Jump to content

ryankmartin

Honorary Members
  • Posts

    107
  • Joined

  • Last visited

Everything posted by ryankmartin

  1. Hi there. I decided to switch to Microsoft Edge because of its battery usage advantage over Chrome, but the fonts aren't right... they seem to be Times New Roman If anyone is able to help that'd be great. My OS is Windows 10 Build 10586.71 (Version 1511) Also, I've already tried resetting font settings in Control Panel and Internet Options. Thanks.
  2. I repeated post 35, and the problem is still there, unfortunately. EDIT: I think the problem is with Windows handling the driver or YouTube video because the error message before was a Windows System error from TaskHost.exe.
  3. Okay, I re-installed AMD's software. I also reset factory defaults just in case it saved the previous settings. The driver no longer crashes when I play a video, but the browser freezes for a second and then I only get the audio. For example, I was watching the Windows 10 announcement video on Microsoft's website. That only had audio, not video, video is just a blank screen. So I tried the video in YouTube, but the same thing happened. Also, the TOSHIBA driver is older than the AMD driver I currently have installed. I think the version I have installed now is 16.4 and the Toshiba one is near version 14... The Toshiba driver crashes the driver, but the current one only blanks the video and I only receive audio. Internet Explorer is completely unresponsive, Chrome is fairly responsive and Firefox is in between IE and Chrome.
  4. For some reason whenever I try to launch Catalyst Control Center, this error message now pops up. (This has never happened before)
  5. MiniToolBox by Farbar Version: 21-07-2014 Ran by Ryan (administrator) on 04-10-2014 at 16:57:13 Running from "C:\Users\Ryan\Desktop" Microsoft Windows 8.1 (X64) Boot Mode: Normal *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= Hosts content: ================================= ========================= IP Configuration: ================================ Qualcomm Atheros AR9485WB-EG Wireless Network Adapter = WiFi (Connected) VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected) Realtek PCIe GBE Family Controller = Ethernet (Media disconnected) Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected) # ---------------------------------- # IPv4 Configuration # ---------------------------------- pushd interface ipv4 reset set global icmpredirects=enabled set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="WiFi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Local Area Connection* 3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="other_1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0 popd # End of IPv4 configuration Windows IP Configuration Host Name . . . . . . . . . . . . : Ryan-PC Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No Wireless LAN adapter Local Area Connection* 3: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter Physical Address. . . . . . . . . : 16-6D-57-AA-42-77 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Ethernet adapter Bluetooth Network Connection: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network) Physical Address. . . . . . . . . : 44-6D-57-AA-A8-BB DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Wireless LAN adapter WiFi: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Qualcomm Atheros AR9485WB-EG Wireless Network Adapter Physical Address. . . . . . . . . : 44-6D-57-AA-42-77 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::e524:b55:1c92:d847%4(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.0.7(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Lease Obtained. . . . . . . . . . : Saturday, 4 October 2014 4:09:48 PM Lease Expires . . . . . . . . . . : Saturday, 4 October 2014 5:39:55 PM Default Gateway . . . . . . . . . : 192.168.0.1 DHCP Server . . . . . . . . . . . : 192.168.0.1 DHCPv6 IAID . . . . . . . . . . . : 71593303 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-BE-57-43-00-1E-8C-F6-32-E1 DNS Servers . . . . . . . . . . . : 61.9.242.33 61.9.226.33 NetBIOS over Tcpip. . . . . . . . : Enabled Ethernet adapter Ethernet: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller Physical Address. . . . . . . . . : 00-1E-8C-F6-32-E1 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Ethernet adapter VirtualBox Host-Only Network: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter Physical Address. . . . . . . . . : 08-00-27-00-FC-1A DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::2dc6:b9c7:5753:a071%10(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.56.1(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : DHCPv6 IAID . . . . . . . . . . . : 369623079 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-BE-57-43-00-1E-8C-F6-32-E1 DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1 fec0:0:0:ffff::2%1 fec0:0:0:ffff::3%1 NetBIOS over Tcpip. . . . . . . . : Enabled Tunnel adapter isatap.{7AB3B832-F9FA-4B54-9DE7-2E4BA0FA1559}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter isatap.{E2F09E78-E9CA-4E6D-B8E9-BFAD7D0528FC}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2 Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Server: dns-cust.wel.bigpond.net.au Address: 61.9.242.33 Name: google.com Addresses: 2404:6800:4006:805::100e 74.125.237.168 74.125.237.162 74.125.237.166 74.125.237.169 74.125.237.160 74.125.237.167 74.125.237.164 74.125.237.163 74.125.237.161 74.125.237.174 74.125.237.165 Pinging google.com [74.125.237.160] with 32 bytes of data: Reply from 74.125.237.160: bytes=32 time=64ms TTL=50 Reply from 74.125.237.160: bytes=32 time=63ms TTL=50 Ping statistics for 74.125.237.160: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 63ms, Maximum = 64ms, Average = 63ms Server: dns-cust.wel.bigpond.net.au Address: 61.9.242.33 Name: yahoo.com Addresses: 98.139.183.24 98.138.253.109 206.190.36.45 Pinging yahoo.com [98.139.183.24] with 32 bytes of data: Reply from 98.139.183.24: bytes=32 time=265ms TTL=42 Reply from 98.139.183.24: bytes=32 time=305ms TTL=41 Ping statistics for 98.139.183.24: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 265ms, Maximum = 305ms, Average = 285ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 7...16 6d 57 aa 42 77 ......Microsoft Wi-Fi Direct Virtual Adapter 6...44 6d 57 aa a8 bb ......Bluetooth Device (Personal Area Network) 4...44 6d 57 aa 42 77 ......Qualcomm Atheros AR9485WB-EG Wireless Network Adapter 3...00 1e 8c f6 32 e1 ......Realtek PCIe GBE Family Controller 10...08 00 27 00 fc 1a ......VirtualBox Host-Only Ethernet Adapter 1...........................Software Loopback Interface 1 8...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2 =========================================================================== IPv4 Route Table =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.7 25 127.0.0.0 255.0.0.0 On-link 127.0.0.1 306 127.0.0.1 255.255.255.255 On-link 127.0.0.1 306 127.255.255.255 255.255.255.255 On-link 127.0.0.1 306 192.168.0.0 255.255.255.0 On-link 192.168.0.7 281 192.168.0.7 255.255.255.255 On-link 192.168.0.7 281 192.168.0.255 255.255.255.255 On-link 192.168.0.7 281 192.168.56.0 255.255.255.0 On-link 192.168.56.1 276 192.168.56.1 255.255.255.255 On-link 192.168.56.1 276 192.168.56.255 255.255.255.255 On-link 192.168.56.1 276 224.0.0.0 240.0.0.0 On-link 127.0.0.1 306 224.0.0.0 240.0.0.0 On-link 192.168.56.1 276 224.0.0.0 240.0.0.0 On-link 192.168.0.7 281 255.255.255.255 255.255.255.255 On-link 127.0.0.1 306 255.255.255.255 255.255.255.255 On-link 192.168.56.1 276 255.255.255.255 255.255.255.255 On-link 192.168.0.7 281 =========================================================================== Persistent Routes: None IPv6 Route Table =========================================================================== Active Routes: If Metric Network Destination Gateway 1 306 ::1/128 On-link 10 276 fe80::/64 On-link 4 281 fe80::/64 On-link 10 276 fe80::2dc6:b9c7:5753:a071/128 On-link 4 281 fe80::e524:b55:1c92:d847/128 On-link 1 306 ff00::/8 On-link 10 276 ff00::/8 On-link 4 281 ff00::/8 On-link =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation) Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation) Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation) Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation) Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation) Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation) Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation) x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation) x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation) x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation) x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation) x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation) x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (10/04/2014 04:40:56 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0x1394 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 Error: (10/04/2014 04:10:16 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0x1828 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 Error: (10/04/2014 03:59:45 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0x1724 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 Error: (10/04/2014 02:52:15 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0x17e8 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 Error: (10/04/2014 02:34:57 PM) (Source: Application Hang) (User: ) Description: The program TS3W.exe version 0.2.0.209 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 117c Start Time: 01cfdf9d2a49df16 Termination Time: 4294967295 Application Path: C:\Program Files (x86)\Electronic Arts\The Sims 3\Game\Bin\TS3W.exe Report Id: 8cb2daf2-4b90-11e4-8251-446d57aaa8bb Faulting package full name: Faulting package-relative application ID: Error: (10/04/2014 02:15:52 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0x1140 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 Error: (10/04/2014 01:26:20 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0x1218 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 Error: (10/04/2014 01:16:23 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0x1654 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 Error: (10/04/2014 00:14:11 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0xdc4 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 Error: (10/04/2014 00:13:51 PM) (Source: Application Error) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16500, time stamp: 0x52bd40e3 Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8 Exception code: 0xc0000005 Fault offset: 0x0000000000046be6 Faulting process ID: 0x91c Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 System errors: ============= Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Error: (10/04/2014 02:57:44 PM) (Source: DCOM) (User: RYAN-PC) Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Ryan-PCRyanS-1-5-21-780284380-3105116856-1298001378-1001LocalHost (Using LRPC)UnavailableUnavailable Microsoft Office Sessions: ========================= Error: (10/04/2014 04:40:56 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be6139401cfdfaee1e3a053C:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dll282487b5-4ba2-11e4-8251-446d57aaa8bb Error: (10/04/2014 04:10:16 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be6182801cfdfaa921765fbC:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dlldf5e22aa-4b9d-11e4-8251-446d57aaa8bb Error: (10/04/2014 03:59:45 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be6172401cfdfa6817fea3bC:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dll66eeab6a-4b9c-11e4-8251-446d57aaa8bb Error: (10/04/2014 02:52:15 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be617e801cfdf9fb2f738f6C:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dllf8e3b5ec-4b92-11e4-8251-446d57aaa8bb Error: (10/04/2014 02:34:57 PM) (Source: Application Hang)(User: ) Description: TS3W.exe0.2.0.209117c01cfdf9d2a49df164294967295C:\Program Files (x86)\Electronic Arts\The Sims 3\Game\Bin\TS3W.exe8cb2daf2-4b90-11e4-8251-446d57aaa8bb Error: (10/04/2014 02:15:52 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be6114001cfdf971847ff91C:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dlle414f615-4b8d-11e4-8251-446d57aaa8bb Error: (10/04/2014 01:26:20 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be6121801cfdf93afa3b47aC:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dllf8969fef-4b86-11e4-8251-446d57aaa8bb Error: (10/04/2014 01:16:23 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be6165401cfdf8fa2d81086C:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dll94b06a16-4b85-11e4-8251-446d57aaa8bb Error: (10/04/2014 00:14:11 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be6dc401cfdf899c7c66feC:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dlle4059c9d-4b7c-11e4-8251-446d57aaa8bb Error: (10/04/2014 00:13:51 PM) (Source: Application Error)(User: ) Description: SettingSyncHost.exe6.3.9600.1650052bd40e3ntdll.dll6.3.9600.1650252c359e8c00000050000000000046be691c01cfdf89968504fbC:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dlld891f03d-4b7c-11e4-8251-446d57aaa8bb =========================== Installed Programs ============================ AMD Accelerated Video Transcoding (Version: 12.5.100.21219 - Advanced Micro Devices, Inc.) Hidden AMD APP SDK Runtime (Version: 10.0.1084.4 - Advanced Micro Devices Inc.) Hidden AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach) Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team) Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center (x32 Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Graphics Previews Common (x32 Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line) FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - ) Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 2.1.32.905 - Foxit Software Inc.) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.0.3.916 - Foxit Software Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) Inkscape 0.48.5 (HKLM-x32\...\Inkscape) (Version: 0.48.5 - ) Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation) Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4433.1508 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6012.0828 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4433.1508 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4433.1508 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4433.1508 - Microsoft Corporation) Hidden Oracle VM VirtualBox 4.3.16 (HKLM\...\{D7FAEA32-7CE3-4D9F-9139-F7B87BCC50AF}) (Version: 4.3.16 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.0.14.2148 - Electronic Arts, Inc.) paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC) Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.0.89.0 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6794 - Realtek Semiconductor Corp.) The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts) The Sims™ 3 Ambitions (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts) The Sims™ 3 Generations (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts) The Sims™ 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts) The Sims™ 3 Into the Future (HKLM-x32\...\{A0BBD6C7-B546-4048-B33A-F21F5C9F5B09}) (Version: 21.0.150 - Electronic Arts) The Sims™ 3 Island Paradise (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts) The Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts) The Sims™ 3 Master Suite Stuff (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts) The Sims™ 3 Outdoor Living Stuff (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts) The Sims™ 3 Seasons (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts) The Sims™ 3 Town Life Stuff (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts) ========================= Devices: ================================ ========================= Memory info: =================================== Percentage of memory in use: 26% Total physical RAM: 12247.8 MB Available physical RAM: 9050.86 MB Total Pagefile: 14679.8 MB Available Pagefile: 10812.25 MB Total Virtual: 4095.88 MB Available Virtual: 3943.12 MB ========================= Partitions: ===================================== 1 Drive c: (Windows) (Fixed) (Total:484.8 GB) (Free:393.92 GB) NTFS ========================= Users: ======================================== User accounts for \\RYAN-PC Administrator Guest Ryan ========================= Minidump Files ================================== No minidump file found **** End of log ****
  6. No, the computer has never been infected since I re-installed. I have gotten a trojan before, though. But I blitzed it with Malwarebytes
  7. No, I haven't installed any CODEC packs. I recently re-installed Windows 8.1. I'm not sure if it's an English US version, it was purchased in Australia (where I live)
  8. Done. It looks like the problem has come back. Now, I can't play any videos at all (presuming most videos on YouTube are in MP4 format). If I have an mp4 file on my computer, Windows Media Player will show an error saying I have no memory, meaning I can only play videos with VLC. So basically, when I try to view a video on YouTube, the whole screen goes blank and shows this message:
  9. Oh, cool! I didn't realize I'm doing the steps above as you requested
  10. Check Disk results: TimeCreated : 3/10/2014 11:51:12 AMMessage : Checking file system on C: The type of the file system is NTFS. Volume label is Windows. A disk check has been scheduled. Windows will now check the disk. Stage 1: Examining basic file system structure ... 822016 file records processed. File verification completed. 7642 large file records processed. 0 bad file records processed. Stage 2: Examining file name linkage ... 922030 index entries processed. Index verification completed. 0 unindexed files scanned. 0 unindexed files recovered. Stage 3: Examining security descriptors ... Cleaning up 22 unused index entries from index $SII of file 0x9. Cleaning up 22 unused index entries from index $SDH of file 0x9. Cleaning up 22 unused security descriptors. Security descriptor verification completed. 50008 data files processed. CHKDSK is verifying Usn Journal... 537408144 USN bytes processed. Usn Journal verification completed. Stage 4: Looking for bad clusters in user file data ... 822000 files processed. File data verification completed. Stage 5: Looking for bad, free clusters ... 111369062 free clusters processed. Free space verification is complete. Windows has scanned the file system and found no problems. No further action is required. 508351452 KB total disk space. 61288724 KB in 188426 files. 155320 KB in 50009 indexes. 0 KB in bad sectors. 1431160 KB in use by the system. 65536 KB occupied by the log file. 445476248 KB available on disk. 4096 bytes in each allocation unit. 127087863 total allocation units on disk. 111369062 allocation units available on disk. Internal Info: 00 8b 0c 00 69 a3 03 00 3b 05 07 00 00 00 00 00 ....i...;....... 24 65 00 00 75 00 00 00 00 00 00 00 00 00 00 00 $e..u........... Windows has finished checking your disk. Please wait while your computer restarts. TimeCreated : 2/10/2014 7:13:35 PMMessage : Checking file system on C: The type of the file system is NTFS. Volume label is Windows. A disk check has been scheduled. Windows will now check the disk. Stage 1: Examining basic file system structure ... 822016 file records processed. File verification completed. 7184 large file records processed. 0 bad file records processed. Stage 2: Examining file name linkage ... 920846 index entries processed. Index verification completed. 0 unindexed files scanned. 0 unindexed files recovered. Stage 3: Examining security descriptors ... Cleaning up 4943 unused index entries from index $SII of file 0x9. Cleaning up 4943 unused index entries from index $SDH of file 0x9. Cleaning up 4943 unused security descriptors. CHKDSK is compacting the security descriptor stream Security descriptor verification completed. 49416 data files processed. CHKDSK is verifying Usn Journal... 540526320 USN bytes processed. Usn Journal verification completed. Stage 4: Looking for bad clusters in user file data ... 822000 files processed. File data verification completed. Stage 5: Looking for bad, free clusters ... 112435731 free clusters processed. Free space verification is complete. CHKDSK discovered free space marked as allocated in the master file table (MFT) bitmap. CHKDSK discovered free space marked as allocated in the volume bitmap. Windows has made corrections to the file system. No further action is required. 508351452 KB total disk space. 57020156 KB in 188623 files. 154208 KB in 49419 indexes. 0 KB in bad sectors. 1434160 KB in use by the system. 65536 KB occupied by the log file. 449742928 KB available on disk. 4096 bytes in each allocation unit. 127087863 total allocation units on disk. 112435732 allocation units available on disk. Internal Info: 00 8b 0c 00 de a1 03 00 a6 fd 06 00 00 00 00 00 ................ 24 65 00 00 75 00 00 00 00 00 00 00 00 00 00 00 $e..u........... Windows has finished checking your disk. Please wait while your computer restarts.
  11. Check Disk Completed successfully. It said 100% complete for about a minute and then finalized Windows Updates and went straight to the lock screen.
  12. Okay, I'll run Check Disk again but without closing the lid.
  13. So I ran Check Disk as requested, it went all the way to 11% at stuck like that for 3 hours. I shut the lid of my laptop. After, I realized my laptop shut down. When I opened the lid to see how progress was going, it wasn't on. It was connected to the power the whole time. So I manually switched it on and it started Windows and booted to the desktop, as usual. Then I ran TFC as requested. After running TFC, I shut the computer down. There was no dialog box telling me to restart. As I shut down, I also noticed the critical error sound, but I saw no error.
  14. Okay. Chkdsk and TFC are both complete. After chkdsk ran I presume it shut the computer down.
  15. Hi. Chkdsk has been stuck at 11% for an hour. Is this normal?
  16. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-10-2014 01 Ran by Ryan (administrator) on RYAN-PC on 02-10-2014 14:18:50 Running from C:\Users\Ryan\Desktop Loaded Profile: Ryan (Available profiles: Ryan) Platform: Windows 8.1 (X64) OS Language: English (United Kingdom) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Microsoft Corporation) C:\Windows\System32\InputMethod\JPN\JpnIME.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Corporation) C:\Windows\WinStore\WSHost.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\AppVShNotify.exe (Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe (Microsoft Corporation) C:\Windows\FileManager\PhotosApp.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\nacl64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\nacl64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM-x32\...\Run: [startCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-09-15] (Advanced Micro Devices, Inc.) HKU\S-1-5-21-780284380-3105116856-1298001378-1001\...\MountPoints2: {8e2bcf18-0039-11e4-824b-806e6f6e6963} - "E:\Autorun.exe" ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) ShellIconOverlayIdentifiers: [storageProviderError] -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\System32\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [storageProviderSyncing] -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\System32\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [storageProviderError] -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [storageProviderSyncing] -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com.au/?gfe_rd=cr&ei=xn-uU4mXE8eN8QfNrIDgAw&gws_rd=ssl BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 61.9.242.33 61.9.226.33 FireFox: ======== FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) Chrome: ======= CHR Profile: C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-02] CHR Extension: (Bejeweled) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm [2014-10-02] CHR Extension: (Angry Birds) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-10-02] CHR Extension: (Google Drive) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-02] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-02] CHR Extension: (WOT) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2014-10-02] CHR Extension: (YouTube) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-02] CHR Extension: (Thesaurus.com - Synonyms and Antonyms) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\clljlcapeomdokpgadmegpabakieebci [2014-10-02] CHR Extension: (Google Search) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-02] CHR Extension: (Google News) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dllkocilcinkggkchnjgegijklcililc [2014-10-02] CHR Extension: (Google Calendar) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-10-02] CHR Extension: (Google Sheets) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-10-02] CHR Extension: (Word Online) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2014-10-02] CHR Extension: (AdBlock Premium) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2014-10-02] CHR Extension: (AdBlock) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-10-02] CHR Extension: (Dictionary by Dictionary.com) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikhgcaliglmioibbockkmjknfnepbdh [2014-10-02] CHR Extension: (Translator by Dictionary.com) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\glacllipodbjfijgkcdifnlhmoddlkon [2014-10-02] CHR Extension: (Flappy 2048) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iogjhpoleehplpcaikidehfidfmehojc [2014-10-02] CHR Extension: (WordCounter.net) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbmpgnfkmmcabkcikheplopibnejhcej [2014-10-02] CHR Extension: (Google Play) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-10-02] CHR Extension: (AudioSauna) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2014-10-02] CHR Extension: (Google Maps) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-10-02] CHR Extension: (Plants vs Zombies) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcegpfdgcoclcdfkjahiimlikdpnina [2014-10-02] CHR Extension: (Text) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmfbcljfglbokpmkimbfghdkjmjhdgbg [2014-10-02] CHR Extension: (Need for Speed World) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk [2014-10-02] CHR Extension: (OneDrive) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2014-10-02] CHR Extension: (Google Wallet) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-02] CHR Extension: (Flappy 2048) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdgadhmgfhnfngccdplljphgccjoipg [2014-10-02] CHR Extension: (PDF Viewer) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2014-10-02] CHR Extension: (Where is the red) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohpblkkbmfceapbolfogbfpkcjdlhonb [2014-10-02] CHR Extension: (Gmail) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-02] CHR Extension: (Abstract-Blue) - C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\plnacehkknmafkjgkikclamogikoiaaa [2014-10-02] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242912 2014-09-11] (Foxit Software Inc.) S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation) S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2013-08-22] (Microsoft Corporation) S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2013-08-22] (Microsoft Corporation) R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1817704 2012-11-22] (Microsoft Corporation) R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [105448 2014-08-28] (Razer Inc.) S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation) S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.) R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3858944 2013-10-24] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-22] (Advanced Micro Devices) R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation) R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows ® Win 7 DDK provider) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-02 16:32 - 2014-10-02 10:14 - 00000000 ____D () C:\Windows.old 2014-10-02 16:32 - 2014-10-02 08:42 - 00000000 ___DC () C:\WINDOWS\Panther 2014-10-02 16:30 - 2014-10-02 16:30 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff 2014-10-02 16:20 - 2014-10-02 16:20 - 00000000 ____D () C:\$WINDOWS.~BT 2014-10-02 14:18 - 2014-10-02 14:19 - 00013398 _____ () C:\Users\Ryan\Desktop\FRST.txt 2014-10-02 14:18 - 2014-10-02 14:18 - 00000000 ____D () C:\FRST 2014-10-02 14:17 - 2014-10-02 14:18 - 02108928 _____ (Farbar) C:\Users\Ryan\Desktop\FRST64.exe 2014-10-02 12:20 - 2014-09-22 14:42 - 00278152 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2014-10-02 11:53 - 2014-10-02 11:54 - 00003170 _____ () C:\WINDOWS\DPINST.LOG 2014-10-02 11:53 - 2014-10-02 11:54 - 00001452 _____ () C:\WINDOWS\Synaptics.log 2014-10-02 11:00 - 2014-10-02 11:01 - 34573304 _____ (inkscape.org) C:\Users\Ryan\Downloads\Inkscape-0.48.5-1-win32.exe 2014-10-02 10:56 - 2014-10-02 11:12 - 00000000 ____D () C:\Users\Ryan\AppData\Local\paint.net 2014-10-02 10:56 - 2014-10-02 10:56 - 00001207 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk 2014-10-02 10:56 - 2014-10-02 10:56 - 00001195 _____ () C:\Users\Public\Desktop\paint.net.lnk 2014-10-02 10:56 - 2014-10-02 10:56 - 00000000 ____D () C:\Program Files\paint.net 2014-10-02 10:55 - 2014-10-02 10:55 - 06272852 _____ () C:\Users\Ryan\Downloads\paint.net.4.0.3.install.zip 2014-10-02 10:50 - 2014-10-02 10:50 - 00891224 _____ (AMD) C:\Users\Ryan\Downloads\amddriverdownloader.exe 2014-10-02 10:42 - 2014-10-02 10:42 - 00918440 _____ (Oracle Corporation) C:\Users\Ryan\Downloads\chromeinstall-7u67.exe 2014-10-02 10:42 - 2014-10-02 10:42 - 00002069 _____ () C:\Users\Public\Desktop\Razer Cortex.lnk 2014-10-02 10:42 - 2014-10-02 10:42 - 00000000 ____D () C:\ProgramData\Razer 2014-10-02 10:42 - 2014-10-02 10:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2014-10-02 10:42 - 2014-10-02 10:42 - 00000000 ____D () C:\Program Files (x86)\Razer 2014-10-02 10:42 - 2012-11-20 16:13 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll 2014-10-02 10:42 - 2012-11-20 16:13 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll 2014-10-02 10:42 - 2012-11-20 16:13 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll 2014-10-02 10:42 - 2012-11-20 16:13 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll 2014-10-02 10:39 - 2014-10-02 10:40 - 21178016 _____ (Razer Inc. ) C:\Users\Ryan\Downloads\RazerCortexSetup_5.0.89.0.exe 2014-10-02 09:41 - 2014-10-02 09:41 - 00002119 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2014-10-02 09:41 - 2014-10-02 09:41 - 00002119 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2014-10-02 09:40 - 2014-10-02 09:40 - 00002172 _____ () C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2014-10-02 09:40 - 2014-10-02 09:40 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive 2014-10-02 09:40 - 2014-10-02 09:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive 2014-10-02 09:36 - 2014-10-02 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2014-10-02 09:36 - 2014-10-02 09:36 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-10-02 09:35 - 2014-10-02 09:35 - 00000000 ____D () C:\Program Files\Microsoft Office 15 2014-10-02 09:22 - 2014-10-02 09:22 - 00000000 ____D () C:\Users\Ryan\AppData\Roaming\ATI 2014-10-02 09:22 - 2014-10-02 09:22 - 00000000 ____D () C:\Users\Ryan\AppData\Local\ATI 2014-10-02 09:22 - 2014-10-02 09:22 - 00000000 ____D () C:\ProgramData\ATI 2014-10-02 09:19 - 2014-10-02 09:19 - 00056548 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201410020919463749.log 2014-10-02 09:19 - 2014-10-02 09:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2014-10-02 09:19 - 2014-10-02 09:19 - 00000000 ____D () C:\ProgramData\AMD 2014-10-02 09:19 - 2014-10-02 09:19 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-10-02 09:19 - 2014-10-02 09:19 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-10-02 09:18 - 2014-10-02 09:18 - 00000000 ____D () C:\Program Files\AMD 2014-10-02 09:17 - 2014-10-02 09:17 - 00000000 ____D () C:\ProgramData\Package Cache 2014-10-02 09:17 - 2014-10-02 09:17 - 00000000 ____D () C:\Program Files\ATI 2014-10-02 09:15 - 2014-10-02 09:15 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-10-02 09:12 - 2014-10-02 09:14 - 286582040 _____ (AMD Inc.) C:\Users\Ryan\Downloads\amd-catalyst-14-9-win7-win8.1-64bit-dd-ccc-whql.exe 2014-10-02 09:00 - 2014-10-02 09:00 - 00000000 ____D () C:\Users\Public\Foxit Software 2014-10-02 09:00 - 2014-10-02 09:00 - 00000000 ____D () C:\Program Files (x86)\Foxit Software 2014-10-02 08:58 - 2014-10-02 08:59 - 37963088 _____ (Foxit Software Inc. ) C:\Users\Ryan\Downloads\FoxitReader703.0916_prom_enu_Setup.exe 2014-10-02 08:55 - 2014-10-02 08:57 - 00167186 _____ () C:\Users\Ryan\Downloads\audacity-win-2.0.6.exe 2014-10-02 08:54 - 2014-10-02 08:54 - 00000000 ____D () C:\Users\Ryan\AppData\Roaming\Macromedia 2014-10-02 08:53 - 2014-10-02 13:55 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-780284380-3105116856-1298001378-1001 2014-10-02 08:52 - 2014-10-02 13:57 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-10-02 08:52 - 2014-10-02 09:23 - 00002210 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-10-02 08:52 - 2014-10-02 09:22 - 00000906 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-10-02 08:52 - 2014-10-02 08:52 - 00003882 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2014-10-02 08:52 - 2014-10-02 08:52 - 00003646 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2014-10-02 08:52 - 2014-10-02 08:52 - 00000000 ____D () C:\Users\Ryan\AppData\Local\Google 2014-10-02 08:52 - 2014-10-02 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-10-02 08:52 - 2014-10-02 08:52 - 00000000 ____D () C:\Program Files (x86)\Google 2014-10-02 08:49 - 2014-10-02 08:49 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf 2014-10-02 08:46 - 2014-10-02 08:46 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies 2014-10-02 08:46 - 2014-10-02 08:46 - 00000000 ____D () C:\Program Files\Common Files\Atheros 2014-10-02 08:46 - 2014-10-02 08:46 - 00000000 _____ () C:\WINDOWS\ativpsrm.bin 2014-10-02 08:44 - 2014-10-02 09:26 - 00818732 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-10-02 08:43 - 2014-10-02 08:47 - 00000000 ____D () C:\Users\Ryan\AppData\Local\PackageStaging 2014-10-02 08:43 - 2014-10-02 08:43 - 00040730 _____ () C:\Users\Ryan\Desktop\Removed Applications.html 2014-10-02 08:41 - 2014-10-02 08:41 - 00001449 _____ () C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-10-02 08:41 - 2014-10-02 08:41 - 00000020 ___SH () C:\Users\Ryan\ntuser.ini 2014-10-02 08:41 - 2014-10-02 08:41 - 00000000 ____D () C:\Users\Ryan\AppData\Roaming\Adobe 2014-10-02 08:41 - 2014-10-02 08:41 - 00000000 ____D () C:\Users\Ryan\AppData\Local\VirtualStore 2014-10-02 08:40 - 2014-10-02 13:48 - 01113558 _____ () C:\WINDOWS\WindowsUpdate.log 2014-10-02 08:39 - 2013-08-22 13:17 - 02407936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2014-10-02 08:37 - 2014-10-02 08:42 - 00000000 ____D () C:\Users\Ryan 2014-10-02 08:37 - 2014-10-02 08:40 - 00013338 _____ () C:\WINDOWS\diagwrn.xml 2014-10-02 08:37 - 2014-10-02 08:40 - 00013338 _____ () C:\WINDOWS\diagerr.xml 2014-10-02 08:37 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-10-02 08:37 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-10-02 08:37 - 2013-08-22 23:36 - 00000000 ___RD () C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-10-02 08:37 - 2013-08-22 23:36 - 00000000 ____D () C:\Users\Ryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-10-02 08:32 - 2014-10-02 09:20 - 00000714 _____ () C:\WINDOWS\PFRO.log 2014-10-02 08:17 - 2014-10-02 10:09 - 00000000 ___HD () C:\$SysReset 2014-10-01 08:42 - 2014-10-01 08:42 - 71060749 _____ () C:\Users\Ryan\Documents\Introducing Windows 10 - the best Windows yet.mp4 2014-09-19 11:18 - 2014-09-19 11:18 - 00000000 ____H () C:\Users\Ryan\Documents\Default.rdp 2014-09-16 06:32 - 2014-09-16 06:32 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2014-09-16 06:32 - 2014-09-16 06:32 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2014-09-16 06:31 - 2014-09-16 06:31 - 08296296 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll 2014-09-16 06:31 - 2014-09-16 06:31 - 08044976 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll 2014-09-16 06:31 - 2014-09-16 06:31 - 07207592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll 2014-09-16 06:31 - 2014-09-16 06:31 - 07028336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll 2014-09-16 06:31 - 2014-09-16 06:31 - 00118096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll 2014-09-16 06:31 - 2014-09-16 06:31 - 00100032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll 2014-09-16 06:31 - 2014-09-16 06:31 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2014-09-16 06:31 - 2014-09-16 06:31 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2014-09-16 06:29 - 2014-09-16 06:29 - 00293088 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys 2014-09-16 06:26 - 2014-09-16 06:26 - 16750080 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys 2014-09-16 06:22 - 2014-09-16 06:22 - 00418304 _____ () C:\WINDOWS\system32\amdmiracast.dll 2014-09-16 06:18 - 2014-09-16 06:18 - 00235008 _____ () C:\WINDOWS\system32\clinfo.exe 2014-09-16 06:18 - 2014-09-16 06:18 - 00098816 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\OpenVideo64.dll 2014-09-16 06:17 - 2014-09-16 06:17 - 33867264 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll 2014-09-16 06:17 - 2014-09-16 06:17 - 28770304 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll 2014-09-16 06:17 - 2014-09-16 06:17 - 00086528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\OVDecode64.dll 2014-09-16 06:17 - 2014-09-16 06:17 - 00083456 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\OpenVideo.dll 2014-09-16 06:17 - 2014-09-16 06:17 - 00073216 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\OVDecode.dll 2014-09-16 06:16 - 2014-09-16 06:16 - 00065024 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2014-09-16 06:16 - 2014-09-16 06:16 - 00058880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2014-09-16 06:14 - 2014-09-16 06:14 - 00134656 _____ () C:\WINDOWS\system32\amdhdl64.dll 2014-09-16 06:14 - 2014-09-16 06:14 - 00123392 _____ () C:\WINDOWS\SysWOW64\amdhdl32.dll 2014-09-16 06:13 - 2014-09-16 06:13 - 27918336 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll 2014-09-16 06:09 - 2014-09-16 06:09 - 05639168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll 2014-09-16 06:09 - 2014-09-16 06:09 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll 2014-09-16 06:09 - 2014-09-16 06:09 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll 2014-09-16 06:09 - 2014-09-16 06:09 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll 2014-09-16 06:09 - 2014-09-16 06:09 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll 2014-09-16 06:08 - 2014-09-16 06:08 - 23375360 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll 2014-09-16 06:07 - 2014-09-16 06:07 - 15716352 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll 2014-09-16 06:07 - 2014-09-16 06:07 - 03437632 _____ () C:\WINDOWS\system32\atiumd6a.cap 2014-09-16 06:07 - 2014-09-16 06:07 - 00609272 _____ () C:\WINDOWS\SysWOW64\atiapfxx.blb 2014-09-16 06:07 - 2014-09-16 06:07 - 00609272 _____ () C:\WINDOWS\system32\atiapfxx.blb 2014-09-16 06:07 - 2014-09-16 06:07 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe 2014-09-16 06:07 - 2014-09-16 06:07 - 00062464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll 2014-09-16 06:07 - 2014-09-16 06:07 - 00055808 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll 2014-09-16 06:07 - 2014-09-16 06:07 - 00052224 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll 2014-09-16 06:07 - 2014-09-16 06:07 - 00049152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll 2014-09-16 06:06 - 2014-09-16 06:06 - 14302208 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll 2014-09-16 06:05 - 2014-09-16 06:05 - 04480000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll 2014-09-16 06:03 - 2014-09-16 06:03 - 03471376 _____ () C:\WINDOWS\SysWOW64\atiumdva.cap 2014-09-16 06:03 - 2014-09-16 06:03 - 00619008 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2014-09-16 06:03 - 2014-09-16 06:03 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2014-09-16 06:03 - 2014-09-16 06:03 - 00239616 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe 2014-09-16 06:03 - 2014-09-16 06:03 - 00190976 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll 2014-09-16 06:03 - 2014-09-16 06:03 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll 2014-09-16 06:03 - 2014-09-16 06:03 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll 2014-09-16 06:03 - 2014-09-16 06:03 - 00031232 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2014-09-16 05:59 - 2014-09-16 05:59 - 01210880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2014-09-16 05:59 - 2014-09-16 05:59 - 00900608 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2014-09-16 05:59 - 2014-09-16 05:59 - 00827392 _____ (AMD) C:\WINDOWS\system32\coinst_14.30.dll 2014-09-16 05:59 - 2014-09-16 05:59 - 00576000 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys 2014-09-16 05:59 - 2014-09-16 05:59 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2014-09-16 05:59 - 2014-09-16 05:59 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2014-09-16 05:59 - 2014-09-16 05:59 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll 2014-09-16 05:59 - 2014-09-16 05:59 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll 2014-09-16 05:59 - 2014-09-16 05:59 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll 2014-09-16 05:58 - 2014-09-16 05:58 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll 2014-09-15 19:12 - 2014-09-15 19:12 - 00000000 ____D () C:\Users\Ryan\Documents\Scratch Projects 2014-09-15 18:21 - 2014-09-15 18:21 - 00051200 _____ () C:\WINDOWS\system32\kdbsdk64.dll 2014-09-15 18:19 - 2014-09-15 18:19 - 00038912 _____ () C:\WINDOWS\SysWOW64\kdbsdk32.dll 2014-09-07 11:44 - 2014-09-07 11:44 - 00000222 _____ () C:\Users\Ryan\BullseyeCoverageError.txt 2014-09-05 14:41 - 2014-09-05 14:41 - 00000000 ____D () C:\Users\Ryan\Documents\My Games 2014-09-04 18:03 - 2014-09-04 18:03 - 00000222 _____ () C:\Users\Ryan\Desktop\Goat Simulator.url 2014-09-02 14:26 - 2014-09-02 14:26 - 00759301 _____ () C:\WINDOWS\system32\amdicdxx.dat ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-02 16:32 - 2013-08-22 23:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template 2014-10-02 14:00 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-10-02 13:37 - 2013-08-22 23:20 - 00000000 ____D () C:\WINDOWS\CbsTemp 2014-10-02 12:03 - 2014-06-30 07:09 - 00000000 __RDO () C:\Users\Ryan\SkyDrive 2014-10-02 09:21 - 2013-08-22 22:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-10-02 09:20 - 2013-08-22 21:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI 2014-10-02 09:19 - 2013-08-22 22:46 - 00020379 _____ () C:\WINDOWS\setupact.log 2014-10-02 09:17 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\restore 2014-10-02 09:17 - 2013-08-22 23:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-10-02 09:02 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\LiveKernelReports 2014-10-02 08:53 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-10-02 08:44 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-10-02 08:43 - 2013-08-22 21:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-10-02 08:42 - 2013-08-22 23:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel 2014-10-02 08:42 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\WinStore 2014-10-02 08:42 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\Camera 2014-10-02 08:41 - 2014-06-29 18:49 - 00000000 ____D () C:\Users\Ryan\AppData\Local\Packages 2014-10-02 08:41 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\FileManager 2014-10-02 08:40 - 2014-06-30 09:12 - 00000000 ____D () C:\Users\Ryan\Desktop\School Work 2014-10-02 08:40 - 2013-08-22 23:36 - 00000000 __RHD () C:\Users\Public\Libraries 2014-10-02 08:40 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery 2014-10-02 08:36 - 2013-08-22 22:44 - 00335784 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-10-02 08:35 - 2013-08-22 23:37 - 00001720 _____ () C:\WINDOWS\DtcInstall.log 2014-09-30 08:35 - 2014-06-28 23:44 - 00000000 ____D () C:\AMD 2014-09-16 17:23 - 2014-04-13 08:44 - 00000000 ____D () C:\Scratch 2014-09-16 06:31 - 2014-04-01 06:53 - 00144328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll 2014-09-16 06:31 - 2014-04-01 06:53 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll 2014-09-16 06:31 - 2014-04-01 06:52 - 10826488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll 2014-09-16 06:31 - 2014-04-01 06:52 - 09254184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll 2014-09-16 06:31 - 2014-04-01 06:52 - 01335544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2014-09-16 06:31 - 2014-04-01 06:52 - 01113576 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2014-09-10 09:27 - 2014-07-23 09:01 - 00000000 ____D () C:\Users\Ryan\Documents\My Digital Editions 2014-09-07 16:21 - 2014-08-02 12:08 - 00002531 _____ () C:\Users\Public\Desktop\Skype.lnk 2014-09-04 16:28 - 2014-06-30 16:09 - 01402368 ___SH () C:\Users\Ryan\Desktop\Thumbs.db 2014-09-03 09:05 - 2014-07-03 14:12 - 00163840 ___SH () C:\Users\Ryan\Downloads\Thumbs.db Files to move or delete: ==================== C:\Users\Ryan\FoxitReader623.815_prom_enu_Setup.exe C:\Users\Ryan\Minecraft.exe Some content of TEMP: ==================== C:\Users\Ryan\AppData\Local\Temp\OfficeSetup.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-10-02 08:32 ==================== End Of Log ============================ Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-10-2014 01 Ran by Ryan at 2014-10-02 14:19:26 Running from C:\Users\Ryan\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) AMD Accelerated Video Transcoding (Version: 13.30.100.40915 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Control Center (x32 Version: 2014.0915.1813.30937 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0915.1813.30937 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2014.0915.1813.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2014.0915.1812.30937 - Advanced Micro Devices, Inc.) Hidden Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 2.1.32.905 - Foxit Software Inc.) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.0.3.916 - Foxit Software Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4433.1508 - Microsoft Corporation) Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6012.0828 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4433.1508 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4433.1508 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4433.1508 - Microsoft Corporation) Hidden paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC) Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 5.0.89.0 - Razer Inc.) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-780284380-3105116856-1298001378-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-780284380-3105116856-1298001378-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-780284380-3105116856-1298001378-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-780284380-3105116856-1298001378-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\FileSyncApi64.dll (Microsoft Corporation) ==================== Restore Points ========================= 02-10-2014 01:17:10 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 02-10-2014 01:17:31 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 21:25 - 2013-08-22 21:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {0B9D0AE2-EBD2-41C6-964C-9431CF83B6AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-02] (Google Inc.) Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {2BD2A536-B55E-4DC0-95BB-33722228160C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2012-11-22] (Microsoft Corporation) Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation) Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation) Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {82C1958E-C7CE-411F-B2D0-C986FA08D543} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2013-08-22] (Microsoft Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work Task: {AC9FFFAC-4608-4AF5-B5DC-B6C2852E0F45} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-02] (Google Inc.) Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2014-10-02 09:38 - 2014-10-02 09:38 - 06522480 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll 2014-09-10 07:34 - 2014-09-10 07:34 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\ErrorReporting.dll 2014-10-02 09:35 - 2012-11-02 19:33 - 00373312 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll 2014-10-02 09:35 - 2012-11-02 19:32 - 00499264 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll 2014-10-02 09:35 - 2012-11-02 19:32 - 00601152 _____ () C:\Program Files\Microsoft Office 15\ClientX64\StreamServer.dll 2014-10-02 08:52 - 2014-09-23 12:06 - 01098056 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libglesv2.dll 2014-10-02 08:52 - 2014-09-23 12:06 - 00174408 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libegl.dll 2014-10-02 08:52 - 2014-09-23 12:07 - 08577864 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\pdf.dll 2014-10-02 08:52 - 2014-09-23 12:07 - 00331592 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll 2014-10-02 08:52 - 2014-09-23 12:06 - 01660232 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Users\Ryan\SkyDrive:ms-properties ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-780284380-3105116856-1298001378-500 - Administrator - Disabled) Guest (S-1-5-21-780284380-3105116856-1298001378-501 - Limited - Disabled) Ryan (S-1-5-21-780284380-3105116856-1298001378-1001 - Administrator - Enabled) => C:\Users\Ryan ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (10/02/2014 10:16:31 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: The volume Windows (C:) was not optimised because an error was encountered: The parameter is incorrect. (0x80070057) Error: (10/02/2014 09:22:33 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: CCC.exe, version: 4.5.0.0, time stamp: 0x53ad0dcc Faulting module name: amdmantle64.dll, version: 9.1.10.34, time stamp: 0x5417637b Exception code: 0xc0000005 Fault offset: 0x000000000040cfa6 Faulting process ID: 0xe28 Faulting application start time: 0xCCC.exe0 Faulting application path: CCC.exe1 Faulting module path: CCC.exe2 Report ID: CCC.exe3 Faulting package full name: CCC.exe4 Faulting package-relative application ID: CCC.exe5 Error: (10/02/2014 08:52:16 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: SettingSyncHost.exe, version: 6.3.9600.16384, time stamp: 0x5215d683 Faulting module name: ntdll.dll, version: 6.3.9600.16384, time stamp: 0x5215f938 Exception code: 0xc0000005 Fault offset: 0x000000000002de46 Faulting process ID: 0xb44 Faulting application start time: 0xSettingSyncHost.exe0 Faulting application path: SettingSyncHost.exe1 Faulting module path: SettingSyncHost.exe2 Report ID: SettingSyncHost.exe3 Faulting package full name: SettingSyncHost.exe4 Faulting package-relative application ID: SettingSyncHost.exe5 System errors: ============= Error: (10/02/2014 09:20:05 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Superfetch service terminated with the following error: %%1062 Error: (10/02/2014 09:00:22 AM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: The Foxit Cloud Safe Update Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. Error: (10/02/2014 08:42:48 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Windows Search service did not respond on starting. Error: (10/02/2014 08:39:19 AM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: The Printer Extensions and Notifications service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. Error: (10/02/2014 08:35:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Network List Service service terminated with the following error: %%21 Error: (10/02/2014 08:34:08 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The IP Helper service terminated with the following error: %%1058 Microsoft Office Sessions: ========================= Error: (10/02/2014 10:16:31 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: ) Description: Windows (C:)The parameter is incorrect. (0x80070057) Error: (10/02/2014 09:22:33 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: CCC.exe4.5.0.053ad0dccamdmantle64.dll9.1.10.345417637bc0000005000000000040cfa6e2801cfdddf4e2f3c08C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\WINDOWS\SYSTEM32\amdmantle64.dll95143da1-49d2-11e4-824d-446d57aaa8bb Error: (10/02/2014 08:52:16 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: SettingSyncHost.exe6.3.9600.163845215d683ntdll.dll6.3.9600.163845215f938c0000005000000000002de46b4401cfddd9c2ededd1C:\Windows\System32\SettingSyncHost.exeC:\WINDOWS\SYSTEM32\ntdll.dll5a7030ad-49ce-11e4-824c-446d57aaa8bb ==================== Memory info =========================== Processor: Intel® Core i7-3610QM CPU @ 2.30GHz Percentage of memory in use: 17% Total physical RAM: 12247.8 MB Available physical RAM: 10091.97 MB Total Pagefile: 14679.8 MB Available Pagefile: 12139.3 MB Total Virtual: 131072 MB Available Virtual: 131071.8 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:484.8 GB) (Free:439.63 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive e: (Sims3) (CDROM) (Total:5.56 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 3A46F848) Partition 1: (Active) - (Size=1.5 GB) - (Type=27) Partition 2: (Not Active) - (Size=484.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=12.6 GB) - (Type=17) Partition 4: (Not Active) - (Size=199.7 GB) - (Type=05) ==================== End Of Log ============================ mbam-check result log version: 2.1.1.1001 ======================================== User Account type: Administrator OS: Windows 8.1 64 bit Operating System Current Version and Build: 6.3.9200.0 mbam-check result log version: 2.1.1.1001 Date Log Created: 10/02/14 Time Log Created: 14:20:07 Compatibility Flag Settings: ================================= Malwarebytes Anti-Malware Shell Extension Block Check: ====================================================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked: MBAM Startup Entries: ===================== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce Malwarebytes Anti-Malware Service and Driver Status: ======================================================= --------------Driver File Info:-------------- --------------MBAMProtector:-------------- Type: N/A State: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMProtector WIN32_EXIT_CODE: N/A SERVICE_EXIT_CODE: N/A CHECKPOINT: N/A WAIT_HINT: N/A --------------MBAMService:-------------- Type: N/A State: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMService WIN32_EXIT_CODE: N/A SERVICE_EXIT_CODE: N/A CHECKPOINT: N/A WAIT_HINT: N/A --------------MBAMScheduler:-------------- Type: N/A State: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMScheduler WIN32_EXIT_CODE: N/A SERVICE_EXIT_CODE: N/A CHECKPOINT: N/A WAIT_HINT: N/A --------------MBAMChameleon:-------------- Type: N/A State: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon WIN32_EXIT_CODE: N/A SERVICE_EXIT_CODE: N/A CHECKPOINT: N/A WAIT_HINT: N/A --------------MBAMWebAccessControl:-------------- Type: N/A State: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MbamWebAccessControl WIN32_EXIT_CODE: N/A SERVICE_EXIT_CODE: N/A CHECKPOINT: N/A WAIT_HINT: N/A Required Dependencies: ====================== --------------BFE:-------------- Type: 32 State: 4 (The service is running.) WIN32_EXIT_CODE: 0 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE DisplayName REG_SZ @%SystemRoot%\system32\bfe.dll,-1001 ErrorControl REG_DWORD 1 Group REG_SZ NetworkProvider ImagePath REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork Start REG_DWORD 2 Type REG_DWORD 32 Description REG_SZ @%SystemRoot%\system32\bfe.dll,-1002 DependOnService REG_MULTI_SZ RpcSs WfpLwfs ObjectName REG_SZ NT AUTHORITY\LocalService ServiceSidType REG_DWORD 3 RequiredPrivileges REG_MULTI_SZ SeAuditPrivilege FailureActions REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters ServiceDllUnloadOnStop REG_DWORD 1 ServiceMain REG_SZ BfeServiceMain ServiceDll REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data {89a89b7c-b5ab-4ed6-bf05-d3059281a5c5}REG_BINARY Binary Data {84750a0c-b836-48e3-ab80-104985c857db}REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Options EnablePacketQueue REG_DWORD 0 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Callout {22001ee0-8e87-4f75-ba58-248f5918a63a}REG_BINARY Binary Data {79f2a265-b693-4cc9-b480-cbcd87bd4747}REG_BINARY Binary Data {c4b50f21-503e-4d7a-abd4-ed0a823a2453}REG_BINARY Binary Data {91e902db-2cef-4040-b8e2-02fe4fd49c25}REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter {be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY Binary Data {b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY Binary Data {716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY Binary Data {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data {91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY Binary Data {f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY Binary Data {3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data {5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY Binary Data {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data {b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY Binary Data {8b50e2ec-7cF0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data {17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data {3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data {13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY Binary Data {d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data {07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY Binary Data {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data {3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY Binary Data {64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY Binary Data {4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data {b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data {375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY Binary Data {4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data {0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY Binary Data {cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY Binary Data {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data {4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY Binary Data {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data {1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY Binary Data {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data {567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data {70694559-714a-4a38-a0cd-51439e06f1d8}REG_BINARY Binary Data {89a89b7c-b5ab-4ed6-bf05-d3059281a5c5}REG_BINARY Binary Data {84750a0c-b836-48e3-ab80-104985c857db}REG_BINARY Binary Data {e72646bc-7d3f-4c5c-a679-b3716f8c6cc8}REG_BINARY Binary Data {b98b75dc-17c0-4e84-bd4e-2080527ca6a6}REG_BINARY Binary Data {56b4fdc4-bb4e-4c42-a9d8-f627ee15ac21}REG_BINARY Binary Data {1ba41ed8-151d-4577-9272-317856bc637c}REG_BINARY Binary Data {9248d57e-f843-4159-807d-3813173e2096}REG_BINARY Binary Data {4658cd86-525d-44ed-98a5-791a7b8655f1}REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider {decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data {4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data {1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data {839cd73f-1907-49ea-9aa5-0e6be9048087}REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer {b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data {b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data {b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data {9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data {8c36b346-4e0c-4049-8b55-5295ac35567c}REG_BINARY Binary Data --------------fltmgr:-------------- Type: 2 State: 4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN) WIN32_EXIT_CODE: 0 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr AttachWhenLoaded REG_DWORD 1 DisplayName REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10001 ErrorControl REG_DWORD 3 Group REG_SZ FSFilter Infrastructure ImagePath REG_EXPAND_SZ system32\drivers\fltmgr.sys Start REG_DWORD 0 Tag REG_DWORD 1 Type REG_DWORD 2 Description REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10000 C:\WINDOWS\system32\drivers\fltmgr.sys File Size: 358752 BYTES FileVersion: 6.3.9600.16384 MD5: [60d5067fce6d9433d35e04c01d8538b3] C:\WINDOWS\SysWOW64\olepro32.dll File Size: 80384 BYTES FileVersion: 6.3.9600.16384 MD5: [0fc9b04c7f729498b41a19fa55c33573] MBAM Registry Settings and License Info: ======================================== Scheduler Queue: ================ Pending File Rename Operations: ================================ If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation. MBAMProtector Registry Values: ============================== MBAMService Registry Values: ============================ MBAMScheduler Registry Values: ============================== Terminal Services Status for (null) entries in PM logs and GetUserToken errors: =============================================================================== --------------TERMService:-------------- Type: 32 State: 1 (The service is not running.) (State is stopped) WIN32_EXIT_CODE: 1077 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 TermService Start is set to: 3 (Manual Startup) Proxy Status: No proxy is Set LAN Settings: ============= only 'Automatically detect settings' is selected SystemPartition: ================ HKEY_LOCAL_MACHINE\SYSTEM\Setup\ SystemPartition REG_SZ \Device\HarddiskVolume1 Balloon Tips Status: ==================== Enabled Time Format Settings: ===================== Should be: h:mm:ss tt AM PM : Currently: REG_SZ h:mm:ss tt REG_SZ AM REG_SZ PM REG_SZ : Language and Regional Settings: =============================== ACP: Language is English (United States) MACCP: Language is English (United States) OEMCP: 850 Please refer to this link for details: Here Startup Folders for Error_Expanding_Variables Check: ==================================================== All Users Startup Folder Exists. Current User's Startup Folder Exists. MBAM DLL's and Runtime Files: ============================= MBAM Registry Settings and License Info (part 2): ================================================== Context Menu Entries: ===================== List of MBAM Related Directories: ================================= =============================================================== END OF FILE Thanks.
  17. Also, the driver no longer crashes, the browser does. It lags for a bit, and then become unresponsive and then there's only audio, no pictures.
  18. Here's an example: And http://techslides.com/demos/sample-videos/small.mp4 I only get the audio from both. I know it crashed the AMD drivers because it has a balloon at the bottom corner saying "AMD Display Driver has recovered from a crash". My model number is L850-PSKDLA-0C900R
  19. My machine is a Toshiba L850 Laptop. Sorry, I do post a lot. The YTD video downloader is a youtube video downloader from Cnet download.com. I declined the adware that came with it. Also, the auto detect tool said I was up to date.
  20. Hi. It appears that most YouTube videos in an MP4 format crash my AMD drivers (grpahics card, not CPU, CPU is Intel). So, I decided to download a YTD video downloader and downloaded the videos instead. After playing them in Windows Media Player, Windows media player said I have no memory left, even though I've used 2GB of 12GB. So, I ran some tests. I played MP4 videos in Chrome, Firefox and IE. There's just a blank screen (this is after updating the card). Also, now the MP4 videos on YouTube are completely blank. So after that, I refreshed my PC from the Windows 8.1 settings app. I re-installed most of my apps (like Office, Chrome, Foxit Reader etc.) and updated my grpahics card once again, but I get errors and blank screens. Any ideas? Cheers.
  21. Hi. I've got multiple Windows Updates I need to install but the progress is stuck at 0%. I've left it for about half an hour and it's still at 0%. I canceled the update and I can't get it working again. Any ideas? Thanks.
  22. Thanks for your help! I actually think the problem is gone now, seems fine to me!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.