1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Ad extensions being installed in Chrome

Discussion in 'Virus & Other Malware Removal' started by k6868, Apr 27, 2015.

Thread Status:
Not open for further replies.
Advertisement
  1. k6868

    k6868 Thread Starter

    Joined:
    Aug 28, 2006
    Messages:
    34
    Ive been getting ads recently in Chrome even though I have the UBlock extension and I found that random ad extensions have installed themselves. I removed all the unwanted extensions and also went into control panel and found a bunch of adware that was installed. I've gone in and deleted/uninstalled them all except for one called "DiscountExt" that won't uninstall.

    Thanks for the help.

    SysInfo here:
    Tech Support Guy System Info Utility version 1.0.0.2
    OS Version: Microsoft Windows 7 Professional, Service Pack 1, 64 bit
    Processor: Intel(R) Core(TM) i5-3550 CPU @ 3.30GHz, Intel64 Family 6 Model 58 Stepping 9
    Processor Count: 4
    RAM: 8147 Mb
    Graphics Card: NVIDIA GeForce GTX 560, 1024 Mb
    Hard Drives: C: Total - 476837 MB, Free - 41289 MB;
    Motherboard: ASUSTeK COMPUTER INC., P8Z77-V LX
    Antivirus: Microsoft Security Essentials, Updated and Enabled
     
  2. k6868

    k6868 Thread Starter

    Joined:
    Aug 28, 2006
    Messages:
    34
    Can I get any help with this? My adblock extension (ublock origin) suddenly disappeared and I cant install any extensions now.
    Thanks
     
  3. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    Hi k6868,
    -------------------------------------------------------------
    AdwCleaner Download and Run

    Download AdwCleaner and save it to your desktop or somewhere you can find it.
    Take care NOT to click on any ad, like from PC Optimizer Pro. The correct link is the button labeled "Download from Bleeping Computer".
    NOTE: If using Internet Explorer and you get an alert that stops the program downloading click on Tools > Smartscreen Filter > Turn off Smartscreen Filter then click on OK in the box that opens. Then click on the link again.

    Close your browser and double click on this icon on your desktop:

    [​IMG]

    You will then see the screen below. Click on the Scan button (as indicated), accept any prompts that appear and allow it to run.
    It may take several minutes to complete.
    When it is done, click on the Clean button, accept any prompts that appear and allow the system to Reboot.
    You will then be presented with the report. Copy & Paste it into a reply here.

    [​IMG]
    If you lose track of the log, it is saved in this folder C:\AdwCleaner\
    The filename will be adwcleaner[xx].txt where [xx] will be S1, or S2, etc. whichever filename is newest.
    -----------------------------------------------------------
    Download and Run the Farbar Scan Tool
    • Download FRST64 and save to your Desktop.
    • Double click Frst64.exe to launch it.
    • FRST64 will start to run.
      • When the tool opens click Yes to disclaimer.
      • Press the Scan button.
      • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
      • Please post them in your next reply.
    If you lose track of them, they will be saved in the same location as FRST64.exe
    Feel free to use separate replies if it's more convenient.

    askey127
     
  4. k6868

    k6868 Thread Starter

    Joined:
    Aug 28, 2006
    Messages:
    34
    Thanks for the reply askey. I downloaded Bitdefender while I was waiting for a reply (I had MSE before) and ran some scans and it seems to have helped out. I still followed your steps though. Here is the adwcleaner report.

    # AdwCleaner v4.203 - Logfile created 07/05/2015 at 18:51:59
    # Updated 30/04/2015 by Xplode
    # Database : 2015-05-05.1 [Server]
    # Operating system : Windows 7 Professional Service Pack 1 (x64)
    # Username : Kevin - KEVIN-PC
    # Running from : C:\Users\Kevin\Desktop\adwcleaner_4.203.exe
    # Option : Cleaning

    ***** [ Services ] *****


    ***** [ Files / Folders ] *****

    Folder Deleted : C:\ProgramData\8352956998532181010
    Folder Deleted : C:\ProgramData\{9b5cf379-ba0a-c60c-9b5c-cf379ba0cde6}
    Folder Deleted : C:\ProgramData\{b95308de-9732-03ab-b953-308de973237a}

    ***** [ Scheduled tasks ] *****


    ***** [ Shortcuts ] *****


    ***** [ Registry ] *****

    Key Deleted : HKLM\SOFTWARE\767bc441-83c4-ce75-8378-5087f912dbd5
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
    Key Deleted : HKCU\Software\APN PIP
    Key Deleted : HKCU\Software\PIP
    Key Deleted : HKCU\Software\Softonic
    Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
    Key Deleted : HKLM\SOFTWARE\PIP
    Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7223EDAC-E091-B3C1-BD91-B66CE557800F}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E957849A-94AC-6F46-4623-C31474E3C170}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B138259A-351E-33FA-2726-8D71704F1DA9}
    Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

    ***** [ Web browsers ] *****

    -\\ Internet Explorer v11.0.9600.17728


    -\\ Google Chrome v42.0.2311.135


    *************************

    AdwCleaner[R0].txt - [2015 bytes] - [07/05/2015 18:50:22]
    AdwCleaner[S0].txt - [1852 bytes] - [07/05/2015 18:51:59]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1911 bytes] ##########
     
  5. k6868

    k6868 Thread Starter

    Joined:
    Aug 28, 2006
    Messages:
    34
    And the FRST reports.

    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-05-2015 01
    Ran by Kevin (administrator) on KEVIN-PC on 07-05-2015 18:57:21
    Running from C:\Users\Kevin\Downloads
    Loaded Profiles: Kevin (Available profiles: Kevin)
    Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11 (Default browser: Chrome)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (Microsoft Corporation) C:\Windows\System32\wlanext.exe
    (Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
    (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (D-Link Corp.) C:\Program Files (x86)\D-Link\DWA-552 revA\wirelesscm.exe
    (Dropbox, Inc.) C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
    (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
    (NVIDIA Corporation) C:\Users\Kevin\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
    HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
    HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-27] (NVIDIA Corporation)
    HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
    HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.)
    HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.)
    HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
    HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
    HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
    HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\Run: [AdobeBridge] => [X]
    HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\Run: [GoogleChromeAutoLaunch_585CBC2D9CEE64E85FE3A6084EF9DC86] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-04-27] (Google Inc.)
    HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\MountPoints2: {61498794-3bee-11e2-aadd-c86000c4aaa2} - E:\autorun.exe
    AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [164568 2015-03-13] (NVIDIA Corporation)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Connection Manager.lnk [2012-05-26]
    ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files (x86)\D-Link\DWA-552 revA\wirelesscm.exe (D-Link Corp.)
    Startup: C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-04-11]
    ShortcutTarget: Dropbox.lnk -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKU\S-1-5-21-1375732441-286690794-834080067-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-1375732441-286690794-834080067-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?ocid=iehp
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    DPF: HKLM-x32 {195538FD-1C39-44B1-A7C3-5D7137A8A8F1} C:\Users\Kevin\AppData\Local\Temp\f5tmp\f5opswati.cab
    DPF: HKLM-x32 {30CF9713-6614-4556-B5F5-66F8C7F9DEF1} C:\Users\Kevin\AppData\Local\Temp\f5tmp\f5opswati.cab
    DPF: HKLM-x32 {41EF3CD2-D8CC-4438-84B1-280BB4E77C8E} C:\Users\Kevin\AppData\Local\Temp\f5tmp\f5tunsrv.cab
    DPF: HKLM-x32 {45B69029-F3AB-4204-92DE-D5140C3E8E74} C:\Users\Kevin\AppData\Local\Temp\IXP000.TMP\InstallerControl.cab#-1,-1,-1,-1
    DPF: HKLM-x32 {49EC7987-E331-44E3-B170-748B58A268B9} C:\Users\Kevin\AppData\Local\Temp\f5tmp\f5opswati.cab
    DPF: HKLM-x32 {57C76689-F052-487B-A19F-855AFDDF28EE} C:\Users\Kevin\AppData\Local\Temp\f5tmp\f5InspectionHost.cab
    DPF: HKLM-x32 {E0FF21FA-B857-45C5-8621-F120A0C17FF2} C:\Users\Kevin\AppData\Local\Temp\f5tmp\urxhost.cab
    DPF: HKLM-x32 {E615C9EA-AD69-4AE9-83C9-9D906A0ACA6D} C:\Users\Kevin\AppData\Local\Temp\f5tmp\f5syschk.cab
    DPF: HKLM-x32 {EBDC91CB-F23F-477D-B152-3F7243760D04} C:\Users\Kevin\AppData\Local\Temp\f5tmp\f5opswati.cab
    DPF: HKLM-x32 {FFA7A955-5A33-42F7-A77B-8E46AE2FAA64} https://www.playmemoriescameraapps.com/portal/PMCA/PMCADownloader.cab
    Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
    Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
    Hosts: 127.0.0.1 activate.adobe.com
    Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4 64.71.255.204

