26 - 2013-01-13 21:15 - 00000000 ____D C:\Temp
2015-09-05 21:26 - 2012-11-18 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-05 21:26 - 2012-04-07 10:01 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-05 21:26 - 2012-04-06 21:06 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-05 21:26 - 2012-04-06 21:06 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-05 21:09 - 2012-04-07 09:35 - 00000000 ____D C:\Users\Leo V
2015-09-05 02:00 - 2012-04-06 23:48 - 00000528 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task fa317993-ed17-4764-a617-ff2327f55108.job
2015-09-04 19:18 - 2012-04-06 23:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bulk Image Downloader
2015-09-04 19:18 - 2012-04-06 23:20 - 00000000 ____D C:\Program Files (x86)\Bulk Image Downloader
2015-09-02 17:32 - 2014-06-13 23:46 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-29 12:54 - 2015-01-05 21:08 - 00029097 _____ C:\Users\Leo V\Documents\2015 Hobby Expenditures.xlsx
2015-08-28 23:17 - 2015-03-29 00:58 - 00003936 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3834653655-4198564282-1810959525-1000UA
2015-08-28 23:17 - 2015-03-29 00:58 - 00003540 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3834653655-4198564282-1810959525-1000Core
2015-08-28 16:37 - 2012-04-25 16:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-28 03:26 - 2014-06-13 23:45 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-28 03:26 - 2014-06-13 23:45 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-27 07:50 - 2014-05-24 21:17 - 00000000 ____D C:\Users\Leo V\AppData\Local\Battle.net
2015-08-25 13:46 - 2013-04-12 17:01 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-08-25 13:46 - 2012-04-06 21:06 - 00033025 _____ C:\Windows\system32\nvinfo.pb
2015-08-25 09:24 - 2012-04-06 21:06 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-08-25 09:24 - 2012-04-06 21:06 - 03496752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-08-25 09:24 - 2012-04-06 21:06 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-08-25 09:24 - 2012-04-06 21:06 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-08-25 09:24 - 2012-04-06 21:06 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-08-25 09:24 - 2012-04-06 21:06 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-08-25 07:35 - 2012-11-18 20:57 - 05165808 _____ C:\Windows\system32\nvcoproc.bin
2015-08-23 19:56 - 2015-01-27 22:16 - 00015755 _____ C:\Users\Leo V\Documents\Figures for Sale.xlsx
2015-08-23 19:55 - 2015-02-07 13:21 - 00010781 _____ C:\Users\Leo V\Documents\Figure Sales 2015.xlsx
2015-08-19 17:14 - 2012-04-06 23:04 - 00000000 ____D C:\Users\Leo V\AppData\Roaming\uTorrent
2015-08-18 19:52 - 2015-03-17 19:01 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-08-14 07:53 - 2013-08-07 16:43 - 00002668 _____ C:\Users\Leo V\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-08-12 04:06 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2015-08-12 03:29 - 2013-03-13 03:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 03:29 - 2013-03-13 03:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 03:29 - 2009-07-13 23:45 - 00306224 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-12 03:28 - 2014-12-10 04:20 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-12 03:28 - 2014-05-06 03:00 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-12 03:12 - 2012-04-06 21:59 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-12 03:11 - 2013-03-13 03:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 03:05 - 2013-08-14 03:01 - 00000000 ____D C:\Windows\system32\MRT
2015-08-12 03:01 - 2012-04-06 21:39 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-11 19:01 - 2012-07-03 17:36 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-11 19:01 - 2012-04-06 22:38 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-11 19:01 - 2012-04-06 22:38 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2012-08-25 16:46 - 2012-08-25 16:46 - 0000701 _____ () C:\Users\Leo V\AppData\Roaming\ConvAPIPlugin.log
2013-12-29 19:09 - 2014-02-09 01:09 - 0000150 _____ () C:\Users\Leo V\AppData\Roaming\WB.CFG
2008-02-05 13:28 - 2008-02-05 13:28 - 0000051 _____ () C:\Users\Leo V\AppData\Local\setup.txt
2012-04-06 21:09 - 2015-06-08 20:00 - 0009411 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\Leo V\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\Leo V\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Leo V\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-01 00:49

==================== End of FRST.txt ============================

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:04-09-2015
Ran by Leo V (2015-09-06 01:28:40)
Running from C:\Users\Leo V\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3834653655-4198564282-1810959525-500 - Administrator - Disabled)
Guest (S-1-5-21-3834653655-4198564282-1810959525-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3834653655-4198564282-1810959525-1002 - Limited - Enabled)
Leo V (S-1-5-21-3834653655-4198564282-1810959525-1000 - Administrator - Enabled) => C:\Users\Leo V

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\uTorrent) (Version: 3.4.3.40760 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
ACDSee 15 (HKLM-x32\...\{B580C89C-F7F8-4A78-BAF0-5560C6E9E76D}) (Version: 15.2.212 - ACD Systems International Inc.)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Aegisub 2.1.9 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 2.1.9 - Aegisub Team)
ArcSoft ShowBiz (HKLM-x32\...\{4653DA78-3DB2-4F38-A35D-675CA0AF49CA}) (Version: 3.5.41.83 - ArcSoft)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2218 - AVAST Software)
Avidemux 2.5 (HKLM-x32\...\Avidemux 2.5 (64-bit)) (Version: 2.5.6.7716 - )
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version:  - )
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.40 - Atheros Communications)
bpd_scan (x32 Version: 3.00.0000 - Hewlett-Packard) Hidden
BrowseToSave (HKLM\...\{B2EC8798-F073-4479-A692-B851690FA56E}) (Version: 1.0 - ) <==== ATTENTION
Bulk Image Downloader v4.91.0.0 (HKLM-x32\...\Bulk Image Downloader_is1) (Version:  - Antibody Software)
Bulk Rename Utility 2.7.1.2 (HKLM\...\Bulk Rename Utility_is1) (Version:  - TGRMN Software)
Canon MF Toolbox 4.9.1.1.mf17 (HKLM-x32\...\{6767DFEE-8909-453A-B553-C7693912B2EB}) (Version: 4.9.1.1.mf17 - CANON INC.)
Canon MF220 Series (HKLM\...\{33A079E0-BF49-4E97-9293-3EDDA6D130A4}) (Version: 4.5.0.0 - CANON INC.)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
CDisplayEx 1.8 (HKLM-x32\...\CDisplayEx_is1) (Version:  - Henri Gourvest.)
DisplayFusion 7.2 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 7.2.0.0 - Binary Fortress Software)
DocMgr (x32 Version: 130.0.000.000 - Hewlett-Packard) Hidden
DxO Optics Pro 9 (HKLM\...\{CD5F5030-44C8-4432-9F61-209BA3F2F4BA}) (Version: 9.5.2 - DxO Labs)
EasylifeGadget (HKLM\...\{CE953C0B-C838-56D7-B43C-801A15761EFD}) (Version: 1.0 - )
FINAL FANTASY VIII (HKLM-x32\...\Steam App 39150) (Version:  - SQUARE ENIX)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.6.122.702 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.2.0.722 - Foxit Software Inc.)
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.4 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.23.0 - SaveSense) Hidden <==== ATTENTION
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
GStreamer WinBuilds 0.10.6 (GPL) (HKLM-x32\...\{BABA6E74-615B-4105-A39C-EF20E99DB79B}) (Version: 0.10.6 - OSSBuild)
HandBrake 0.9.6 (HKLM-x32\...\HandBrake) (Version: 0.9.6 - )
Hauppauge Device Central (HKLM-x32\...\Hauppauge Device Central) (Version: 1.0.30277 - Hauppauge Computer Works, Inc.)
Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Hi-Def Suite (HKLM-x32\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.0.1603 - CyberLink Corporation)
IIS URL Rewrite Module 2 (HKLM\...\{EB675D0A-2C95-405B-BEE8-B42A65D23E11}) (Version: 7.2.2 - Microsoft Corporation)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
inSSIDer 3 (HKLM-x32\...\{5BB0D82A-4EED-477B-858E-1D5B01560BF5}) (Version: 3.0.5.80 - MetaGeek, LLC)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Network Connections 15.6.25.0 (HKLM\...\PROSetDX) (Version: 15.6.25.0 - Intel)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.58.2 - JMicron Technology Corp.)
K-Lite Mega Codec Pack 11.4.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.4.0 - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LG ODD Auto Firmware Update (HKLM-x32\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - )
LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.8.9.11 - www.leaguereplays.com)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.0.0.1051 - Marvell)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Image Composite Editor (HKLM\...\{B821CDAA-34DE-46FD-87C9-E6EE7158DB5D}) (Version: 1.4.4 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.0.162.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Web Platform Installer 5.0 (HKLM\...\{4D84C195-86F0-4B34-8FDE-4A17EB41306A}) (Version: 5.0.50430.0 - Microsoft Corporation)
Miranda IM (HKLM-x32\...\Miranda IM) (Version: 0.10.34 - Miranda IM Project)
MKVToolNix 6.9.1 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 6.9.1 - Moritz Bunkus)
Movie Studio Platinum 12.0 (64-bit) (HKLM\...\{6BE763B0-958D-11E2-A440-F04DA23A5C58}) (Version: 12.0.896 - Sony)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 40.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 en-US)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
Mozilla Thunderbird 38.2.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 38.2.0 (x86 en-US)) (Version: 38.2.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MusicBee 2.3 (HKLM-x32\...\MusicBee) (Version: 2.3 - Steven Mayall)
My MP4Box GUI 0.5.6.0 (HKLM\...\{470F4A33-DA87-4CF5-9E5A-42BD4F218B39}_is1) (Version: 0.5.6.0 - Matt Bodin)
MySQL Server 5.5 (HKLM\...\{48131222-639C-4825-A304-251ECF1E48E9}) (Version: 5.5.42 - Oracle Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.6 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Octoshape add-in for Adobe Flash Player (HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\Octoshape add-in for Adobe Flash Player) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
osu! (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
PC Matic 1.1.0.50 (HKLM-x32\...\PC Matic_is1) (Version: 1.1.0.50 - PC Pitstop LLC)
PC Pitstop Info Center 1.0.0.16 (HKLM-x32\...\PCPitstopInfoCenter_is1) (Version: 1.0.0.16 - PC Pitstop LLC.)
PHP Manager 1.2 for IIS 7 (HKLM\...\{E851486F-1FE2-44F0-85ED-F969088A68EE}) (Version: 1.2.0 -  )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version:  - )
RawTherapee 3.0.1 (HKLM\...\RawTherapee 3.0.1) (Version: 3.0.1.0 - RT Team)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26027 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.41.216.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6235 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Samsung Simple Upgrade Tool for SCH-I500 EH09 (HKLM-x32\...\InstallShield_{A81456C9-8CAA-4424-BB9D-E330FDDA717E}) (Version: 1.0.001 - Samsung Electronics)
Samsung Simple Upgrade Tool for SCH-I500 EH09 (x32 Version: 1.0.001 - Samsung Electronics) Hidden
SAMSUNG USB Driver for Mobile Phones V5.16.0.0 (HKLM-x32\...\{C0C1D2BC-72FE-4F77-A2F9-CD10D5AA8F93}) (Version: 1.2.2200.0 - SAMSUNG Electronics CO., LTD.)
SaveSense (HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\SaveSense) (Version:  - ) <==== ATTENTION
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
SHUFFLE! (HKLM-x32\...\SHUFFLE!) (Version:  - MANGA GAMER)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.9 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.9.103 - Skype Technologies S.A.)
Smart Defrag 2 (HKLM-x32\...\Smart Defrag 2_is1) (Version: 2.4 - IObit)
SolveigMM Video Splitter (HKLM-x32\...\SolveigMM Video Splitter 3.2.1206.13) (Version: 3.2.1206.13 - Solveig Multimedia)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.0.1146 - SUPERAntiSpyware.com)
SyncToy 2.1 (x64) (HKLM\...\{88DAAF05-5A72-46D2-A7C5-C3759697E943}) (Version: 2.1.0 - Microsoft)
Unlocker 1.9.1 (HKLM-x32\...\Unlocker) (Version: 1.9.1 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
USBKVM Switcher 2.12 (HKLM-x32\...\USBKVM Switcher_is1) (Version:  - )
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.0 - Sysprogs)
WinDirStat 1.1.2 (HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\...\WinDirStat) (Version:  - )
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM  (03/06/2009 1.0.0008.0) (HKLM\...\422991454CB076E9B856C21BBF99AF2B82317EDA) (Version: 03/06/2009 1.0.0008.0 - Western Digital Technologies)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3834653655-4198564282-1810959525-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Leo V\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3834653655-4198564282-1810959525-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Leo V\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3834653655-4198564282-1810959525-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Leo V\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3834653655-4198564282-1810959525-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Leo V\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3834653655-4198564282-1810959525-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Leo V\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll (Google Inc.)

==================== Restore Points =========================


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {063356DB-CD46-4AF4-896A-8EC715865D42} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-07-01] (Avast Software s.r.o.)
Task: {1CE088FE-7CF6-4360-B5AE-6CF5E6B96E47} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-24] ()
Task: {320E078E-9E5C-447E-91F8-19FDB24D398B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {322CD66B-9EF7-4CE5-9A88-36AACBB2C571} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe [2012-05-11] (IObit)
Task: {41236DF7-37DF-4502-AC9D-BB0AD4AF85C6} - System32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe => C:\Program Files\Microsoft Device Center\devicecenter.exe
Task: {46FB11A4-C3AC-41E1-810D-0A10488CB6FC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {5C4F33BD-EAAC-45EE-AF95-731F8E755290} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3834653655-4198564282-1810959525-1000UA => C:\Users\Leo V\AppData\Local\Google\Update\GoogleUpdate.exe [2015-03-29] (Google Inc.)
Task: {6ACBD22A-2B14-4467-8792-D10603946152} - System32\Tasks\EasyLife UpdaterUpdaterTask{F7D72BC1-A723-4F46-BACF-122B46CC1C3F} => C:\ProgramData\Premium\EasyLife Updater\EasyLife Updater.exe [2012-09-19] () <==== ATTENTION
Task: {708A3B57-6462-4338-94B7-6C65FA2536E4} - \SaveSenseLiveUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {837BB58A-EB86-4BAF-B762-A932809F19E0} - System32\Tasks\{D3F1D3A5-29CA-489C-80CB-F5AAD695C0A0} => pcalua.exe -a "C:\Users\Leo V\Desktop\x264vfw.2245kMod.x86_64.exe" -d "C:\Users\Leo V\Desktop"
Task: {88739422-46BC-469A-8F8F-E9BDF6D583F9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {92E880BF-BE8F-4BFD-A414-0E03A3CCEAAA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {94C1E6C1-3011-48AA-8564-73BFF4D7275C} - System32\Tasks\SUPERAntiSpyware Scheduled Task fa317993-ed17-4764-a617-ff2327f55108 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2015-06-02] (SUPERAdBlocker.com)
Task: {99D89B89-698A-48DC-919F-93DFC53986E7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3834653655-4198564282-1810959525-1000Core => C:\Users\Leo V\AppData\Local\Google\Update\GoogleUpdate.exe [2015-03-29] (Google Inc.)
Task: {9C8444EA-2566-4992-9F15-D5F116C611B7} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2012-11-02] (Microsoft Corporation)
Task: {C821FC50-ED09-4172-8F57-98BC42793E4F} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {CF3DE7AD-523A-496C-B901-876C287D9C85} - System32\Tasks\{EE07E761-57BB-4DE9-9443-152452EE1987} => pcalua.exe -a "C:\Users\Leo V\Desktop\swf_picture_extractor(1).exe" -d "C:\Users\Leo V\Desktop"
Task: {D4ABE7F7-F863-423A-9129-F526E6D4215D} - \SaveSenseLiveUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {D5E0CD51-7AA1-40C8-BAB0-89CBFA757EAE} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2012-11-02] (Microsoft)
Task: {E052B056-C73A-48D2-B8D3-A45667E04840} - System32\Tasks\SUPERAntiSpyware Scheduled Task 6198c2b2-d11f-407f-bad5-bf148233a030 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2015-06-02] (SUPERAdBlocker.com)
Task: {ED0E6A1F-920F-4C15-AFEE-F2B105C3849B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2012-11-02] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EasyLife UpdaterUpdaterTask{F7D72BC1-A723-4F46-BACF-122B46CC1C3F}.job => C:\ProgramData\Premium\EasyLife Updater\EasyLife Updater.exeM/schedule /profilepath C:\ProgramData\Premium\EasyLife Updater\profile.ini <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3834653655-4198564282-1810959525-1000Core.job => C:\Users\Leo V\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3834653655-4198564282-1810959525-1000UA.job => C:\Users\Leo V\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 6198c2b2-d11f-407f-bad5-bf148233a030.job => C:\Program Files\SUPERAntiSpyware\SASTask.exedC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task fa317993-ed17-4764-a617-ff2327f55108.job => C:\Program Files\SUPERAntiSpyware\SASTask.exedC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (Whitelisted) ==============

2012-04-06 21:06 - 2015-08-25 09:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-12 04:49 - 2014-05-12 04:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2012-12-30 23:04 - 2012-09-19 09:50 - 00233472 ____N () C:\ProgramData\Premium\EasyLife Updater\EasyLife Updater.exe
2015-01-06 21:50 - 2015-01-06 21:50 - 09713664 _____ () C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe
2015-02-04 18:24 - 2015-02-04 18:25 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2013-03-10 12:58 - 2013-03-10 12:58 - 02598496 _____ () C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
2012-04-06 21:22 - 2007-07-17 16:33 - 00188416 _____ () C:\Program Files (x86)\USBKVM Switcher\USBKVM.exe
2010-07-04 14:51 - 2010-07-04 14:51 - 00017408 _____ () C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe
2015-07-01 16:42 - 2015-07-01 16:42 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-07-01 16:42 - 2015-07-01 16:42 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-05 19:23 - 2015-09-05 19:23 - 02964480 _____ () C:\Program Files\AVAST Software\Avast\defs\15090502\algo.dll
2012-04-06 23:46 - 2011-08-19 16:33 - 00047960 _____ () C:\Program Files (x86)\IObit\Smart Defrag 2\NtfsData.dll
2010-07-04 16:32 - 2010-07-04 16:32 - 00004608 _____ () C:\Program Files (x86)\Unlocker\UnlockerHook.dll
2015-09-05 21:26 - 2015-08-26 19:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2013-07-01 08:20 - 2015-07-03 11:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-01-21 17:37 - 2015-07-03 11:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-01-21 17:37 - 2015-07-03 11:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-01-21 17:37 - 2015-07-03 11:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-05-21 22:41 - 2015-08-19 15:39 - 02413248 _____ () C:\Program Files (x86)\Steam\video.dll
2014-08-28 17:37 - 2014-12-01 16:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-08-28 17:37 - 2014-12-01 16:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-08-28 17:37 - 2014-12-01 16:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-08-28 17:37 - 2014-12-01 16:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-08-28 17:37 - 2014-12-01 16:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2013-07-09 17:56 - 2015-08-19 15:39 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2012-04-06 21:22 - 2007-07-17 16:26 - 00086016 _____ () C:\Program Files (x86)\USBKVM Switcher\kEYHOOK.dll
2015-07-22 16:36 - 2015-07-26 20:13 - 00171008 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2012-05-16 14:01 - 2012-05-16 14:01 - 00140800 _____ () C:\Program Files (x86)\Rainlendar2\lua52.dll
2013-03-10 12:59 - 2013-03-10 12:59 - 00215648 _____ () C:\Program Files (x86)\Rainlendar2\plugins\iCalendarPlugin.dll
2012-06-17 08:22 - 2012-06-17 08:22 - 00012800 _____ () C:\Program Files (x86)\Rainlendar2\lfs.dll
2015-05-19 21:29 - 2015-05-19 21:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-07-01 16:42 - 2015-07-01 16:42 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-07-09 13:45 - 2015-07-03 11:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-08-17 19:26 - 2015-08-17 19:26 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2015-08-17 19:26 - 2015-08-17 19:26 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:0888F409
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47
AlternateDataStreams: C:\ProgramData\TEMP:66633281

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3834653655-4198564282-1810959525-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Leo V\AppData\Local\DisplayFusion\Wallpaper_2
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: Info Center => C:\Program Files (x86)\PCPitstop\Info Center\InfoCenter.exe
MSCONFIG\startupreg: LGODDFU => "C:\Program Files (x86)\lg_fwupdate\fwupdate.exe" blrun
MSCONFIG\startupreg: MurGeeMon => C:\Program Files (x86)\MurGeeMon\MurGeeMon.exe :silent
MSCONFIG\startupreg: PC Pitstop PC Matic Reminder => C:\Program Files (x86)\PCPitstop\PC Matic\Reminder-PCMatic.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{55CAC61C-BE49-419D-9E54-18D6436B60C3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{6ECB3448-DCCF-4AA6-8635-E1F42FADB842}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{8DC5427C-C145-4B8B-BF31-6E7DDB39229C}] => (Allow) D:\setup\hpznui40.exe
FirewallRules: [{9DAAB9F4-FB74-4B95-BA73-07A92CBD9F99}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{E1B3B152-FF0C-4B84-A6DB-51BF06EE616D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{43241051-C36E-47E1-9707-A1993B899529}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{88A2C601-C809-4502-ACFE-034EEC7BFB92}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{3287CF70-F818-4182-9144-EB1192355621}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{2D079E4E-D255-4F97-AEF1-7183135CAFD6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{6D6D01A6-0AFF-4E03-A839-7259282DF2A9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{3FD13DA3-7540-4D8B-89DE-052DFB637C21}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{7688FF57-6614-401E-9716-894FFDA24392}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{CC4ABC35-A5BE-4519-9DA9-E547DF503BDB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{438512D6-A8B2-4617-9968-62D39FA02E5E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{47755090-EE89-48F3-95F4-7D71124D1613}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{84D57677-E689-49C1-BC21-7C2A47E88BC2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{A00CB519-3B06-4178-9F1D-63162E21872C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{81542AB0-975D-4DBE-939F-0E4EE446E141}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{39F358A9-3F69-4E54-A2BF-5FBD54341D59}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [TCP Query User{27EAF6D1-149D-49D9-A858-FB2EA2548F63}C:\program files (x86)\miranda im\miranda32.exe] => (Allow) C:\program files (x86)\miranda im\miranda32.exe
FirewallRules: [UDP Query User{8EF8B041-585A-4EA9-A551-B70244AF0C35}C:\program files (x86)\miranda im\miranda32.exe] => (Allow) C:\program files (x86)\miranda im\miranda32.exe
FirewallRules: [TCP Query User{4F158699-5138-43ED-8B6A-BC831C9D2624}C:\program files (x86)\jdownloader\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\jdownloader\jre\bin\javaw.exe
FirewallRules: [UDP Query User{BDF5A07A-CF65-4EC3-B488-F51593EBF399}C:\program files (x86)\jdownloader\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\jdownloader\jre\bin\javaw.exe
FirewallRules: [TCP Query User{586A2D16-7882-4081-937E-CD132DBD86F6}C:\program files (x86)\miranda im\miranda32.exe] => (Allow) C:\program files (x86)\miranda im\miranda32.exe
FirewallRules: [UDP Query User{C69D526E-3350-4F43-8635-644ADF8CD28E}C:\program files (x86)\miranda im\miranda32.exe] => (Allow) C:\program files (x86)\miranda im\miranda32.exe
FirewallRules: [{44D42C06-4773-4E6C-889C-84FC360DFEDB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{441DEA43-5DC9-4581-A2C8-544BEB17712D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [TCP Query User{426A339D-1CFA-4C65-8BD4-6905E43928B2}C:\users\Leo V\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe] => (Allow) C:\users\Leo V\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe
FirewallRules: [UDP Query User{0FEEE6DA-8ED1-4A91-B73D-7912E2306B31}C:\users\Leo V\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe] => (Allow) C:\users\Leo V\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe
FirewallRules: [TCP Query User{710DF822-465F-4287-8FBE-91CD35A71D1D}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{71A75EBD-8F5A-4EFD-A768-06112134DB97}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{BCF6A316-A964-4460-B675-AF9A403618F8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{6F6AA305-8013-460A-BF94-1EFF85FDB0A3}C:\users\Leo V\desktop\mudmast\mudmast.exe] => (Allow) C:\users\Leo V\desktop\mudmast\mudmast.exe
FirewallRules: [UDP Query User{D8E2D111-60B5-4643-8BB8-AD06601C302A}C:\users\Leo V\desktop\mudmast\mudmast.exe] => (Allow) C:\users\Leo V\desktop\mudmast\mudmast.exe
FirewallRules: [{F1176BBB-1E3C-4CBE-B42A-14166C7BC698}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{FC780011-779E-4614-9DE8-BF49720D56C3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{D21A2549-962F-4C7E-B590-FB9B63D68B2D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C17DBF34-3FBD-4D14-9398-AD1C0929F2F3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7199221-78E3-486E-921F-E20BBEFF3782}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{A65710E2-6E69-4C76-9E2F-AAC7D93E1092}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{3177C571-5460-4E78-8335-C3E1F7882F45}C:\program files (x86)\jdownloader\jre\bin\java.exe] => (Allow) C:\program files (x86)\jdownloader\jre\bin\java.exe
FirewallRules: [UDP Query User{6156C7E7-F1BD-4C36-A4ED-138F34DF13C5}C:\program files (x86)\jdownloader\jre\bin\java.exe] => (Allow) C:\program files (x86)\jdownloader\jre\bin\java.exe
FirewallRules: [{B863415C-2D1E-4A6F-949C-752555E94B3D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\FINAL FANTASY VIII\FF8_Launcher.exe
FirewallRules: [{CB22BB12-BD50-457B-B73B-AE6F4B989A9A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\FINAL FANTASY VIII\FF8_Launcher.exe
FirewallRules: [TCP Query User{647AEBF0-C3DE-44AD-9134-668CFA41A8F8}C:\Program Files (x86)\jdownloader\jre\bin\javaw.exe] => (Allow) C:\Program Files (x86)\jdownloader\jre\bin\javaw.exe
FirewallRules: [UDP Query User{4387FE9F-5FD3-4B8F-8B22-2AF0399EDB86}C:\Program Files (x86)\jdownloader\jre\bin\javaw.exe] => (Allow) C:\Program Files (x86)\jdownloader\jre\bin\javaw.exe
FirewallRules: [{BF8C1757-C415-4B5D-9A1C-F9D5CB192825}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{31B5B980-7A1D-435C-946B-65061DB064AB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{696B0FE0-4629-428E-8B9C-005D8FD89B07}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{2446F4D1-D44F-4917-A601-F3351E3C558A}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{ECE45D1B-FAF6-4341-BAF1-843D1BD69000}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{3DD7BA72-D942-442D-BAC7-E7A1B9AD945D}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{3FF8A08C-E15C-4A00-9526-74A45A2935EA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2CE56EB4-0072-40D2-8B18-8B41E9996EE6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{91D8CBB5-E079-480C-8ECF-0883A6BAE308}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{0142B30A-B4C1-45CC-A377-025852860850}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{010DA2E1-9897-4ECB-945D-CFC5C1F814DF}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{E69FA549-92EF-4604-961A-D2B894C7868B}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{34CDBB4A-ECFF-412B-B876-9D8F7EC0E0E3}E:\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C7AF2C8C-8B7F-4FF0-8D7D-6A249C039ED2}E:\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{BA4B6298-7663-4CE8-9A67-8B37C1C33B77}E:\apache24\bin\httpd.exe] => (Allow) E:\apache24\bin\httpd.exe
FirewallRules: [UDP Query User{41FAB481-92B0-4D61-81B3-10E437EFDBCB}E:\apache24\bin\httpd.exe] => (Allow) E:\apache24\bin\httpd.exe
FirewallRules: [TCP Query User{14734487-786F-4645-864E-056B741C4267}E:\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A88A45EE-B3A0-49F4-BDDD-EE95FDB9B39F}E:\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{36C20065-C544-4A9A-9E06-3773F77971A9}E:\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D42DB297-7C03-4FD4-9A76-A81F0E41A6D9}E:\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B5CFB5E4-4A83-4183-8C40-D6CD87801F54}E:\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{460D4749-89F5-4B85-A76C-9FFAB296AEEB}E:\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1DD4AB6D-27C1-4CA9-96F2-280BB23D50DC}E:\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A1BFACDC-C5E5-4C8C-B5D4-DF3D0E4BDF84}E:\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{C9BC3C26-5360-4A8B-94CC-2A885ECAE12B}E:\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{073A3141-3F0A-4E80-BE82-97A664B2434E}E:\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{3E3F6578-6859-49E9-93F1-CE4E9B8AE042}C:\users\Leo V\appdata\roaming\utorrent\updates\3.4.3_40760.exe] => (Allow) C:\users\Leo V\appdata\roaming\utorrent\updates\3.4.3_40760.exe
FirewallRules: [UDP Query User{3DE683A5-320F-480E-9528-242CDDBE0E68}C:\users\Leo V\appdata\roaming\utorrent\updates\3.4.3_40760.exe] => (Allow) C:\users\Leo V\appdata\roaming\utorrent\updates\3.4.3_40760.exe
FirewallRules: [{7EEDF4EA-7B5D-408E-AE36-C69A6EB3188B}] => (Allow) C:\Users\Leo V\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9FF61331-5E03-4394-AE71-A03D2DE9BA0A}] => (Allow) C:\Users\Leo V\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C4A3D8AC-4752-4339-90D0-30B720E698ED}] => (Allow) C:\Users\Leo V\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0DCBD445-AF55-4BFF-958F-E211EEF240C5}] => (Allow) C:\Users\Leo V\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{90EF9CB6-C0C2-40BB-A6A0-58A202947642}] => (Allow) C:\Users\Leo V\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F9675453-38A0-4B2D-A71F-F167038957DB}] => (Allow) C:\Users\Leo V\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F083B2F-18A8-4E7A-AE96-06299A14D0BC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C2ADC37D-EA3C-4CA1-841D-9F8D2BEB1A8F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DF226011-01BA-44CE-98B7-54974D6F2B5F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DB82ACB9-F80F-42DC-B4E5-F92CA0D192C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{16DB88CC-A598-4801-A8AA-D1C773951038}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C759D1AC-C5D8-4A37-9AD2-BED033F8902A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{1E6F2017-8F89-417D-BF62-D3FEB149179E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{368988BD-8547-42FB-9804-E45FBE204B8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/06/2015 01:27:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbamservice.exe, version: 3.2.13.0, time stamp: 0x558200e9
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0xc0000005
Faulting process id: 0xb30
Faulting application start time: 0xmbamservice.exe0
Faulting application path: mbamservice.exe1
Faulting module path: mbamservice.exe2
Report Id: mbamservice.exe3

Error: (09/06/2015 01:27:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: FRST64.exe, version: 4.9.2015.0, time stamp: 0x55e9c963
Faulting module name: kernel32.dll, version: 6.1.7601.18933, time stamp: 0x55a6a16e
Exception code: 0xc0000005
Fault offset: 0x00000000000020e0
Faulting process id: 0x1c90
Faulting application start time: 0xFRST64.exe0
Faulting application path: FRST64.exe1
Faulting module path: FRST64.exe2
Report Id: FRST64.exe3

Error: (09/06/2015 01:02:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: winsat.exe, version: 6.1.7601.17514, time stamp: 0x4ce798fc
Faulting module name: diagperf.dll, version: 6.1.7601.17514, time stamp: 0x4ce7c5cc
Exception code: 0xc0000005
Fault offset: 0x0000000000014316
Faulting process id: 0x2964
Faulting application start time: 0xwinsat.exe0
Faulting application path: winsat.exe1
Faulting module path: winsat.exe2
Report Id: winsat.exe3

Error: (09/06/2015 12:43:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 40.0.3.5716, time stamp: 0x55ddb213
Faulting module name: mozglue.dll, version: 40.0.3.5716, time stamp: 0x55dda062
Exception code: 0x80000003
Fault offset: 0x0000e250
Faulting process id: 0x27a8
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (09/06/2015 12:43:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 40.0.3.5716, time stamp: 0x55ddb213
Faulting module name: mozglue.dll, version: 40.0.3.5716, time stamp: 0x55dda062
Exception code: 0x80000003
Fault offset: 0x0000e250
Faulting process id: 0x2610
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (09/06/2015 12:17:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 40.0.3.5716, time stamp: 0x55ddb213
Faulting module name: mozglue.dll, version: 40.0.3.5716, time stamp: 0x55dda062
Exception code: 0x80000003
Fault offset: 0x0000e250
Faulting process id: 0x23a4
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (09/05/2015 10:13:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: wucltux.dll, version: 7.6.7601.18937, time stamp: 0x55ad39b6
Exception code: 0xc0000005
Fault offset: 0x000000000007a244
Faulting process id: 0x6a8
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (09/05/2015 10:13:12 PM) (Source: ESENT) (EventID: 474) (User: )
Description: wuaueng.dll (1052) SUS20ClientDataStore: The database page read from the file "C:\Windows\SoftwareDistribution\DataStore\DataStore.edb" at offset 50790400 (0x0000000003070000) (database page wuaueng.dll0) for 32768 (0x00008000) bytes failed verification due to a page checksum mismatch.  The expected checksum was [055d055d91d7fcc5:8da68da6c0960629:3b653b653a360646:aab8aab87ff50622] and the actual checksum was [fb6704988a8418d0:8da68da6c0960629:3b653b653a360646:b1524ead7f4c0622].  The read operation will fail with error -1018 (0xfffffc06).  If this condition persists then please restore the database from a previous backup.  This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Error: (09/05/2015 10:03:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mscorsvw.exe, version: 4.0.30319.34209, time stamp: 0x5348947f
Faulting module name: ntdll.dll, version: 6.1.7601.18933, time stamp: 0x55a69e20
Exception code: 0xc0000005
Fault offset: 0x0002e3c6
Faulting process id: 0x3908
Faulting application start time: 0xmscorsvw.exe0
Faulting application path: mscorsvw.exe1
Faulting module path: mscorsvw.exe2
Report Id: mscorsvw.exe3

Error: (09/05/2015 09:48:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_wuauserv, version: 6.1.7600.16385, time stamp: 0x4a5bc3c1
Faulting module name: wuaueng.dll, version: 7.6.7601.18937, time stamp: 0x55ad3174
Exception code: 0xc0000409
Fault offset: 0x00000000001a4de3
Faulting process id: 0x1158
Faulting application start time: 0xsvchost.exe_wuauserv0
Faulting application path: svchost.exe_wuauserv1
Faulting module path: svchost.exe_wuauserv2
Report Id: svchost.exe_wuauserv3


System errors:
=============
Error: (09/06/2015 01:28:15 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The MBAMService service terminated unexpectedly.  It has done this 1 time(s).

Error: (09/06/2015 01:26:49 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 1:14:13 AM on ‎9/‎6/‎2015 was unexpected.

Error: (09/05/2015 10:33:24 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The Foxit Cloud Safe Update Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (09/05/2015 10:30:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SaveSenseLive Service (savesenselive) service failed to start due to the following error:
%%1053

Error: (09/05/2015 10:30:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the SaveSenseLive Service (savesenselive) service to connect.

Error: (09/05/2015 10:27:52 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:26:07 PM on ‎9/‎5/‎2015 was unexpected.

Error: (09/05/2015 10:22:46 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The Foxit Cloud Safe Update Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (09/05/2015 10:10:07 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:07:48 PM on ‎9/‎5/‎2015 was unexpected.

Error: (09/05/2015 10:07:07 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BITS service.

Error: (09/05/2015 10:06:07 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BITS service.


Microsoft Office:
=========================

==================== Memory info ===========================

Processor: Intel® Core™ i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 17%
Total physical RAM: 16360.77 MB
Available physical RAM: 13552.89 MB
Total Virtual: 32719.75 MB
Available Virtual: 29782.46 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:5.36 GB) NTFS
Drive e: (MEDIA) (Fixed) (Total:931.51 GB) (Free:706.02 GB) NTFS
Drive f: (MARY_BACKUP) (Fixed) (Total:23.92 GB) (Free:21.65 GB) NTFS
Drive g: (MIKE_BACKUP) (Fixed) (Total:23.92 GB) (Free:20.62 GB) NTFS
Drive h: (PRIV_BACKUP) (Fixed) (Total:882.68 GB) (Free:858.03 GB) NTFS
Drive i: (ANIME_BACKUP) (Fixed) (Total:2794.49 GB) (Free:1200.83 GB) NTFS
Drive j: (MEDIA_BACKUP) (Fixed) (Total:2794.49 GB) (Free:2025.22 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 93534067)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E9F5ECE7)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 3.

========================================================
Disk: 4 (Size: 931.5 GB) (Disk ID: E8900690)
Partition 1: (Not Active) - (Size=882.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=23.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=23.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


  • 0

Advertisements

#2
RKinner
Posted 12 September 2015 - 07:47 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Download : ADWCleaner to your desktop.  Make sure you get the correct Download button.  Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @BleepingComputer

NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close  all programs, pause your anti-virus and run AdwCleaner (Vista or Win 7 => right click and Run As Administrator).

scan-results.jpg

Click on Scan  and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder.



Junkware-Removal-Tool

Please download Junkware Removal Tool to your desktop.  Make sure you get the correct Download button.  Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @Author's site

  • Pause your anti-virus.  Close all browsers.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

 

Download BlueScreenView
http://www.nirsoft.n...creen_view.html

Double click on BlueScreenView.exe file to run the program.
When scanning is done, go Edit, Select All.

Go File, Save Selected Items, and save the report as BSOD.txt.
Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

 

 

 

Get the free version of Speccy:

http://www.filehippo.com/download_speccy (Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  Download, Save and Install it.  

Close all browsers and open progrms before running Speccy.  Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  (It will be near the top about 10 lines down.)  Save the file and close notepad  Attach the file to your next post as it is usually too large for the forum (Click on More Reply Options then Choose file, select the file, Open, Attach this File) Uninstall Speccy.
 


  • 0

#3
Tyranoid
Posted 13 September 2015 - 04:23 PM

Tyranoid

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts

Hi RKinner,

 

Thank you for responding to my request for assistance!

 

I completed all of the steps you outlined, although I was unfortunately unable to create a log file from BlueScreenView.  When I open the program, this is all I see:

 

yAgF1wC.jpg

 

As you can see there isn't anything for me to select from and generate a log file.  At this time I'd like to note that since I authored my post last week, I've long since run another anti-spyware program, Spybot Search & Destroy.  It was able to remove a lot more unwanted files from my system that SUPERAntiSpyware and Malwarebytes Anti-Malware missed.  I had also started updating some of my old firmware using Driver Booster 3 as a helpful guide.  Between those two things, I can honestly say the number of blue screens that I had been experiencing prior have been reduced dramatically.  In fact I can't seem to remember having one since then.  Unfortunately, the Firefox crashing has continued on in large part.

 

I have copied and pasted the log files you requested below, and attached the log file from Speccy:

 

# AdwCleaner v5.007 - Logfile created 13/09/2015 at 16:47:32
# Updated 08/09/2015 by Xplode
# Database : 2015-09-10.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : Leo V - LEO1
# Running from : C:\Users\Leo V\Desktop\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\Premium
[-] Folder Deleted : C:\ProgramData\Tarma Installer
[-] Folder Deleted : C:\Users\Leo V\AppData\Roaming\SendSpace
[-] Folder Deleted : C:\Users\Leo V\Documents\Updater

***** [ Files ] *****

[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\user.js
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\invalidprefs.js
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\invalidprefs.js
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\user.js
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\user.js
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\foxydeal.sqlite
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\invalidprefs.js
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\invalidprefs.js
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\user.js
[-] File Deleted : C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\user.js

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\Toolbar.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ToolbarBroker.EXE
[-] Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.BandObject
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.BandObject.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\ZGClnt.Mngr
[-] Key Deleted : HKLM\SOFTWARE\Classes\ZGClnt.Mngr.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.ssliveupdate.oneclickctrl.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.ssliveupdate.update3webcontrol.3
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7E8A36EA-2501-4ED3-A3C8-CFA9143FB169}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{FAA8C612-F1B6-461B-8B60-B54D74D9642E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1070C156-160B-47A0-B7D9-1860396BAB57}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27CE191D-733B-4450-AFCD-096D105288C3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CBD2A57-2FD5-4F1A-9FC8-90ED48FA4187}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{39A29266-D3E4-462D-AB05-F93B1053F6CF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44FC7A33-2E5C-48DC-B6F5-B81E8005D122}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{73192D81-6D24-4C40-BF7B-2507C6FA0B1A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{88C606E7-BA26-41CB-8CC3-D1E313E34E75}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{93D3100A-BBB6-456C-96FC-82CAC5F383AC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9E0546FF-D44F-4FE4-A324-995FCACB8D33}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CDDAB3A4-E64D-4AE0-9E1D-F3132F5F913F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E66A759D-367F-433E-85C6-ED7F040BCC32}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4B8D46C-4EEE-401B-8607-DC03025F34B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99DCF141-03F9-4363-8D79-640FA646DEED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E65F40C8-3CEB-47C2-9E01-BF73323DF4E7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3AF4400F-CDC5-4F2D-B3F1-74348E5D5CCC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{422E1393-7A4C-44FF-A7E1-8B9D146E0666}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4807D6D8-ADC8-41AF-AB9D-AE1086D1E62F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6E1CD171-29C1-4D56-A223-E31C57A0A25A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{70E96298-17FC-4020-A7CF-6F81ED8CF3AB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{84A81B7E-B8CD-4891-BEA0-548D65E9610A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{867DF9A9-D013-4A1A-B685-DFF65D225ED4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{889074FC-1456-4CE8-88F7-154264DC275F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91F4CF02-F675-4E6A-B4E8-C13DF09B9B1B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A902A36E-0C79-4BD7-B561-9C058BD60210}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AB778974-218E-4734-90F0-731BE7E50E77}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADE6A9C0-12B3-457D-9A86-548FA87E04DB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B7C67027-15EB-489F-A9EA-286076CF7540}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CDB98856-BEA3-4073-AF57-23A3583AE9E4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CDED8922-BB3D-4E3A-9C2C-89B1C927F48B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D79CBD8E-D857-4D05-B3AD-26F722CF5B6E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7EA7058-B19B-4A27-B50A-87A1B8FC5F30}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0EE6D408-6ED5-40C6-8C42-A041D5DE9AB0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{13A42355-1F94-4459-B19E-F60B2C607C77}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{293DD661-C540-4AC4-9B4C-42E68369CE1B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2EC58BDB-0694-4D54-80DD-A8F2AA0427A1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{313B508D-596D-4BDF-B0B5-E41F224E184A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{38BF9661-BDA0-4A74-BB3B-576EC7AE16DC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6857AC4A-95B4-4E2C-B2D2-8A235FCCEF4A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27CE191D-733B-4450-AFCD-096D105288C3}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2CBD2A57-2FD5-4F1A-9FC8-90ED48FA4187}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E65F40C8-3CEB-47C2-9E01-BF73323DF4E7}
[-] Key Deleted : HKCU\Software\Zugo
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SaveSense
[!] Key Not Deleted : [x64] HKCU\Software\Zugo
[-] Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer

***** [ Web browsers ] *****

[-] [C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\prefs.js] [Preference] Deleted : user_pref("extentions.y2layers.defaultEnableAppsList", "bestvideodownloader,ezLooker,pagerage,buzzdock,toprelatedtopics,twittube");
[-] [C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\clavi2wo.default\prefs.js] [Preference] Deleted : user_pref("extentions.y2layers.installId", "157ed7c5-d21e-464b-a7da-7e80073a0535");
[-] [C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\prefs.js] [Preference] Deleted : user_pref("extentions.y2layers.defaultEnableAppsList", "bestvideodownloader,ezLooker,pagerage,buzzdock,toprelatedtopics,twittube");
[-] [C:\Users\Leo V\AppData\Roaming\Mozilla\Firefox\Profiles\lbd74d19.Private\prefs.js] [Preference] Deleted : user_pref("extentions.y2layers.installId", "157ed7c5-d21e-464b-a7da-7e80073a0535");
[-] [C:\Users\Leo V\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com
[-] [C:\Users\Leo V\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [8743 bytes] ##########
 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.1 (09.08.2015:1)
OS: Windows 7 Ultimate x64
Ran by Leo Vasilievas on Sun 09/13/2015 at 16:54:36.43
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks

Successfully deleted: [Task] C:\Windows\system32\tasks\Driver Booster Beta Scheduler
Successfully deleted: [Task] C:\Windows\system32\tasks\Driver Booster Beta SkipUAC (Leo Vasilievas)
Successfully deleted: [Task] C:\Windows\system32\tasks\SmartDefrag_Startup



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] C:\ProgramData\iobit\driver booster
Successfully deleted: [Folder] C:\ProgramData\productdata
Successfully deleted: [Folder] C:\Users\Leo Vasilievas\AppData\Roaming\iobit\driver booster



~~~ FireFox

Emptied folder: C:\Users\Leo Vasilievas\AppData\Roaming\mozilla\firefox\profiles\clavi2wo.default\minidumps [9 files]
Emptied folder: C:\Users\Leo Vasilievas\AppData\Roaming\mozilla\firefox\profiles\lbd74d19.Private\minidumps [58 files]



~~~ Chrome


[C:\Users\Leo Vasilievas\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Leo Vasilievas\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\Leo Vasilievas\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Leo Vasilievas\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 09/13/2015 at 16:57:14.13
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

Attached File  LEO1.txt   109.61KB   286 downloads


  • 0

#4
RKinner
Posted 13 September 2015 - 10:14 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Looks like JRT cleaned out all of the dump files which is why BlueScreenView found nothing.  If you get a new BSOD then run BlueScreenView.

 

If Firefox is the only problem then try running it in its safe Mode.  https://support.mozilla.org/en-US/kb/troubleshoot-firefox-issues-using-safe-mode then if that works fine then try enabling a couple of extensions/add-ons until you find the one that is causing the problem.


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP