Publicité
Publicité
Format du document : text/plain
Prévisualisation
Additional scan result of Farbar Recovery Scan Tool (x64) Version:19-11-2015
Ran by Fred (2015-11-20 18:59:02)
Running from C:\Users\Fred\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-02-09 12:17:00)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1851975095-2524403330-3652149874-500 - Administrator - Disabled)
Fred (S-1-5-21-1851975095-2524403330-3652149874-1000 - Administrator - Enabled) => C:\Users\Fred
Guest (S-1-5-21-1851975095-2524403330-3652149874-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1851975095-2524403330-3652149874-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-1851975095-2524403330-3652149874-1000\...\uTorrent) (Version: 3.4.2.38656 - BitTorrent Inc.)
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Age of Empires III (HKLM-x32\...\InstallShield_{485775E8-AEB8-46BD-922B-242879E03DD5}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.56 - ASUSTeK Computer Inc.)
Alien Breed 2: Assault (HKLM-x32\...\Steam App 22650) (Version: - Team17 Software Ltd.)
Alien Breed 3: Descent (HKLM-x32\...\Steam App 22670) (Version: - Team17 Software Ltd.)
Alien Breed: Impact (HKLM-x32\...\Steam App 22610) (Version: - Team17 Software Ltd. )
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.13.0 - Asmedia Technology)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Beneath a Steel Sky (HKLM-x32\...\1207658695_is1) (Version: 2.1.0.10 - GOG.com)
Burnout(TM) Paradise The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.0.0.0 - Electronic Arts)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Dead Space (HKLM-x32\...\Steam App 17470) (Version: - EA Redwood Shores)
Dolphin (HKLM-x32\...\Dolphin) (Version: 4.0.2 - Dolphin Development Team)
Far Cry 4 (HKLM-x32\...\Far Cry 4_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
foobar2000 v1.3.7 (HKLM-x32\...\foobar2000) (Version: 1.3.7 - Peter Pawlowski)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free YouTube Downloader 4.1.419 (HKLM-x32\...\{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1) (Version: - HOW Inc.)
Giants - Citizen Kabuto (HKLM-x32\...\1207658650_is1) (Version: 2.1.0.4 - GOG.com)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
GOG.com MDK (HKLM\...\{ed1cccb5-49a3-4fdb-81f7-0ce4166e1702}.sdb) (Version: - )
GOG.com Thief - Deadly Shadows (HKLM\...\{6177064c-e1cb-4f80-bfec-1d8cb07b244e}.sdb) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
GRID (HKLM-x32\...\Steam App 12750) (Version: - Codemasters Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Kholat (HKLM-x32\...\1433331863_is1) (Version: 2.0.0.1 - GOG.com)
K-Lite Codec Pack 11.5.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.5.5 - )
KMSpico v9.3.1 (HKLM\...\KMSpico_is1) (Version: 9.3.1 - )
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MDK (HKLM-x32\...\GOGPACKMDK_is1) (Version: 2.0.0.25 - GOG.com)
Metal Gear Solid V Ground Zeroes (HKLM-x32\...\Metal Gear Solid V Ground Zeroes_is1) (Version: 1.0 - PLAZA)
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM-x32\...\Steam App 287700) (Version: - Konami Digital Entertainment)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{F112F66E-25CA-42DD-983C-6118EB38F606}) (Version: 3.0.89.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SharePoint Designer 2010 (HKLM-x32\...\Office14.SharePointDesigner) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.16 - Black Tree Gaming)
NVIDIA 3D Vision Driver 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 358.50 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Graphics Driver 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.50 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA PhysX v8.10.29 (HKLM-x32\...\{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}) (Version: 8.10.29 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Project CARS (HKLM-x32\...\UHJvamVjdENBUlM=_is1) (Version: 1 - )
Psychonauts (HKLM-x32\...\1207658807_is1) (Version: 2.1.0.12 - GOG.com)
Rayman Origins (HKLM-x32\...\{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}) (Version: 1.00 - Ubisoft)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.75.827.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.2.0 (HKLM-x32\...\RTSS) (Version: 6.2.0 - Unwinder)
Ryse: Son of Rome (HKLM-x32\...\Steam App 302510) (Version: - Crytek)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
SeaTools for Windows (HKLM-x32\...\SeaTools for Windows) (Version: - Seagate Technology)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{8B883A57-E4BC-4745-8E6C-68168850F9DD}) (Version: - Microsoft)
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Sniper Ghost Warrior 2 version 1.0.8 (HKLM-x32\...\Sniper Ghost Warrior 2_is1) (Version: 1.0.8 - dzrepack games)
SOMA (HKLM\...\U09NQQ==_is1) (Version: 1 - )
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version: - Carbon)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.0 - Krzysztof Kowalczyk)
Syberia 2 (HKLM-x32\...\{EDBE322C-5CF0-46AC-A6DE-C6713F84B68A}) (Version: - )
System Shock 2 (HKLM-x32\...\Steam App 238210) (Version: - Irrational Games)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
The Cat Lady (HKLM-x32\...\1207659201_is1) (Version: 2.2.0.6 - GOG.com)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Evil Within (HKLM-x32\...\The Evil Within_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
The Swapper (HKLM-x32\...\The Swapper_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD Projekt RED)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.11.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.0.10.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.0.10.0 - GOG.com)
Thief - Deadly Shadows (HKLM-x32\...\GOGPACKTHIEF3_is1) (Version: 2.0.0.6 - GOG.com)
Thief - Deadly Shadows Collective Texture Pack by John P., ver. 1.0.3 (HKLM-x32\...\Collective Thief: DS Texture Pack by John P. 1.03) (Version: - John P.)
TP-LINK TL-WN725N_TL-WN723N Pilote (HKLM-x32\...\{3C3F9CEB-2C5A-4A47-8EAA-DA76037546BA}) (Version: 1.3.1 - TP-LINK)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{40930C8E-A677-414C-A72F-DFDEB10738FB}) (Version: - Microsoft)
Utilitaire de configuration sans fil TP-LINK (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Watermark Software 8.0 (HKLM-x32\...\Watermark Software) (Version: 8.0 - watermark-software.com)
Wolfenstein The Old Blood (HKLM-x32\...\Wolfenstein The Old Blood_is1) (Version: - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {16F9F074-7F30-4C57-A903-8591E282AEF4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)
Task: {1DB316EF-1EDF-40BC-B64B-CB86F93BDE7D} - System32\Tasks\{1CBDCF69-324C-4B05-B696-14361BC17D1C} => pcalua.exe -a "C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.01\Setup.exe" -d "C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.01"
Task: {1FA29CE0-0304-40EA-93D1-4CAEC623878B} - System32\Tasks\{B62F08E0-F61A-4251-9EBE-21BB93E77BA7} => pcalua.exe -a "C:\GOG Games\MDK 2\MDK2.exe" -d "C:\GOG Games\MDK 2\"
Task: {2007B6FE-E256-44E2-8546-A138B1651554} - \Joitg -> No File <==== ATTENTION
Task: {21FBB818-405D-4EF3-A765-DB7D6FF28E47} - System32\Tasks\{9076451B-C67A-48DB-8C93-EB9DF0F3CB1B} => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {2A6BD1AB-0EFD-4FB0-9DE8-FC9D08A24A3E} - System32\Tasks\{1F2BBE0A-3DE8-43DA-B99D-C685FE6C67CA} => pcalua.exe -a "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\installShell.exe" -d "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static"
Task: {3BD3D63D-8C78-4BB6-82C9-DAD9BDFB93ED} - System32\Tasks\{0D5B2784-AABF-4CB2-8E0D-F91D22799008} => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {3EBDEFB3-3AA4-49CD-9C1B-AB516E0950F0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {49859B54-221D-4E1F-8680-6AB656EEDA83} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-20] (Google Inc.)
Task: {4FBB6B69-ADA0-46D7-A6AB-C6857617D589} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2013-08-13] ()
Task: {570FC16D-6AE1-489E-950B-316D17E5BCE6} - System32\Tasks\AutoPico Daily Restart => F:\KMSpico\AutoPico.exe [2014-06-29] (@ByELDI)
Task: {5CFFAE0C-94B0-4D5A-A2EF-722C4330E287} - System32\Tasks\{7E54C92B-3388-4BC6-9E60-385DAAA293ED} => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {6123EA6D-A6B8-4135-8B5A-5073FD4DB71B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {63FE69F6-96BF-40D9-8B69-EF95106D657B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {6F53D981-0616-40A6-9604-BE39ADCD40DB} - System32\Tasks\{FB52BF8E-882B-458E-89CE-C0C3107CD4DB} => Chrome.exe
Task: {85FEF83D-436C-4765-B782-32583DE3A13E} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {9397C72F-3C25-4302-BB42-D38336D7DDE6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-20] (Google Inc.)
Task: {95991189-0901-45B5-826B-95EB5AC7D6FC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {98D48120-5866-4E5D-B027-98B3EB887E19} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-05-27] ()
Task: {9C055845-4698-4336-B544-C06183AC6DA1} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {9C86AF6E-F39F-4DB4-B5E8-792A4803D261} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-10-16] ()
Task: {A0430729-A39B-4E3E-A38B-45A3A0A44C53} - System32\Tasks\{31B6658E-6EDB-42ED-9118-196E3DFE2047} => F:\The witcher\The Witcher Enhanced Edition\launcher.exe
Task: {B1A1ED2E-002F-4BEC-B8E7-A1A20C51AC30} - System32\Tasks\{6B9573A7-A66D-4E73-82EB-F299B0A32ADE} => Chrome.exe
Task: {B8736E72-38D7-45E4-9E8C-17B08607AB9E} - \Run_Bobby_Browser -> No File <==== ATTENTION
Task: {BCAE9D8B-9279-4E14-91F2-5A98AE385328} - System32\Tasks\{CFD8E850-4DC1-4ECE-81E7-0CAECD88F854} => C:\Program Files (x86)\NAMCO BANDAI Games\DarkSouls\DARKSOULS.exe
Task: {CD854A4D-5E4E-4524-809E-BC40677031B6} - \crash_service -> No File <==== ATTENTION
Task: {D025F9EA-4051-4DF8-8AE5-F57CBF4ED9C3} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2013-07-24] (ASUSTeK Computer Inc.)
Task: {D2F1A850-BEFF-4338-BF83-DF66FE291A0A} - System32\Tasks\{0A967153-3D1D-40D2-BB33-4BCDA8BE64F8} => C:\Program Files (x86)\Frictional Games\Amnesia A Machine for Pigs\Launcher.exe
Task: {F2C9336B-E8DD-468A-A48D-9B5044B3DFA6} - System32\Tasks\{DF0EBA7A-CF7A-42AD-9D71-B9EB6034FF6E} => C:\Program Files (x86)\GOG.com\Fallout 2\fallout2.exe
Task: {F6A9A63A-7495-4AA1-81C3-123DA2C58EB9} - System32\Tasks\{D1C53DDF-71C2-482A-8189-1D561B8C26C2} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe [2005-09-19] (Ensemble Studios)
Task: {FEE461EB-A990-49B0-9052-182F0CDF0C1E} - System32\Tasks\{ED15B054-53BC-4B49-8E61-573CF4659B12} => C:\Program Files (x86)\L'Amerzone\Amerzone.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-10-15 14:09 - 2015-10-03 03:49 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-11-09 12:37 - 2014-08-30 19:07 - 00400384 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll
2015-10-13 15:09 - 2015-10-13 15:09 - 08901184 _____ () F:\Office15\1033\GrooveIntlResource.dll
2015-02-09 14:40 - 2013-06-04 10:41 - 00936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2015-03-16 10:05 - 2013-08-13 20:55 - 01225528 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
2015-05-27 11:05 - 2015-05-27 11:05 - 00578272 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2014-08-30 19:07 - 2014-08-30 19:07 - 00195584 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
2014-08-30 19:07 - 2014-08-30 19:07 - 00026112 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
2014-08-30 19:07 - 2014-08-30 19:07 - 00088576 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2015-03-16 10:05 - 2013-08-13 20:55 - 01221912 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\EPUShortCut.exe
2015-05-05 17:26 - 2015-05-05 17:26 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-05 17:26 - 2015-05-05 17:26 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-20 10:31 - 2015-11-20 10:31 - 02991104 _____ () C:\Program Files\AVAST Software\Avast\defs\15112000\algo.dll
2015-02-09 14:40 - 2015-11-20 18:20 - 00028160 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2013-06-04 10:41 - 2013-06-04 10:41 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2015-03-16 10:05 - 2013-08-13 20:55 - 00685056 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2015-03-16 10:05 - 2013-08-13 20:55 - 00825344 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2015-03-16 10:05 - 2013-08-13 20:55 - 00765952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2015-03-16 10:05 - 2013-08-13 20:55 - 00776704 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2014-08-30 19:07 - 2014-08-30 19:07 - 00354816 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll
2015-05-18 12:43 - 2015-05-18 12:43 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2015-05-18 12:43 - 2015-05-18 12:43 - 00057856 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2015-05-18 12:43 - 2015-05-18 12:43 - 00218624 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2015-05-22 11:56 - 2015-05-22 11:56 - 00357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2015-05-22 12:36 - 2015-05-22 12:36 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2015-03-16 10:04 - 2013-08-07 19:11 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2015-03-16 10:05 - 2013-03-13 17:12 - 00870912 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AI Charger+\AIChargerPlus.dll
2015-03-16 10:05 - 2013-08-13 20:46 - 02745344 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2015-02-09 15:14 - 2013-06-04 10:41 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll
2015-03-16 10:04 - 2013-08-07 19:11 - 00053248 _____ () C:\Program Files (x86)\ASUS\AI Suite III\cpuutil.dll
2015-11-19 18:45 - 2015-11-12 19:39 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-04-01 12:16 - 2015-04-01 12:16 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-30 19:07 - 2014-08-30 19:07 - 00056832 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2014-08-30 19:07 - 2014-08-30 19:07 - 00324608 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2014-08-30 19:07 - 2014-08-30 19:07 - 00071680 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2015-02-09 14:54 - 2013-09-16 12:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-10-13 15:09 - 2015-10-13 15:09 - 08901184 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2015-11-20 17:23 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-20 17:23 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Pabgio => ""="service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1851975095-2524403330-3652149874-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1851975095-2524403330-3652149874-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1851975095-2524403330-3652149874-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Fred\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 212.27.40.240 - 212.27.40.241
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: asComSvc => 2
MSCONFIG\Services: asHmComSvc => 2
MSCONFIG\Services: AxAutoMntSrv => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: StarWindServiceAE => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: wuauserv => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Utilitaire de configuration sans fil TP-LINK.lnk => C:\Windows\pss\Utilitaire de configuration sans fil TP-LINK.lnk.CommonStartup
MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: GalaxyClient =>
MSCONFIG\startupreg: HotKeysCmds => "C:\Windows\system32\hkcmd.exe"
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: IgfxTray => "C:\Windows\system32\igfxtray.exe"
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Persistence => "C:\Windows\system32\igfxpers.exe"
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: SFAUpdater => "C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Smart File Advisor => "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /checkassoc
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{039A2843-FAA9-461D-9340-380592E88607}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8C87E46C-FE24-4AEC-B617-89EA0DC766D7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{33BDD3E9-D980-4413-9014-4187162C6D70}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{154C83D6-74F0-4181-A528-B5062358844E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2FDCE17B-A10D-4E9A-9431-4B6CCBDEE93D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{22C0BA7C-51B5-4B30-B89F-05AF9424FCE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [TCP Query User{815EF80B-D6F8-4B5B-8F9D-B52F99D53315}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{CB7F840A-88EB-45A5-84E6-F415DF0A487F}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [TCP Query User{74CDE7A8-D957-48B3-856B-93A3F8F8AC44}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{D147A60A-CD09-482A-97C4-2A82003925FF}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [{B861710E-6E8D-47F9-8C0D-313627B2F2A9}] => (Allow) C:\Users\Fred\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7E587534-3694-46CF-8034-90277F0A4B01}] => (Allow) C:\Users\Fred\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{01AE7F9A-76C4-42A3-A56A-9B08585F8330}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{7523D1FA-2EE1-413A-A149-9CAC9B426F4F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{1E8DF8C3-7256-4EED-A293-A30AF19B47BB}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe
FirewallRules: [{7B971208-71E7-4F19-BA19-6DEA440A7C74}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe
FirewallRules: [{7F0C8425-24AF-4B01-AC6D-16DDF29FE325}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe
FirewallRules: [{7D5F4822-38E9-47DC-B7AB-8E4B6F6F2142}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe
FirewallRules: [{48E6FB30-D5F9-4D52-BA66-250CA2E693C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grid\grid.exe
FirewallRules: [{F081E4C8-D8BC-4F8A-801A-8B769563A61B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grid\grid.exe
FirewallRules: [TCP Query User{8AC628AE-BFD7-4907-AAC1-0A871593D581}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{238273A3-00EB-45B1-A164-3CE62EFD9079}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{92910648-B6BB-4471-A5FC-5B116982FB94}] => (Allow) I:\Dead space\steamapps\common\Dead Space\Dead Space.exe
FirewallRules: [{DB7F6C09-3FD7-481D-A0E7-11D85C3BCB0E}] => (Allow) I:\Dead space\steamapps\common\Dead Space\Dead Space.exe
FirewallRules: [TCP Query User{FB017DA8-6D4B-4E7E-B4BB-E626E27E41A8}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{1E7C2772-9FDB-4AE9-B8B1-A396901FD627}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [TCP Query User{345BDC75-8BD2-4508-A5BE-9FFA60888DF1}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{507DA080-9A04-44EE-AEA6-64EB2CB207D1}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [{F88048BE-71FC-4298-B278-B249CD1351A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SS2\Shock2.exe
FirewallRules: [{F1A20AE6-C1E0-4A36-82A5-B2F5DF024A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SS2\Shock2.exe
FirewallRules: [{B43957F3-F28F-4282-A808-2D838734A88C}] => (Allow) I:\Ryse Son of Rome\steamapps\common\Ryse Son of Rome\Bin64\Ryse.exe
FirewallRules: [{FA13DEDE-2C37-4849-93D1-3EA2E7C61203}] => (Allow) I:\Ryse Son of Rome\steamapps\common\Ryse Son of Rome\Bin64\Ryse.exe
FirewallRules: [{6980F801-78B6-453A-9B09-138E9CBA6A5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{30F982E5-A563-49F0-8FD8-CD3041F02B51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{73F63DF2-27E4-4E8D-B6EC-A61DC1D44C85}I:\sniper ghost warrior 2\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Allow) I:\sniper ghost warrior 2\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{20E586FF-80A1-40AA-8E1C-CA9C28D3E5DF}I:\sniper ghost warrior 2\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Allow) I:\sniper ghost warrior 2\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [{A1925841-47A0-446F-8BC9-C1A3988CE01D}] => (Allow) I:\Steam\steamapps\common\Alien Breed 3 Descent\Binaries\AlienBreed3Descent.exe
FirewallRules: [{7A6C2D97-CAB3-465D-9648-CAA7387086AD}] => (Allow) I:\Steam\steamapps\common\Alien Breed 3 Descent\Binaries\AlienBreed3Descent.exe
FirewallRules: [{812D1BA6-FD49-45FF-B12C-B715D54BDEF9}] => (Allow) I:\Steam\steamapps\common\Alien Breed 2 Assault\Binaries\AlienBreed2Assault.exe
FirewallRules: [{0D6810E8-848E-4838-BC72-3086B19C8FF9}] => (Allow) I:\Steam\steamapps\common\Alien Breed 2 Assault\Binaries\AlienBreed2Assault.exe
FirewallRules: [{DBA5972E-975E-4504-834E-E1DF16B5448A}] => (Allow) I:\Steam\steamapps\common\Alien Breed Impact\Binaries\AlienBreed-Impact.exe
FirewallRules: [{2FB3B124-8F30-4D55-AB96-CE32FC78D776}] => (Allow) I:\Steam\steamapps\common\Alien Breed Impact\Binaries\AlienBreed-Impact.exe
FirewallRules: [{E35980B4-6133-4633-B300-6F20EC8CA058}] => (Allow) I:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{573B2D52-EF08-4789-AA21-E656451E0510}] => (Allow) I:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{CACF97C4-90C7-4882-B844-9012113D1E29}] => (Allow) I:\Burn out\BurnoutLauncher.exe
FirewallRules: [{71533E09-3F48-4853-B0EB-1E03225EB4AE}] => (Allow) I:\Burn out\BurnoutLauncher.exe
FirewallRules: [{E5FA9427-A928-499E-9F9E-C475B2623FBC}] => (Allow) I:\Burn out\BurnoutConfigTool.exe
FirewallRules: [{41265F97-8E10-4C65-B4A4-015A4AE2CB39}] => (Allow) I:\Burn out\BurnoutConfigTool.exe
FirewallRules: [{76C96E55-1EE7-4622-ADA9-B7EA152F4846}] => (Allow) I:\Burn out\BurnoutParadise.exe
FirewallRules: [{87DD0535-5A81-4642-8602-894093EDC464}] => (Allow) I:\Burn out\BurnoutParadise.exe
FirewallRules: [{FDA2F886-5C53-4B75-B878-8A07B06BA284}] => (Allow) I:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{502C3DF0-D7EE-4B07-A56A-9619DFF044CF}] => (Allow) I:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [TCP Query User{1C6372E7-4084-42D1-BC3B-1EFA55AA6155}I:\outlast whistleblower\binaries\win64\olgame.exe] => (Allow) I:\outlast whistleblower\binaries\win64\olgame.exe
FirewallRules: [UDP Query User{F4B86E2D-AE07-45B6-BBD8-4F16CE054642}I:\outlast whistleblower\binaries\win64\olgame.exe] => (Allow) I:\outlast whistleblower\binaries\win64\olgame.exe
FirewallRules: [TCP Query User{CAB20888-DFF9-469F-BA21-35A06B0D6624}I:\Broforce.Full.FIXED\broforce_beta.exe] => (Allow) I:\Broforce.Full.FIXED\broforce_beta.exe
FirewallRules: [UDP Query User{D9EAF761-7642-4E66-8843-B498A9D638F2}I:\Broforce.Full.FIXED\broforce_beta.exe] => (Allow) I:\Broforce.Full.FIXED\broforce_beta.exe
FirewallRules: [{5C2DC224-5A66-44F5-8167-89127B17E3F3}] => (Allow) F:\Office15\lync.exe
FirewallRules: [{CBF5AA23-03C8-4D6D-8442-C75E47D5E179}] => (Allow) F:\Office15\lync.exe
FirewallRules: [{D47A2761-AF82-4CC1-B15F-6052AB8BC7DC}] => (Allow) F:\Office15\UcMapi.exe
FirewallRules: [{60013460-88C2-4878-857B-EB50944E92D6}] => (Allow) F:\Office15\UcMapi.exe
FirewallRules: [{198C1B6A-D0BD-4EC3-9DA6-4BDBB9221D5A}] => (Allow) F:\Office15\outlook.exe
FirewallRules: [{DB13F613-B649-4DA6-B7DA-DC8CC126A2E9}] => (Allow) F:\KMSpico\KMSELDI.exe
FirewallRules: [{52855952-A240-4E24-8171-619E9C9D6383}] => (Allow) F:\KMSpico\KMSELDI.exe
FirewallRules: [{C9CF540D-6387-4A94-9DE3-8B78727B2D77}] => (Allow) F:\KMSpico\AutoPico.exe
FirewallRules: [{55EA4906-4320-4C6F-95C7-70727B6F84F0}] => (Allow) F:\KMSpico\AutoPico.exe
FirewallRules: [{FF535233-1248-494B-B9C2-5290359CC455}] => (Allow) F:\KMSpico\Service_KMS.exe
FirewallRules: [{5334C410-C019-4116-8B12-2E1D57FFF275}] => (Allow) F:\KMSpico\Service_KMS.exe
FirewallRules: [{ACA0B9ED-F099-46DE-870D-0CA64F60FFD3}] => (Allow) F:\KMSpico\AutoPico.exe
FirewallRules: [{E8F2CED8-6350-4A53-A3CF-70E3BA2AB34E}] => (Allow) F:\KMSpico\AutoPico.exe
FirewallRules: [{EDFE7AA4-F90C-462B-9EE9-EACD8E56C568}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{87C6ABCE-5E96-4396-B80B-6D8E6712B0D4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{11CDC517-FAC5-4634-854A-6BF0193859BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B44C0D42-ED1B-4A17-8D73-AF17E79217CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A5FFF03F-C19F-4AEA-A729-12432AD6C349}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{1F662B4A-9DCF-4CA8-8D80-B2E4405A672B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{90919FD0-EF2C-4193-9D0E-24713A721D4B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1349D936-8FD4-41B9-A948-444B43AE2A6B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
Name: AMDA00 Interface
Description: AMDA00 Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: ASUSTeK Computer Inc.
Service: WUDFRd
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/20/2015 06:20:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2015 05:47:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2015 05:00:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2015 00:02:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2015 09:47:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/19/2015 10:59:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AutoPico.exe, version: 12.3.0.0, time stamp: 0x53b06ef5
Faulting module name: KERNELBASE.dll, version: 6.1.7601.19045, time stamp: 0x56259271
Exception code: 0xe0434352
Fault offset: 0x000000000000b3dd
Faulting process id: 0x1470
Faulting application start time: 0xAutoPico.exe0
Faulting application path: AutoPico.exe1
Faulting module path: AutoPico.exe2
Report Id: AutoPico.exe3
Error: (11/19/2015 10:59:15 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: AutoPico.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.IOException
Stack:
at System.Net.Sockets.NetworkStream.EndRead(System.IAsyncResult)
at AutoPico.KMSEmulator.TCPServer.ReadCallback(System.IAsyncResult)
at System.Net.LazyAsyncResult.Complete(IntPtr)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Net.ContextAwareResult.Complete(IntPtr)
at System.Net.Sockets.BaseOverlappedAsyncResult.CompletionPortCallback(UInt32, UInt32, System.Threading.NativeOverlapped*)
at System.Threading._IOCompletionCallback.PerformIOCompletionCallback(UInt32, UInt32, System.Threading.NativeOverlapped*)
Error: (11/19/2015 09:09:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/19/2015 08:30:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.2014.398, time stamp: 0x563b577c
Faulting module name: ntdll.dll, version: 6.1.7601.19045, time stamp: 0x56259295
Exception code: 0xc0000005
Fault offset: 0x000000000004f6c6
Faulting process id: 0x9e8
Faulting application start time: 0xNvStreamNetworkService.exe0
Faulting application path: NvStreamNetworkService.exe1
Faulting module path: NvStreamNetworkService.exe2
Report Id: NvStreamNetworkService.exe3
Error: (11/19/2015 08:30:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (11/20/2015 06:21:03 PM) (Source: volsnap) (EventID: 16) (User: )
Description: The shadow copies of volume I: were aborted because volume I:, which contains shadow copy storage for this shadow copy, was force dismounted.
Error: (11/20/2015 06:20:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/20/2015 05:47:00 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/20/2015 05:29:26 PM) (Source: volsnap) (EventID: 16) (User: )
Description: The shadow copies of volume I: were aborted because volume I:, which contains shadow copy storage for this shadow copy, was force dismounted.
Error: (11/20/2015 05:00:46 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/20/2015 00:02:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/20/2015 00:02:03 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (11/20/2015 10:08:47 AM) (Source: volsnap) (EventID: 16) (User: )
Description: The shadow copies of volume I: were aborted because volume I:, which contains shadow copy storage for this shadow copy, was force dismounted.
Error: (11/20/2015 09:47:31 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/19/2015 09:09:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
CodeIntegrity:
===================================
Date: 2015-11-20 18:58:47.613
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:58:47.550
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:58:47.426
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:58:47.285
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:48:33.823
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:48:33.760
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:48:33.635
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:48:33.433
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 17:15:59.779
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 17:15:59.710
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Percentage of memory in use: 33%
Total physical RAM: 8127.38 MB
Available physical RAM: 5366.32 MB
Total Virtual: 16252.97 MB
Available Virtual: 13775.32 MB
==================== Drives ================================
Drive c: (New Volume) (Fixed) (Total:232.79 GB) (Free:22.67 GB) NTFS
Drive f: (My HDrive) (Fixed) (Total:638.44 GB) (Free:95.79 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive i: (New Volume) (Fixed) (Total:292.97 GB) (Free:60.37 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 8731C8EA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2E942E93)
Partition 1: (Not Active) - (Size=101 MB) - (Type=42)
Partition 2: (Active) - (Size=638.4 GB) - (Type=42)
Partition 3: (Not Active) - (Size=293 GB) - (Type=42)
==================== End of Addition.txt ============================
Ran by Fred (2015-11-20 18:59:02)
Running from C:\Users\Fred\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-02-09 12:17:00)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1851975095-2524403330-3652149874-500 - Administrator - Disabled)
Fred (S-1-5-21-1851975095-2524403330-3652149874-1000 - Administrator - Enabled) => C:\Users\Fred
Guest (S-1-5-21-1851975095-2524403330-3652149874-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1851975095-2524403330-3652149874-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-1851975095-2524403330-3652149874-1000\...\uTorrent) (Version: 3.4.2.38656 - BitTorrent Inc.)
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Age of Empires III (HKLM-x32\...\InstallShield_{485775E8-AEB8-46BD-922B-242879E03DD5}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.56 - ASUSTeK Computer Inc.)
Alien Breed 2: Assault (HKLM-x32\...\Steam App 22650) (Version: - Team17 Software Ltd.)
Alien Breed 3: Descent (HKLM-x32\...\Steam App 22670) (Version: - Team17 Software Ltd.)
Alien Breed: Impact (HKLM-x32\...\Steam App 22610) (Version: - Team17 Software Ltd. )
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.13.0 - Asmedia Technology)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Beneath a Steel Sky (HKLM-x32\...\1207658695_is1) (Version: 2.1.0.10 - GOG.com)
Burnout(TM) Paradise The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.0.0.0 - Electronic Arts)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Dead Space (HKLM-x32\...\Steam App 17470) (Version: - EA Redwood Shores)
Dolphin (HKLM-x32\...\Dolphin) (Version: 4.0.2 - Dolphin Development Team)
Far Cry 4 (HKLM-x32\...\Far Cry 4_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
foobar2000 v1.3.7 (HKLM-x32\...\foobar2000) (Version: 1.3.7 - Peter Pawlowski)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free YouTube Downloader 4.1.419 (HKLM-x32\...\{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1) (Version: - HOW Inc.)
Giants - Citizen Kabuto (HKLM-x32\...\1207658650_is1) (Version: 2.1.0.4 - GOG.com)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
GOG.com MDK (HKLM\...\{ed1cccb5-49a3-4fdb-81f7-0ce4166e1702}.sdb) (Version: - )
GOG.com Thief - Deadly Shadows (HKLM\...\{6177064c-e1cb-4f80-bfec-1d8cb07b244e}.sdb) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
GRID (HKLM-x32\...\Steam App 12750) (Version: - Codemasters Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Kholat (HKLM-x32\...\1433331863_is1) (Version: 2.0.0.1 - GOG.com)
K-Lite Codec Pack 11.5.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.5.5 - )
KMSpico v9.3.1 (HKLM\...\KMSpico_is1) (Version: 9.3.1 - )
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MDK (HKLM-x32\...\GOGPACKMDK_is1) (Version: 2.0.0.25 - GOG.com)
Metal Gear Solid V Ground Zeroes (HKLM-x32\...\Metal Gear Solid V Ground Zeroes_is1) (Version: 1.0 - PLAZA)
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM-x32\...\Steam App 287700) (Version: - Konami Digital Entertainment)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{F112F66E-25CA-42DD-983C-6118EB38F606}) (Version: 3.0.89.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SharePoint Designer 2010 (HKLM-x32\...\Office14.SharePointDesigner) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.16 - Black Tree Gaming)
NVIDIA 3D Vision Driver 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 358.50 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Graphics Driver 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.50 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA PhysX v8.10.29 (HKLM-x32\...\{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}) (Version: 8.10.29 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Project CARS (HKLM-x32\...\UHJvamVjdENBUlM=_is1) (Version: 1 - )
Psychonauts (HKLM-x32\...\1207658807_is1) (Version: 2.1.0.12 - GOG.com)
Rayman Origins (HKLM-x32\...\{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}) (Version: 1.00 - Ubisoft)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.75.827.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.2.0 (HKLM-x32\...\RTSS) (Version: 6.2.0 - Unwinder)
Ryse: Son of Rome (HKLM-x32\...\Steam App 302510) (Version: - Crytek)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
SeaTools for Windows (HKLM-x32\...\SeaTools for Windows) (Version: - Seagate Technology)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{8B883A57-E4BC-4745-8E6C-68168850F9DD}) (Version: - Microsoft)
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Sniper Ghost Warrior 2 version 1.0.8 (HKLM-x32\...\Sniper Ghost Warrior 2_is1) (Version: 1.0.8 - dzrepack games)
SOMA (HKLM\...\U09NQQ==_is1) (Version: 1 - )
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version: - Carbon)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.0 - Krzysztof Kowalczyk)
Syberia 2 (HKLM-x32\...\{EDBE322C-5CF0-46AC-A6DE-C6713F84B68A}) (Version: - )
System Shock 2 (HKLM-x32\...\Steam App 238210) (Version: - Irrational Games)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
The Cat Lady (HKLM-x32\...\1207659201_is1) (Version: 2.2.0.6 - GOG.com)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Evil Within (HKLM-x32\...\The Evil Within_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
The Swapper (HKLM-x32\...\The Swapper_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD Projekt RED)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.11.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.0.10.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.0.10.0 - GOG.com)
Thief - Deadly Shadows (HKLM-x32\...\GOGPACKTHIEF3_is1) (Version: 2.0.0.6 - GOG.com)
Thief - Deadly Shadows Collective Texture Pack by John P., ver. 1.0.3 (HKLM-x32\...\Collective Thief: DS Texture Pack by John P. 1.03) (Version: - John P.)
TP-LINK TL-WN725N_TL-WN723N Pilote (HKLM-x32\...\{3C3F9CEB-2C5A-4A47-8EAA-DA76037546BA}) (Version: 1.3.1 - TP-LINK)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{40930C8E-A677-414C-A72F-DFDEB10738FB}) (Version: - Microsoft)
Utilitaire de configuration sans fil TP-LINK (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Watermark Software 8.0 (HKLM-x32\...\Watermark Software) (Version: 8.0 - watermark-software.com)
Wolfenstein The Old Blood (HKLM-x32\...\Wolfenstein The Old Blood_is1) (Version: - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {16F9F074-7F30-4C57-A903-8591E282AEF4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)
Task: {1DB316EF-1EDF-40BC-B64B-CB86F93BDE7D} - System32\Tasks\{1CBDCF69-324C-4B05-B696-14361BC17D1C} => pcalua.exe -a "C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.01\Setup.exe" -d "C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.01"
Task: {1FA29CE0-0304-40EA-93D1-4CAEC623878B} - System32\Tasks\{B62F08E0-F61A-4251-9EBE-21BB93E77BA7} => pcalua.exe -a "C:\GOG Games\MDK 2\MDK2.exe" -d "C:\GOG Games\MDK 2\"
Task: {2007B6FE-E256-44E2-8546-A138B1651554} - \Joitg -> No File <==== ATTENTION
Task: {21FBB818-405D-4EF3-A765-DB7D6FF28E47} - System32\Tasks\{9076451B-C67A-48DB-8C93-EB9DF0F3CB1B} => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {2A6BD1AB-0EFD-4FB0-9DE8-FC9D08A24A3E} - System32\Tasks\{1F2BBE0A-3DE8-43DA-B99D-C685FE6C67CA} => pcalua.exe -a "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\installShell.exe" -d "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static"
Task: {3BD3D63D-8C78-4BB6-82C9-DAD9BDFB93ED} - System32\Tasks\{0D5B2784-AABF-4CB2-8E0D-F91D22799008} => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {3EBDEFB3-3AA4-49CD-9C1B-AB516E0950F0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {49859B54-221D-4E1F-8680-6AB656EEDA83} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-20] (Google Inc.)
Task: {4FBB6B69-ADA0-46D7-A6AB-C6857617D589} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2013-08-13] ()
Task: {570FC16D-6AE1-489E-950B-316D17E5BCE6} - System32\Tasks\AutoPico Daily Restart => F:\KMSpico\AutoPico.exe [2014-06-29] (@ByELDI)
Task: {5CFFAE0C-94B0-4D5A-A2EF-722C4330E287} - System32\Tasks\{7E54C92B-3388-4BC6-9E60-385DAAA293ED} => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {6123EA6D-A6B8-4135-8B5A-5073FD4DB71B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {63FE69F6-96BF-40D9-8B69-EF95106D657B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {6F53D981-0616-40A6-9604-BE39ADCD40DB} - System32\Tasks\{FB52BF8E-882B-458E-89CE-C0C3107CD4DB} => Chrome.exe
Task: {85FEF83D-436C-4765-B782-32583DE3A13E} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {9397C72F-3C25-4302-BB42-D38336D7DDE6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-20] (Google Inc.)
Task: {95991189-0901-45B5-826B-95EB5AC7D6FC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {98D48120-5866-4E5D-B027-98B3EB887E19} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-05-27] ()
Task: {9C055845-4698-4336-B544-C06183AC6DA1} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {9C86AF6E-F39F-4DB4-B5E8-792A4803D261} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-10-16] ()
Task: {A0430729-A39B-4E3E-A38B-45A3A0A44C53} - System32\Tasks\{31B6658E-6EDB-42ED-9118-196E3DFE2047} => F:\The witcher\The Witcher Enhanced Edition\launcher.exe
Task: {B1A1ED2E-002F-4BEC-B8E7-A1A20C51AC30} - System32\Tasks\{6B9573A7-A66D-4E73-82EB-F299B0A32ADE} => Chrome.exe
Task: {B8736E72-38D7-45E4-9E8C-17B08607AB9E} - \Run_Bobby_Browser -> No File <==== ATTENTION
Task: {BCAE9D8B-9279-4E14-91F2-5A98AE385328} - System32\Tasks\{CFD8E850-4DC1-4ECE-81E7-0CAECD88F854} => C:\Program Files (x86)\NAMCO BANDAI Games\DarkSouls\DARKSOULS.exe
Task: {CD854A4D-5E4E-4524-809E-BC40677031B6} - \crash_service -> No File <==== ATTENTION
Task: {D025F9EA-4051-4DF8-8AE5-F57CBF4ED9C3} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2013-07-24] (ASUSTeK Computer Inc.)
Task: {D2F1A850-BEFF-4338-BF83-DF66FE291A0A} - System32\Tasks\{0A967153-3D1D-40D2-BB33-4BCDA8BE64F8} => C:\Program Files (x86)\Frictional Games\Amnesia A Machine for Pigs\Launcher.exe
Task: {F2C9336B-E8DD-468A-A48D-9B5044B3DFA6} - System32\Tasks\{DF0EBA7A-CF7A-42AD-9D71-B9EB6034FF6E} => C:\Program Files (x86)\GOG.com\Fallout 2\fallout2.exe
Task: {F6A9A63A-7495-4AA1-81C3-123DA2C58EB9} - System32\Tasks\{D1C53DDF-71C2-482A-8189-1D561B8C26C2} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe [2005-09-19] (Ensemble Studios)
Task: {FEE461EB-A990-49B0-9052-182F0CDF0C1E} - System32\Tasks\{ED15B054-53BC-4B49-8E61-573CF4659B12} => C:\Program Files (x86)\L'Amerzone\Amerzone.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-10-15 14:09 - 2015-10-03 03:49 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-11-09 12:37 - 2014-08-30 19:07 - 00400384 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll
2015-10-13 15:09 - 2015-10-13 15:09 - 08901184 _____ () F:\Office15\1033\GrooveIntlResource.dll
2015-02-09 14:40 - 2013-06-04 10:41 - 00936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2015-03-16 10:05 - 2013-08-13 20:55 - 01225528 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
2015-05-27 11:05 - 2015-05-27 11:05 - 00578272 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2014-08-30 19:07 - 2014-08-30 19:07 - 00195584 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
2014-08-30 19:07 - 2014-08-30 19:07 - 00026112 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
2014-08-30 19:07 - 2014-08-30 19:07 - 00088576 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2015-03-16 10:05 - 2013-08-13 20:55 - 01221912 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\EPUShortCut.exe
2015-05-05 17:26 - 2015-05-05 17:26 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-05 17:26 - 2015-05-05 17:26 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-20 10:31 - 2015-11-20 10:31 - 02991104 _____ () C:\Program Files\AVAST Software\Avast\defs\15112000\algo.dll
2015-02-09 14:40 - 2015-11-20 18:20 - 00028160 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2013-06-04 10:41 - 2013-06-04 10:41 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2015-03-16 10:05 - 2013-08-13 20:55 - 00685056 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2015-03-16 10:05 - 2013-08-13 20:55 - 00825344 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2015-03-16 10:05 - 2013-08-13 20:55 - 00765952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2015-03-16 10:05 - 2013-08-13 20:55 - 00776704 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2014-08-30 19:07 - 2014-08-30 19:07 - 00354816 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll
2015-05-18 12:43 - 2015-05-18 12:43 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2015-05-18 12:43 - 2015-05-18 12:43 - 00057856 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2015-05-18 12:43 - 2015-05-18 12:43 - 00218624 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2015-05-22 11:56 - 2015-05-22 11:56 - 00357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2015-05-22 12:36 - 2015-05-22 12:36 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2015-03-16 10:04 - 2013-08-07 19:11 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2015-03-16 10:05 - 2013-03-13 17:12 - 00870912 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AI Charger+\AIChargerPlus.dll
2015-03-16 10:05 - 2013-08-13 20:46 - 02745344 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2015-02-09 15:14 - 2013-06-04 10:41 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll
2015-03-16 10:04 - 2013-08-07 19:11 - 00053248 _____ () C:\Program Files (x86)\ASUS\AI Suite III\cpuutil.dll
2015-11-19 18:45 - 2015-11-12 19:39 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-04-01 12:16 - 2015-04-01 12:16 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-30 19:07 - 2014-08-30 19:07 - 00056832 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2014-08-30 19:07 - 2014-08-30 19:07 - 00324608 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2014-08-30 19:07 - 2014-08-30 19:07 - 00071680 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2015-02-09 14:54 - 2013-09-16 12:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-10-13 15:09 - 2015-10-13 15:09 - 08901184 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2015-11-20 17:23 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-20 17:23 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Pabgio => ""="service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1851975095-2524403330-3652149874-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1851975095-2524403330-3652149874-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1851975095-2524403330-3652149874-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Fred\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 212.27.40.240 - 212.27.40.241
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: asComSvc => 2
MSCONFIG\Services: asHmComSvc => 2
MSCONFIG\Services: AxAutoMntSrv => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: StarWindServiceAE => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: wuauserv => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Utilitaire de configuration sans fil TP-LINK.lnk => C:\Windows\pss\Utilitaire de configuration sans fil TP-LINK.lnk.CommonStartup
MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: GalaxyClient =>
MSCONFIG\startupreg: HotKeysCmds => "C:\Windows\system32\hkcmd.exe"
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: IgfxTray => "C:\Windows\system32\igfxtray.exe"
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Persistence => "C:\Windows\system32\igfxpers.exe"
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: SFAUpdater => "C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Smart File Advisor => "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /checkassoc
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{039A2843-FAA9-461D-9340-380592E88607}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8C87E46C-FE24-4AEC-B617-89EA0DC766D7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{33BDD3E9-D980-4413-9014-4187162C6D70}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{154C83D6-74F0-4181-A528-B5062358844E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2FDCE17B-A10D-4E9A-9431-4B6CCBDEE93D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{22C0BA7C-51B5-4B30-B89F-05AF9424FCE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [TCP Query User{815EF80B-D6F8-4B5B-8F9D-B52F99D53315}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{CB7F840A-88EB-45A5-84E6-F415DF0A487F}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [TCP Query User{74CDE7A8-D957-48B3-856B-93A3F8F8AC44}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{D147A60A-CD09-482A-97C4-2A82003925FF}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [{B861710E-6E8D-47F9-8C0D-313627B2F2A9}] => (Allow) C:\Users\Fred\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7E587534-3694-46CF-8034-90277F0A4B01}] => (Allow) C:\Users\Fred\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{01AE7F9A-76C4-42A3-A56A-9B08585F8330}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{7523D1FA-2EE1-413A-A149-9CAC9B426F4F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{1E8DF8C3-7256-4EED-A293-A30AF19B47BB}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe
FirewallRules: [{7B971208-71E7-4F19-BA19-6DEA440A7C74}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe
FirewallRules: [{7F0C8425-24AF-4B01-AC6D-16DDF29FE325}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe
FirewallRules: [{7D5F4822-38E9-47DC-B7AB-8E4B6F6F2142}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe
FirewallRules: [{48E6FB30-D5F9-4D52-BA66-250CA2E693C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grid\grid.exe
FirewallRules: [{F081E4C8-D8BC-4F8A-801A-8B769563A61B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grid\grid.exe
FirewallRules: [TCP Query User{8AC628AE-BFD7-4907-AAC1-0A871593D581}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{238273A3-00EB-45B1-A164-3CE62EFD9079}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{92910648-B6BB-4471-A5FC-5B116982FB94}] => (Allow) I:\Dead space\steamapps\common\Dead Space\Dead Space.exe
FirewallRules: [{DB7F6C09-3FD7-481D-A0E7-11D85C3BCB0E}] => (Allow) I:\Dead space\steamapps\common\Dead Space\Dead Space.exe
FirewallRules: [TCP Query User{FB017DA8-6D4B-4E7E-B4BB-E626E27E41A8}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{1E7C2772-9FDB-4AE9-B8B1-A396901FD627}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [TCP Query User{345BDC75-8BD2-4508-A5BE-9FFA60888DF1}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{507DA080-9A04-44EE-AEA6-64EB2CB207D1}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [{F88048BE-71FC-4298-B278-B249CD1351A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SS2\Shock2.exe
FirewallRules: [{F1A20AE6-C1E0-4A36-82A5-B2F5DF024A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SS2\Shock2.exe
FirewallRules: [{B43957F3-F28F-4282-A808-2D838734A88C}] => (Allow) I:\Ryse Son of Rome\steamapps\common\Ryse Son of Rome\Bin64\Ryse.exe
FirewallRules: [{FA13DEDE-2C37-4849-93D1-3EA2E7C61203}] => (Allow) I:\Ryse Son of Rome\steamapps\common\Ryse Son of Rome\Bin64\Ryse.exe
FirewallRules: [{6980F801-78B6-453A-9B09-138E9CBA6A5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{30F982E5-A563-49F0-8FD8-CD3041F02B51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{73F63DF2-27E4-4E8D-B6EC-A61DC1D44C85}I:\sniper ghost warrior 2\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Allow) I:\sniper ghost warrior 2\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{20E586FF-80A1-40AA-8E1C-CA9C28D3E5DF}I:\sniper ghost warrior 2\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Allow) I:\sniper ghost warrior 2\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [{A1925841-47A0-446F-8BC9-C1A3988CE01D}] => (Allow) I:\Steam\steamapps\common\Alien Breed 3 Descent\Binaries\AlienBreed3Descent.exe
FirewallRules: [{7A6C2D97-CAB3-465D-9648-CAA7387086AD}] => (Allow) I:\Steam\steamapps\common\Alien Breed 3 Descent\Binaries\AlienBreed3Descent.exe
FirewallRules: [{812D1BA6-FD49-45FF-B12C-B715D54BDEF9}] => (Allow) I:\Steam\steamapps\common\Alien Breed 2 Assault\Binaries\AlienBreed2Assault.exe
FirewallRules: [{0D6810E8-848E-4838-BC72-3086B19C8FF9}] => (Allow) I:\Steam\steamapps\common\Alien Breed 2 Assault\Binaries\AlienBreed2Assault.exe
FirewallRules: [{DBA5972E-975E-4504-834E-E1DF16B5448A}] => (Allow) I:\Steam\steamapps\common\Alien Breed Impact\Binaries\AlienBreed-Impact.exe
FirewallRules: [{2FB3B124-8F30-4D55-AB96-CE32FC78D776}] => (Allow) I:\Steam\steamapps\common\Alien Breed Impact\Binaries\AlienBreed-Impact.exe
FirewallRules: [{E35980B4-6133-4633-B300-6F20EC8CA058}] => (Allow) I:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{573B2D52-EF08-4789-AA21-E656451E0510}] => (Allow) I:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{CACF97C4-90C7-4882-B844-9012113D1E29}] => (Allow) I:\Burn out\BurnoutLauncher.exe
FirewallRules: [{71533E09-3F48-4853-B0EB-1E03225EB4AE}] => (Allow) I:\Burn out\BurnoutLauncher.exe
FirewallRules: [{E5FA9427-A928-499E-9F9E-C475B2623FBC}] => (Allow) I:\Burn out\BurnoutConfigTool.exe
FirewallRules: [{41265F97-8E10-4C65-B4A4-015A4AE2CB39}] => (Allow) I:\Burn out\BurnoutConfigTool.exe
FirewallRules: [{76C96E55-1EE7-4622-ADA9-B7EA152F4846}] => (Allow) I:\Burn out\BurnoutParadise.exe
FirewallRules: [{87DD0535-5A81-4642-8602-894093EDC464}] => (Allow) I:\Burn out\BurnoutParadise.exe
FirewallRules: [{FDA2F886-5C53-4B75-B878-8A07B06BA284}] => (Allow) I:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{502C3DF0-D7EE-4B07-A56A-9619DFF044CF}] => (Allow) I:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [TCP Query User{1C6372E7-4084-42D1-BC3B-1EFA55AA6155}I:\outlast whistleblower\binaries\win64\olgame.exe] => (Allow) I:\outlast whistleblower\binaries\win64\olgame.exe
FirewallRules: [UDP Query User{F4B86E2D-AE07-45B6-BBD8-4F16CE054642}I:\outlast whistleblower\binaries\win64\olgame.exe] => (Allow) I:\outlast whistleblower\binaries\win64\olgame.exe
FirewallRules: [TCP Query User{CAB20888-DFF9-469F-BA21-35A06B0D6624}I:\Broforce.Full.FIXED\broforce_beta.exe] => (Allow) I:\Broforce.Full.FIXED\broforce_beta.exe
FirewallRules: [UDP Query User{D9EAF761-7642-4E66-8843-B498A9D638F2}I:\Broforce.Full.FIXED\broforce_beta.exe] => (Allow) I:\Broforce.Full.FIXED\broforce_beta.exe
FirewallRules: [{5C2DC224-5A66-44F5-8167-89127B17E3F3}] => (Allow) F:\Office15\lync.exe
FirewallRules: [{CBF5AA23-03C8-4D6D-8442-C75E47D5E179}] => (Allow) F:\Office15\lync.exe
FirewallRules: [{D47A2761-AF82-4CC1-B15F-6052AB8BC7DC}] => (Allow) F:\Office15\UcMapi.exe
FirewallRules: [{60013460-88C2-4878-857B-EB50944E92D6}] => (Allow) F:\Office15\UcMapi.exe
FirewallRules: [{198C1B6A-D0BD-4EC3-9DA6-4BDBB9221D5A}] => (Allow) F:\Office15\outlook.exe
FirewallRules: [{DB13F613-B649-4DA6-B7DA-DC8CC126A2E9}] => (Allow) F:\KMSpico\KMSELDI.exe
FirewallRules: [{52855952-A240-4E24-8171-619E9C9D6383}] => (Allow) F:\KMSpico\KMSELDI.exe
FirewallRules: [{C9CF540D-6387-4A94-9DE3-8B78727B2D77}] => (Allow) F:\KMSpico\AutoPico.exe
FirewallRules: [{55EA4906-4320-4C6F-95C7-70727B6F84F0}] => (Allow) F:\KMSpico\AutoPico.exe
FirewallRules: [{FF535233-1248-494B-B9C2-5290359CC455}] => (Allow) F:\KMSpico\Service_KMS.exe
FirewallRules: [{5334C410-C019-4116-8B12-2E1D57FFF275}] => (Allow) F:\KMSpico\Service_KMS.exe
FirewallRules: [{ACA0B9ED-F099-46DE-870D-0CA64F60FFD3}] => (Allow) F:\KMSpico\AutoPico.exe
FirewallRules: [{E8F2CED8-6350-4A53-A3CF-70E3BA2AB34E}] => (Allow) F:\KMSpico\AutoPico.exe
FirewallRules: [{EDFE7AA4-F90C-462B-9EE9-EACD8E56C568}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{87C6ABCE-5E96-4396-B80B-6D8E6712B0D4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{11CDC517-FAC5-4634-854A-6BF0193859BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B44C0D42-ED1B-4A17-8D73-AF17E79217CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A5FFF03F-C19F-4AEA-A729-12432AD6C349}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{1F662B4A-9DCF-4CA8-8D80-B2E4405A672B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{90919FD0-EF2C-4193-9D0E-24713A721D4B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1349D936-8FD4-41B9-A948-444B43AE2A6B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
Name: AMDA00 Interface
Description: AMDA00 Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: ASUSTeK Computer Inc.
Service: WUDFRd
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/20/2015 06:20:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2015 05:47:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2015 05:00:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2015 00:02:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2015 09:47:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/19/2015 10:59:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AutoPico.exe, version: 12.3.0.0, time stamp: 0x53b06ef5
Faulting module name: KERNELBASE.dll, version: 6.1.7601.19045, time stamp: 0x56259271
Exception code: 0xe0434352
Fault offset: 0x000000000000b3dd
Faulting process id: 0x1470
Faulting application start time: 0xAutoPico.exe0
Faulting application path: AutoPico.exe1
Faulting module path: AutoPico.exe2
Report Id: AutoPico.exe3
Error: (11/19/2015 10:59:15 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: AutoPico.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.IOException
Stack:
at System.Net.Sockets.NetworkStream.EndRead(System.IAsyncResult)
at AutoPico.KMSEmulator.TCPServer.ReadCallback(System.IAsyncResult)
at System.Net.LazyAsyncResult.Complete(IntPtr)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Net.ContextAwareResult.Complete(IntPtr)
at System.Net.Sockets.BaseOverlappedAsyncResult.CompletionPortCallback(UInt32, UInt32, System.Threading.NativeOverlapped*)
at System.Threading._IOCompletionCallback.PerformIOCompletionCallback(UInt32, UInt32, System.Threading.NativeOverlapped*)
Error: (11/19/2015 09:09:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/19/2015 08:30:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.2014.398, time stamp: 0x563b577c
Faulting module name: ntdll.dll, version: 6.1.7601.19045, time stamp: 0x56259295
Exception code: 0xc0000005
Fault offset: 0x000000000004f6c6
Faulting process id: 0x9e8
Faulting application start time: 0xNvStreamNetworkService.exe0
Faulting application path: NvStreamNetworkService.exe1
Faulting module path: NvStreamNetworkService.exe2
Report Id: NvStreamNetworkService.exe3
Error: (11/19/2015 08:30:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (11/20/2015 06:21:03 PM) (Source: volsnap) (EventID: 16) (User: )
Description: The shadow copies of volume I: were aborted because volume I:, which contains shadow copy storage for this shadow copy, was force dismounted.
Error: (11/20/2015 06:20:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/20/2015 05:47:00 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/20/2015 05:29:26 PM) (Source: volsnap) (EventID: 16) (User: )
Description: The shadow copies of volume I: were aborted because volume I:, which contains shadow copy storage for this shadow copy, was force dismounted.
Error: (11/20/2015 05:00:46 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/20/2015 00:02:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/20/2015 00:02:03 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (11/20/2015 10:08:47 AM) (Source: volsnap) (EventID: 16) (User: )
Description: The shadow copies of volume I: were aborted because volume I:, which contains shadow copy storage for this shadow copy, was force dismounted.
Error: (11/20/2015 09:47:31 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (11/19/2015 09:09:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
CodeIntegrity:
===================================
Date: 2015-11-20 18:58:47.613
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:58:47.550
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:58:47.426
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:58:47.285
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:48:33.823
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:48:33.760
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:48:33.635
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 18:48:33.433
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 17:15:59.779
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-11-20 17:15:59.710
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Percentage of memory in use: 33%
Total physical RAM: 8127.38 MB
Available physical RAM: 5366.32 MB
Total Virtual: 16252.97 MB
Available Virtual: 13775.32 MB
==================== Drives ================================
Drive c: (New Volume) (Fixed) (Total:232.79 GB) (Free:22.67 GB) NTFS
Drive f: (My HDrive) (Fixed) (Total:638.44 GB) (Free:95.79 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive i: (New Volume) (Fixed) (Total:292.97 GB) (Free:60.37 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 8731C8EA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2E942E93)
Partition 1: (Not Active) - (Size=101 MB) - (Type=42)
Partition 2: (Active) - (Size=638.4 GB) - (Type=42)
Partition 3: (Not Active) - (Size=293 GB) - (Type=42)
==================== End of Addition.txt ============================