    FireFox:
    ========
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll [2014-12-11] ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
    FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
    FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-26] (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-26] (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll [2014-12-11] ( Microsoft Corporation)
    FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
    FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-05-05] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-05-05] (Google Inc.)
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
    FF Plugin-x32: Sony Corporation/PMCADownloader -> C:\ProgramData\Sony Corporation\PMCADownloader\1.1.1975.475\npPMCADownloader.dll [2012-10-17] (Sony Network Entertainment International LLC)
    FF Plugin-x32: Sony Corporation/PMCADownloaderHelper -> C:\ProgramData\Sony Corporation\PMCADownloader\1.1.1975.475\PMCADownloaderHelper.exe [2012-10-17] (Sony Network Entertainment International LLC)
    FF Plugin-x32: Sony Corporation/PMCADownloaderLib -> C:\ProgramData\Sony Corporation\PMCADownloader\1.1.1975.475\PMCADownloaderLib.dll [2012-10-17] (Sony Network Entertainment International LLC)
    FF Plugin HKU\S-1-5-21-1375732441-286690794-834080067-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kevin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-03-06] (Unity Technologies ApS)
    FF Plugin HKU\S-1-5-21-1375732441-286690794-834080067-1000: electronicarts.com/GameFacePlugin -> C:\Users\Kevin\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll [2012-12-20] (Electronic Arts)

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://www.evo-web.co.uk/forums
    CHR StartupUrls: Default -> "hxxp://www.evo-web.co.uk/forums"
    CHR Profile: C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Google Slides) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-05]
    CHR Extension: (Google Docs) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-05]
    CHR Extension: (Google Drive) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-05]
    CHR Extension: (YouTube) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-05]
    CHR Extension: (uBlock Origin) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-05-05]
    CHR Extension: (Google Search) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-05]
    CHR Extension: (Google Sheets) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-05]
    CHR Extension: (Bookmark Manager) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-05]
    CHR Extension: (Reddit Enhancement Suite) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-05-05]
    CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-05]
    CHR Extension: (Google Wallet) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-05]
    CHR Extension: (Gmail) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-05]

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
    R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-27] (NVIDIA Corporation)
    R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2013-10-23] (Bitdefender)
    S3 jswpsapi; C:\Program Files (x86)\D-Link\DWA-552 revA\jswpsapi.exe [954368 2008-09-26] (Atheros Communications, Inc.) [File not signed]
    R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
    S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
    R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-27] (NVIDIA Corporation)
    R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-27] (NVIDIA Corporation)
    S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
    U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2012-11-02] (BitDefender)
    R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
    R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
    R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-12-03] (DT Soft Ltd)
    R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
    S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-08] (QUALCOMM Incorporated)
    R1 JSWPSLWF; C:\Windows\SysWOW64\DRIVERS\jswpslwfx.sys [26624 2008-05-15] (Atheros Communications, Inc.)
    R3 Linksys_adapter_H; C:\Windows\System32\DRIVERS\AE2500w764.sys [1254464 2011-03-30] (Broadcom Corporation)
    R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
    S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2011-08-02] (Apple Inc.) [File not signed]
    S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
    R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-27] (NVIDIA Corporation)
    R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
    R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-05-07 18:57 - 2015-05-07 18:57 - 00018375 _____ () C:\Users\Kevin\Downloads\FRST.txt
    2015-05-07 18:57 - 2015-05-07 18:57 - 00000000 ____D () C:\FRST
    2015-05-07 18:56 - 2015-05-07 18:56 - 02102272 _____ (Farbar) C:\Users\Kevin\Downloads\FRST64.exe
    2015-05-07 18:50 - 2015-05-07 18:52 - 00000000 ____D () C:\AdwCleaner
    2015-05-07 18:49 - 2015-05-07 18:49 - 02204160 _____ () C:\Users\Kevin\Downloads\adwcleaner_4.203.exe
    2015-05-05 21:50 - 2015-05-05 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
    2015-05-05 21:49 - 2015-05-07 18:54 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-05-05 21:49 - 2015-05-07 18:53 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-05-05 21:49 - 2015-05-05 21:50 - 00000000 ____D () C:\Program Files (x86)\Google
    2015-05-05 21:49 - 2015-05-05 21:49 - 00003892 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2015-05-05 21:49 - 2015-05-05 21:49 - 00003640 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
    2015-05-05 21:48 - 2015-05-05 21:49 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Deployment
    2015-05-05 21:48 - 2015-05-05 21:48 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Apps\2.0
    2015-05-05 21:32 - 2015-05-05 21:32 - 00202144 _____ () C:\ProgramData\1430875785.bdinstall.bin
    2015-05-05 21:31 - 2015-05-05 21:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antivirus Free Edition
    2015-05-05 21:31 - 2013-04-17 14:59 - 00718840 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
    2015-05-05 21:31 - 2013-04-17 14:59 - 00593144 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
    2015-05-05 21:31 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
    2015-05-05 21:30 - 2015-05-05 21:32 - 00000000 ____D () C:\Program Files\Bitdefender
    2015-05-05 21:30 - 2013-05-28 12:12 - 00382536 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
    2015-05-05 21:30 - 2013-04-22 13:21 - 00148696 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
    2015-05-05 21:29 - 2015-05-05 21:29 - 10447328 _____ () C:\Users\Kevin\Downloads\Antivirus_Free_Edition_x64.exe
    2015-05-05 21:29 - 2015-05-05 21:29 - 00162208 _____ () C:\Users\Kevin\Downloads\Antivirus_Free_Edition.exe
    2015-04-27 21:25 - 2015-04-27 21:25 - 00509440 _____ (Tech Support Guy System) C:\Users\Kevin\Downloads\SysInfo.exe
    2015-04-27 00:08 - 2015-04-27 00:44 - 00000000 ____D () C:\ProgramData\F-Secure
    2015-04-27 00:08 - 2015-04-27 00:08 - 00572456 _____ (F-Secure Corporation) C:\Users\Kevin\Downloads\F-SecureOnlineScanner.exe
    2015-04-27 00:08 - 2015-04-27 00:08 - 00000000 ____D () C:\Users\Kevin\AppData\Local\F-Secure
    2015-04-27 00:04 - 2015-05-05 21:30 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\QuickScan
    2015-04-27 00:04 - 2015-04-27 00:04 - 00184192 _____ () C:\Users\Kevin\Downloads\qsinstaller.exe
    2015-04-26 23:53 - 2015-04-26 23:53 - 00003200 _____ () C:\Windows\System32\Tasks\{B62A3579-9BC4-4C81-9237-628C4B5C3F87}
    2015-04-15 00:09 - 2015-04-15 00:09 - 00000000 ___RD () C:\Program Files (x86)\Skype
    2015-04-15 00:09 - 2015-04-15 00:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
    2015-04-14 19:26 - 2015-04-14 19:26 - 00000000 ____D () C:\ProgramData\Supreme AdBlocker
    2015-04-14 19:00 - 2015-03-24 23:24 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
    2015-04-14 19:00 - 2015-03-24 23:24 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2015-04-14 19:00 - 2015-03-24 23:24 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2015-04-14 19:00 - 2015-03-24 23:24 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
    2015-04-14 19:00 - 2015-03-24 23:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
    2015-04-14 19:00 - 2015-03-24 23:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
    2015-04-14 19:00 - 2015-03-24 23:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
    2015-04-14 19:00 - 2015-03-24 23:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
    2015-04-14 19:00 - 2015-03-24 23:23 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
    2015-04-14 19:00 - 2015-03-24 23:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
    2015-04-14 19:00 - 2015-03-24 23:23 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
    2015-04-14 19:00 - 2015-03-24 23:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
    2015-04-14 19:00 - 2015-03-24 23:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
    2015-04-14 19:00 - 2015-03-24 23:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
    2015-04-14 19:00 - 2015-03-24 23:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
    2015-04-14 19:00 - 2015-03-24 23:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
    2015-04-14 19:00 - 2015-03-22 23:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
    2015-04-14 19:00 - 2015-03-22 23:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
    2015-04-14 19:00 - 2015-03-22 23:24 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
    2015-04-14 19:00 - 2015-03-22 23:24 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
    2015-04-14 19:00 - 2015-03-22 23:24 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
    2015-04-14 19:00 - 2015-03-22 23:24 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
    2015-04-14 19:00 - 2015-03-22 23:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
    2015-04-14 19:00 - 2015-03-22 23:17 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
    2015-04-14 19:00 - 2015-03-17 01:22 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-04-14 19:00 - 2015-03-17 01:22 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2015-04-14 19:00 - 2015-03-17 01:22 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-04-14 19:00 - 2015-03-17 01:19 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2015-04-14 19:00 - 2015-03-17 01:17 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
    2015-04-14 19:00 - 2015-03-17 01:17 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
    2015-04-14 19:00 - 2015-03-17 01:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2015-04-14 19:00 - 2015-03-17 01:16 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-04-14 19:00 - 2015-03-17 01:16 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2015-04-14 19:00 - 2015-03-17 01:16 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
    2015-04-14 19:00 - 2015-03-17 01:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2015-04-14 19:00 - 2015-03-17 01:15 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
    2015-04-14 19:00 - 2015-03-17 01:15 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-04-14 19:00 - 2015-03-17 01:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
    2015-04-14 19:00 - 2015-03-17 01:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 01:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2015-04-14 19:00 - 2015-03-17 01:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2015-04-14 19:00 - 2015-03-17 00:59 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2015-04-14 19:00 - 2015-03-17 00:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
    2015-04-14 19:00 - 2015-03-17 00:56 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
    2015-04-14 19:00 - 2015-03-17 00:56 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
    2015-04-14 19:00 - 2015-03-17 00:56 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2015-04-14 19:00 - 2015-03-17 00:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
    2015-04-14 19:00 - 2015-03-17 00:56 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
    2015-04-14 19:00 - 2015-03-17 00:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2015-04-14 19:00 - 2015-03-17 00:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
    2015-04-14 19:00 - 2015-03-17 00:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
    2015-04-14 19:00 - 2015-03-17 00:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-17 00:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-16 23:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
    2015-04-14 19:00 - 2015-03-16 23:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
    2015-04-14 19:00 - 2015-03-16 23:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-16 23:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-16 23:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-16 23:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
    2015-04-14 19:00 - 2015-03-09 23:25 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2015-04-14 19:00 - 2015-03-09 23:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
    2015-04-14 19:00 - 2015-03-09 23:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
    2015-04-14 19:00 - 2015-03-09 23:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
    2015-04-14 19:00 - 2015-03-05 01:12 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
    2015-04-14 19:00 - 2015-03-05 00:05 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
    2015-04-14 18:59 - 2015-04-01 20:17 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-04-14 18:59 - 2015-04-01 19:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2015-04-14 18:59 - 2015-03-13 00:32 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-04-14 18:59 - 2015-03-13 00:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-04-14 18:59 - 2015-03-13 00:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-04-14 18:59 - 2015-03-13 00:09 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-04-14 18:59 - 2015-03-13 00:08 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-04-14 18:59 - 2015-03-13 00:08 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2015-04-14 18:59 - 2015-03-13 00:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-04-14 18:59 - 2015-03-13 00:07 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-04-14 18:59 - 2015-03-13 00:06 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-04-14 18:59 - 2015-03-13 00:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-04-14 18:59 - 2015-03-12 23:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-04-14 18:59 - 2015-03-12 23:55 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-04-14 18:59 - 2015-03-12 23:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-04-14 18:59 - 2015-03-12 23:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-04-14 18:59 - 2015-03-12 23:53 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-04-14 18:59 - 2015-03-12 23:50 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-04-14 18:59 - 2015-03-12 23:44 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-04-14 18:59 - 2015-03-12 23:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2015-04-14 18:59 - 2015-03-12 23:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2015-04-14 18:59 - 2015-03-12 23:40 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-04-14 18:59 - 2015-03-12 23:32 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-04-14 18:59 - 2015-03-12 23:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2015-04-14 18:59 - 2015-03-12 23:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2015-04-14 18:59 - 2015-03-12 23:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
    2015-04-14 18:59 - 2015-03-12 23:27 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-04-14 18:59 - 2015-03-12 23:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2015-04-14 18:59 - 2015-03-12 23:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-04-14 18:59 - 2015-03-12 23:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2015-04-14 18:59 - 2015-03-12 23:23 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-04-14 18:59 - 2015-03-12 23:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2015-04-14 18:59 - 2015-03-12 23:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2015-04-14 18:59 - 2015-03-12 23:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2015-04-14 18:59 - 2015-03-12 23:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2015-04-14 18:59 - 2015-03-12 23:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2015-04-14 18:59 - 2015-03-12 23:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2015-04-14 18:59 - 2015-03-12 23:08 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-04-14 18:59 - 2015-03-12 23:07 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-04-14 18:59 - 2015-03-12 23:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2015-04-14 18:59 - 2015-03-12 23:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-04-14 18:59 - 2015-03-12 23:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-04-14 18:59 - 2015-03-12 23:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2015-04-14 18:59 - 2015-03-12 23:00 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-04-14 18:59 - 2015-03-12 22:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2015-04-14 18:59 - 2015-03-12 22:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2015-04-14 18:59 - 2015-03-12 22:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2015-04-14 18:59 - 2015-03-12 22:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2015-04-14 18:59 - 2015-03-12 22:45 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-04-14 18:59 - 2015-03-12 22:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2015-04-14 18:59 - 2015-03-12 22:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2015-04-14 18:59 - 2015-03-12 22:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2015-04-14 18:59 - 2015-03-12 22:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2015-04-14 18:59 - 2015-03-12 22:33 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-04-14 18:59 - 2015-03-12 22:22 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-04-14 18:59 - 2015-03-12 22:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2015-04-14 18:59 - 2015-03-12 22:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2015-04-14 18:59 - 2015-03-12 22:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2015-04-14 18:59 - 2015-03-04 00:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
    2015-04-14 18:59 - 2015-03-04 00:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
    2015-04-14 18:59 - 2015-03-04 00:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
    2015-04-14 18:59 - 2015-02-24 23:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
    2015-04-11 16:22 - 2015-04-11 16:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
    2015-04-11 16:21 - 2015-04-11 16:21 - 00000000 ____D () C:\Program Files\iPod
    2015-04-11 16:21 - 2015-04-11 16:21 - 00000000 ____D () C:\Program Files (x86)\iTunes
    2015-04-11 16:20 - 2015-04-11 16:22 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
    2015-04-11 16:20 - 2015-04-11 16:22 - 00000000 ____D () C:\Program Files\iTunes
    2015-04-09 22:36 - 2015-05-04 01:39 - 00000020 _____ () C:\Users\Kevin\AppData\Roaming\appdataFr3.bin
    2015-04-09 18:48 - 2015-05-05 21:35 - 00000000 ____D () C:\Program Files (x86)\AppendInit
    2015-04-09 18:47 - 2015-04-09 18:47 - 00000000 ____D () C:\Program Files (x86)\DiscountExt

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-05-07 18:58 - 2013-09-19 20:15 - 00000000 ___RD () C:\Users\Kevin\Dropbox
    2015-05-07 18:58 - 2013-09-19 20:12 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Dropbox
    2015-05-07 18:56 - 2012-05-26 13:09 - 02022224 _____ () C:\Windows\WindowsUpdate.log
    2015-05-07 18:53 - 2012-05-26 01:57 - 00000000 ____D () C:\ProgramData\NVIDIA
    2015-05-07 18:53 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2015-05-07 18:53 - 2009-07-14 00:51 - 00143758 _____ () C:\Windows\setupact.log
    2015-05-07 18:20 - 2012-05-26 01:47 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
    2015-05-07 16:39 - 2009-07-14 00:45 - 00026336 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-05-07 16:39 - 2009-07-14 00:45 - 00026336 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-05-06 21:47 - 2012-05-26 01:59 - 01771232 _____ () C:\Windows\PFRO.log
    2015-05-05 21:50 - 2012-05-26 01:46 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Google
    2015-05-05 21:05 - 2012-09-09 14:39 - 00000000 ____D () C:\Users\Kevin\Freelance Work
    2015-05-02 00:56 - 2012-05-26 02:00 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Skype
    2015-04-25 17:08 - 2013-09-19 20:13 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
    2015-04-17 18:26 - 2013-10-10 18:48 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\vlc
    2015-04-17 00:33 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
    2015-04-17 00:31 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\AppCompat
    2015-04-16 17:51 - 2014-12-10 19:27 - 00000000 ____D () C:\Windows\system32\appraiser
    2015-04-16 17:51 - 2014-05-07 00:28 - 00000000 ___SD () C:\Windows\system32\CompatTel
    2015-04-15 00:11 - 2012-05-26 01:57 - 00766376 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
    2015-04-15 00:10 - 2009-07-14 01:13 - 00766376 _____ () C:\Windows\system32\PerfStringBackup.INI
    2015-04-15 00:09 - 2012-05-26 01:48 - 00000000 ____D () C:\ProgramData\Skype
    2015-04-15 00:08 - 2013-07-25 00:53 - 00000000 ____D () C:\Windows\system32\MRT
    2015-04-15 00:02 - 2012-05-29 01:31 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2015-04-14 20:21 - 2012-05-26 01:47 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
    2015-04-14 20:20 - 2012-05-26 01:47 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2015-04-14 20:20 - 2012-05-26 01:47 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2015-04-13 00:06 - 2012-07-05 20:12 - 00000000 ____D () C:\Users\Kevin\Documents\Adobe
    2015-04-13 00:06 - 2012-05-26 01:47 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Adobe
    2015-04-12 18:47 - 2012-05-26 01:47 - 00000000 ____D () C:\Program Files (x86)\Steam
    2015-04-11 16:20 - 2012-05-26 01:55 - 00000000 ____D () C:\Program Files\Common Files\Apple

    ==================== Files in the root of some directories =======

    2013-02-14 00:22 - 2013-09-15 16:51 - 0000132 _____ () C:\Users\Kevin\AppData\Roaming\Adobe PNG Format CS5 Prefs
    2015-04-09 22:36 - 2015-05-04 01:39 - 0000020 _____ () C:\Users\Kevin\AppData\Roaming\appdataFr3.bin
    2012-07-12 19:45 - 2015-03-30 22:47 - 0001456 _____ () C:\Users\Kevin\AppData\Local\Adobe Save for Web 12.0 Prefs
    2015-04-26 23:53 - 2015-05-05 21:17 - 0000800 _____ () C:\Users\Kevin\AppData\Local\Temp-log.txt
    2015-05-05 21:32 - 2015-05-05 21:32 - 0202144 _____ () C:\ProgramData\1430875785.bdinstall.bin

    Some content of TEMP:
    ====================
    C:\Users\Kevin\AppData\Local\Temp\drm_dialogs.dll
    C:\Users\Kevin\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsombzw.dll
    C:\Users\Kevin\AppData\Local\Temp\epiMsiBootstraper.exe
    C:\Users\Kevin\AppData\Local\Temp\InstallAX.exe
    C:\Users\Kevin\AppData\Local\Temp\InstallPlugin.exe
    C:\Users\Kevin\AppData\Local\Temp\jna4147111756805794808.dll
    C:\Users\Kevin\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u5-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
    C:\Users\Kevin\AppData\Local\Temp\KMPAddedCode_KMP_adpageopen_Step1.exe
    C:\Users\Kevin\AppData\Local\Temp\KMP_3.5.0.77.exe
    C:\Users\Kevin\AppData\Local\Temp\KMP_3.6.0.87.exe
    C:\Users\Kevin\AppData\Local\Temp\KMP_3.7.0.109.exe
    C:\Users\Kevin\AppData\Local\Temp\KMP_3.7.0.113.exe
    C:\Users\Kevin\AppData\Local\Temp\KMP_3.8.0.122.exe
    C:\Users\Kevin\AppData\Local\Temp\namebench.exe
    C:\Users\Kevin\AppData\Local\Temp\nvSCPAPI.dll
    C:\Users\Kevin\AppData\Local\Temp\nvStInst.exe
    C:\Users\Kevin\AppData\Local\Temp\python27.dll
    C:\Users\Kevin\AppData\Local\Temp\Quarantine.exe
    C:\Users\Kevin\AppData\Local\Temp\setacl.exe
    C:\Users\Kevin\AppData\Local\Temp\SkypeSetup.exe
    C:\Users\Kevin\AppData\Local\Temp\sqlite3.dll
    C:\Users\Kevin\AppData\Local\Temp\tcl85.dll
    C:\Users\Kevin\AppData\Local\Temp\tk85.dll
    C:\Users\Kevin\AppData\Local\Temp\utt2924.tmp.exe
    C:\Users\Kevin\AppData\Local\Temp\vlc-2.1.5-win32.exe
    C:\Users\Kevin\AppData\Local\Temp\wlsetup-cvr.exe


    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2015-05-04 00:53

    ==================== End Of Log ============================
     
  6. k6868

    k6868 Thread Starter

    Joined:
    Aug 28, 2006
    Messages:
    34
    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2015 01
    Ran by Kevin at 2015-05-07 18:58:22
    Running from C:\Users\Kevin\Downloads
    Boot Mode: Normal
    ==========================================================


    ==================== Accounts: =============================

    Administrator (S-1-5-21-1375732441-286690794-834080067-500 - Administrator - Disabled)
    Guest (S-1-5-21-1375732441-286690794-834080067-501 - Limited - Disabled)
    Kevin (S-1-5-21-1375732441-286690794-834080067-1000 - Administrator - Enabled) => C:\Users\Kevin

    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: Microsoft Security Essentials (Disabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
    AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
    AS: Microsoft Security Essentials (Disabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
    Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
    Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
    Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
    Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
    Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
    Apple Application Support (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
    Apple Application Support (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
    Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
    Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
    Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version: - Audacity Team)
    Aventail Access Manager (HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\{72552C46-944B-4E16-BBC8-0D85F31C1800}) (Version: 10.70.487 - SonicWALL Inc)
    Aventail Access Manager (x32 Version: 10.70.487 - SonicWALL Inc) Hidden
    Aventail Web Proxy Agent (HKLM-x32\...\{9B0B46B3-10DF-4ADA-9501-0129D784563D}) (Version: 10.70.487 - SonicWALL Inc)
    Aventail Webifiers (HKLM-x32\...\{54D44AD1-A083-48B9-BD6F-AFD517B7C775}) (Version: 10.70.487 - SonicWALL Inc)
    AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
    BIG-IP Edge Client Components (All Users) (HKLM-x32\...\F5 Networks Client Components) (Version: 70.2012.1019.1322 - F5 Networks, Inc.)
    Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1099 - Bitdefender)
    Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
    Cisco Connect (HKLM-x32\...\Cisco Connect) (Version: 1.4.12100.0 - Cisco Consumer Products LLC)
    Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
    Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - )
    D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
    DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
    Dell SMA OPSWAT End Point Control (x32 Version: 15.1.13.12 - Dell Inc.) Hidden
    Diablo III (HKLM-x32\...\Diablo III) (Version: 1.0.3.10057 - Blizzard Entertainment)
    Dota 2 (HKLM-x32\...\Steam App 570) (Version: - )
    Dropbox (HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\Dropbox) (Version: 3.4.4 - Dropbox, Inc.)
    DWA-552 (HKLM-x32\...\{6F6F39E3-D24D-4EEE-9AEA-DEDAF991385D}) (Version: - D-Link)
    EA SPORTS Game Face Browser Plugin 1.8.0.0 (HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\EA SPORTS Game Face Browser Plugin) (Version: 1.8.0.0 - Electronic Arts)
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
    Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
    iCloud (HKLM\...\{CE97E4D3-9F91-4D72-8A29-ED9EA90E5A15}) (Version: 2.1.3.25 - Apple Inc.)
    iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
    Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.710 - Oracle)
    JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
    Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
    Magic Bullet Colorista Free 64-bit (HKLM-x32\...\InstallShield_{C8ECF005-4E5F-455B-BACD-5C9BF4C0DE91}) (Version: 1.0.0 - Red Giant Software)
    Magic Bullet Colorista Free 64-bit (Version: 1.0.0 - Red Giant Software) Hidden
    Magicka (HKLM-x32\...\Steam App 42910) (Version: - Arrowhead Game Studios AB)
    Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
    Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
    Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.7.205.0 - Microsoft Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.31211.0 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
    MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
    Mumble 1.2.6 (HKLM-x32\...\{461A5021-EE14-4E57-9A06-8ABCE9C38FE4}) (Version: 1.2.6 - Thorvald Natvig)
    NVIDIA 3D Vision Controller Driver 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
    NVIDIA 3D Vision Driver 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.88 - NVIDIA Corporation)
    NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
    NVIDIA Graphics Driver 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
    NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
    NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
    PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
    PlayMemories Camera Apps Downloader (HKLM-x32\...\{E4B95A36-0EF2-44C6-B939-5B3DBBC34502}) (Version: 1.1.1975.475 - Sony Network Entertainment International LLC)
    Portal (HKLM-x32\...\Steam App 400) (Version: - Valve)
    Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
    Pro Evolution Soccer 2013 (HKLM-x32\...\{C2523AE6-F335-4D0B-BC15-1C07E4ACE629}) (Version: 1.00.0000 - KONAMI)
    PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
    qBittorrent 3.1.12 (HKLM-x32\...\qBittorrent) (Version: 3.1.12 - The qBittorrent project)
    QuickTime (HKLM-x32\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.)
    SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
    SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
    Skype¬ô 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
    StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
    Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
    Super Monday Night Combat (HKLM-x32\...\Steam App 104700) (Version: - )
    Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
    The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
    TheColourClock (HKLM-x32\...\TheColourClock_is1) (Version: - )
    Unity Web Player (HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
    Videora iPad Converter 6 (HKLM-x32\...\Videora iPad Converter) (Version: 6 - Red Kawa)
    VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
    Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
    WinRAR 4.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Kevin\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Kevin\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Kevin\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Kevin\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-1375732441-286690794-834080067-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Kevin\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

    ==================== Restore Points =========================

    25-04-2015 17:18:04 Windows Update
    29-04-2015 19:08:08 Windows Update
    03-05-2015 19:25:49 Windows Update
    05-05-2015 21:18:47 Removed System Requirements Lab CYRI
    07-05-2015 16:42:33 Windows Update

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2009-07-13 22:34 - 2013-02-27 01:16 - 00000854 ____A C:\Windows\system32\Drivers\etc\hosts
    127.0.0.1 activate.adobe.com

    ==================== Scheduled Tasks (whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

    Task: {1A1DF5AA-F3D6-4AC7-9E02-69993945E7E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-05] (Google Inc.)
    Task: {22CC4F16-8475-4573-8E25-DAA2243C1473} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
    Task: {6A8AEA1F-77F8-486F-8CD1-034E822E85BC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
    Task: {896E0893-0BD2-4E8A-ABCB-3DFA679827F4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
    Task: {B1B2F8BA-FEFD-4CC7-886D-9D6305423887} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {BE26592E-FB5F-4993-AE29-1A0B28765218} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
    Task: {C88F0F2F-B193-4E20-B9E2-D45105D322DB} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
    Task: {E1DDC086-279D-4A84-9AA0-5DDBFC559A7C} - System32\Tasks\AdobeAAMUpdater-1.0-Kevin-PC-Kevin => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
    Task: {F8DCEF73-9E90-44F5-8058-4D3016086CA9} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
    Task: {FA720C06-A965-47D6-BD6F-E80423E2E461} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-05] (Google Inc.)
    Task: {FBB8EEFD-A24D-4BD1-A0F3-4AE128E14759} - System32\Tasks\{B62A3579-9BC4-4C81-9237-628C4B5C3F87} => pcalua.exe -a "C:\Program Files (x86)\DiscountExt\DiscountExt.exe" -c /s /n /i:"ExecuteCommands;UninstallCommands" ""
    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    ==================== Loaded Modules (whitelisted) ==============

    2015-05-05 21:31 - 2013-03-19 12:07 - 00696632 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
    2015-05-05 21:31 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
    2012-05-26 01:57 - 2015-03-13 12:16 - 00118472 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
    2015-03-20 18:12 - 2015-03-20 18:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    2015-03-20 18:12 - 2015-03-20 18:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
    2013-10-31 14:47 - 2013-10-31 14:47 - 00954696 _____ () C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll
    2012-05-26 01:47 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
    2015-03-30 15:49 - 2015-03-27 23:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
    2012-05-26 13:21 - 2009-10-07 16:58 - 00376832 _____ () C:\Program Files (x86)\D-Link\DWA-552 revA\WlanDll.dll
    2012-05-26 13:21 - 2009-09-08 18:04 - 00208896 _____ () C:\Program Files (x86)\D-Link\DWA-552 revA\WlanWPS.dll
    2015-05-07 18:54 - 2015-05-07 18:54 - 00043008 _____ () c:\users\kevin\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsombzw.dll
    2015-03-04 17:45 - 2015-03-04 17:45 - 00750080 _____ () C:\Users\Kevin\AppData\Roaming\Dropbox\bin\libGLESv2.dll
    2015-03-04 17:45 - 2015-03-04 17:45 - 00047616 _____ () C:\Users\Kevin\AppData\Roaming\Dropbox\bin\libEGL.dll
    2015-03-04 17:45 - 2015-03-04 17:45 - 00865280 _____ () C:\Users\Kevin\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
    2015-03-04 17:45 - 2015-03-04 17:45 - 00200704 _____ () C:\Users\Kevin\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
    2015-05-05 21:50 - 2015-04-27 22:07 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libglesv2.dll
    2015-05-05 21:50 - 2015-04-27 22:07 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libegl.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

    AlternateDataStreams: C:\Users\Kevin\Downloads\adwcleaner_4.203.exe:BDU
    AlternateDataStreams: C:\Users\Kevin\AppData\Local\Temp:dSVjrr8CpKGtXmu7RLrW
    AlternateDataStreams: C:\Users\Kevin\AppData\Local\Temp:xOEwiVRILkhnwEWII3BY
    AlternateDataStreams: C:\Users\Kevin\AppData\Local\Temp:YyUFkanxlSBhJRW1NQTKDjfwxw

    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== EXE Association (whitelisted) ===============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== Internet Explorer trusted/restricted ===============

    (If an entry is included in the fixlist, the associated entry will be removed from the registry.)

    IE trusted site: HKU\S-1-5-21-1375732441-286690794-834080067-1000\...\randstadgroup.ca -> hxxps://vpn.randstadgroup.ca


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-1375732441-286690794-834080067-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
    DNS Servers: 8.8.8.8 - 8.8.4.4

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)


    ==================== FirewallRules (whitelisted) ===============

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

    FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
    FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
    FirewallRules: [{F58CC017-E8EA-456A-908D-18170E7C753E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{9E3953EF-FC53-4ED5-BA31-F4B4CEC64930}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{277B1224-F224-41E2-BF0B-C62D007C9DF6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
    FirewallRules: [{3125AAD4-DF53-4712-BF3E-E2E147703BB8}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
    FirewallRules: [{5FDEE550-88E6-4849-A183-37F18206AAFC}] => (Allow) svchost.exe
    FirewallRules: [{A60A64B0-E3DF-47F4-8EAD-2BC2D8630460}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
    FirewallRules: [{0DDDD2B2-CAC4-40D4-88D6-5BD1B0F6C7BC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
    FirewallRules: [{DF532F4D-C751-4212-80F9-DEA4C8F87FDF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    FirewallRules: [{48D76C9E-2377-474C-B2E3-3501687AAB71}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    FirewallRules: [{10D73C40-D760-4B1C-8114-4A547C96C8A1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
    FirewallRules: [{A489B6E9-B75A-4BC6-9803-48219F471E88}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
    FirewallRules: [{56DBD278-52B0-4BBA-A1EB-B0E23CB08F12}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
    FirewallRules: [{3B074EC9-8A04-4784-9172-4C8322C4986F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
    FirewallRules: [{04B7D81B-0558-41A9-8192-DF0D274C03C6}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
    FirewallRules: [{2663F5FE-993E-4D86-BD81-377F5DD4AA7A}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
    FirewallRules: [TCP Query User{E4D7A44A-DEA4-4BE9-9E7E-8D25E01D922B}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
    FirewallRules: [UDP Query User{90089BE2-A354-47EF-8784-96BB576A0DB1}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
    FirewallRules: [{DF7B9347-9273-459F-AF27-48971762A51F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
    FirewallRules: [{64D1CEAA-AB2B-493B-AA24-E2BA856FCDC6}] => (Allow) LPort=2869
    FirewallRules: [{445EBC56-72EA-4929-9AB9-39D962CCC09C}] => (Allow) LPort=1900
    FirewallRules: [{1E5A86ED-4925-4536-B165-C6A61F64EC0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
    FirewallRules: [{C37DFB57-2FE8-4416-A5F1-0983FA619C0A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
    FirewallRules: [TCP Query User{123AA0E7-B396-43F0-9371-EFBA0CA797DA}C:\programdata\battle.net\agent\agent.998\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.998\agent.exe
    FirewallRules: [UDP Query User{CC7B2064-A3FD-4574-854C-7720475A18C9}C:\programdata\battle.net\agent\agent.998\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.998\agent.exe
    FirewallRules: [{64562051-679B-4AE8-A8C1-F83367DA00DF}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
    FirewallRules: [{2EBCF1B7-5D1D-4A43-8759-1F3E7BB4256E}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
    FirewallRules: [TCP Query User{6AEFA365-3125-418E-9618-2D593A67DC0D}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe] => (Allow) C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe
    FirewallRules: [UDP Query User{B506F476-2C9E-46CF-9B35-268F142D0308}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe] => (Allow) C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe
    FirewallRules: [TCP Query User{0650EC9A-2606-4EA9-BB5C-5ADA498C9574}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe
    FirewallRules: [UDP Query User{00169D65-8ADE-4AFF-BF19-117E82075934}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe
    FirewallRules: [TCP Query User{1C9FA14B-8B0B-4EE0-977E-56D287454D79}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
    FirewallRules: [UDP Query User{4756839B-3CB2-4EDA-BF40-DA6B72AB3437}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
    FirewallRules: [TCP Query User{436F0543-A083-43D4-B6D7-F7D86BAB5439}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
    FirewallRules: [UDP Query User{CDE20C6B-58C2-4C6E-8EA1-92B914A9A183}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
    FirewallRules: [TCP Query User{352CF245-FF55-4D45-A58E-D44BF73B68E5}C:\program files (x86)\steam\steamapps\diggity_do\team fortress 2\hl2.exe] => (Allow) C:\program files (x86)\steam\steamapps\diggity_do\team fortress 2\hl2.exe
    FirewallRules: [UDP Query User{29FBF121-8742-4B60-86B2-C80EC5FB38A4}C:\program files (x86)\steam\steamapps\diggity_do\team fortress 2\hl2.exe] => (Allow) C:\program files (x86)\steam\steamapps\diggity_do\team fortress 2\hl2.exe
    FirewallRules: [TCP Query User{06A013FB-ABB7-46A2-B1A1-7B71F330B453}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
    FirewallRules: [UDP Query User{4770E3CE-7F2C-4358-843A-7752785078CB}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
    FirewallRules: [TCP Query User{41BAB171-F28C-4BA8-8AAA-75683970758A}C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe
    FirewallRules: [UDP Query User{E9AF572F-9591-4F83-A7CF-196BDF2F5CBE}C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe
    FirewallRules: [{A25FD4C3-BA59-46AF-A96E-E88D16AB8813}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SuperMNC\UberLauncher.exe
    FirewallRules: [{01158EE6-A021-4D29-9C5D-AB2BDA46DC0E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SuperMNC\UberLauncher.exe
    FirewallRules: [{E0E2A280-A0F2-4383-B036-94B7259D723A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
    FirewallRules: [{9935D4B7-DD8E-4E3A-AB0C-AB8E5C8645A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
    FirewallRules: [TCP Query User{17A3ABF1-A0F3-4588-8410-B512BE86692A}C:\program files (x86)\konami\pro evolution soccer 2013\pes2013.exe] => (Allow) C:\program files (x86)\konami\pro evolution soccer 2013\pes2013.exe
    FirewallRules: [UDP Query User{0EA1D993-4669-4960-B998-3D36213DFAAF}C:\program files (x86)\konami\pro evolution soccer 2013\pes2013.exe] => (Allow) C:\program files (x86)\konami\pro evolution soccer 2013\pes2013.exe
    FirewallRules: [{D7E7D8E4-C74F-42B8-A911-C81C5DAFA016}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\skyrim\SkyrimLauncher.exe
    FirewallRules: [{B16E5C14-87D9-419C-862D-86C8E8C46E8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\skyrim\SkyrimLauncher.exe
    FirewallRules: [TCP Query User{D190A9D2-BBE7-47BC-B268-ECDBA18F128C}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe
    FirewallRules: [UDP Query User{ED4AFD11-F894-432C-BA2C-7283FFFACB6E}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe
    FirewallRules: [{59964636-D32C-4FC1-8CC2-7DC2959EDBDB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
    FirewallRules: [{525A8B40-1203-4993-B965-6C4A9FA6F834}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
    FirewallRules: [{F35D74BD-A163-49C5-9C7A-189E4266C37D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
    FirewallRules: [{63498B93-2208-40C0-A0B6-C8CC4AE142D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
    FirewallRules: [{C9C7BF62-5AD2-41D4-87CF-17B6DA1F3B1E}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
    FirewallRules: [{BEF72603-C45A-4250-B884-4B7B31F2C454}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
    FirewallRules: [TCP Query User{D064610C-2542-44E1-B91B-4A908217259A}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [UDP Query User{A2DF7FE8-F632-4FFA-B29E-ACE0E0E997E4}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [TCP Query User{EE7C718D-6CEE-4C8B-B0E4-CDB73D827D0C}C:\program files (x86)\adobe\adobe dreamweaver cs5\dreamweaver.exe] => (Allow) C:\program files (x86)\adobe\adobe dreamweaver cs5\dreamweaver.exe
    FirewallRules: [UDP Query User{E749D673-7383-486B-8796-873D89E7EE1E}C:\program files (x86)\adobe\adobe dreamweaver cs5\dreamweaver.exe] => (Allow) C:\program files (x86)\adobe\adobe dreamweaver cs5\dreamweaver.exe
    FirewallRules: [{4230AC9F-69AE-4817-88FE-2B046BF34549}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
    FirewallRules: [{87895950-D596-495C-B5C3-8ADB232E4FC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
    FirewallRules: [{48F91335-91D9-4DBD-8D5F-354C1D8D4B57}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
    FirewallRules: [{B75AC06F-81CC-4B24-B336-0B44C4C0FB88}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
    FirewallRules: [TCP Query User{8D6C6638-3C1A-48D2-9404-C917430F7AA7}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
    FirewallRules: [UDP Query User{8D8ECD31-19EC-4EBE-92C1-4065891BCD51}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
    FirewallRules: [{649377B3-F320-4292-B1BA-2D155E51598D}] => (Allow) C:\Users\Kevin\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{603093A8-19CA-4179-A3E8-0E048C50679D}] => (Allow) C:\Users\Kevin\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{DE26009B-67B1-4D16-91CB-FD2CD59774F8}] => (Allow) C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe
    FirewallRules: [{30183DE9-B00B-4279-971B-BF2BC7CF97C0}] => (Allow) C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe
    FirewallRules: [TCP Query User{94098409-7ECE-485F-B54D-5955C8CAA74D}C:\users\kevin\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\kevin\appdata\roaming\dropbox\bin\dropbox.exe
    FirewallRules: [UDP Query User{70DC1780-5D4A-4409-A1BD-8D55DA298331}C:\users\kevin\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\kevin\appdata\roaming\dropbox\bin\dropbox.exe
    FirewallRules: [TCP Query User{3D2B7807-7B90-48DC-AC16-01C40800DB3C}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
    FirewallRules: [UDP Query User{32B974A4-13D0-4FEB-A3CB-E3E83076C8EB}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
    FirewallRules: [TCP Query User{700E38F0-5A6E-4C32-8BB7-64DBA7224A7F}C:\users\kevin\documents\coinyecoin-qt-win32\coinyecoin-qt.exe] => (Allow) C:\users\kevin\documents\coinyecoin-qt-win32\coinyecoin-qt.exe
    FirewallRules: [UDP Query User{7C2E23E6-B8EA-450D-AABD-4EC51D48A682}C:\users\kevin\documents\coinyecoin-qt-win32\coinyecoin-qt.exe] => (Allow) C:\users\kevin\documents\coinyecoin-qt-win32\coinyecoin-qt.exe
    FirewallRules: [{14C4AA9C-2327-48C6-8480-F7A0B36A4442}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
    FirewallRules: [{FDB72C2B-40E2-47A0-A088-6FADBE1EAAD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
    FirewallRules: [{77A9142C-6939-49B3-AE8C-61C15BCEBF73}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
    FirewallRules: [{4761C800-1FE4-40C8-A13A-8B78F1DEF44F}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
    FirewallRules: [{0F6BF377-005E-4FE7-9C4D-FB4C7A71911D}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{C338E9A3-EF93-444F-A803-7E087F35D44F}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{CA193AEC-355B-4EDF-B9B6-85461F0136A7}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
    FirewallRules: [{0376E0AC-6257-450D-B867-84C2D7008FB6}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
    FirewallRules: [{C39C0098-E008-415B-BE0F-90E336A77E1F}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{4E0F6598-8671-4DFD-929B-B2D691C29F74}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{C4CAE7BB-7B60-4E5F-ADEC-630294132355}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    FirewallRules: [{72D5FE8B-4FA2-424A-A595-F430367B3D07}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
    FirewallRules: [{2AD08F1D-E7B8-4BA3-B831-156871FFDF78}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    FirewallRules: [{F15EB7CF-2C4B-4273-B0FA-3B84FA6923E4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
    FirewallRules: [{C23E3079-1EC4-475A-9F84-D5E099B2490E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{8ABAA223-EB71-4FD7-AF69-5AB046F4FAC7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{DBAB6C79-18DA-4C5D-B27A-42EB0CF7FD22}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
    FirewallRules: [{96F1048D-5560-4B9E-838B-B4D95A631457}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
    FirewallRules: [{9849F8B5-FE36-48EE-ABF4-142178AFFDB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
    FirewallRules: [{36FA49C5-2870-4768-9987-C833D43B29D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
    FirewallRules: [{11AF7409-4D34-4E3A-AEF0-7E65EFD817A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SuperMNC\Binaries\Win32\SuperMNCGameClient.exe
    FirewallRules: [{28847551-E589-4E4D-BBA0-39CEB6893F7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SuperMNC\Binaries\Win32\SuperMNCGameClient.exe
    FirewallRules: [{75F45E8D-BDCA-410B-9A0F-5C0AE9F2F53A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    FirewallRules: [{F2EF933E-1D31-4152-9401-E2C502FFEF56}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    FirewallRules: [{4E8791BA-4A3A-4410-9B44-725F30BEADDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
    FirewallRules: [{20068038-7660-40CD-9346-F882D52F3CC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
    FirewallRules: [{18716F1D-4170-4BD3-818F-C54BF6170A94}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
    FirewallRules: [{9CD33B78-86F0-47D9-A96E-FBB6CFCF60F1}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
    FirewallRules: [{1F44DFAA-A6EF-4FE6-A00A-B22DF7FAEEE2}] => (Allow) C:\Program Files\iTunes\iTunes.exe
    FirewallRules: [{52EE9C21-9575-428D-9AE4-194029BD4D07}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

    ==================== Faulty Device Manager Devices =============

    Name: Universal Serial Bus (USB) Controller
    Description: Universal Serial Bus (USB) Controller
    Class Guid:
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

    Name: D-Link DWA-552 XtremeN Desktop Adapter
    Description: D-Link DWA-552 XtremeN Desktop Adapter
    Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
    Manufacturer: D-Link Corporation
    Service: athr
    Problem: : This device is disabled. (Code 22)
    Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

    Name: SM Bus Controller
    Description: SM Bus Controller
    Class Guid:
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (05/07/2015 06:56:45 PM) (Source: SideBySide) (EventID: 80) (User: )
    Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
    A component version required by the application conflicts with another component version already active.
    Conflicting components are:.
    Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
    Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

    Error: (05/07/2015 06:53:57 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
    Faulting module name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
    Exception code: 0xc0000005
    Fault offset: 0x00000000004e920f
    Faulting process id: 0x994
    Faulting application start time: 0xNvStreamNetworkService.exe0
    Faulting application path: NvStreamNetworkService.exe1
    Faulting module path: NvStreamNetworkService.exe2
    Report Id: NvStreamNetworkService.exe3

    Error: (05/07/2015 00:08:27 AM) (Source: SideBySide) (EventID: 63) (User: )
    Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
    The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

    Error: (05/06/2015 10:48:09 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
    The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

    Error: (05/06/2015 09:48:54 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
    Faulting module name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
    Exception code: 0xc0000005
    Fault offset: 0x00000000004e920f
    Faulting process id: 0xaf0
    Faulting application start time: 0xNvStreamNetworkService.exe0
    Faulting application path: NvStreamNetworkService.exe1
    Faulting module path: NvStreamNetworkService.exe2
    Report Id: NvStreamNetworkService.exe3

    Error: (05/06/2015 00:42:08 AM) (Source: NvStreamSvc) (EventID: 2001) (User: )
    Description: NvStreamSvcSSAU restarted too many times in a short period. Aborting. [0]

    Error: (05/05/2015 08:30:06 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
    Faulting module name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
    Exception code: 0xc0000005
    Fault offset: 0x00000000004e920f
    Faulting process id: 0xa00
    Faulting application start time: 0xNvStreamNetworkService.exe0
    Faulting application path: NvStreamNetworkService.exe1
    Faulting module path: NvStreamNetworkService.exe2
    Report Id: NvStreamNetworkService.exe3

    Error: (05/04/2015 00:32:37 AM) (Source: SideBySide) (EventID: 63) (User: )
    Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
    The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

    Error: (05/03/2015 07:45:41 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
    The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

    Error: (05/03/2015 07:15:21 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
    Faulting module name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
    Exception code: 0xc0000005
    Fault offset: 0x00000000004e920f
    Faulting process id: 0xc1c
    Faulting application start time: 0xNvStreamNetworkService.exe0
    Faulting application path: NvStreamNetworkService.exe1
    Faulting module path: NvStreamNetworkService.exe2
    Report Id: NvStreamNetworkService.exe3


    System errors:
    =============
    Error: (05/07/2015 06:52:21 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
    Description: WLAN Extensibility Module has stopped unexpectedly.

    Module Path: C:\Windows\System32\bcmihvsrv64.dll

    Error: (05/07/2015 06:52:21 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
    Description: WLAN Extensibility Module has stopped unexpectedly.

    Module Path: C:\Windows\System32\bcmihvsrv64.dll

    Error: (05/07/2015 06:52:17 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
    Description: WLAN Extensibility Module has stopped unexpectedly.

    Module Path: C:\Windows\System32\bcmihvsrv64.dll

    Error: (05/07/2015 06:52:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The Windows Search service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

    Error: (05/07/2015 06:51:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

    Error: (05/07/2015 06:51:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The iPod Service service terminated unexpectedly. It has done this 1 time(s).

    Error: (05/07/2015 06:51:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

    Error: (05/07/2015 06:51:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

    Error: (05/07/2015 06:51:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The NVIDIA Streamer Service service terminated unexpectedly. It has done this 1 time(s).

    Error: (05/07/2015 06:51:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The NVIDIA Network Service service terminated unexpectedly. It has done this 1 time(s).


    Microsoft Office Sessions:
    =========================
    Error: (05/07/2015 06:56:45 PM) (Source: SideBySide) (EventID: 80) (User: )
    Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Kevin\Downloads\SoftonicDownloader_for_ds3-tool.exe

    Error: (05/07/2015 06:53:57 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920f99401d08918a57f9ca2C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exef0c13606-f50b-11e4-9b06-c0c1c06c8807

    Error: (05/07/2015 00:08:27 AM) (Source: SideBySide) (EventID: 63) (User: )
    Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\program files (x86)\common files\adobe air\Versions\1.0\Adobe AIR.dllc:\program files (x86)\common files\adobe air\Versions\1.0\Adobe AIR.dll3

    Error: (05/06/2015 10:48:09 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\program files (x86)\common files\adobe air\Versions\1.0\Adobe AIR.dllc:\program files (x86)\common files\adobe air\Versions\1.0\Adobe AIR.dll3

    Error: (05/06/2015 09:48:54 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920faf001d08867ee555bacC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe3790b500-f45b-11e4-8b7f-c86000c4aaa2

    Error: (05/06/2015 00:42:08 AM) (Source: NvStreamSvc) (EventID: 2001) (User: )
    Description: NvStreamSvcSSAU restarted too many times in a short period. Aborting. [0]

    Error: (05/05/2015 08:30:06 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920fa0001d08793c86a7cfdC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe0ab8daa8-f387-11e4-a2ec-c86000c4aaa2

    Error: (05/04/2015 00:32:37 AM) (Source: SideBySide) (EventID: 63) (User: )
    Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\program files (x86)\common files\adobe air\Versions\1.0\Adobe AIR.dllc:\program files (x86)\common files\adobe air\Versions\1.0\Adobe AIR.dll3

    Error: (05/03/2015 07:45:41 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\program files (x86)\common files\adobe air\Versions\1.0\Adobe AIR.dllc:\program files (x86)\common files\adobe air\Versions\1.0\Adobe AIR.dll3

    Error: (05/03/2015 07:15:21 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920fc1c01d085f6fbb5ac9fC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe44eecba4-f1ea-11e4-aa26-c86000c4aaa2


    ==================== Memory info ===========================

    Processor: Intel(R) Core(TM) i5-3550 CPU @ 3.30GHz
    Percentage of memory in use: 27%
    Total physical RAM: 8147.59 MB
    Available physical RAM: 5925.18 MB
    Total Pagefile: 16293.37 MB
    Available Pagefile: 13816.47 MB
    Total Virtual: 8192 MB
    Available Virtual: 8191.81 MB

    ==================== Drives ================================

    Drive c: () (Fixed) (Total:465.66 GB) (Free:40.56 GB) NTFS
    Drive d: (SimPro Studio) (CDROM) (Total:1.45 GB) (Free:0 GB) UDF
    Drive e: (PES2013_R1) (CDROM) (Total:5.78 GB) (Free:0 GB) CDFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 07306A22)
    Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================
     
  7. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    k6868,
    Sorry for the dealy.
    (I was running an image backup of my Hard Drive)
    I can't recommend Bitdefender.
    In a couple instances, the paid version broke the Windows system upon an Uninstall.
    (One of them was mine).
    Bitdefender is very aggressive, and it was difficult to manage which URLs you are allowed to visit.
    ------------------------------------------------
    Remove Programs Using Control Panel
    From Start, Control Panel, click on Programs and Features
    Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:

    uTorrent
    qBittorrent 3.1.12
    Java 7 Update 71
    Bitdefender Antivirus Free Edition

    Take extra care in answering questions posed by any Uninstaller.
    -----------------------------------------------------------
    REBOOT (RESTART) Your Machine
    --------------------------------------------------------
    Run A Fix With FRST
    Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
    (Both on the Desktop is OK, or both in the same folder elsewhere)

    Run FRST64 and press the FIX button just once, and wait. DO NOT PRESS THE SCAN BUTTON.
    If for some reason the tool needs a restart, please make sure you let the system restart normally.
    The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
    When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.

    askey127
     

    Attached Files:

  8. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1147369

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice