1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Regular crashes on my Pc

Discussion in 'Windows 7' started by Maccas123, Jun 12, 2013.

Thread Status:
Not open for further replies.
Advertisement
  1. Maccas123

    Maccas123 Thread Starter

    Joined:
    Jun 12, 2013
    Messages:
    5
    Hi everyone, I'm new here so bear with me if my information isn't too complete in the first post.

    Basically for the last few days, my computer has constantly crashed while playing the same game, but hasn't during regular usage. Some days it can go all day without crashing, others it will crash 2-3 times an hour before I give up and head to bed. I have no idea where to begin, but it simply turns off the PC, no blue screen until I turn it on again, then upon reboot, begins a system repair. I wrote down the BSoD details from the latest crash.


    Stop: c000021a (fatal system error)
    Status of 0x00000000 (0xc0000001 0x001003f0)

    I'm using a Toshiba Aspire 4741G laptop if that's any help.

    Really need someones help!

    Thanks in advance,
    Chris
     
  2. Mark1956

    Mark1956

    Joined:
    May 7, 2011
    Messages:
    14,142
    Please follow this small guide to attach your minidump files so they can be analysed.


    First locate your minidump files, open Windows Explorer and click on the C: drive in the left pane, in the right pane look down the list of folders and double click on Windows to view its contents. NOTE: If your operating system is installed under a different drive letter then look there. Scroll down the contents of the Windows folder and look for a folder called minidump and double click on it. You should now see the minidump files which will have a .dmp extension.

    Zip up at least 6 of the most recent files into one zip folder (if there are less then just zip up what you have).


    NOTE: To zip up the files in Windows (all versions). Right click the file, click on Send To, and then click
    Compressed (zipped) Folder. That will create a zip folder containing a copy of the file, you should see it appear.


    If there is more than one .dmp file click on the first one, hold down the shift key and then click on the last one. That should highlight all the files. Then right click in the highlighted area, click on Send To, and then click Compressed (zipped) Folder.




    • Below the Message Box click on Go Advanced. Then scroll down until you see a button, Manage Attachments. Click on that and a new window opens.
    • Click on the Browse button, find the zip folder you made earlier and click on it so it becomes highlighted and click on Open.
    • Now click on the Upload button. Wait for the Upload to complete, it will appear just below the Browse box.
    • When done, click on the Close this window button at the top of the page.
    • Enter your message-text in the message box, then click on Submit Message/Reply.
     
  3. Maccas123

    Maccas123 Thread Starter

    Joined:
    Jun 12, 2013
    Messages:
    5
    There's a copy of the two most recent, and only, minidump files I found. Is there any other information regarding my system or programs I'm using that would help you further?
     

    Attached Files:

  4. Mark1956

    Mark1956

    Joined:
    May 7, 2011
    Messages:
    14,142
    That is actually quite a rare error code on those crash dumps, something on your system is clearly causing a problem and the crash dumps don't pinpoint it or relate it to the game.

    Please download Farbar Recovery Scan Tool and save it to your desktop. Do not get tempted to download Regclean Pro.

    Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

    • Double-click to run it. When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
    • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
     
  5. Maccas123

    Maccas123 Thread Starter

    Joined:
    Jun 12, 2013
    Messages:
    5
    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-06-2013 04
    Ran by Chris (administrator) on 13-06-2013 09:57:00
    Running from C:\Users\Chris\Downloads
    Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
    Internet Explorer Version 9
    Boot Mode: Normal

    ==================== Processes (Whitelisted) =================

    (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    (Microsoft Corporation) C:\Windows\system32\WLANExt.exe
    () C:\ProgramData\BrowserProtect\2.6.1070.41\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
    (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
    (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
    (Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
    (Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
    (Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    (NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
    (NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
    () C:\ProgramData\BrowserProtect\2.6.1070.41\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
    (Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
    (COMPANYVERS_NAME) C:\PROGRA~2\UTILIT~2\bar\1.bin\49barsvc.exe
    (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
    (Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
    (Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
    (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
    (Microsoft Corporation) c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
    (Microsoft Corporation) c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    (Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
    (Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    (Spotify Ltd) C:\Users\Chris\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
    (Spotify Ltd) C:\Users\Chris\AppData\Roaming\Spotify\spotify.exe
    (NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
    (Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
    (VER_COMPANY_NAME) C:\Program Files (x86)\UtilityChest_49\bar\1.bin\49brmon.exe
    (Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
    (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
    (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
    (Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe

    ==================== Registry (Whitelisted) ==================

    HKLM\...\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-23] (Alcor Micro Corp.)
    HKLM\...\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-02-02] (Egis Technology Inc.)
    HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [10038304 2010-01-30] (Realtek Semiconductor)
    HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [1842472 2009-09-18] (Synaptics Incorporated)
    HKLM\...\Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [861216 2010-04-23] (Acer Incorporated)
    HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [446392 2012-04-04] (Adobe Systems Incorporated)
    HKCU\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2010-05-07] (Google Inc.)
    HKCU\...\Run: [Spotify Web Helper] "C:\Users\Chris\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1104384 2013-06-12] (Spotify Ltd)
    HKCU\...\Run: [AdobeBridge] [x]
    HKCU\...\Run: [Spotify] "C:\Users\Chris\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart [4643328 2013-06-12] (Spotify Ltd)
    MountPoints2: {9bb71bfd-50a9-11e2-af04-806e6f6e6963} - D:\Installer.exe
    HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [35696 2009-02-28] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k [260608 2010-03-09] (NewTech Infosystems, Inc.)
    HKLM-x32\...\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED [588648 2009-07-25] (Symantec Corporation)
    HKLM-x32\...\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [337264 2010-02-02] (Egis Technology Inc.)
    HKLM-x32\...\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d [201512 2009-12-25] (Egis Technology Inc.)
    HKLM-x32\...\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" [401192 2009-12-25] (Egis Technology Inc.)
    HKLM-x32\...\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe [968272 2010-06-23] (Dritek System Inc.)
    HKLM-x32\...\Run: [Utility Chest Search Scope Monitor] "C:\PROGRA~2\UTILIT~2\bar\1.bin\49srchmn.exe" /m=2 /w /h [42536 2013-01-24] (MindSpark)
    HKLM-x32\...\Run: [UtilityChest_49 Browser Plugin Loader] C:\PROGRA~2\UTILIT~2\bar\1.bin\49brmon.exe [30096 2013-01-24] (VER_COMPANY_NAME)
    HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [1073312 2012-03-09] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
    HKU\david.david-PC\...\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent [1632680 2013-03-15] (Valve Corporation)
    HKU\david.david-PC\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2010-05-07] (Google Inc.)
    HKU\david.david-PC\...\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2013-02-03] ()
    HKU\david.david-PC\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18678376 2013-04-19] (Skype Technologies S.A.)
    HKU\david.david-PC\...\Run: [Facebook Update] "C:\Users\david.david-PC\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2013-02-12] (Facebook Inc.)
    HKU\david.david-PC\...\Winlogon: [Shell] explorer.exe,C:\Users\david.david-PC\AppData\Roaming\skype.dat <==== ATTENTION

    ==================== Internet (Whitelisted) ====================

    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.iminent.com/?appId=1F9C280A-06F4-4B83-A93E-1FCB628410F9
    HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0c09&m=aspire_4741&r=273612127726l0498z135v47913439
    URLSearchHook: (No Name) - {7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a} - No File
    SearchScopes: HKLM-x32 - {84dc9f6c-c9a5-4c64-ab67-d6ef60f963c8} URL = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^ZO^xdm038^YY^au&si=pd&ptb=D7560EF5-3F77-42FB-9BE8-8D92519E0A97&ind=2013032207&n=77fc6f0f&psa=&st=sb&searchfor={searchTerms}
    SearchScopes: HKCU - {84dc9f6c-c9a5-4c64-ab67-d6ef60f963c8} URL = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^ZO^xdm038^YY^au&si=pd&ptb=D7560EF5-3F77-42FB-9BE8-8D92519E0A97&ind=2013020906&n=77fc42ea&psa=&st=sb&searchfor={searchTerms}
    BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL No File
    BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL (Microsoft Corporation)
    BHO-x32: Search Assistant BHO - {06e05b40-77fa-40b6-9077-ed1a7577b1ef} - C:\Program Files (x86)\UtilityChest_49\bar\1.bin\49SrcAs.dll (MindSpark)
    BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    BHO-x32: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll No File
    BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.7.2\bh\BabylonToolbar.dll (Babylon BHO)
    BHO-x32: Toolbar BHO - {58f7b5ca-1162-42e8-8bbc-d543b4edd780} - C:\PROGRA~2\UTILIT~2\bar\1.bin\49bar.dll (MindSpark)
    BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
    BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
    BHO-x32: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
    BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL (Microsoft Corporation)
    BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.10.0\bh\delta.dll (Delta-search.com)
    BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    BHO-x32: Yontoo - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
    Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.7.2\BabylonToolbarTlbr.dll (Babylon Ltd.)
    Toolbar: HKLM-x32 - Utility Chest - {cf67755f-9265-449c-87cf-b945519e073b} - C:\Program Files (x86)\UtilityChest_49\bar\1.bin\49bar.dll (MindSpark)
    Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.10.0\deltaTlbr.dll (Delta-search.com)
    Toolbar: HKCU - No Name - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - No File
    Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    Toolbar: HKCU - No Name - {CF67755F-9265-449C-87CF-B945519E073B} - No File
    Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
    Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
    Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
    Tcpip\Parameters: [DhcpNameServer] 10.1.1.1

    Chrome:
    =======
    CHR RestoreOnStartup: "hxxp://www.google.com/"
    CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:eek:riginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
    CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
    CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\PepperFlash\pepflashplayer.dll ()
    CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
    CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\ppGoogleNaClPluginChrome.dll ()
    CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\pdf.dll ()
    CHR Plugin: (McAfee SiteAdvisor) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.60.126.1_0\McChPlg.dll No File
    CHR Plugin: (Adobe Acrobat) - c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
    CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
    CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
    CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
    CHR Plugin: (MindSpark Toolbar Platform Plugin Stub) - C:\Program Files (x86)\UtilityChest_49\bar\1.bin\NP49Stub.dll (MindSpark)
    CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    CHR Plugin: (McAfee SecurityCenter) - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL No File
    CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
    CHR Extension: (Google Docs) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
    CHR Extension: (Google Drive) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
    CHR Extension: (YouTube) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
    CHR Extension: (uTorrentControl_v6) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp\10.16.2.509_0
    CHR Extension: (Google Search) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
    CHR Extension: (AdBlock) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.63_0
    CHR Extension: (Gmail) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

    ==================== Services (Whitelisted) =================

    R2 BrowserProtect; C:\ProgramData\BrowserProtect\2.6.1070.41\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe [2554472 2013-01-05] ()
    R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
    R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
    S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-02-02] (Egis Technology Inc.)
    R2 UtilityChest_49Service; C:\PROGRA~2\UTILIT~2\bar\1.bin\49barsvc.exe [42504 2013-01-24] (COMPANYVERS_NAME)

    ==================== Drivers (Whitelisted) ====================

    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
    R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
    S3 mfehidk01; \Device\mfehidk01.sys [x]

    ==================== NetSvcs (Whitelisted) ===================


    ==================== One Month Created Files and Folders ========

    2013-06-13 09:56 - 2013-06-13 09:56 - 01920280 ____A (Farbar) C:\Users\Chris\Downloads\FRST64.exe
    2013-06-13 09:56 - 2013-06-13 09:56 - 00000000 ____D C:\FRST
    2013-06-12 23:55 - 2013-06-12 23:55 - 00903072 ____A (Oracle Corporation) C:\Users\Chris\Downloads\chromeinstall-7u21 (1).exe
    2013-06-12 23:52 - 2013-04-04 05:35 - 00095648 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
    2013-06-12 23:52 - 2013-04-04 05:30 - 00174496 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
    2013-06-12 23:52 - 2013-04-04 05:29 - 00174496 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
    2013-06-12 23:51 - 2013-06-12 23:52 - 00003915 ____A C:\Windows\SysWOW64\jupdate-1.7.0_21-b11.log
    2013-06-12 23:50 - 2013-06-12 23:50 - 00903072 ____A (Oracle Corporation) C:\Users\Chris\Downloads\chromeinstall-7u21.exe
    2013-06-12 23:39 - 2013-06-12 23:39 - 00037790 ____A C:\Users\Chris\Desktop\050713-28189-01.zip
    2013-06-12 23:37 - 2013-06-12 23:37 - 01110476 ____A C:\Users\Chris\Downloads\7z920.exe
    2013-06-12 23:37 - 2013-06-12 23:37 - 00000000 ____D C:\Program Files (x86)\7-Zip
    2013-06-12 16:41 - 2013-06-12 16:41 - 00001113 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2013-06-12 16:41 - 2013-06-12 16:41 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Malwarebytes
    2013-06-12 16:41 - 2013-06-12 16:41 - 00000000 ____D C:\ProgramData\Malwarebytes
    2013-06-12 16:41 - 2013-06-12 16:41 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2013-06-12 16:41 - 2013-04-04 14:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
    2013-06-12 16:38 - 2013-06-12 16:38 - 01409000 ____A ( ) C:\Users\Chris\Downloads\hwmonitor_1.22-setup.exe
    2013-06-12 16:38 - 2013-06-12 16:38 - 00000934 ____A C:\Users\Public\Desktop\CPUID HWMonitor.lnk
    2013-06-12 16:38 - 2013-06-12 16:38 - 00000000 ____D C:\Program Files\CPUID
    2013-06-12 16:37 - 2013-06-12 16:38 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300.exe
    2013-06-12 02:01 - 2013-04-20 14:02 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Microsoft Help
    2013-06-12 02:00 - 2013-06-12 02:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
    2013-06-12 01:30 - 2013-06-12 01:30 - 00262144 ____A C:\Windows\Minidump\061213-29484-01.dmp
    2013-06-04 20:10 - 2013-06-04 20:15 - 42172104 ____A (peppy) C:\Users\Chris\Downloads\osu!install.exe
    2013-05-28 19:19 - 2013-05-28 19:19 - 00002106 ____A C:\Users\Chris\Desktop\Path of Exile.lnk
    2013-05-27 19:12 - 2013-05-27 19:29 - 00000000 ____D C:\Program Files (x86)\Grinding Gear Games
    2013-05-27 16:55 - 2013-05-27 17:55 - 00000000 ____D C:\Users\Chris\Documents\My Games
    2013-05-27 16:46 - 2013-05-27 16:47 - 07032832 ____A C:\Users\Chris\Downloads\PathOfExileInstaller.msi
    2013-05-27 12:00 - 2013-05-27 12:00 - 00000000 ____A C:\Windows\SysWOW64\sho7185.tmp
    2013-05-27 10:15 - 2013-05-27 10:43 - 01305907 ____A C:\Users\Chris\Downloads\Allday - A Skateboard Soiree E.P.zip
    2013-05-27 10:15 - 2013-05-27 10:43 - 00075860 ____A C:\Users\Chris\Downloads\Allday - SOON I'LL BE IN CALI.zip
    2013-05-27 10:15 - 2013-05-27 10:42 - 00228459 ____A C:\Users\Chris\Downloads\Allday - Noue Yesue.zip
    2013-05-21 12:40 - 2013-05-27 10:46 - 00000000 ____D C:\Users\Chris\Desktop\Alldeezy
    2013-05-21 12:35 - 2013-05-21 12:40 - 00039090 ____A C:\Users\Chris\Downloads\Allday - Euphoria.zip
    2013-05-21 12:13 - 2013-05-21 12:13 - 00001024 ____A C:\Users\Chris\Desktop\Payslip(8003)(McDonald)(13052013).txt
    2013-05-16 03:01 - 2013-04-05 16:52 - 02242048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
    2013-05-16 03:01 - 2013-04-05 16:52 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
    2013-05-16 03:01 - 2013-04-05 16:52 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
    2013-05-16 03:01 - 2013-04-05 16:50 - 19231232 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 15404032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
    2013-05-16 03:01 - 2013-04-05 16:50 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
    2013-05-16 03:01 - 2013-04-05 15:28 - 01767424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2013-05-16 03:01 - 2013-04-05 15:28 - 01130496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 14323712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2013-05-16 03:01 - 2013-04-05 15:26 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2013-05-16 03:01 - 2013-04-05 14:43 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
    2013-05-16 03:01 - 2013-04-05 14:29 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2013-05-16 03:01 - 2013-04-05 13:51 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
    2013-05-16 03:01 - 2013-04-05 13:38 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
    2013-05-15 09:40 - 2013-04-10 16:01 - 00983400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
    2013-05-15 09:40 - 2013-04-10 16:01 - 00265064 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
    2013-05-15 09:40 - 2011-02-03 21:25 - 00144384 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll
    2013-05-15 09:39 - 2013-03-19 15:53 - 00230400 ____A (Microsoft Corporation) C:\Windows\System32\wwansvc.dll
    2013-05-15 09:39 - 2013-03-19 15:53 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\wwanprotdim.dll
    2013-05-15 09:39 - 2013-02-27 16:02 - 00111448 ____A (Microsoft Corporation) C:\Windows\System32\consent.exe
    2013-05-15 09:39 - 2013-02-27 15:52 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
    2013-05-15 09:39 - 2013-02-27 15:52 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\shdocvw.dll
    2013-05-15 09:39 - 2013-02-27 15:48 - 01930752 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll
    2013-05-15 09:39 - 2013-02-27 15:47 - 00070144 ____A (Microsoft Corporation) C:\Windows\System32\appinfo.dll
    2013-05-15 09:39 - 2013-02-27 14:55 - 12872704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2013-05-15 09:39 - 2013-02-27 14:55 - 00180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
    2013-05-15 09:39 - 2013-02-27 14:49 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
    2013-05-15 09:38 - 2013-04-10 13:30 - 03153920 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
    2013-05-14 11:52 - 2013-05-14 12:08 - 00000000 ____D C:\Users\Chris\AppData\Roaming\NVIDIA
    2013-05-14 11:51 - 2013-05-14 11:51 - 00000000 ____D C:\Users\Chris\AppData\Roaming\PDAppFlex
    2013-05-14 11:41 - 2013-05-14 11:41 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
    2013-05-14 11:38 - 2013-05-14 11:41 - 00000000 ____D C:\Program Files\Adobe
    2013-05-14 11:32 - 2013-05-14 11:41 - 00000000 ____D C:\Program Files\Common Files\Adobe

    ==================== One Month Modified Files and Folders =======

    2013-06-13 09:59 - 2013-03-06 17:18 - 00000000 ____D C:\Users\Chris\AppData\Local\Adobe
    2013-06-13 09:59 - 2013-03-02 19:12 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Spotify
    2013-06-13 09:59 - 2012-12-28 16:55 - 00000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2013-06-13 09:57 - 2010-08-31 20:43 - 00000000 ____D C:\users\david
    2013-06-13 09:56 - 2013-06-13 09:56 - 01920280 ____A (Farbar) C:\Users\Chris\Downloads\FRST64.exe
    2013-06-13 09:56 - 2013-06-13 09:56 - 00000000 ____D C:\FRST
    2013-06-13 09:56 - 2012-12-28 14:51 - 01113973 ____A C:\Windows\WindowsUpdate.log
    2013-06-13 09:54 - 2013-05-03 20:40 - 00000000 ____D C:\Users\Chris\Desktop\asdfgh
    2013-06-13 09:54 - 2012-12-28 14:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
    2013-06-13 09:54 - 2012-12-27 21:38 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
    2013-06-13 09:54 - 2012-12-27 21:33 - 00000000 ____D C:\users\david.david-PC
    2013-06-13 09:54 - 2009-07-14 13:20 - 00000000 ____D C:\Windows\security
    2013-06-13 09:54 - 2009-07-14 13:20 - 00000000 ____D C:\Windows\registration
    2013-06-13 09:54 - 2009-07-14 13:20 - 00000000 ____D C:\Windows\Help
    2013-06-12 23:55 - 2013-06-12 23:55 - 00903072 ____A (Oracle Corporation) C:\Users\Chris\Downloads\chromeinstall-7u21 (1).exe
    2013-06-12 23:52 - 2013-06-12 23:51 - 00003915 ____A C:\Windows\SysWOW64\jupdate-1.7.0_21-b11.log
    2013-06-12 23:52 - 2013-04-15 11:35 - 00000000 ____D C:\Program Files (x86)\Java
    2013-06-12 23:50 - 2013-06-12 23:50 - 00903072 ____A (Oracle Corporation) C:\Users\Chris\Downloads\chromeinstall-7u21.exe
    2013-06-12 23:50 - 2010-05-07 09:30 - 00000000 ____D C:\ProgramData\McAfee
    2013-06-12 23:39 - 2013-06-12 23:39 - 00037790 ____A C:\Users\Chris\Desktop\050713-28189-01.zip
    2013-06-12 23:39 - 2013-05-07 14:31 - 00000000 ____D C:\Windows\Minidump
    2013-06-12 23:38 - 2009-07-14 14:45 - 00017600 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2013-06-12 23:38 - 2009-07-14 14:45 - 00017600 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2013-06-12 23:37 - 2013-06-12 23:37 - 01110476 ____A C:\Users\Chris\Downloads\7z920.exe
    2013-06-12 23:37 - 2013-06-12 23:37 - 00000000 ____D C:\Program Files (x86)\7-Zip
    2013-06-12 23:30 - 2012-12-28 16:55 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2013-06-12 23:30 - 2012-12-27 21:38 - 00000000 ____D C:\ProgramData\NVIDIA
    2013-06-12 23:30 - 2009-07-14 15:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
    2013-06-12 23:30 - 2009-07-14 14:51 - 00085325 ____A C:\Windows\setupact.log
    2013-06-12 19:05 - 2013-02-10 21:02 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Skype
    2013-06-12 16:55 - 2010-05-07 09:36 - 00052470 ____A C:\Windows\PFRO.log
    2013-06-12 16:41 - 2013-06-12 16:41 - 00001113 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2013-06-12 16:41 - 2013-06-12 16:41 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Malwarebytes
    2013-06-12 16:41 - 2013-06-12 16:41 - 00000000 ____D C:\ProgramData\Malwarebytes
    2013-06-12 16:41 - 2013-06-12 16:41 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2013-06-12 16:38 - 2013-06-12 16:38 - 01409000 ____A ( ) C:\Users\Chris\Downloads\hwmonitor_1.22-setup.exe
    2013-06-12 16:38 - 2013-06-12 16:38 - 00000934 ____A C:\Users\Public\Desktop\CPUID HWMonitor.lnk
    2013-06-12 16:38 - 2013-06-12 16:38 - 00000000 ____D C:\Program Files\CPUID
    2013-06-12 16:38 - 2013-06-12 16:37 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300.exe
    2013-06-12 15:56 - 2013-02-09 20:58 - 00000000 ____D C:\users\Chris
    2013-06-12 02:00 - 2013-06-12 02:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
    2013-06-12 01:30 - 2013-06-12 01:30 - 00262144 ____A C:\Windows\Minidump\061213-29484-01.dmp
    2013-06-09 13:23 - 2013-03-02 19:15 - 00000000 ____D C:\Users\Chris\AppData\Local\Spotify
    2013-06-06 13:37 - 2013-02-05 10:21 - 00000000 ___RD C:\Program Files (x86)\Skype
    2013-06-06 13:37 - 2013-02-05 10:21 - 00000000 ____D C:\ProgramData\Skype
    2013-06-06 13:09 - 2013-02-09 20:59 - 00109688 ____A C:\Users\Chris\AppData\Local\GDIPFONTCACHEV1.DAT
    2013-06-06 13:06 - 2009-07-14 14:45 - 05035688 ____A C:\Windows\System32\FNTCACHE.DAT
    2013-06-06 06:02 - 2013-01-10 20:17 - 00002187 ____A C:\Users\Public\Desktop\Google Chrome.lnk
    2013-06-04 20:15 - 2013-06-04 20:10 - 42172104 ____A (peppy) C:\Users\Chris\Downloads\osu!install.exe
    2013-06-04 18:45 - 2010-05-07 09:23 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
    2013-06-04 18:41 - 2013-01-12 17:21 - 00000000 ____D C:\Program Files (x86)\LucasArts
    2013-06-04 18:41 - 2013-01-10 08:59 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
    2013-06-04 18:40 - 2012-12-31 19:42 - 00000604 ____A C:\Windows\Edofma.INI
    2013-06-04 18:39 - 2013-01-06 12:32 - 00000000 ____D C:\ProgramData\Firefly Studios
    2013-06-04 18:37 - 2013-03-06 16:25 - 00000000 ____D C:\Program Files (x86)\Heroes of Newerth
    2013-05-28 21:49 - 2013-03-07 12:04 - 00000000 ____D C:\Users\Chris\AppData\Roaming\uTorrent
    2013-05-28 19:19 - 2013-05-28 19:19 - 00002106 ____A C:\Users\Chris\Desktop\Path of Exile.lnk
    2013-05-27 19:29 - 2013-05-27 19:12 - 00000000 ____D C:\Program Files (x86)\Grinding Gear Games
    2013-05-27 17:55 - 2013-05-27 16:55 - 00000000 ____D C:\Users\Chris\Documents\My Games
    2013-05-27 17:54 - 2013-01-10 20:16 - 00404640 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2013-05-27 17:54 - 2012-12-27 21:50 - 00390524 ____A C:\Windows\DirectX.log
    2013-05-27 16:47 - 2013-05-27 16:46 - 07032832 ____A C:\Users\Chris\Downloads\PathOfExileInstaller.msi
    2013-05-27 12:00 - 2013-05-27 12:00 - 00000000 ____A C:\Windows\SysWOW64\sho7185.tmp
    2013-05-27 10:46 - 2013-05-21 12:40 - 00000000 ____D C:\Users\Chris\Desktop\Alldeezy
    2013-05-27 10:43 - 2013-05-27 10:15 - 01305907 ____A C:\Users\Chris\Downloads\Allday - A Skateboard Soiree E.P.zip
    2013-05-27 10:43 - 2013-05-27 10:15 - 00075860 ____A C:\Users\Chris\Downloads\Allday - SOON I'LL BE IN CALI.zip
    2013-05-27 10:42 - 2013-05-27 10:15 - 00228459 ____A C:\Users\Chris\Downloads\Allday - Noue Yesue.zip
    2013-05-21 12:40 - 2013-05-21 12:35 - 00039090 ____A C:\Users\Chris\Downloads\Allday - Euphoria.zip
    2013-05-21 12:13 - 2013-05-21 12:13 - 00001024 ____A C:\Users\Chris\Desktop\Payslip(8003)(McDonald)(13052013).txt
    2013-05-16 03:07 - 2013-04-19 12:09 - 00000000 ____D C:\ProgramData\Microsoft Help
    2013-05-16 03:04 - 2009-07-14 15:13 - 00799054 ____A C:\Windows\System32\PerfStringBackup.INI
    2013-05-15 02:00 - 2010-05-07 09:24 - 00000000 ____D C:\ProgramData\Adobe
    2013-05-14 12:08 - 2013-05-14 11:52 - 00000000 ____D C:\Users\Chris\AppData\Roaming\NVIDIA
    2013-05-14 11:52 - 2013-02-09 21:09 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Adobe
    2013-05-14 11:51 - 2013-05-14 11:51 - 00000000 ____D C:\Users\Chris\AppData\Roaming\PDAppFlex
    2013-05-14 11:41 - 2013-05-14 11:41 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
    2013-05-14 11:41 - 2013-05-14 11:38 - 00000000 ____D C:\Program Files\Adobe
    2013-05-14 11:41 - 2013-05-14 11:32 - 00000000 ____D C:\Program Files\Common Files\Adobe
    2013-05-14 11:38 - 2010-05-07 09:24 - 00000000 ____D C:\Program Files (x86)\Adobe
    2013-05-14 11:32 - 2009-07-14 13:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared

    Files to move or delete:
    ====================
    C:\ProgramData\FullRemove.exe
    C:\Users\david.david-PC\AppData\Roaming\skype.ini

    ==================== Bamital & volsnap Check =================

    C:\Windows\System32\winlogon.exe => MD5 is legit
    C:\Windows\System32\wininit.exe => MD5 is legit
    C:\Windows\SysWOW64\wininit.exe => MD5 is legit
    C:\Windows\explorer.exe => MD5 is legit
    C:\Windows\SysWOW64\explorer.exe => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\SysWOW64\svchost.exe => MD5 is legit
    C:\Windows\System32\services.exe => MD5 is legit
    C:\Windows\System32\User32.dll => MD5 is legit
    C:\Windows\SysWOW64\User32.dll => MD5 is legit
    C:\Windows\System32\userinit.exe => MD5 is legit
    C:\Windows\SysWOW64\userinit.exe => MD5 is legit
    C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


    LastRegBack: 2013-02-23 00:47

    ==================== End Of Log ============================
     

    Attached Files:

  6. Mark1956

    Mark1956

    Joined:
    May 7, 2011
    Messages:
    14,142
    I'm posting the Addition.txt log for convenience. You appear to have some Adware present, please run this scan below.

    You don't appear to have an active Anti Virus program, only Malwarebytes which is a Malware scanner.

    Please install this: Microsoft Security Essentials Run the program and check for any updates, then do a Full system scan with it and delete anything it finds. Please report on any detections it finds.

    Click on this link to download : ADWCleaner and save it to your desktop.

    NOTE: If using Internet Explorer and you get an alert that stops the program downloading click on Tools > Smartscreen Filter > Turn off Smartscreen Filter then click on OK in the box that opens. Then click on the link again.

    Close your browser and click on this icon on your desktop: [​IMG]

    You will then see the screen below, click on the Delete button (as indicated), accept any prompts that appear and allow it to reboot the PC. When the PC has rebooted you will be presented with the report, copy & paste it into your next post. If the log does not appear you should find it on your C: drive, using Windows Explorer, as ADWCleaner[S1].

    [​IMG]

    =====================================================================


    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-06-2013 04
    Ran by Chris at 2013-06-13 10:00:41 Run:
    Running from C:\Users\Chris\Downloads
    Boot Mode: Normal
    ==========================================================


    ==================== Installed Programs =======================

    µTorrent (Version: 3.3.0.29126)
    7-Zip 9.20
    Acer Backup Manager (Version: 2.0.0.60)
    Acer Crystal Eye webcam (Version: 1.0.3.5)
    Acer ePower Management (Version: 5.00.3004)
    Acer eRecovery Management (Version: 4.05.3011)
    Acer GameZone Console (Version: 6.1.0.2)
    Acer Registration (Version: 1.03.3003)
    Acer ScreenSaver (Version: 1.1.0510.2010)
    Acer Updater (Version: 1.02.3001)
    Acrobat.com (Version: 1.6.65)
    Adobe AIR (Version: 1.5.0.7220)
    Adobe Flash Player 10 Plugin (Version: 10.3.181.14)
    Adobe Flash Player 11 ActiveX (Version: 11.5.502.149)
    Adobe Photoshop CS6 (Version: 13.0)
    Adobe Reader 9.1 MUI (Version: 9.1.0)
    Alcor Micro USB Card Reader (Version: 1.5.17.05094)
    Amazonia
    Babylon Chrome Toolbar (Version: 2.0.0.7)
    Babylon toolbar on IE (Version: 1.8.7.2)
    Backup Manager Basic (Version: 2.0.0.60)
    Broadcom Gigabit NetLink Controller (Version: 12.52.03)
    BrowserProtect
    Cake Mania
    Chicken Invaders 2
    Command & Conquer 3 (Version: 1.00.0000)
    Company of Heroes - FAKEMSI (Version: 2.0.0.0)
    Company of Heroes (Version: 2.501.0)
    CPUID HWMonitor 1.22
    CyberLink PowerDVD 9 (Version: 9.0.2829.50)
    Dairy Dash
    Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
    Delta Chrome Toolbar (Version: 1.0.0.0)
    Delta toolbar (Version: 1.8.10.0)
    Dream Day First Home
    Empire Earth II (Version: 1.0)
    Empire Earth III (Version: 1.00.0000)
    Empire: Total War
    eSobi v2 (Version: 2.0.4.000274)
    Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
    Farm Frenzy 2
    Galapago
    GameShadow (Version: 2.02.0000)
    GameSpy Arcade
    GOM Player (Version: 2.1.47.5133)
    Google Chrome (Version: 27.0.1453.110)
    Google Toolbar for Internet Explorer (Version: 1.0.0)
    Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
    Google Update Helper (Version: 1.3.21.145)
    Granny In Paradise
    Hearts of Iron II Demo
    Heroes & Generals (Version: 1.0.4.6)
    Heroes of Hellas
    Heroes of Newerth (Version: 2.3.0)
    Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
    Identity Card (Version: 1.00.3003)
    Intel(R) Management Engine Components (Version: 6.0.0.1179)
    Intel(R) Rapid Storage Technology (Version: 9.6.0.1014)
    Intel(R) Turbo Boost Technology Driver (Version: 01.00.01.1002)
    Intel(R) Turbo Boost Technology Monitor (Version: 1.0.186.6)
    Java 7 Update 21 (Version: 7.0.210)
    Java Auto Updater (Version: 2.1.9.5)
    Junk Mail filter update (Version: 14.0.8089.726)
    Launch Manager (Version: 4.0.12)
    League of Legends (Version: 1.3)
    Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
    Medieval II: Total War
    Men of War: Assault Squad
    Men of War: Condemned Heroes
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 (Version: 1.1.4322)
    Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
    Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
    Microsoft Application Error Reporting (Version: 12.0.6015.5000)
    Microsoft Choice Guard (Version: 2.0.48.0)
    Microsoft Games for Windows - LIVE (Version: 3.0.89.0)
    Microsoft Games for Windows - LIVE Redistributable (Version: 3.0.19.0)
    Microsoft Mouse and Keyboard Center (Version: 2.1.177.0)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
    Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
    Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
    Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
    Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
    Microsoft Silverlight (Version: 5.1.20125.0)
    Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
    Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
    Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
    Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
    Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
    Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
    MSVCRT (Version: 14.0.1468.721)
    MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
    MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
    MyWinLocker (Version: 3.1.206.0)
    MyWinLocker Suite (Version: 3.1.206.0)
    Napoleon: Total War
    Norton Online Backup (Version: 1.2.0.36)
    NTI Backup Now 5 (Version: 5.1.2.628)
    NTI Backup Now Standard (Version: 5.1.2.628)
    NTI Media Maker 8 (Version: 8.0.12.6630)
    NVIDIA 3D Vision Driver 314.22 (Version: 314.22)
    NVIDIA Control Panel 314.22 (Version: 314.22)
    NVIDIA Graphics Driver 314.22 (Version: 314.22)
    NVIDIA HD Audio Driver 1.3.23.1 (Version: 1.3.23.1)
    NVIDIA Install Application (Version: 2.1002.115.743)
    NVIDIA PhysX (Version: 9.12.1031)
    NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031)
    NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1422)
    NVIDIA Update 1.12.12 (Version: 1.12.12)
    NVIDIA Update Components (Version: 1.12.12)
    Pando Media Booster (Version: 2.6.0.8)
    Path of Exile (Version: 0.10.8.24852)
    PDF Settings CS6 (Version: 11.0)
    Realtek High Definition Audio Driver (Version: 6.0.1.6037)
    Shared C Run-time for x64 (Version: 10.0.0)
    Shredder (Version: 2.0.5.0)
    Skype&#8482; 6.3 (Version: 6.3.107)
    Smite (Version: 0.1.1468.0)
    Spin & Win
    Spotify (Version: 0.9.1.53.g876fa9df)
    Star Wars Empire at War (Version: 1.0)
    Star Wars Empire at War Forces of Corruption (Version: 1.0)
    StarCraft II (Version: 2.0.7.25293)
    Steam (Version: 1.0.0.0)
    Synaptics Pointing Device Driver (Version: 14.0.6.0)
    TornTV (Version: 2.1 Build 26473)
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
    Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
    Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
    Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
    Update for Microsoft Office 2010 (KB2553065)
    Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2566458)
    Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
    Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
    Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
    Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
    Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
    Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
    Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
    Utility Chest Toolbar
    War of the Roses
    Warhammer® 40,000&#8482;: Dawn of War® II - Chaos Rising&#8482;
    Warhammer® 40,000&#8482;: Dawn of War® II &#8211; Retribution&#8482;
    Welcome Center (Version: 1.01.3002)
    Windows Live Call (Version: 14.0.8064.0206)
    Windows Live Communications Platform (Version: 14.0.8064.206)
    Windows Live Essentials (Version: 14.0.8089.0726)
    Windows Live Essentials (Version: 14.0.8089.726)
    Windows Live Mail (Version: 14.0.8089.0726)
    Windows Live Messenger (Version: 14.0.8089.0726)
    Windows Live Movie Maker (Version: 14.0.8091.0730)
    Windows Live Photo Gallery (Version: 14.0.8081.709)
    Windows Live Sign-in Assistant (Version: 5.000.818.5)
    Windows Live Sync (Version: 14.0.8089.726)
    Windows Live Upload Tool (Version: 14.0.8014.1029)
    Windows Live Writer (Version: 14.0.8089.0726)
    World of Warcraft (Version: 5.2.0.16826)
    Yontoo 1.12.02 (Version: 1.12.02)

    ==================== Restore Points =========================

    10-05-2013 18:01:30 Windows Update
    14-05-2013 17:00:18 Windows Update
    15-05-2013 17:00:14 Windows Update
    21-05-2013 13:51:14 Windows Update
    24-05-2013 17:55:20 Windows Update
    27-05-2013 06:50:10 Installed Path of Exile
    27-05-2013 07:54:39 Installed DirectX
    28-05-2013 09:02:39 Windows Update
    02-06-2013 06:56:26 Windows Update
    04-06-2013 08:39:17 Removed Star Wars Galactic Battlegrounds: Clone Campaigns
    04-06-2013 08:39:47 Removed Rome - Total War - Gold Edition
    04-06-2013 08:40:03 Removed Stronghold Legends
    08-06-2013 06:04:33 Windows Update
    10-06-2013 10:33:31 Windows Update
    11-06-2013 15:35:49 Windows Update
    12-06-2013 13:51:10 Installed Java 7 Update 21
    12-06-2013 23:54:52 Windows Update

    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (06/13/2013 09:54:59 AM) (Source: Application Hang) (User: )
    Description: The program GOM.EXE version 2.1.47.5133 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: 428

    Start Time: 01ce677aa6588b4f

    Termination Time: 44

    Application Path: C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE

    Report Id: 76e61216-d3bb-11e2-af15-206a8a1069eb

    Error: (06/05/2013 08:33:11 AM) (Source: Application Error) (User: )
    Description: Faulting application name: LolClient.exe, version: 2.0.2.12610, time stamp: 0x4c00573a
    Faulting module name: Adobe AIR.dll, version: 3.6.0.5920, time stamp: 0x510610d1
    Exception code: 0xc0000005
    Fault offset: 0x0006de2d
    Faulting process id: 0xed4
    Faulting application start time: 0xLolClient.exe0
    Faulting application path: LolClient.exe1
    Faulting module path: LolClient.exe2
    Report Id: LolClient.exe3

    Error: (05/27/2013 05:58:46 PM) (Source: Application Hang) (User: )
    Description: The program Smite.exe version 0.1.1468.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: 1434

    Start Time: 01ce5aaf80ff726f

    Termination Time: 529

    Application Path: C:\Program Files (x86)\Hi-Rez Studios\HiRezGames\smite\binaries\Win32\Smite.exe

    Report Id:

    Error: (05/25/2013 11:16:13 PM) (Source: Application Error) (User: )
    Description: Faulting application name: LolClient.exe, version: 0.0.0.0, time stamp: 0x515663e0
    Faulting module name: Adobe AIR.dll, version: 3.7.0.1530, time stamp: 0x5156646c
    Exception code: 0xc0000005
    Fault offset: 0x0006dd76
    Faulting process id: 0x5f4
    Faulting application start time: 0xLolClient.exe0
    Faulting application path: LolClient.exe1
    Faulting module path: LolClient.exe2
    Report Id: LolClient.exe3

    Error: (05/23/2013 10:34:26 PM) (Source: Application Hang) (User: )
    Description: The program rads_user_kernel.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: c98

    Start Time: 01ce57b1bfd07420

    Termination Time: 1

    Application Path: C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe

    Report Id: 193234b6-c3a5-11e2-9019-206a8a1069eb

    Error: (05/23/2013 10:33:11 PM) (Source: Application Error) (User: )
    Description: Faulting application name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
    Faulting module name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
    Exception code: 0xc0000005
    Fault offset: 0x000b8554
    Faulting process id: 0x4c4
    Faulting application start time: 0xrads_user_kernel.exe0
    Faulting application path: rads_user_kernel.exe1
    Faulting module path: rads_user_kernel.exe2
    Report Id: rads_user_kernel.exe3

    Error: (05/13/2013 00:06:03 AM) (Source: Application Hang) (User: )
    Description: The program GOM.EXE version 2.1.47.5133 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: 13a0

    Start Time: 01ce4f19c382c1b8

    Termination Time: 151

    Application Path: C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE

    Report Id: 0e3da5a1-bb0d-11e2-acc9-206a8a1069eb

    Error: (05/07/2013 01:32:26 PM) (Source: Application Error) (User: )
    Description: Faulting application name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
    Faulting module name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
    Exception code: 0xc0000005
    Fault offset: 0x000b8554
    Faulting process id: 0x1850
    Faulting application start time: 0xrads_user_kernel.exe0
    Faulting application path: rads_user_kernel.exe1
    Faulting module path: rads_user_kernel.exe2
    Report Id: rads_user_kernel.exe3

    Error: (05/03/2013 04:17:09 PM) (Source: Application Hang) (User: )
    Description: The program rads_user_kernel.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: 15fc

    Start Time: 01ce47c5d122b16c

    Termination Time: 2

    Application Path: C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe

    Report Id: 13ba8627-b3b9-11e2-a313-206a8a1069eb

    Error: (04/30/2013 00:22:36 AM) (Source: Application Hang) (User: )
    Description: The program GOM.EXE version 2.1.47.5133 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: 1b90

    Start Time: 01ce44e4740e4de9

    Termination Time: 27

    Application Path: C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE

    Report Id: 38f84abc-b0d8-11e2-9041-206a8a1069eb


    System errors:
    =============
    Error: (06/12/2013 07:07:12 PM) (Source: EventLog) (User: )
    Description: The previous system shutdown at 7:05:36 PM on ?12/?06/?2013 was unexpected.

    Error: (06/12/2013 03:57:09 PM) (Source: Service Control Manager) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the Hi-Rez Studios Authenticate and Update Service service to connect.

    Error: (06/12/2013 03:32:19 PM) (Source: Microsoft-Windows-Kernel-Power) (User: )
    Description: The system was shut down due to a critical thermal event.

    Shutdown Time = 2013-06-12T05:32:19.309220700Z

    ACPI Thermal Zone = ACPI\ThermalZone\TZS0

    _CRT = 375K

    Error: (06/12/2013 03:32:19 PM) (Source: Microsoft-Windows-Kernel-Power) (User: NT AUTHORITY)
    Description: The system was shut down due to a critical thermal event.

    Shutdown Time = 2013-06-12T05:32:19.293620700Z

    ACPI Thermal Zone = ACPI\ThermalZone\TZS0

    _CRT = 375K

    Error: (06/12/2013 03:32:15 PM) (Source: volmgr) (User: )
    Description: Crash dump initialization failed!

    Error: (06/12/2013 00:04:24 PM) (Source: EventLog) (User: )
    Description: The previous system shutdown at 12:02:11 PM on ?12/?06/?2013 was unexpected.

    Error: (06/12/2013 01:30:37 AM) (Source: BugCheck) (User: )
    Description: 0xc000021a (0xfffff8a002205040, 0x0000000000000000, 0xffffffffc0000001, 0x0000000000010570)C:\Windows\MEMORY.DMP061213-29484-01

    Error: (06/12/2013 00:22:20 AM) (Source: volmgr) (User: )
    Description: Crash dump initialization failed!

    Error: (06/12/2013 00:20:46 AM) (Source: Microsoft-Windows-Kernel-Power) (User: )
    Description: The system was shut down due to a critical thermal event.

    Shutdown Time = 2013-06-11T14:20:46.605621300Z

    ACPI Thermal Zone = ACPI\ThermalZone\TZS0

    _CRT = 375K

    Error: (06/12/2013 00:20:42 AM) (Source: Microsoft-Windows-Kernel-Power) (User: )
    Description: The system was shut down due to a critical thermal event.

    Shutdown Time = 2013-06-11T14:20:42.456014000Z

    ACPI Thermal Zone = ACPI\ThermalZone\TZS0

    _CRT = 375K


    Microsoft Office Sessions:
    =========================
    Error: (06/13/2013 09:54:59 AM) (Source: Application Hang)(User: )
    Description: GOM.EXE2.1.47.513342801ce677aa6588b4f44C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE76e61216-d3bb-11e2-af15-206a8a1069eb

    Error: (06/05/2013 08:33:11 AM) (Source: Application Error)(User: )
    Description: LolClient.exe2.0.2.126104c00573aAdobe AIR.dll3.6.0.5920510610d1c00000050006de2ded401ce612467c9f7b7C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.26\deploy\LolClient.exeC:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.26\deploy\Adobe AIR\Versions\1.0\Adobe AIR.dllbc85afe1-cd66-11e2-8d66-206a8a1069eb

    Error: (05/27/2013 05:58:46 PM) (Source: Application Hang)(User: )
    Description: Smite.exe0.1.1468.0143401ce5aaf80ff726f529C:\Program Files (x86)\Hi-Rez Studios\HiRezGames\smite\binaries\Win32\Smite.exe

    Error: (05/25/2013 11:16:13 PM) (Source: Application Error)(User: )
    Description: LolClient.exe0.0.0.0515663e0Adobe AIR.dll3.7.0.15305156646cc00000050006dd765f401ce59273a93e67fC:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.20\deploy\LolClient.exeC:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.20\deploy\Adobe AIR\Versions\1.0\Adobe AIR.dll45d142e9-c53d-11e2-9019-206a8a1069eb

    Error: (05/23/2013 10:34:26 PM) (Source: Application Hang)(User: )
    Description: rads_user_kernel.exe0.0.0.0c9801ce57b1bfd074201C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe193234b6-c3a5-11e2-9019-206a8a1069eb

    Error: (05/23/2013 10:33:11 PM) (Source: Application Error)(User: )
    Description: rads_user_kernel.exe0.0.0.04e65c1acrads_user_kernel.exe0.0.0.04e65c1acc0000005000b85544c401ce57b1af393b5fC:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exeC:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exeed7a28d5-c3a4-11e2-9019-206a8a1069eb

    Error: (05/13/2013 00:06:03 AM) (Source: Application Hang)(User: )
    Description: GOM.EXE2.1.47.513313a001ce4f19c382c1b8151C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE0e3da5a1-bb0d-11e2-acc9-206a8a1069eb

    Error: (05/07/2013 01:32:26 PM) (Source: Application Error)(User: )
    Description: rads_user_kernel.exe0.0.0.04e65c1acrads_user_kernel.exe0.0.0.04e65c1acc0000005000b8554185001ce4ad37d327db0C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exeC:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exebc59d6e5-b6c6-11e2-937f-206a8a1069eb

    Error: (05/03/2013 04:17:09 PM) (Source: Application Hang)(User: )
    Description: rads_user_kernel.exe0.0.0.015fc01ce47c5d122b16c2C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe13ba8627-b3b9-11e2-a313-206a8a1069eb

    Error: (04/30/2013 00:22:36 AM) (Source: Application Hang)(User: )
    Description: GOM.EXE2.1.47.51331b9001ce44e4740e4de927C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE38f84abc-b0d8-11e2-9041-206a8a1069eb


    CodeIntegrity Errors:
    ===================================
    Date: 2013-01-22 19:17:10.906
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\SET9FE3.tmp because the set of per-page image hashes could not be found on the system.

    Date: 2013-01-22 19:17:10.902
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\SET9FE3.tmp because the set of per-page image hashes could not be found on the system.


    ==================== Memory info ===========================

    Percentage of memory in use: 58%
    Total physical RAM: 3956.5 MB
    Available physical RAM: 1661.57 MB
    Total Pagefile: 7911.19 MB
    Available Pagefile: 5108.57 MB
    Total Virtual: 8192 MB
    Available Virtual: 8191.82 MB

    ==================== Drives ================================

    Drive c: (ACER) (Fixed) (Total:452.97 GB) (Free:33.25 GB) NTFS (Disk=0 Partition=3)
    Drive d: (SC2-L100-D1) (CDROM) (Total:6.99 GB) (Free:0 GB) UDF

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: 36973697)
    Partition 1: (Not Active) - (Size=13 GB) - (Type=27)
    Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 3: (Not Active) - (Size=453 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================
     
  7. Maccas123

    Maccas123 Thread Starter

    Joined:
    Jun 12, 2013
    Messages:
    5
    Okay so I downloaded Windows Security Essentials and ran the update and scan and the only program it found was: HackTool:Win32/Keygen. Didn't really sound too great to me lol.

    Also, here is the Txt file I received after running ADWCleaner.

    # AdwCleaner v2.303 - Logfile created 06/14/2013 at 04:04:43
    # Updated 08/06/2013 by Xplode
    # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
    # User : Chris - DAVID-PC
    # Boot Mode : Normal
    # Running from : C:\Users\Chris\Downloads\adwcleaner.exe
    # Option [Delete]


    ***** [Services] *****

    Stopped & Deleted : BrowserProtect

    ***** [Files / Folders] *****

    Deleted on reboot : C:\ProgramData\BrowserProtect
    Deleted on reboot : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp
    File Deleted : C:\user.js
    File Deleted : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
    File Deleted : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
    File Deleted : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
    File Deleted : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
    Folder Deleted : C:\Program Files (x86)\BabylonToolbar
    Folder Deleted : C:\Program Files (x86)\Delta
    Folder Deleted : C:\Program Files (x86)\Gophoto.it
    Folder Deleted : C:\Program Files (x86)\Iminent
    Folder Deleted : C:\Program Files (x86)\TornTV.com
    Folder Deleted : C:\Program Files (x86)\Yontoo
    Folder Deleted : C:\ProgramData\Babylon
    Folder Deleted : C:\ProgramData\Iminent
    Folder Deleted : C:\ProgramData\Partner
    Folder Deleted : C:\ProgramData\Tarma Installer
    Folder Deleted : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp
    Folder Deleted : C:\Users\Chris\AppData\Local\Temp\boost_interprocess
    Folder Deleted : C:\Users\Chris\AppData\LocalLow\BabylonToolbar
    Folder Deleted : C:\Users\Chris\AppData\LocalLow\Conduit
    Folder Deleted : C:\Users\Chris\AppData\LocalLow\Delta
    Folder Deleted : C:\Users\Chris\AppData\LocalLow\Toolbar4
    Folder Deleted : C:\Windows\Installer\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}

    ***** [Registry] *****

    Key Deleted : HKCU\Software\APN PIP
    Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
    Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
    Key Deleted : HKCU\Software\BabylonToolbar
    Key Deleted : HKCU\Software\Conduit
    Key Deleted : HKCU\Software\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
    Key Deleted : HKCU\Software\957d7d9e034ed40
    Key Deleted : HKLM\Software\Babylon
    Key Deleted : HKLM\Software\BabylonToolbar
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\b
    Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd
    Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
    Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
    Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
    Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
    Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
    Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaappCore
    Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
    Key Deleted : HKLM\SOFTWARE\Classes\delta.deltadskBnd
    Key Deleted : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
    Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaHlpr
    Key Deleted : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1
    Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
    Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
    Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
    Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
    Key Deleted : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
    Key Deleted : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
    Key Deleted : HKLM\Software\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B
    Key Deleted : HKLM\Software\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41
    Key Deleted : HKLM\Software\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B
    Key Deleted : HKLM\Software\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41
    Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
    Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
    Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
    Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
    Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
    Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
    Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
    Key Deleted : HKLM\Software\Conduit
    Key Deleted : HKLM\Software\DataMngr
    Key Deleted : HKLM\Software\Delta
    Key Deleted : HKLM\Software\Iminent
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASAPI32
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASMANCS
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
    Key Deleted : HKLM\Software\PIP
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\957d7d9e034ed40
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23119123-0854-469D-807A-171568457991}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta
    Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
    Key Deleted : HKLM\SOFTWARE\Tarma Installer
    Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
    Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{82E1477C-B154-48D3-9891-33D83C26BCD3}]
    Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]

    ***** [Internet Browsers] *****

    -\\ Internet Explorer v10.0.9200.16611

    [OK] Registry is clean.

    -\\ Google Chrome v27.0.1453.110

    File : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Preferences

    [OK] File is clean.

    *************************

    AdwCleaner[S1].txt - [27929 octets] - [14/06/2013 04:04:43]

    ########## EOF - C:\AdwCleaner[S1].txt - [27990 octets] ##########
     
  8. Mark1956

    Mark1956

    Joined:
    May 7, 2011
    Messages:
    14,142
    That detection isn't considered dangerous, it relates to a Keygen that would be used to validate pirated software. I suggest you remove the pirated software. I'd guess it is something you downloaded from uTorrent, using File Sharing sites is a good way to get your PC infected and I am amazed the scan didn't find anything else when you had no Anti Virus protecting the system.

    There are several errors in the logs relating to Lol, Gom Player and Smite.

    There is also a few errors reported like this:

    Error: (06/12/2013 03:32:19 PM) (Source: Microsoft-Windows-Kernel-Power) (User: NT AUTHORITY)
    Description: The system was shut down due to a critical thermal event.

    This indicates your system is overheating so it will need to be cleaned internally, you probably have dust build up in the cooler or the fan is faulty. The overheating is quite likely to be at the route of your problems, but you will need to have this dealt with before trying the system again to check if it has cured the crashes.

    ADWCleaner found several items of Adware so the scan needs to be run again, using the Delete button just as before. Post the log when done.
     
  9. Maccas123

    Maccas123 Thread Starter

    Joined:
    Jun 12, 2013
    Messages:
    5
    How would you recommend to clean the cooler/fan internally?

    Also, this is the ADWCleaner log I just got after deleting again.
    # AdwCleaner v2.303 - Logfile created 06/14/2013 at 17:35:32
    # Updated 08/06/2013 by Xplode
    # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
    # User : Chris - DAVID-PC
    # Boot Mode : Normal
    # Running from : C:\Users\Chris\Downloads\adwcleaner.exe
    # Option [Delete]


    ***** [Services] *****


    ***** [Files / Folders] *****

    Folder Deleted : C:\ProgramData\BrowserProtect

    ***** [Registry] *****

    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}

    ***** [Internet Browsers] *****

    -\\ Internet Explorer v10.0.9200.16611

    [OK] Registry is clean.

    -\\ Google Chrome v27.0.1453.110

    File : C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Preferences

    [OK] File is clean.

    *************************

    AdwCleaner[S1].txt - [27906 octets] - [14/06/2013 04:04:43]
    AdwCleaner[S2].txt - [1339 octets] - [14/06/2013 17:35:32]

    ########## EOF - C:\AdwCleaner[S2].txt - [1399 octets] ##########
     
  10. Mark1956

    Mark1956

    Joined:
    May 7, 2011
    Messages:
    14,142
    If you don't know how to clean out the vents on your system it would probably to better to get it done at a recommended PC repair shop. Some laptops I have worked on you can get access to the vent through a panel on the back and remove the heat sink with ease but on some you have to remove the whole case which can be a tricky job if you have never done it before.

    ADWCleaner is still showing a persistent item of Adware, please run it again, look at the log and if it still shows any deletions keep repeating the scan until the log comes up clean and post the final log.
    If after 4 or 5 runs the log still shows deletions post the log and we will approach the Adware using a different method.
     
  11. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1101045

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice