Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-04-2016 Ran by USER (2016-04-19 08:54:04) Running from C:\Users\USER\Desktop Windows 8.1 Pro (X64) (2015-11-01 07:25:14) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2429467849-1766266843-749531403-500 - Administrator - Disabled) Guest (S-1-5-21-2429467849-1766266843-749531403-501 - Limited - Disabled) USER (S-1-5-21-2429467849-1766266843-749531403-1001 - Administrator - Enabled) => C:\Users\USER ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated) Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.0 - Adobe Systems Incorporated) Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated) Adobe Photoshop CS5 (HKLM-x32\...\{3EB745BA-194F-4475-9164-B20BB2172395}) (Version: 12.0 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{572C982F-95F5-0562-AE8F-8A9D7D024A88}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk) Autodesk 3ds Max 2016 (Version: 18.0.873.0 - Autodesk) Hidden Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk) Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.19 - Autodesk) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.5 - Autodesk) Autodesk Backburner 2016 (HKLM-x32\...\{8C5F38D2-9EFE-49A4-B3F5-BF3210FED168}) (Version: 16.0.0.0 - Autodesk) Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk) Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk) Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.19 - Autodesk) Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.19 - Autodesk) Autodesk Revit Interoperability for 3ds Max (HKLM\...\Autodesk Revit Interoperability for 3ds Max ) (Version: 16.0.394.0 - Autodesk) Autodesk Revit Interoperability for 3ds Max (Version: 16.0.394.0 - Autodesk) Hidden Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.0.9850 - Broadcom Corporation) Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) FileZilla Client 3.16.1 (HKLM-x32\...\FileZilla Client) (Version: 3.16.1 - Tim Kosse) Google Chrome (HKU\S-1-5-21-2429467849-1766266843-749531403-1001\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.) Intel(R) Chipset Device Software (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) Internet Download Manager 6, 25, 2, 2 (HKLM-x32\...\Internet Download Manager 6, 25, 2, 2) (Version: 6, 25, 2, 2 - Tonec Inc.) K-Lite Mega Codec Pack 11.1.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.1.0 - ) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Mozilla Firefox 45.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 en-US)) (Version: 45.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2.5941 - Mozilla) PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.9.2-r111395-release - Plays.tv, LLC) PowerISO (HKLM-x32\...\PowerISO) (Version: - ) PSD Codec by Ardfry Imaging, LLC (32 bit) (x32 Version: 1.0.15.0 - Ardfry Imaging, LLC) Hidden PSD Codec by Ardfry Imaging, LLC (64 bit) (Version: 1.0.15.0 - Ardfry Imaging, LLC) Hidden PSD CODEC Version 1.6.1.0 (HKLM\...\Ardfry PSD CODEC_is1) (Version: 1.6.1.0 - Ardfry Imaging, LLC) Raptr (HKLM-x32\...\Raptr) (Version: 5.1.2-r111396-release - Raptr, Inc) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7266 - Realtek Semiconductor Corp.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) UltraISO Premium V9.61 (HKLM-x32\...\UltraISO_is1) (Version: - ) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2429467849-1766266843-749531403-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File CustomCLSID: HKU\S-1-5-21-2429467849-1766266843-749531403-1001_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\USER\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2429467849-1766266843-749531403-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-2429467849-1766266843-749531403-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File CustomCLSID: HKU\S-1-5-21-2429467849-1766266843-749531403-1001_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\USER\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-2429467849-1766266843-749531403-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File CustomCLSID: HKU\S-1-5-21-2429467849-1766266843-749531403-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\USER\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {17712F98-03D1-498E-9EAC-B9C75E2F24A2} - \KMS Server Daily Activate -> No File <==== ATTENTION Task: {376BD59C-62F1-4FAD-9814-636C5D2FC231} - \KMS Server OnLogon Activate -> No File <==== ATTENTION Task: {460A2BBB-A1BD-4F57-BD44-85F53F06212C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2429467849-1766266843-749531403-1001Core => C:\Users\USER\AppData\Local\Google\Update\GoogleUpdate.exe [2015-11-01] (Google Inc.) Task: {88AFDE17-4215-4A96-B47B-EA99C3595396} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2429467849-1766266843-749531403-1001UA => C:\Users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe [2015-11-01] (Facebook Inc.) Task: {955B051B-E18E-45BD-91F9-6A0AC9D8FFAD} - System32\Tasks\AdobeAAMUpdater-1.0-HP-USER => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05] (Adobe Systems Incorporated) Task: {96169F3D-8AEC-494F-AE56-9289ADA5A934} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2429467849-1766266843-749531403-1001UA => C:\Users\USER\AppData\Local\Google\Update\GoogleUpdate.exe [2015-11-01] (Google Inc.) Task: {9907B5B5-DA81-4418-A12E-5DA8F57574A2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-18] (Adobe Systems Incorporated) Task: {A188135B-C178-434E-A323-1338AC088608} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2429467849-1766266843-749531403-1001Core => C:\Users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe [2015-11-01] (Facebook Inc.) Task: {DE1AC0CD-31F8-474E-A6DF-06BCAE7737F2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2429467849-1766266843-749531403-1001Core.job => C:\Users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2429467849-1766266843-749531403-1001UA.job => C:\Users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2429467849-1766266843-749531403-1001Core.job => C:\Users\USER\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2429467849-1766266843-749531403-1001UA.job => C:\Users\USER\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2010-01-10 07:17 - 2010-01-10 07:17 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2010-01-21 12:40 - 2010-01-21 12:40 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2015-11-01 12:29 - 2011-05-29 09:05 - 00164864 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll 2015-11-25 00:48 - 2015-11-25 00:48 - 00028160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\servicemanager.pyd 2015-11-25 00:46 - 2015-11-25 00:46 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pywintypes26.dll 2015-11-25 00:48 - 2015-11-25 00:48 - 00041472 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32service.pyd 2015-11-25 00:48 - 2015-11-25 00:48 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32api.pyd 2015-11-25 00:43 - 2015-11-25 00:43 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_hashlib.pyd 2015-11-25 00:48 - 2015-11-25 00:48 - 00017920 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32event.pyd 2015-11-25 00:48 - 2015-11-25 00:48 - 00019968 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32evtlog.pyd 2015-11-25 00:48 - 2015-11-25 00:48 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32process.pyd 2015-11-25 00:43 - 2015-11-25 00:43 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_socket.pyd 2015-11-25 00:43 - 2015-11-25 00:43 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ssl.pyd 2015-11-25 00:43 - 2015-11-25 00:43 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ctypes.pyd 2015-11-25 00:46 - 2015-11-25 00:46 - 00354304 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pythoncom26.dll 2015-11-25 00:48 - 2015-11-25 00:48 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32gui.pyd 2015-11-25 00:47 - 2015-11-25 00:47 - 01980928 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtGui.pyd 2015-12-08 00:57 - 2015-12-08 00:57 - 00077824 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sip.pyd 2015-11-25 00:47 - 2015-11-25 00:47 - 01862144 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtCore.pyd 2015-11-25 00:47 - 2015-11-25 00:47 - 00516608 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtNetwork.pyd 2015-11-25 00:47 - 2015-11-25 00:47 - 04060160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWidgets.pyd 2015-11-25 00:43 - 2015-11-25 00:43 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\select.pyd 2015-11-01 12:32 - 2014-05-23 04:36 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-11-03 13:18 - 2015-09-07 07:33 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll 2015-11-03 13:18 - 2015-09-07 07:33 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll 2010-11-23 02:56 - 2010-11-23 02:56 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ctypes.pyd 2010-11-23 02:56 - 2010-11-23 02:56 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_socket.pyd 2010-11-23 02:56 - 2010-11-23 02:56 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ssl.pyd 2014-05-14 03:26 - 2014-05-14 03:26 - 05812736 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtGui.pyd 2014-05-14 03:26 - 2014-05-14 03:26 - 00067584 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sip.pyd 2014-05-14 03:26 - 2014-05-14 03:26 - 01662464 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtCore.pyd 2014-05-14 03:26 - 2014-05-14 03:26 - 00494592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtNetwork.pyd 2010-11-23 02:57 - 2010-11-23 02:57 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32api.pyd 2010-11-23 02:56 - 2010-11-23 02:56 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pywintypes26.dll 2010-11-23 02:56 - 2010-11-23 02:56 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\select.pyd 2010-11-23 02:56 - 2010-11-23 02:56 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_hashlib.pyd 2010-11-23 02:57 - 2010-11-23 02:57 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32process.pyd 2010-11-23 02:57 - 2010-11-23 02:57 - 00111104 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32file.pyd 2010-11-23 02:56 - 2010-11-23 02:56 - 00044544 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_sqlite3.pyd 2011-02-15 22:17 - 2011-02-15 22:17 - 00417501 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sqlite3.dll 2010-11-23 02:57 - 2010-11-23 02:57 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32gui.pyd 2014-05-14 03:26 - 2014-05-14 03:26 - 00313856 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtWebKit.pyd 2010-11-23 02:56 - 2010-11-23 02:56 - 00127488 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pyexpat.pyd 2010-11-23 02:56 - 2010-11-23 02:56 - 00009216 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\winsound.pyd 2015-10-22 00:29 - 2015-10-22 00:29 - 00113171 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlc.dll 2015-10-22 00:29 - 2015-10-22 00:29 - 02396691 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlccore.dll 2010-11-23 02:56 - 2010-11-23 02:56 - 00583680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\unicodedata.pyd 2010-11-23 02:56 - 2010-11-23 02:56 - 00324608 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PIL._imaging.pyd 2015-06-27 03:09 - 2015-06-27 03:09 - 00271872 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\amd_ags.dll 2016-04-19 08:43 - 2015-09-07 07:33 - 00104328 _____ () C:\Users\USER\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll 2010-01-10 07:18 - 2010-01-10 07:18 - 04254560 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2010-01-21 12:34 - 2010-01-21 12:34 - 08793952 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2010-11-23 02:57 - 2010-11-23 02:57 - 00141312 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\gobject._gobject.pyd 2016-03-24 03:21 - 2016-03-24 03:21 - 02717595 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\heliotrope._purple.pyd 2011-02-15 22:17 - 2011-02-15 22:17 - 01213633 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libxml2-2.dll 2010-11-23 03:06 - 2010-11-23 03:06 - 00055808 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\zlib1.dll 2013-05-10 03:52 - 2013-05-10 03:52 - 00495680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libaim.dll 2013-05-10 03:52 - 2013-05-10 03:52 - 01183699 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\liboscar.dll 2013-05-10 03:52 - 2013-05-10 03:52 - 00483306 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libicq.dll 2013-05-03 22:57 - 2013-05-03 22:57 - 00655356 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libirc.dll 2013-05-03 22:56 - 2013-05-03 22:56 - 01306387 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libmsn.dll 2013-05-03 22:56 - 2013-05-03 22:56 - 00565461 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libxmpp.dll 2013-05-03 22:57 - 2013-05-03 22:57 - 01640221 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libjabber.dll 2013-05-03 22:56 - 2013-05-03 22:56 - 00506276 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoo.dll 2013-05-03 22:57 - 2013-05-03 22:57 - 01053730 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libymsg.dll 2013-05-03 22:57 - 2013-05-03 22:57 - 00497782 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoojp.dll 2013-05-03 22:57 - 2013-05-03 22:57 - 00603326 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl-nss.dll 2013-05-03 22:57 - 2013-05-03 22:57 - 00474199 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl.dll 2015-11-25 00:43 - 2015-11-25 00:43 - 00044544 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_sqlite3.pyd 2015-11-25 00:43 - 2015-11-25 00:43 - 00387072 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sqlite3.dll 2015-10-22 00:29 - 2015-10-22 00:29 - 00113171 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\libvlc.dll 2015-10-22 00:29 - 2015-10-22 00:29 - 02396691 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\libvlccore.dll 2015-11-25 00:48 - 2015-11-25 00:48 - 00111104 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32file.pyd 2015-11-25 00:47 - 2015-11-25 00:47 - 00216064 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWebKitWidgets.pyd 2015-11-25 00:47 - 2015-11-25 00:47 - 00118784 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWebKit.pyd 2015-11-25 00:47 - 2015-11-25 00:47 - 00199680 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtPrintSupport.pyd 2015-11-25 00:47 - 2015-11-25 00:47 - 00263168 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32com.shell.shell.pyd 2015-11-25 00:43 - 2015-11-25 00:43 - 00583680 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\unicodedata.pyd 2015-10-22 00:29 - 2015-10-22 00:29 - 00027667 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\plugins\audio_output\libdirectsound_plugin.dll 2015-10-22 00:29 - 2015-10-22 00:29 - 00031251 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\plugins\audio_output\libwaveout_plugin.dll 2015-10-22 00:29 - 2015-10-22 00:29 - 00066579 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\plugins\video_output\libdirectdraw_plugin.dll 2016-04-05 17:49 - 2016-04-05 17:49 - 02618120 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\ltc_host_ex.DLL 2016-03-16 14:17 - 2016-03-16 14:17 - 00048816 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 17:25 - 2013-08-22 17:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2429467849-1766266843-749531403-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\USER\AppData\Roaming\Microsoft\Windows Photo Viewer\Windows Photo Viewer Wallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{19D008C1-47A6-4E37-99F8-D59332DE73C0}] => (Allow) C:\Users\USER\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [TCP Query User{0B2E1299-EF61-4824-BA99-067150E148B1}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [UDP Query User{5990F274-38F9-4C18-A9E7-1259B1EE9237}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [{51A07180-9439-4E2C-A47C-44A2AA9D51C5}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{CB26A973-E969-4B81-A6AB-7E419C233403}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{6567E867-B2D1-4825-B384-7F7538E6AB32}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{248AC862-09C0-4BB5-BD14-A2132CC585FF}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{3CC330F0-93E7-44A6-9AB9-1B35163D1D89}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{75D5A5D0-5D99-48BB-8889-047113BA8DA9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B6941359-6FE6-4F41-9148-ED2600958642}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{4AAD76FB-73BB-4F3E-A095-708E72B746F3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{0D54B05B-5AAF-43B2-AE5D-97C8060A6B1D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{B36774AB-954A-413C-89C8-C3AFA642BC17}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{89F6291A-9BB5-43F3-BBAE-1A1CA8B7B1FF}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe FirewallRules: [{503D5199-4238-4B0B-933D-01EA0659A704}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe FirewallRules: [{C0BB2762-7152-422C-859A-82F6F34A3717}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe FirewallRules: [{AE96E851-E965-4AC2-9100-8CFEEAF5E2EC}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe FirewallRules: [{C24A2FE7-92BA-4E52-B7B6-A19D458F892A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe FirewallRules: [{25A172ED-C891-4D54-84AC-816E108CF748}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe FirewallRules: [{BAFAB5E6-EEE9-406C-9CC9-52953C668CB5}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe FirewallRules: [{6E6D2E90-892B-426A-BDFA-13B9642DD39A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe FirewallRules: [{BDC72DCD-F2F9-43AA-8984-D79FB493004A}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [{FD3EB3D3-8A20-406E-9E21-4EEBCE7BFF84}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe ==================== Restore Points ========================= 18-04-2016 10:47:28 Removed Autodesk Material Library Medium Resolution Image Library 2016 18-04-2016 18:02:00 JRT Pre-Junkware Removal ==================== Faulty Device Manager Devices ============= Name: HP LEDM Description: HP LEDM Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (04/18/2016 09:16:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: plugin-container.exe, version: 45.0.2.5941, time stamp: 0x57071d64 Faulting module name: mozglue.dll, version: 45.0.2.5941, time stamp: 0x57070ebc Exception code: 0x80000003 Fault offset: 0x0000ec22 Faulting process id: 0xa94 Faulting application start time: 0xplugin-container.exe0 Faulting application path: plugin-container.exe1 Faulting module path: plugin-container.exe2 Report Id: plugin-container.exe3 Faulting package full name: plugin-container.exe4 Faulting package-relative application ID: plugin-container.exe5 Error: (04/18/2016 09:16:45 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program firefox.exe version 45.0.2.5941 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 1318 Start Time: 01d19981770af719 Termination Time: 4294967295 Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Report Id: 52eb7a34-0589-11e6-8265-0015836be5e7 Faulting package full name: Faulting package-relative application ID: Error: (04/18/2016 06:16:23 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program firefox.exe version 45.0.2.5941 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: f40 Start Time: 01d1997c87ef6039 Termination Time: 4294967295 Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Report Id: 206ec3ca-0570-11e6-8265-0015836be5e7 Faulting package full name: Faulting package-relative application ID: Error: (04/18/2016 06:12:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: igfxCUIService.exe, version: 6.15.10.3621, time stamp: 0x5376e21a Faulting module name: igfxCUIService.exe, version: 6.15.10.3621, time stamp: 0x5376e21a Exception code: 0xc0000005 Fault offset: 0x000000000001116f Faulting process id: 0x3b8 Faulting application start time: 0xigfxCUIService.exe0 Faulting application path: igfxCUIService.exe1 Faulting module path: igfxCUIService.exe2 Report Id: igfxCUIService.exe3 Faulting package full name: igfxCUIService.exe4 Faulting package-relative application ID: igfxCUIService.exe5 Error: (04/18/2016 06:02:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Access is denied. . Error: (04/18/2016 04:54:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: igfxCUIService.exe, version: 6.15.10.3621, time stamp: 0x5376e21a Faulting module name: igfxCUIService.exe, version: 6.15.10.3621, time stamp: 0x5376e21a Exception code: 0xc0000005 Fault offset: 0x000000000000ec68 Faulting process id: 0x324 Faulting application start time: 0xigfxCUIService.exe0 Faulting application path: igfxCUIService.exe1 Faulting module path: igfxCUIService.exe2 Report Id: igfxCUIService.exe3 Faulting package full name: igfxCUIService.exe4 Faulting package-relative application ID: igfxCUIService.exe5 Error: (04/18/2016 10:47:34 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Access is denied. . Error: (04/18/2016 10:42:53 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: License Activation (slui.exe) failed with the following error code: hr=0xC004F074 Command-line arguments: RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (04/18/2016 10:42:45 AM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: The index cannot be initialized. Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) Error: (04/18/2016 10:42:45 AM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: The application cannot be initialized. Context: Windows Application Details: The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06) System errors: ============= Error: (04/18/2016 06:12:08 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Intel(R) HD Graphics Control Panel Service service terminated with the following error: %%2147500037 Error: (04/18/2016 06:11:16 PM) (Source: BTHUSB) (EventID: 30) (User: ) Description: The local adapter does not support an important Low Energy controller state. The minimum required supported state mask is 0x1f7fffff, got 0x1f3fffff. Low Energy functionality will be disabled. Error: (04/18/2016 06:10:47 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: %%1056 Error: (04/18/2016 06:10:23 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable Error: (04/18/2016 06:10:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Intel(R) Dynamic Application Loader Host Interface Service service terminated unexpectedly. It has done this 1 time(s). Error: (04/18/2016 06:10:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Intel(R) ME Service service terminated unexpectedly. It has done this 1 time(s). Error: (04/18/2016 06:10:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (04/18/2016 06:10:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Plays.tv Update Service service terminated unexpectedly. It has done this 1 time(s). Error: (04/18/2016 06:10:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Intel(R) Capability Licensing Service Interface service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service. Error: (04/18/2016 06:10:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Adobe Genuine Software Integrity Service service terminated unexpectedly. It has done this 1 time(s). ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3-4150 CPU @ 3.50GHz Percentage of memory in use: 24% Total physical RAM: 8151.91 MB Available physical RAM: 6162.44 MB Total Virtual: 11095.91 MB Available Virtual: 8218.3 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:199.68 GB) (Free:141.23 GB) NTFS Drive d: () (Fixed) (Total:632.39 GB) (Free:515.32 GB) NTFS Drive g: (New Volume) (Fixed) (Total:247.92 GB) (Free:237.33 GB) NTFS Drive i: (New Volume) (Fixed) (Total:585.78 GB) (Free:167.88 GB) NTFS Drive j: (Warning) (Fixed) (Total:98.93 GB) (Free:84.74 GB) NTFS Drive y: (WarningFile) (Fixed) (Total:97.82 GB) (Free:47.49 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 722A49E0) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D3A4D3A4) Partition 1: (Not Active) - (Size=247.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=585.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=97.8 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================