Jump to content

Internet won't work and virus's keeps coming back after I clean and restart

Blitson
 Share

Recommended Posts

  • Replies 60
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Posted Images

kevinf80

kevinf80

Posted
Posted

Hello and post-32477-1261866970.gif

 

P2P/Piracy Warning:

 

   

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

 

If you have access to another PC use it to d/l the following tools, save to a flash drive and run on the sick PC, transfer the logs and post in next reply:

 

Download Farbar Recovery Scan Tool and save it to your desktop.

 

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.


Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

Next,

 

Download Farbar Service Scanner from here: http://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/ and run it on the computer with the issue.

Make sure the following options are checked:

 


Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update
Windows Defender

 


Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

 

Let me see those logs..

 

Kevin...

Link to post
Share on other sites
Blitson

Blitson

Posted
  • Author
Posted

FRST Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-06-2014

Ran by Aidan (ATTENTION: The logged in user is not administrator) on OWNER-PC on 05-06-2014 17:21:40
Running from I:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Spotify Ltd) C:\Users\Aidan\AppData\Roaming\Spotify\spotify.exe
() C:\Program Files (x86)\puush\puush.exe
(Spotify Ltd) C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [shadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [442712 2013-11-17] (Razer Inc.)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-05-13] (LogMeIn Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [spotify] => C:\Users\Aidan\AppData\Roaming\Spotify\Spotify.exe [6170168 2014-05-15] (Spotify Ltd)
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2014-01-10] ()
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [spotify Web Helper] => C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-15] (Spotify Ltd)
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [steam] => C:\Program Files (x86)\Steam\steam.exe [1754816 2014-05-29] (Valve Corporation)
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [CatalinaGroup Update] => "C:\Users\Owner\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe" /c
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3588952 2014-04-25] (Electronic Arts)
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
GroupPolicyUsers\S-1-5-21-1131576993-2969418412-3415741453-1004\User: Group Policy restriction detected <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC0AFD0338939CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
SearchScopes: HKCU - DefaultScope {0B43A3E7-DDE4-46FD-834B-53DBA19064FF} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0B43A3E7-DDE4-46FD-834B-53DBA19064FF} URL = https://www.google.com/search?q={searchTerms}
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
 
FireFox:
========
FF ProfilePath: C:\Users\Aidan\AppData\Roaming\Mozilla\Firefox\Profiles\uq9173wj.default-1400469336911
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
Chrome: 
=======
CHR HomePage: hxxp://www.youtube.com/feed/subscriptions?feature=mhee
CHR StartupUrls: "hxxp://www.youtube.com/feed/subscriptions?feature=mhee"
CHR Extension: (Google Docs) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-01]
CHR Extension: (Google Drive) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-01]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (YouTube) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-01]
CHR Extension: (McAfee Security Scan+) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-25]
CHR Extension: (Adblock Plus) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-05-19]
CHR Extension: (Google Search) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-01]
CHR Extension: (Instair Speed Dial) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikeacjcceacohckgiajooneiabebfjj [2014-01-01]
CHR Extension: (Google Wallet) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-01]
CHR Extension: (Gmail) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-01]
 
==================== Services (Whitelisted) =================
 
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-03-31] ()
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-15] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-15] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [99616 2014-03-05] (Overwolf LTD)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
 
==================== Drivers (Whitelisted) ====================
 
S3 k57nd; C:\Windows\System32\DRIVERS\k57amd64.sys [356392 2011-10-25] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ESEADriver2; \??\C:\Users\Owner\AppData\Local\Temp\ESEADriver2.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-06-05 17:21 - 2014-06-05 17:21 - 00000000 ____D () C:\FRST
2014-06-05 12:37 - 2014-06-05 16:44 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-05 12:37 - 2014-06-05 12:37 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-05 12:37 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-05 12:37 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-05 12:37 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-05 12:36 - 2014-06-05 12:36 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Aidan\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-03 12:42 - 2014-06-03 12:40 - 02346942 _____ () C:\Users\Aidan\Desktop\TechnicLauncher.exe
2014-06-03 12:40 - 2014-06-03 12:40 - 02346942 _____ () C:\Users\Aidan\Downloads\TechnicLauncher.exe
2014-06-01 16:47 - 2014-06-01 16:47 - 03587298 _____ () C:\Users\Aidan\Downloads\strafingmap_trilluxe.bsp
2014-05-29 11:08 - 2014-05-29 11:08 - 00000000 ____D () C:\Users\Aidan\Documents\Battlefield 3
2014-05-29 11:07 - 2014-05-29 11:07 - 02247960 _____ () C:\Users\Aidan\Downloads\battlelog-web-plugins_2.4.0_141 (1).exe
2014-05-29 11:05 - 2014-05-29 11:05 - 00000000 ____D () C:\Users\Aidan\AppData\Local\ESN
2014-05-29 11:05 - 2014-05-29 11:05 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-29 11:04 - 2014-05-29 11:04 - 02247960 _____ () C:\Users\Aidan\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 11:00 - 2014-05-29 11:00 - 00001174 _____ () C:\Users\Public\Desktop\Battlefield 3.lnk
2014-05-29 11:00 - 2014-05-29 11:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
2014-05-29 00:35 - 2014-05-29 00:35 - 03028804 _____ () C:\Users\Aidan\Downloads\The Test v1.rar
2014-05-28 22:39 - 2014-05-28 22:40 - 00000024 _____ () C:\Users\Aidan\Documents\Template.txt
2014-05-27 16:19 - 2014-05-27 16:19 - 00001031 _____ () C:\Users\Aidan\Documents\Mail 2 Anderp.txt
2014-05-25 09:07 - 2014-05-25 09:07 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Apple Computer
2014-05-24 12:40 - 2014-05-24 22:30 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Purplizer
2014-05-24 12:38 - 2014-05-24 12:41 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Overwolf
2014-05-24 08:05 - 2014-05-24 08:05 - 00001975 _____ () C:\Users\Public\Desktop\Overwolf.lnk
2014-05-24 08:04 - 2014-05-24 08:05 - 00000000 ____D () C:\Program Files (x86)\Overwolf
2014-05-24 07:59 - 2014-05-24 07:59 - 00993208 _____ (Overwolf) C:\Users\Aidan\Downloads\OverwolfInstaller.exe
2014-05-23 12:43 - 2014-05-23 12:43 - 00334936 _____ () C:\Users\Aidan\Downloads\[Electro] - Case & Point - Savage [Monstercat Release].mp3.sfk
2014-05-22 21:01 - 2014-05-22 21:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Apple Computer
2014-05-22 14:04 - 2014-05-22 14:04 - 00619576 _____ () C:\Users\Aidan\Downloads\BroeselCustomV1.13.rar
2014-05-21 18:03 - 2014-05-21 18:10 - 189007974 _____ () C:\Users\Aidan\Downloads\Gerudoku Faithful.zip
2014-05-21 18:01 - 2014-05-21 18:08 - 175837634 _____ () C:\Users\Aidan\Downloads\snowsong1_4_for_minecraft_version_1_7_x_and_up_by_aleciashepherd-d6seklp.zip
2014-05-20 20:50 - 2014-05-20 20:50 - 00814735 _____ () C:\Users\Aidan\Downloads\OptiFine_1.7.9_HD_U_D2.jar
2014-05-20 20:45 - 2014-05-20 20:45 - 00000000 ____D () C:\.jagex_cache_32
2014-05-20 20:24 - 2014-05-20 20:24 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-05-20 20:24 - 2014-05-20 20:24 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-20 20:24 - 2014-05-20 20:24 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-05-20 20:23 - 2014-05-20 20:24 - 00000000 ____D () C:\ProgramData\Apple
2014-05-20 20:18 - 2014-05-20 20:22 - 97206096 _____ (Apple Inc.) C:\Users\Aidan\Downloads\iTunes64Setup.exe
2014-05-20 20:05 - 2014-05-20 23:07 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\.aether
2014-05-20 20:05 - 2014-05-20 20:05 - 00014817 _____ () C:\Users\Aidan\Downloads\launcher-start.jar
2014-05-19 20:15 - 2014-05-19 20:15 - 00000000 ____D () C:\ProgramData\Nexon
2014-05-19 20:07 - 2014-05-19 20:07 - 00001658 _____ () C:\Users\Aidan\Desktop\MapleStory.lnk
2014-05-19 20:03 - 2014-05-19 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2014-05-19 20:00 - 2014-05-20 20:31 - 00000000 ____D () C:\Nexon
2014-05-19 20:00 - 2014-05-19 20:00 - 00000000 ____D () C:\ProgramData\NexonUS
2014-05-19 19:33 - 2014-05-19 19:33 - 03909878 _____ () C:\Users\Aidan\Downloads\Werian-1.7.zip
2014-05-19 19:31 - 2014-05-19 19:31 - 22368606 _____ () C:\Users\Aidan\Downloads\FRA-High-Noon-1.7.zip
2014-05-19 18:09 - 2014-05-19 18:09 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\LolClient
2014-05-19 18:08 - 2014-05-19 18:09 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader (2).exe
2014-05-19 17:34 - 2014-05-19 18:09 - 00000356 _____ () C:\console.log
2014-05-19 17:32 - 2014-05-19 17:33 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader (1).exe
2014-05-19 17:15 - 2014-05-22 14:40 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-19 17:09 - 2014-05-19 17:09 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader.exe
2014-05-18 22:08 - 2014-05-18 22:08 - 00282928 _____ (Mozilla) C:\Users\Aidan\Downloads\Firefox Setup Stub 29.0.1.exe
2014-05-18 20:38 - 2014-05-18 20:38 - 00000003 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-05-18 20:38 - 2014-05-18 20:38 - 00000003 _____ () C:\Windows\system32\HRUPPROG.DIE.NOW
2014-05-18 19:58 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-05-18 19:58 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-05-18 19:58 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-05-18 19:43 - 2014-05-18 19:43 - 00001613 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2014-05-18 19:43 - 2014-05-18 19:43 - 00000000 ____D () C:\Riot Games
2014-05-18 19:43 - 2014-05-18 19:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-05-18 19:40 - 2014-05-18 19:40 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-05-18 19:39 - 2014-05-18 20:34 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Riot Games
2014-05-18 19:37 - 2014-05-18 19:38 - 32229024 _____ (Riot Games) C:\Users\Aidan\Downloads\LeagueofLegends_NA_Installer_05_07_13.exe
2014-05-18 19:36 - 2014-05-18 19:36 - 00000000 ____D () C:\Users\Aidan\AppData\Local\WarThunder
2014-05-18 19:36 - 2014-05-18 19:36 - 00000000 ____D () C:\ProgramData\WarThunder
2014-05-17 20:02 - 2014-05-17 20:02 - 00006228 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_2.rar
2014-05-17 20:02 - 2014-05-17 20:02 - 00004159 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_1.rar
2014-05-17 20:02 - 2014-05-17 20:02 - 00003844 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_3.rar
2014-05-17 15:05 - 2014-05-17 15:05 - 00000222 _____ () C:\Users\Aidan\Desktop\War Thunder.url
2014-05-16 13:59 - 2014-05-17 12:51 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Arma 3
2014-05-16 13:59 - 2014-05-16 14:01 - 00000000 ____D () C:\Users\Aidan\Documents\Arma 3
2014-05-16 13:59 - 2014-05-16 13:59 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-05-15 03:33 - 2014-05-15 03:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-05-15 03:33 - 2014-05-15 03:33 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-05-15 03:05 - 2014-05-05 23:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-15 03:05 - 2014-05-05 23:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-15 03:05 - 2014-05-05 22:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-15 03:05 - 2014-05-05 22:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-15 03:05 - 2014-05-05 22:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-15 03:05 - 2014-05-05 21:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 14:51 - 2014-05-09 01:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 14:51 - 2014-05-09 01:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 14:51 - 2014-04-11 21:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 14:51 - 2014-04-11 21:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 14:51 - 2014-04-11 21:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 14:51 - 2014-04-11 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 14:51 - 2014-04-11 21:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 14:51 - 2014-04-11 21:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 14:51 - 2014-04-11 21:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 14:51 - 2014-04-11 21:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 14:51 - 2014-04-11 21:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 14:51 - 2014-03-24 21:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 14:51 - 2014-03-24 21:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 14:51 - 2014-03-04 04:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 14:51 - 2014-03-04 04:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 14:51 - 2014-03-04 04:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 14:51 - 2014-03-04 04:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 14:51 - 2014-03-04 04:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 14:51 - 2014-03-04 04:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 14:51 - 2014-03-04 04:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 14:51 - 2014-03-04 04:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 14:51 - 2014-03-04 04:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 14:51 - 2014-03-04 04:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 14:51 - 2014-03-04 04:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 14:51 - 2014-03-04 04:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 14:51 - 2014-03-04 04:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 14:51 - 2014-03-04 04:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 14:51 - 2014-03-04 04:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 14:51 - 2014-03-04 04:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 14:51 - 2014-03-04 04:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 14:51 - 2014-03-04 04:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 14:51 - 2014-03-04 04:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 14:51 - 2014-03-04 04:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 14:51 - 2014-03-04 04:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-13 15:39 - 2014-05-13 15:39 - 00000222 _____ () C:\Users\Aidan\Desktop\Terraria.url
2014-05-13 14:11 - 2014-05-13 14:11 - 10407696 _____ () C:\Users\Aidan\Downloads\Brickston Manor.rar
2014-05-13 14:11 - 2014-05-13 14:11 - 05759618 _____ () C:\Users\Aidan\Downloads\Faithful Texture Pack 64x64 1.6.zip
2014-05-13 14:10 - 2014-05-13 14:11 - 04281787 _____ () C:\Users\Aidan\Downloads\Harves Luna Dur.rar
2014-05-12 18:31 - 2014-05-12 18:31 - 00000000 ____D () C:\Program Files\ESEA
2014-05-12 18:29 - 2014-05-12 18:31 - 15340591 _____ () C:\Users\Aidan\Downloads\ESEAClientInstall.exe
2014-05-11 14:45 - 2014-05-11 14:45 - 03033247 _____ () C:\Users\Aidan\Downloads\Hairstyle_F_toddler-166-TSR Skysims3.sims3pack
2014-05-11 14:41 - 2014-05-11 14:41 - 03133326 _____ () C:\Users\Aidan\Downloads\Skysims Hair Child 196.sims3pack
2014-05-11 14:38 - 2014-05-11 14:38 - 04145372 _____ () C:\Users\Aidan\Downloads\Cazy_c130_cf.sims3pack
2014-05-11 14:37 - 2014-05-11 14:37 - 03796968 _____ () C:\Users\Aidan\Downloads\Skysims Hair Adult 203.sims3pack
2014-05-11 06:54 - 2014-05-11 06:54 - 00622547 _____ () C:\Users\Aidan\Downloads\broesel custom 1.8.zip
2014-05-10 18:44 - 2014-05-26 12:00 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat
2014-05-10 09:40 - 2014-05-10 09:40 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Sony Creative Software Inc
2014-05-09 16:11 - 2014-05-09 16:12 - 01061272 _____ () C:\Users\Aidan\Downloads\Royalty Free Ambient Horror Music & Dark Soundscapes- 13 Days Of Nightmares.mp3.sfk
2014-05-08 16:13 - 2014-03-31 11:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-05-08 16:13 - 2014-03-31 11:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-05-07 03:01 - 2014-05-15 03:22 - 00000000 ___SD () C:\Windows\system32\CompatTel
 
==================== One Month Modified Files and Folders =======
 
2014-06-05 17:21 - 2014-06-05 17:21 - 00000000 ____D () C:\FRST
2014-06-05 17:21 - 2014-01-01 09:43 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Temp
2014-06-05 17:20 - 2009-07-14 00:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-05 17:17 - 2009-07-13 23:51 - 00046284 _____ () C:\Windows\setupact.log
2014-06-05 17:08 - 2013-12-28 18:17 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-05 17:07 - 2009-07-13 23:45 - 00022064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-05 17:07 - 2009-07-13 23:45 - 00022064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-05 17:06 - 2014-01-01 21:54 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Spotify
2014-06-05 17:03 - 2013-12-28 18:06 - 01534543 _____ () C:\Windows\WindowsUpdate.log
2014-06-05 17:02 - 2014-03-06 17:12 - 00000344 _____ () C:\Windows\Tasks\bench-sys.job
2014-06-05 17:01 - 2014-02-01 23:45 - 00000000 ____D () C:\Users\Aidan\AppData\Local\LogMeIn Hamachi
2014-06-05 17:01 - 2014-01-01 12:15 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-05 17:00 - 2014-04-05 01:02 - 00000286 _____ () C:\Windows\Tasks\bench-Updater removing.job
2014-06-05 17:00 - 2014-01-02 13:32 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-05 17:00 - 2013-12-28 18:17 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-05 16:59 - 2013-12-28 18:44 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-05 16:59 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-05 16:44 - 2014-06-05 12:37 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-05 16:44 - 2014-01-02 12:54 - 00000000 ____D () C:\Fraps
2014-06-05 16:44 - 2014-01-01 12:16 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Skype
2014-06-05 16:44 - 2014-01-01 09:37 - 00001232 __RSH () C:\Users\Owner\ntuser.pol
2014-06-05 16:44 - 2013-12-28 18:06 - 00000000 ____D () C:\Users\Owner
2014-06-05 16:31 - 2014-01-19 10:26 - 00000938 _____ () C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000UA.job
2014-06-05 16:27 - 2014-05-03 19:19 - 00000000 ____D () C:\ProgramData\Sony
2014-06-05 16:26 - 2014-01-01 12:37 - 00000000 ____D () C:\ProgramData\Origin
2014-06-05 16:17 - 2014-01-01 12:15 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Skype
2014-06-05 13:07 - 2014-01-01 21:58 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Spotify
2014-06-05 13:02 - 2010-11-20 22:47 - 00173722 _____ () C:\Windows\PFRO.log
2014-06-05 12:44 - 2013-12-28 18:12 - 00016278 _____ () C:\Windows\DPINST.LOG
2014-06-05 12:37 - 2014-06-05 12:37 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-05 12:36 - 2014-06-05 12:36 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Aidan\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-05 12:07 - 2014-03-06 20:40 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-05 12:06 - 2014-01-01 12:15 - 00000000 ____D () C:\ProgramData\Skype
2014-06-05 12:02 - 2014-04-06 08:26 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-04 14:02 - 2014-04-17 14:10 - 00000000 ____D () C:\ProgramData\Tunngle
2014-06-04 09:31 - 2014-01-19 10:26 - 00000886 _____ () C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000Core.job
2014-06-04 09:06 - 2014-01-01 12:04 - 00000000 ____D () C:\Users\Aidan\Desktop\Mystery Bin
2014-06-04 07:44 - 2014-01-01 15:32 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-06-04 06:08 - 2014-01-01 13:06 - 00000023 _____ () C:\Users\Aidan\jagexappletviewer.preferences
2014-06-04 06:07 - 2014-01-01 13:07 - 00000044 _____ () C:\Users\Aidan\jagex_cl_runescape_LIVE.dat
2014-06-04 01:24 - 2014-02-25 16:49 - 00000044 _____ () C:\Users\Aidan\jagex_cl_oldschool_LIVE.dat
2014-06-03 20:39 - 2014-01-03 19:57 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\TS3Client
2014-06-03 12:40 - 2014-06-03 12:42 - 02346942 _____ () C:\Users\Aidan\Desktop\TechnicLauncher.exe
2014-06-03 12:40 - 2014-06-03 12:40 - 02346942 _____ () C:\Users\Aidan\Downloads\TechnicLauncher.exe
2014-06-01 16:47 - 2014-06-01 16:47 - 03587298 _____ () C:\Users\Aidan\Downloads\strafingmap_trilluxe.bsp
2014-05-31 17:34 - 2014-04-18 22:05 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-05-31 17:33 - 2014-04-18 22:02 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-05-30 14:24 - 2014-01-01 15:53 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\.minecraft
2014-05-29 23:58 - 2014-03-30 14:06 - 00000000 ____D () C:\Users\Aidan\AppData\Local\ArmA 2 OA
2014-05-29 11:08 - 2014-05-29 11:08 - 00000000 ____D () C:\Users\Aidan\Documents\Battlefield 3
2014-05-29 11:08 - 2014-04-18 22:04 - 00000000 ____D () C:\Users\Aidan\AppData\Local\PunkBuster
2014-05-29 11:07 - 2014-05-29 11:07 - 02247960 _____ () C:\Users\Aidan\Downloads\battlelog-web-plugins_2.4.0_141 (1).exe
2014-05-29 11:05 - 2014-05-29 11:05 - 00000000 ____D () C:\Users\Aidan\AppData\Local\ESN
2014-05-29 11:05 - 2014-05-29 11:05 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-29 11:04 - 2014-05-29 11:04 - 02247960 _____ () C:\Users\Aidan\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 11:03 - 2014-01-01 12:37 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-05-29 11:00 - 2014-05-29 11:00 - 00001174 _____ () C:\Users\Public\Desktop\Battlefield 3.lnk
2014-05-29 11:00 - 2014-05-29 11:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
2014-05-29 11:00 - 2009-07-14 00:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-29 10:58 - 2014-01-01 17:34 - 00119052 _____ () C:\Windows\DirectX.log
2014-05-29 00:35 - 2014-05-29 00:35 - 03028804 _____ () C:\Users\Aidan\Downloads\The Test v1.rar
2014-05-28 23:58 - 2014-01-02 23:00 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-28 23:01 - 2014-01-01 12:55 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-28 22:40 - 2014-05-28 22:39 - 00000024 _____ () C:\Users\Aidan\Documents\Template.txt
2014-05-27 20:03 - 2014-01-01 09:43 - 00001232 __RSH () C:\Users\Aidan\ntuser.pol
2014-05-27 20:03 - 2014-01-01 09:43 - 00000000 ____D () C:\Users\Aidan
2014-05-27 16:19 - 2014-05-27 16:19 - 00001031 _____ () C:\Users\Aidan\Documents\Mail 2 Anderp.txt
2014-05-26 12:00 - 2014-05-10 18:44 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat
2014-05-25 09:07 - 2014-05-25 09:07 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Apple Computer
2014-05-24 22:30 - 2014-05-24 12:40 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Purplizer
2014-05-24 12:41 - 2014-05-24 12:38 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Overwolf
2014-05-24 08:05 - 2014-05-24 08:05 - 00001975 _____ () C:\Users\Public\Desktop\Overwolf.lnk
2014-05-24 08:05 - 2014-05-24 08:04 - 00000000 ____D () C:\Program Files (x86)\Overwolf
2014-05-24 07:59 - 2014-05-24 07:59 - 00993208 _____ (Overwolf) C:\Users\Aidan\Downloads\OverwolfInstaller.exe
2014-05-23 12:43 - 2014-05-23 12:43 - 00334936 _____ () C:\Users\Aidan\Downloads\[Electro] - Case & Point - Savage [Monstercat Release].mp3.sfk
2014-05-23 12:20 - 2014-04-21 12:44 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Windows Live
2014-05-23 08:07 - 2014-01-03 19:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-22 21:01 - 2014-05-22 21:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Apple Computer
2014-05-22 14:40 - 2014-05-19 17:15 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-22 14:04 - 2014-05-22 14:04 - 00619576 _____ () C:\Users\Aidan\Downloads\BroeselCustomV1.13.rar
2014-05-21 18:10 - 2014-05-21 18:03 - 189007974 _____ () C:\Users\Aidan\Downloads\Gerudoku Faithful.zip
2014-05-21 18:08 - 2014-05-21 18:01 - 175837634 _____ () C:\Users\Aidan\Downloads\snowsong1_4_for_minecraft_version_1_7_x_and_up_by_aleciashepherd-d6seklp.zip
2014-05-20 23:07 - 2014-05-20 20:05 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\.aether
2014-05-20 20:50 - 2014-05-20 20:50 - 00814735 _____ () C:\Users\Aidan\Downloads\OptiFine_1.7.9_HD_U_D2.jar
2014-05-20 20:45 - 2014-05-20 20:45 - 00000000 ____D () C:\.jagex_cache_32
2014-05-20 20:31 - 2014-05-19 20:00 - 00000000 ____D () C:\Nexon
2014-05-20 20:24 - 2014-05-20 20:24 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-05-20 20:24 - 2014-05-20 20:24 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-20 20:24 - 2014-05-20 20:24 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-05-20 20:24 - 2014-05-20 20:23 - 00000000 ____D () C:\ProgramData\Apple
2014-05-20 20:22 - 2014-05-20 20:18 - 97206096 _____ (Apple Inc.) C:\Users\Aidan\Downloads\iTunes64Setup.exe
2014-05-20 20:05 - 2014-05-20 20:05 - 00014817 _____ () C:\Users\Aidan\Downloads\launcher-start.jar
2014-05-19 20:15 - 2014-05-19 20:15 - 00000000 ____D () C:\ProgramData\Nexon
2014-05-19 20:07 - 2014-05-19 20:07 - 00001658 _____ () C:\Users\Aidan\Desktop\MapleStory.lnk
2014-05-19 20:03 - 2014-05-19 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2014-05-19 20:00 - 2014-05-19 20:00 - 00000000 ____D () C:\ProgramData\NexonUS
2014-05-19 19:33 - 2014-05-19 19:33 - 03909878 _____ () C:\Users\Aidan\Downloads\Werian-1.7.zip
2014-05-19 19:31 - 2014-05-19 19:31 - 22368606 _____ () C:\Users\Aidan\Downloads\FRA-High-Noon-1.7.zip
2014-05-19 18:09 - 2014-05-19 18:09 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\LolClient
2014-05-19 18:09 - 2014-05-19 18:08 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader (2).exe
2014-05-19 18:09 - 2014-05-19 17:34 - 00000356 _____ () C:\console.log
2014-05-19 17:33 - 2014-05-19 17:32 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader (1).exe
2014-05-19 17:15 - 2013-12-28 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-19 17:09 - 2014-05-19 17:09 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader.exe
2014-05-19 15:55 - 2014-01-01 09:58 - 00000486 _____ () C:\Users\Aidan\AppData\Roaming\Microsoft\Windows\Start Menu\Google.website
2014-05-18 22:08 - 2014-05-18 22:08 - 00282928 _____ (Mozilla) C:\Users\Aidan\Downloads\Firefox Setup Stub 29.0.1.exe
2014-05-18 20:47 - 2014-01-30 21:31 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2014-05-18 20:47 - 2014-01-30 21:31 - 00000000 ____D () C:\Program Files (x86)\Hi-Rez Studios
2014-05-18 20:38 - 2014-05-18 20:38 - 00000003 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-05-18 20:38 - 2014-05-18 20:38 - 00000003 _____ () C:\Windows\system32\HRUPPROG.DIE.NOW
2014-05-18 20:34 - 2014-05-18 19:39 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Riot Games
2014-05-18 19:43 - 2014-05-18 19:43 - 00001613 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2014-05-18 19:43 - 2014-05-18 19:43 - 00000000 ____D () C:\Riot Games
2014-05-18 19:43 - 2014-05-18 19:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-05-18 19:43 - 2014-01-01 22:31 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-05-18 19:40 - 2014-05-18 19:40 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-05-18 19:38 - 2014-05-18 19:37 - 32229024 _____ (Riot Games) C:\Users\Aidan\Downloads\LeagueofLegends_NA_Installer_05_07_13.exe
2014-05-18 19:37 - 2014-01-02 11:03 - 00000000 ____D () C:\Users\Aidan\Documents\My Games
2014-05-18 19:37 - 2014-01-01 17:22 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-05-18 19:36 - 2014-05-18 19:36 - 00000000 ____D () C:\Users\Aidan\AppData\Local\WarThunder
2014-05-18 19:36 - 2014-05-18 19:36 - 00000000 ____D () C:\ProgramData\WarThunder
2014-05-18 19:36 - 2014-01-01 17:22 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-05-17 20:02 - 2014-05-17 20:02 - 00006228 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_2.rar
2014-05-17 20:02 - 2014-05-17 20:02 - 00004159 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_1.rar
2014-05-17 20:02 - 2014-05-17 20:02 - 00003844 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_3.rar
2014-05-17 15:05 - 2014-05-17 15:05 - 00000222 _____ () C:\Users\Aidan\Desktop\War Thunder.url
2014-05-17 12:51 - 2014-05-16 13:59 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Arma 3
2014-05-16 14:01 - 2014-05-16 13:59 - 00000000 ____D () C:\Users\Aidan\Documents\Arma 3
2014-05-16 13:59 - 2014-05-16 13:59 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-05-15 13:12 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-05-15 12:57 - 2014-01-01 09:44 - 00000000 ___RD () C:\Users\Aidan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-15 12:57 - 2014-01-01 09:44 - 00000000 ___RD () C:\Users\Aidan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-15 03:33 - 2014-05-15 03:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-05-15 03:33 - 2014-05-15 03:33 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-05-15 03:22 - 2014-05-07 03:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-15 03:04 - 2013-12-28 19:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-15 03:02 - 2013-12-28 19:45 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-14 15:00 - 2014-04-28 20:00 - 17938608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-14 15:00 - 2014-01-02 13:32 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 15:00 - 2014-01-02 13:32 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-13 15:39 - 2014-05-13 15:39 - 00000222 _____ () C:\Users\Aidan\Desktop\Terraria.url
2014-05-13 14:11 - 2014-05-13 14:11 - 10407696 _____ () C:\Users\Aidan\Downloads\Brickston Manor.rar
2014-05-13 14:11 - 2014-05-13 14:11 - 05759618 _____ () C:\Users\Aidan\Downloads\Faithful Texture Pack 64x64 1.6.zip
2014-05-13 14:11 - 2014-05-13 14:10 - 04281787 _____ () C:\Users\Aidan\Downloads\Harves Luna Dur.rar
2014-05-13 13:05 - 2013-12-28 18:37 - 00000000 ____D () C:\NVIDIA
2014-05-12 18:31 - 2014-05-12 18:31 - 00000000 ____D () C:\Program Files\ESEA
2014-05-12 18:31 - 2014-05-12 18:29 - 15340591 _____ () C:\Users\Aidan\Downloads\ESEAClientInstall.exe
2014-05-12 07:26 - 2014-06-05 12:37 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-06-05 12:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-06-05 12:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 14:45 - 2014-05-11 14:45 - 03033247 _____ () C:\Users\Aidan\Downloads\Hairstyle_F_toddler-166-TSR Skysims3.sims3pack
2014-05-11 14:41 - 2014-05-11 14:41 - 03133326 _____ () C:\Users\Aidan\Downloads\Skysims Hair Child 196.sims3pack
2014-05-11 14:38 - 2014-05-11 14:38 - 04145372 _____ () C:\Users\Aidan\Downloads\Cazy_c130_cf.sims3pack
2014-05-11 14:37 - 2014-05-11 14:37 - 03796968 _____ () C:\Users\Aidan\Downloads\Skysims Hair Adult 203.sims3pack
2014-05-11 06:54 - 2014-05-11 06:54 - 00622547 _____ () C:\Users\Aidan\Downloads\broesel custom 1.8.zip
2014-05-10 09:40 - 2014-05-10 09:40 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Sony Creative Software Inc
2014-05-10 08:38 - 2014-05-03 19:28 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Sony
2014-05-09 16:12 - 2014-05-09 16:11 - 01061272 _____ () C:\Users\Aidan\Downloads\Royalty Free Ambient Horror Music & Dark Soundscapes- 13 Days Of Nightmares.mp3.sfk
2014-05-09 01:14 - 2014-05-14 14:51 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 01:11 - 2014-05-14 14:51 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
 
Files to move or delete:
====================
C:\Users\Aidan\jagex_cl_oldschool_LIVE.dat
C:\Users\Aidan\jagex_cl_runescape_LIVE.dat
C:\Users\Aidan\random.dat
 
 
Some content of TEMP:
====================
C:\Users\Owner\AppData\Local\Temp\BingBarSetup-Partner.exe
C:\Users\Owner\AppData\Local\Temp\chrome.exe
C:\Users\Owner\AppData\Local\Temp\crp466A.exe
C:\Users\Owner\AppData\Local\Temp\EnableExtDll.dll
C:\Users\Owner\AppData\Local\Temp\GUR1980.exe
C:\Users\Owner\AppData\Local\Temp\GUR1A48.exe
C:\Users\Owner\AppData\Local\Temp\NGM.exe
C:\Users\Owner\AppData\Local\Temp\NGMDll.dll
C:\Users\Owner\AppData\Local\Temp\NGMResource.dll
C:\Users\Owner\AppData\Local\Temp\SpOrder.dll
C:\Users\Owner\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Owner\AppData\Local\Temp\unicows.dll
C:\Users\Owner\AppData\Local\Temp\uti463B.exe
C:\Users\Owner\AppData\Local\Temp\uti52F9.exe
C:\Users\Owner\AppData\Local\Temp\utt5630.tmp.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================
 
 Additiondditional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2014
Ran by Aidan at 2014-06-05 17:22:31
Running from I:\
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
 
==================== Installed Programs ======================
 
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.05 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33900) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\{1B729E3D-B16D-3A41-A9AE-6AEC20C6580D}) (Version: 65.156.32831 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.193 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.193 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4024.1220 - Microsoft Corporation)
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Nexon Game Manager (HKLM-x32\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version:  - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.3 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 332.21 - NVIDIA Corporation)
NVIDIA Control Panel 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.21 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.0.14.2148 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\{FB83467F-D8EB-43E6-8B3D-860B045C1C52}) (Version: 0.51.325 - Overwolf)
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.16.6 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
RuneScape Launcher 1.2.3 (HKLM-x32\...\{FAE99C85-0732-4C58-9C6B-10B5B12FA2E9}) (Version: 1.2.3 - Jagex Ltd)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version:  - Tunngle.net GmbH)
VLC media player 2.1.2 (HKLM-x32\...\VLC media player) (Version: 2.1.2 - VideoLAN)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
 
==================== Restore Points  =========================
 
Could not list Restore Points. Check "winmgmt" service or repair WMI.
 
 
==================== Hosts content: ==========================
 
2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\bench-sys.job => ?
Task: C:\Windows\Tasks\bench-Updater removing.job => ? <==== ATTENTION
Task: C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000Core.job => ?
Task: C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000UA.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?
 
==================== Loaded Modules (whitelisted) =============
 
2012-01-10 15:41 - 2014-01-10 20:30 - 00567880 _____ () C:\Program Files (x86)\puush\puush.exe
2014-01-01 21:57 - 2014-05-15 13:04 - 00598072 _____ () C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\plsapp => ""="service"
 
==================== EXE Association (whitelisted) =============
 
 
==================== Disabled items from MSCONFIG ==============
 
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
 
==================== Faulty Device Manager Devices =============
 
Name: Ethernet Controller
Description: Ethernet Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (06/05/2014 05:00:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0xc0000005
Fault offset: 0x00000000000027de
Faulting process id: 0xb58
Faulting application start time: 0xtaskeng.exe0
Faulting application path: taskeng.exe1
Faulting module path: taskeng.exe2
Report Id: taskeng.exe3
 
Error: (06/05/2014 05:00:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/05/2014 04:50:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0xc0000005
Fault offset: 0x00000000000027de
Faulting process id: 0xdbc
Faulting application start time: 0xtaskeng.exe0
Faulting application path: taskeng.exe1
Faulting module path: taskeng.exe2
Report Id: taskeng.exe3
 
Error: (06/05/2014 04:48:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/05/2014 04:44:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0xc0000005
Fault offset: 0x00000000000027de
Faulting process id: 0x11c0
Faulting application start time: 0xtaskeng.exe0
Faulting application path: taskeng.exe1
Faulting module path: taskeng.exe2
Report Id: taskeng.exe3
 
Error: (06/05/2014 04:21:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/05/2014 04:20:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0xc0000005
Fault offset: 0x00000000000027de
Faulting process id: 0xa5c
Faulting application start time: 0xtaskeng.exe0
Faulting application path: taskeng.exe1
Faulting module path: taskeng.exe2
Report Id: taskeng.exe3
 
Error: (06/05/2014 02:14:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0xc0000005
Fault offset: 0x00000000000027de
Faulting process id: 0x7f4
Faulting application start time: 0xtaskeng.exe0
Faulting application path: taskeng.exe1
Faulting module path: taskeng.exe2
Report Id: taskeng.exe3
 
Error: (06/05/2014 01:54:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/05/2014 01:53:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0xc0000005
Fault offset: 0x00000000000027de
Faulting process id: 0x778
Faulting application start time: 0xtaskeng.exe0
Faulting application path: taskeng.exe1
Faulting module path: taskeng.exe2
Report Id: taskeng.exe3
 
 
System errors:
=============
Error: (06/05/2014 04:52:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Windows Search service hung on starting.
 
Error: (06/05/2014 04:17:28 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
 
Error: (06/05/2014 01:22:48 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}
 
Error: (06/05/2014 01:22:48 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (06/05/2014 01:22:38 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084LMIGuardianSvc{D4258A22-CF85-489D-83AE-49FCD0DFAD29}
 
Error: (06/05/2014 01:22:37 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}
 
Error: (06/05/2014 01:22:24 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}
 
Error: (06/05/2014 01:22:22 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084LMIGuardianSvc{D4258A22-CF85-489D-83AE-49FCD0DFAD29}
 
Error: (06/05/2014 01:22:22 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
discache
MpFilter
spldr
Wanarpv6
 
Error: (06/05/2014 01:21:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Diagnostic System Host service failed to start due to the following error: 
%%1115
 
 
Microsoft Office Sessions:
=========================
Error: (06/05/2014 05:00:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027deb5801cf81097eed05d5C:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dlldc02a01d-ecfc-11e3-9d3f-df43b203f185
 
Error: (06/05/2014 05:00:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/05/2014 04:50:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027dedbc01cf81081c98d5f7C:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll5ba80de0-ecfb-11e3-abc2-a110942f2d8a
 
Error: (06/05/2014 04:48:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/05/2014 04:44:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de11c001cf81074e68b9abC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll8d39ca36-ecfa-11e3-847d-fbe841cef784
 
Error: (06/05/2014 04:21:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/05/2014 04:20:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027dea5c01cf8103f400fa0dC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll3b70e9ca-ecf7-11e3-847d-fbe841cef784
 
Error: (06/05/2014 02:14:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de7f401cf80f24e3c4d37C:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll8c52a79c-ece5-11e3-9c07-d8720e114a84
 
Error: (06/05/2014 01:54:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/05/2014 01:53:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de77801cf80ef663a807dC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dllaeb50a59-ece2-11e3-9c07-d8720e114a84
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 26%
Total physical RAM: 8190.98 MB
Available physical RAM: 5989.89 MB
Total Pagefile: 16380.13 MB
Available Pagefile: 13951.78 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:465.66 GB) (Free:203.42 GB) NTFS
Drive i: () (Removable) (Total:3.74 GB) (Free:3.52 GB) FAT32
 
==================== MBR & Partition Table ==================
 
==================== End Of Log ============================
 
FSSFarbar Service Scanner Version: 21-05-2014
Ran by Aidan (ATTENTION: The logged in user is not administrator) on 05-06-2014 at 17:26:28
Running from "I:\"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.
 
VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.
 
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****
Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

 

Name: Ethernet Controller
Description: Ethernet Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Do you use a wired connection for the internet? If so you will need to install new drivers.

Link to post
Share on other sites
Blitson

Blitson

Posted
  • Author
Posted
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 6/5/2014
Scan Time: 12:49:22 PM
Logfile: 
Administrator: No
 
Version: 2.00.2.1012
Malware Database: v2014.06.05.10
Rootkit Database: v2014.06.02.01
License: Trial
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Aidan
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 216963
Time Elapsed: 8 min, 6 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 6
PUP.Optional.SavingsWizard.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{39B931CF-F1E2-4D04-8129-9EE8159A91C5}, Delete-on-Reboot, [fbe3631188f39c9a1031cb70b64c916f], 
PUP.Optional.SavingsWizard.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{39B931CF-F1E2-4D04-8129-9EE8159A91C5}, Delete-on-Reboot, [fbe3631188f39c9a1031cb70b64c916f], 
PUP.Optional.ValueApps.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{93DBF2BB-A2B3-4683-A92E-57E60751F346}, Delete-on-Reboot, [5b8383f17a011b1b34153a01e71b06fa], 
PUP.Optional.ValueApps.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{93DBF2BB-A2B3-4683-A92E-57E60751F346}, Delete-on-Reboot, [5b8383f17a011b1b34153a01e71b06fa], 
PUP.Optional.Bench.A, HKLM\SOFTWARE\WOW6432NODE\BENCH\BService, Delete-on-Reboot, [7d61670d6219bf77428e950503ff857b], 
PUP.Optional.Bench.A, HKLM\SOFTWARE\WOW6432NODE\BENCH\Updater, Delete-on-Reboot, [05d90b69304bce68ad266d2dc63c8977], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 8
PUP.Optional.OpenCandy, C:\Users\Owner\AppData\Roaming\OpenCandy, Delete-on-Reboot, [d509d59f90eb82b49cd0d4ae7d851ce4], 
PUP.Optional.Conduit.A, c:\users\owner\appdata\local\temp\ct3311333, Quarantined, [f0ee2450e19a1b1b588b3949837f8080], 
PUP.Optional.AdwarePlugin, C:\Program Files (x86)\Bench\Updater, Delete-on-Reboot, [c915aec60c6fa88e09a62360897955ab], 
PUP.Optional.AdwarePlugin, C:\Program Files (x86)\Bench\Updater\1.7.0.0, Delete-on-Reboot, [c915aec60c6fa88e09a62360897955ab], 
PUP.Optional.ValueAppsplugin.A, C:\Program Files\Conduit\ValueApps, Delete-on-Reboot, [04da0d675b20ad8988d6770d2ad89868], 
PUP.Optional.ValueAppsplugin.A, C:\Program Files (x86)\Conduit\ValueApps, Delete-on-Reboot, [8c52b6bee8934aecf569552fc73b21df], 
PUP.Optional.ValueAppsplugin.A, c:\users\owner\appdata\local\conduit\valueapps, Delete-on-Reboot, [20bede965526c76fa1bfbaca00024bb5], 
PUP.Optional.Conduit.A, c:\users\owner\appdata\local\temp\mam-ct3316263, Quarantined, [7f5fdf95abd002346e5b6325887a857b], 
 
Files: 20
PUP.Optional.ConsumerInput, c:\Users\Owner\AppData\Local\Temp\consumerinputsetup.exe, Quarantined, [8b536d070c6f4aec50fa9fa26b9934cc], 
PUP.Optional.Babylon.A, c:\Users\Owner\AppData\Local\Temp\crp52fa.exe, Quarantined, [815d71033249d561bb4122e54fb2f20e], 
PUP.Optional.Conduit.A, c:\Users\Owner\AppData\Local\Temp\dllogic.exe, Quarantined, [7d61d79d05761e185cc51eeb7c85b44c], 
PUP.Optional.Babylon.A, c:\Users\Owner\AppData\Local\Temp\DC2391B9-BAB0-7891-81A1-6394928857FC\Latest\bexternal.dll, Quarantined, [e0fe7004512a171f08df53cf49b730d0], 
PUP.Optional.Conduit.A, c:\Users\Owner\AppData\Local\Temp\mam-ct3316263\ctbe.exe, Quarantined, [ad31423298e3a4920154a88f56aad030], 
PUP.Optional.Conduit.A, c:\Users\Owner\AppData\Local\Temp\mam-ct3316263\mamstub.exe, Quarantined, [706e8ee622590d2974adfd0c44bda060], 
PUP.Optional.Conduit.A, c:\Users\Owner\AppData\Local\Temp\mam-ct3316263\mam_ie.exe, Quarantined, [6e701b59166551e56cc2bfac35cc34cc], 
PUP.Optional.4Shared, C:\Users\Aidan\Downloads\1.6.2.exe, Quarantined, [9a446e06057684b2263b0f0fdb25629e], 
PUP.Optional.InstallMonetizer, C:\Users\Aidan\Downloads\adrencfg.rar.exe, Quarantined, [33abb5bf7efd44f2783e5d9905feb050], 
PUP.Optional.Bundler, C:\Users\Aidan\Downloads\GLSL Shaders Indicator 1.7.2.exe, Quarantined, [0cd281f36912e45269d7a7b22ed31fe1], 
PUP.Optional.Amonetize.A, C:\Users\Aidan\Downloads\MORGAN FREEMAN SB__6078_il4770149.exe, Quarantined, [03dbe58fcab11521eb6273c6b0506c94], 
PUP.Optional.Amonetize.A, C:\Users\Aidan\Downloads\TREVOR SB__6148_il4772901.exe, Quarantined, [6d71dc988dee36002a231722d828ef11], 
PUP.Optional.SearchProtection.A, c:\users\owner\appdata\roaming\search protection\searchprotection.exe, Delete-on-Reboot, [fae4353fbac11e186556a413d92934cc], 
PUP.Optional.BenchUpdater.A, C:\Windows\Tasks\bench-sys.job, Delete-on-Reboot, [29b5254fcbb090a66295a21646bc0ef2], 
PUP.Optional.BenchUpdater.A, C:\Windows\Tasks\bench-Updater removing.job, Delete-on-Reboot, [4b93bdb719625fd7f9fef9bfb9499967], 
PUP.Optional.Conduit.A, c:\Users\Owner\AppData\Local\Temp\ct3311333\chromeid.txt, Quarantined, [f0ee2450e19a1b1b588b3949837f8080], 
PUP.Optional.Conduit.A, c:\Users\Owner\AppData\Local\Temp\ct3311333\setup.ini.txt, Quarantined, [f0ee2450e19a1b1b588b3949837f8080], 
PUP.Optional.AdwarePlugin, C:\Program Files (x86)\Bench\Updater\products.xml, Delete-on-Reboot, [c915aec60c6fa88e09a62360897955ab], 
PUP.Optional.AdwarePlugin, C:\Program Files (x86)\Bench\Updater\updater.exe, Delete-on-Reboot, [c915aec60c6fa88e09a62360897955ab], 
PUP.Optional.AdwarePlugin, C:\Program Files (x86)\Bench\Updater\1.7.0.0\updater.exe, Delete-on-Reboot, [c915aec60c6fa88e09a62360897955ab], 
 
Physical Sectors: 0
(No malicious items detected)
 
 

(end) can't figure out how to edit my original post but here is my first scan log 

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

Open Device manager again, scroll to and open Network Adapters, right click on "Ethernet Controller" select "Uninstall" agree any warnings. Close device manager and Re-Boot your PC. Windows will find the hardware at POST and should attribute a driver from the driver cache...

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

Download attached fixlist.txt file and save it to the Desktop, or the folder you saved FRST into.

NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

 

Run FRST and press the Fix button just once and wait.

The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

 

Next,

 

Can you open Device Manager, scroll to and expand Network Adapters, are there any question or exclamation marks listed against the adapters?

 

Next,

 

Run FSS again as you did initially and post a fresh log.

 

Next,

 

Run FRST again, make sure Addition is check marked under "Optional scan" post both produced logs..

 

Let me see those logs in next reply..

 

Kevin

fixlist.txt

Link to post
Share on other sites
Blitson

Blitson

Posted
  • Author
Posted
FRST fix

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-06-2014

Ran by Aidan at 2014-06-06 12:00:20 Run:1

Running from I:\

Boot Mode: Normal

==============================================

 

Content of fixlist:

*****************

Start

GroupPolicyUsers\S-1-5-21-1131576993-2969418412-3415741453-1004\User: Group Policy restriction detected <======= ATTENTION

C:\Users\Aidan\jagex_cl_oldschool_LIVE.dat

C:\Users\Aidan\jagex_cl_runescape_LIVE.dat

C:\Users\Aidan\random.dat

C:\Users\Owner\AppData\Local\Temp\BingBarSetup-Partner.exe

C:\Users\Owner\AppData\Local\Temp\chrome.exe

C:\Users\Owner\AppData\Local\Temp\crp466A.exe

C:\Users\Owner\AppData\Local\Temp\EnableExtDll.dll

C:\Users\Owner\AppData\Local\Temp\GUR1980.exe

C:\Users\Owner\AppData\Local\Temp\GUR1A48.exe

C:\Users\Owner\AppData\Local\Temp\NGM.exe

C:\Users\Owner\AppData\Local\Temp\NGMDll.dll

C:\Users\Owner\AppData\Local\Temp\NGMResource.dll

C:\Users\Owner\AppData\Local\Temp\SpOrder.dll

C:\Users\Owner\AppData\Local\Temp\swt-win32-3349.dll

C:\Users\Owner\AppData\Local\Temp\unicows.dll

C:\Users\Owner\AppData\Local\Temp\uti463B.exe

C:\Users\Owner\AppData\Local\Temp\uti52F9.exe

C:\Users\Owner\AppData\Local\Temp\utt5630.tmp.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?

Task: C:\Windows\Tasks\bench-sys.job => ?

Task: C:\Windows\Tasks\bench-Updater removing.job => ? <==== ATTENTION

Task: C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000Core.job => ?

Task: C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000UA.job => ?

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?

End

*****************

 

 

"C:\Windows\system32\GroupPolicyUsers\S-1-5-21-1131576993-2969418412-3415741453-1004\User" directory move:

 

Could not move "C:\Windows\system32\GroupPolicyUsers\S-1-5-21-1131576993-2969418412-3415741453-1004\User\Registry.pol" => Scheduled to move on reboot.

Could not move "C:\Windows\system32\GroupPolicyUsers\S-1-5-21-1131576993-2969418412-3415741453-1004\User" directory. => Scheduled to move on reboot.

 

Could not move "C:\Windows\system32\GroupPolicy\GPT.ini" => Scheduled to move on reboot.

C:\Users\Aidan\jagex_cl_oldschool_LIVE.dat => Moved successfully.

C:\Users\Aidan\jagex_cl_runescape_LIVE.dat => Moved successfully.

C:\Users\Aidan\random.dat => Moved successfully.

Could not move "C:\Users\Owner\AppData\Local\Temp\BingBarSetup-Partner.exe" => Scheduled to move on reboot.

C:\Users\Owner\AppData\Local\Temp\chrome.exe => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\crp466A.exe => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\EnableExtDll.dll => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\GUR1980.exe => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\GUR1A48.exe => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\NGM.exe => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\NGMDll.dll => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\NGMResource.dll => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\SpOrder.dll => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\swt-win32-3349.dll => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\unicows.dll => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\uti463B.exe => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\uti52F9.exe => Moved successfully.

C:\Users\Owner\AppData\Local\Temp\utt5630.tmp.exe => Moved successfully.

Could not move "C:\Windows\Tasks\Adobe Flash Player Updater.job" => Scheduled to move on reboot.

Could not move "C:\Windows\Tasks\bench-sys.job" => Scheduled to move on reboot.

Could not move "C:\Windows\Tasks\bench-Updater removing.job" => Scheduled to move on reboot.

Could not move "C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000Core.job" => Scheduled to move on reboot.

Could not move "C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000UA.job" => Scheduled to move on reboot.

Could not move "C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job" => Scheduled to move on reboot.

Could not move "C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job" => Scheduled to move on reboot.

 

 

My device manager had an (?) on Other Devices and /!\ on Ethernet Controller

 

 

FSS 

Farbar Service Scanner Version: 21-05-2014

Ran by Aidan (ATTENTION: The logged in user is not administrator) on 06-06-2014 at 12:08:11

Running from "I:\"

Microsoft Windows 7 Home Premium  Service Pack 1 (X64)

Boot Mode: Normal

****************************************************************

 

Internet Services:

============

 

Connection Status:

==============

Localhost is accessible.

LAN connected.

Attempt to access Google IP returned error. Google IP is unreachable

Attempt to access Google.com returned error: Other errors

Attempt to access Yahoo.com returned error: Other errors

 

 

Windows Firewall:

=============

 

Firewall Disabled Policy: 

==================

 

 

System Restore:

============

SDRSVC Service is not running. Checking service configuration:

The start type of SDRSVC service is OK.

The ImagePath of SDRSVC service is OK.

The ServiceDll of SDRSVC service is OK.

 

VSS Service is not running. Checking service configuration:

The start type of VSS service is OK.

The ImagePath of VSS service is OK.

 

 

System Restore Disabled Policy: 

========================

 

 

Action Center:

============

 

 

Windows Update:

============

 

Windows Autoupdate Disabled Policy: 

============================

 

 

Windows Defender:

==============

WinDefend Service is not running. Checking service configuration:

The start type of WinDefend service is set to Demand. The default start type is Auto.

The ImagePath of WinDefend service is OK.

The ServiceDll of WinDefend service is OK.

 

 

Windows Defender Disabled Policy: 

==========================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]

"DisableAntiSpyware"=DWORD:1

 

 

Other Services:

==============

 

 

File Check:

========

C:\Windows\System32\nsisvc.dll => MD5 is legit

C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit

C:\Windows\System32\dhcpcore.dll => MD5 is legit

C:\Windows\System32\drivers\afd.sys => MD5 is legit

C:\Windows\System32\drivers\tdx.sys => MD5 is legit

C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit

C:\Windows\System32\dnsrslvr.dll => MD5 is legit

C:\Windows\System32\mpssvc.dll => MD5 is legit

C:\Windows\System32\bfe.dll => MD5 is legit

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit

C:\Windows\System32\SDRSVC.dll => MD5 is legit

C:\Windows\System32\vssvc.exe => MD5 is legit

C:\Windows\System32\wscsvc.dll => MD5 is legit

C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit

C:\Windows\System32\wuaueng.dll => MD5 is legit

C:\Windows\System32\qmgr.dll => MD5 is legit

C:\Windows\System32\es.dll => MD5 is legit

C:\Windows\System32\cryptsvc.dll => MD5 is legit

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

 

 

**** End of log ****

 

FRST Scan

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-06-2014

Ran by Aidan (ATTENTION: The logged in user is not administrator) on OWNER-PC on 06-06-2014 12:09:59

Running from I:\

Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)

Internet Explorer Version 11

Boot Mode: Normal

 

The only official download link for FRST:



Download link from any site other than Bleeping Computer is unpermitted or outdated.


 

==================== Processes (Whitelisted) =================

 

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

() C:\Program Files (x86)\puush\puush.exe

(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe

(Spotify Ltd) C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe

(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe

(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Farbar) I:\fss.exe

(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)

HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"

HKLM\...\Run: [shadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)

HKLM-x32\...\Run: [] => [X]

HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [442712 2013-11-17] (Razer Inc.)

HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)

HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe

HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-05-13] (LogMeIn Inc.)

HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [spotify] => C:\Users\Aidan\AppData\Roaming\Spotify\Spotify.exe [6170168 2014-05-15] (Spotify Ltd)

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2014-01-10] ()

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [spotify Web Helper] => C:\Users\Aidan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-15] (Spotify Ltd)

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [steam] => C:\Program Files (x86)\Steam\steam.exe [1754816 2014-05-29] (Valve Corporation)

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [CatalinaGroup Update] => "C:\Users\Owner\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe" /c

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3588952 2014-04-25] (Electronic Arts)

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Policies\system: [LogonHoursAction] 2

HKU\S-1-5-21-1131576993-2969418412-3415741453-1004\...\Policies\system: [DontDisplayLogonHoursWarnings] 1

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)

GroupPolicyUsers\S-1-5-21-1131576993-2969418412-3415741453-1004\User: Group Policy restriction detected <======= ATTENTION

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC0AFD0338939CF01

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US

SearchScopes: HKCU - DefaultScope {0B43A3E7-DDE4-46FD-834B-53DBA19064FF} URL = https://www.google.com/search?q={searchTerms}

SearchScopes: HKCU - {0B43A3E7-DDE4-46FD-834B-53DBA19064FF} URL = https://www.google.com/search?q={searchTerms}

BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)

BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

 

FireFox:

========

FF ProfilePath: C:\Users\Aidan\AppData\Roaming\Mozilla\Firefox\Profiles\uq9173wj.default-1400469336911

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()

FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()

FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)

FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)

FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @nexon.net/NxGame - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)

FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

 

Chrome: 

=======

CHR HomePage: hxxp://www.youtube.com/feed/subscriptions?feature=mhee

CHR StartupUrls: "hxxp://www.youtube.com/feed/subscriptions?feature=mhee"

CHR Extension: (Google Docs) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-01]

CHR Extension: (Google Drive) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-01]

CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]

CHR Extension: (YouTube) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-01]

CHR Extension: (McAfee Security Scan+) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-02-25]

CHR Extension: (Adblock Plus) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-05-19]

CHR Extension: (Google Search) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-01]

CHR Extension: (Instair Speed Dial) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kikeacjcceacohckgiajooneiabebfjj [2014-01-01]

CHR Extension: (Google Wallet) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-01]

CHR Extension: (Gmail) - C:\Users\Aidan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-01]

 

==================== Services (Whitelisted) =================

 

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-03-31] ()

R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-15] (LogMeIn, Inc.)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-15] (McAfee, Inc.)

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)

R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)

R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)

S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [99616 2014-03-05] (Overwolf LTD)

S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)

 

==================== Drivers (Whitelisted) ====================

 

S3 k57nd; C:\Windows\System32\DRIVERS\k57amd64.sys [356392 2011-10-25] (Broadcom Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)

R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)

S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)

R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)

S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

S3 ESEADriver2; \??\C:\Users\Owner\AppData\Local\Temp\ESEADriver2.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-06-05 17:21 - 2014-06-06 12:10 - 00000000 ____D () C:\FRST

2014-06-05 12:37 - 2014-06-05 19:15 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-06-05 12:37 - 2014-06-05 12:37 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

2014-06-05 12:37 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2014-06-05 12:37 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2014-06-05 12:37 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-06-05 12:36 - 2014-06-05 12:36 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Aidan\Downloads\mbam-setup-2.0.2.1012.exe

2014-06-03 12:42 - 2014-06-03 12:40 - 02346942 _____ () C:\Users\Aidan\Desktop\TechnicLauncher.exe

2014-06-03 12:40 - 2014-06-03 12:40 - 02346942 _____ () C:\Users\Aidan\Downloads\TechnicLauncher.exe

2014-06-01 16:47 - 2014-06-01 16:47 - 03587298 _____ () C:\Users\Aidan\Downloads\strafingmap_trilluxe.bsp

2014-05-29 11:08 - 2014-05-29 11:08 - 00000000 ____D () C:\Users\Aidan\Documents\Battlefield 3

2014-05-29 11:07 - 2014-05-29 11:07 - 02247960 _____ () C:\Users\Aidan\Downloads\battlelog-web-plugins_2.4.0_141 (1).exe

2014-05-29 11:05 - 2014-05-29 11:05 - 00000000 ____D () C:\Users\Aidan\AppData\Local\ESN

2014-05-29 11:05 - 2014-05-29 11:05 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins

2014-05-29 11:04 - 2014-05-29 11:04 - 02247960 _____ () C:\Users\Aidan\Downloads\battlelog-web-plugins_2.4.0_141.exe

2014-05-29 11:00 - 2014-05-29 11:00 - 00001174 _____ () C:\Users\Public\Desktop\Battlefield 3.lnk

2014-05-29 11:00 - 2014-05-29 11:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3

2014-05-29 00:35 - 2014-05-29 00:35 - 03028804 _____ () C:\Users\Aidan\Downloads\The Test v1.rar

2014-05-28 22:39 - 2014-05-28 22:40 - 00000024 _____ () C:\Users\Aidan\Documents\Template.txt

2014-05-27 16:19 - 2014-05-27 16:19 - 00001031 _____ () C:\Users\Aidan\Documents\Mail 2 Anderp.txt

2014-05-25 09:07 - 2014-05-25 09:07 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Apple Computer

2014-05-24 12:40 - 2014-05-24 22:30 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Purplizer

2014-05-24 12:38 - 2014-05-24 12:41 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Overwolf

2014-05-24 08:05 - 2014-05-24 08:05 - 00001975 _____ () C:\Users\Public\Desktop\Overwolf.lnk

2014-05-24 08:04 - 2014-05-24 08:05 - 00000000 ____D () C:\Program Files (x86)\Overwolf

2014-05-24 07:59 - 2014-05-24 07:59 - 00993208 _____ (Overwolf) C:\Users\Aidan\Downloads\OverwolfInstaller.exe

2014-05-23 12:43 - 2014-05-23 12:43 - 00334936 _____ () C:\Users\Aidan\Downloads\[Electro] - Case & Point - Savage [Monstercat Release].mp3.sfk

2014-05-22 21:01 - 2014-05-22 21:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Apple Computer

2014-05-22 14:04 - 2014-05-22 14:04 - 00619576 _____ () C:\Users\Aidan\Downloads\BroeselCustomV1.13.rar

2014-05-21 18:03 - 2014-05-21 18:10 - 189007974 _____ () C:\Users\Aidan\Downloads\Gerudoku Faithful.zip

2014-05-21 18:01 - 2014-05-21 18:08 - 175837634 _____ () C:\Users\Aidan\Downloads\snowsong1_4_for_minecraft_version_1_7_x_and_up_by_aleciashepherd-d6seklp.zip

2014-05-20 20:50 - 2014-05-20 20:50 - 00814735 _____ () C:\Users\Aidan\Downloads\OptiFine_1.7.9_HD_U_D2.jar

2014-05-20 20:45 - 2014-05-20 20:45 - 00000000 ____D () C:\.jagex_cache_32

2014-05-20 20:24 - 2014-05-20 20:24 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk

2014-05-20 20:24 - 2014-05-20 20:24 - 00000000 ____D () C:\Program Files\Common Files\Apple

2014-05-20 20:24 - 2014-05-20 20:24 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update

2014-05-20 20:23 - 2014-05-20 20:24 - 00000000 ____D () C:\ProgramData\Apple

2014-05-20 20:18 - 2014-05-20 20:22 - 97206096 _____ (Apple Inc.) C:\Users\Aidan\Downloads\iTunes64Setup.exe

2014-05-20 20:05 - 2014-05-20 23:07 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\.aether

2014-05-20 20:05 - 2014-05-20 20:05 - 00014817 _____ () C:\Users\Aidan\Downloads\launcher-start.jar

2014-05-19 20:15 - 2014-05-19 20:15 - 00000000 ____D () C:\ProgramData\Nexon

2014-05-19 20:07 - 2014-05-19 20:07 - 00001658 _____ () C:\Users\Aidan\Desktop\MapleStory.lnk

2014-05-19 20:03 - 2014-05-19 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon

2014-05-19 20:00 - 2014-05-20 20:31 - 00000000 ____D () C:\Nexon

2014-05-19 20:00 - 2014-05-19 20:00 - 00000000 ____D () C:\ProgramData\NexonUS

2014-05-19 19:33 - 2014-05-19 19:33 - 03909878 _____ () C:\Users\Aidan\Downloads\Werian-1.7.zip

2014-05-19 19:31 - 2014-05-19 19:31 - 22368606 _____ () C:\Users\Aidan\Downloads\FRA-High-Noon-1.7.zip

2014-05-19 18:09 - 2014-05-19 18:09 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\LolClient

2014-05-19 18:08 - 2014-05-19 18:09 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader (2).exe

2014-05-19 17:34 - 2014-05-19 18:09 - 00000356 _____ () C:\console.log

2014-05-19 17:32 - 2014-05-19 17:33 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader (1).exe

2014-05-19 17:15 - 2014-05-22 14:40 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2014-05-19 17:09 - 2014-05-19 17:09 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader.exe

2014-05-18 22:08 - 2014-05-18 22:08 - 00282928 _____ (Mozilla) C:\Users\Aidan\Downloads\Firefox Setup Stub 29.0.1.exe

2014-05-18 20:38 - 2014-05-18 20:38 - 00000003 _____ () C:\Windows\system32\HRUPPROG.TXT

2014-05-18 20:38 - 2014-05-18 20:38 - 00000003 _____ () C:\Windows\system32\HRUPPROG.DIE.NOW

2014-05-18 19:58 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll

2014-05-18 19:58 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll

2014-05-18 19:58 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll

2014-05-18 19:43 - 2014-05-18 19:43 - 00001613 _____ () C:\Users\Public\Desktop\League of Legends.lnk

2014-05-18 19:43 - 2014-05-18 19:43 - 00000000 ____D () C:\Riot Games

2014-05-18 19:43 - 2014-05-18 19:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends

2014-05-18 19:40 - 2014-05-18 19:40 - 00000000 ____D () C:\Program Files (x86)\Pando Networks

2014-05-18 19:39 - 2014-05-18 20:34 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Riot Games

2014-05-18 19:37 - 2014-05-18 19:38 - 32229024 _____ (Riot Games) C:\Users\Aidan\Downloads\LeagueofLegends_NA_Installer_05_07_13.exe

2014-05-18 19:36 - 2014-05-18 19:36 - 00000000 ____D () C:\Users\Aidan\AppData\Local\WarThunder

2014-05-18 19:36 - 2014-05-18 19:36 - 00000000 ____D () C:\ProgramData\WarThunder

2014-05-17 20:02 - 2014-05-17 20:02 - 00006228 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_2.rar

2014-05-17 20:02 - 2014-05-17 20:02 - 00004159 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_1.rar

2014-05-17 20:02 - 2014-05-17 20:02 - 00003844 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_3.rar

2014-05-17 15:05 - 2014-05-17 15:05 - 00000222 _____ () C:\Users\Aidan\Desktop\War Thunder.url

2014-05-16 13:59 - 2014-05-17 12:51 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Arma 3

2014-05-16 13:59 - 2014-05-16 14:01 - 00000000 ____D () C:\Users\Aidan\Documents\Arma 3

2014-05-16 13:59 - 2014-05-16 13:59 - 00000000 ____D () C:\ProgramData\Bohemia Interactive

2014-05-15 03:33 - 2014-05-15 03:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi

2014-05-15 03:33 - 2014-05-15 03:33 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi

2014-05-15 03:05 - 2014-05-05 23:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-05-15 03:05 - 2014-05-05 23:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-05-15 03:05 - 2014-05-05 22:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2014-05-15 03:05 - 2014-05-05 22:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2014-05-15 03:05 - 2014-05-05 22:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2014-05-15 03:05 - 2014-05-05 21:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2014-05-14 14:51 - 2014-05-09 01:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-05-14 14:51 - 2014-05-09 01:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-05-14 14:51 - 2014-04-11 21:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2014-05-14 14:51 - 2014-04-11 21:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2014-05-14 14:51 - 2014-04-11 21:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2014-05-14 14:51 - 2014-04-11 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2014-05-14 14:51 - 2014-04-11 21:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2014-05-14 14:51 - 2014-04-11 21:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2014-05-14 14:51 - 2014-04-11 21:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2014-05-14 14:51 - 2014-04-11 21:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2014-05-14 14:51 - 2014-04-11 21:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2014-05-14 14:51 - 2014-03-24 21:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2014-05-14 14:51 - 2014-03-24 21:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2014-05-14 14:51 - 2014-03-04 04:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2014-05-14 14:51 - 2014-03-04 04:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2014-05-14 14:51 - 2014-03-04 04:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll

2014-05-14 14:51 - 2014-03-04 04:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2014-05-14 14:51 - 2014-03-04 04:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2014-05-14 14:51 - 2014-03-04 04:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2014-05-14 14:51 - 2014-03-04 04:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2014-05-14 14:51 - 2014-03-04 04:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2014-05-14 14:51 - 2014-03-04 04:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll

2014-05-14 14:51 - 2014-03-04 04:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe

2014-05-14 14:51 - 2014-03-04 04:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll

2014-05-14 14:51 - 2014-03-04 04:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll

2014-05-14 14:51 - 2014-03-04 04:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll

2014-05-14 14:51 - 2014-03-04 04:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll

2014-05-14 14:51 - 2014-03-04 04:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll

2014-05-14 14:51 - 2014-03-04 04:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2014-05-14 14:51 - 2014-03-04 04:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2014-05-14 14:51 - 2014-03-04 04:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2014-05-14 14:51 - 2014-03-04 04:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll

2014-05-14 14:51 - 2014-03-04 04:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2014-05-14 14:51 - 2014-03-04 04:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2014-05-13 15:39 - 2014-05-13 15:39 - 00000222 _____ () C:\Users\Aidan\Desktop\Terraria.url

2014-05-13 14:11 - 2014-05-13 14:11 - 10407696 _____ () C:\Users\Aidan\Downloads\Brickston Manor.rar

2014-05-13 14:11 - 2014-05-13 14:11 - 05759618 _____ () C:\Users\Aidan\Downloads\Faithful Texture Pack 64x64 1.6.zip

2014-05-13 14:10 - 2014-05-13 14:11 - 04281787 _____ () C:\Users\Aidan\Downloads\Harves Luna Dur.rar

2014-05-12 18:31 - 2014-05-12 18:31 - 00000000 ____D () C:\Program Files\ESEA

2014-05-12 18:29 - 2014-05-12 18:31 - 15340591 _____ () C:\Users\Aidan\Downloads\ESEAClientInstall.exe

2014-05-11 14:45 - 2014-05-11 14:45 - 03033247 _____ () C:\Users\Aidan\Downloads\Hairstyle_F_toddler-166-TSR Skysims3.sims3pack

2014-05-11 14:41 - 2014-05-11 14:41 - 03133326 _____ () C:\Users\Aidan\Downloads\Skysims Hair Child 196.sims3pack

2014-05-11 14:38 - 2014-05-11 14:38 - 04145372 _____ () C:\Users\Aidan\Downloads\Cazy_c130_cf.sims3pack

2014-05-11 14:37 - 2014-05-11 14:37 - 03796968 _____ () C:\Users\Aidan\Downloads\Skysims Hair Adult 203.sims3pack

2014-05-11 06:54 - 2014-05-11 06:54 - 00622547 _____ () C:\Users\Aidan\Downloads\broesel custom 1.8.zip

2014-05-10 18:44 - 2014-05-26 12:00 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat

2014-05-10 09:40 - 2014-05-10 09:40 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Sony Creative Software Inc

2014-05-09 16:11 - 2014-05-09 16:12 - 01061272 _____ () C:\Users\Aidan\Downloads\Royalty Free Ambient Horror Music & Dark Soundscapes- 13 Days Of Nightmares.mp3.sfk

2014-05-08 16:13 - 2014-03-31 11:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

2014-05-08 16:13 - 2014-03-31 11:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

2014-05-07 03:01 - 2014-05-15 03:22 - 00000000 ___SD () C:\Windows\system32\CompatTel

 

==================== One Month Modified Files and Folders =======

 

2014-06-06 12:10 - 2014-06-05 17:21 - 00000000 ____D () C:\FRST

2014-06-06 12:10 - 2014-01-01 09:43 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Temp

2014-06-06 12:10 - 2013-12-28 18:06 - 01557113 _____ () C:\Windows\WindowsUpdate.log

2014-06-06 12:08 - 2009-07-14 00:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI

2014-06-06 12:06 - 2014-01-01 12:15 - 00000000 ____D () C:\Program Files (x86)\Steam

2014-06-06 12:05 - 2014-01-01 21:54 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Spotify

2014-06-06 12:05 - 2014-01-01 12:15 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Skype

2014-06-06 12:03 - 2014-02-01 23:45 - 00000000 ____D () C:\Users\Aidan\AppData\Local\LogMeIn Hamachi

2014-06-06 12:03 - 2013-12-28 18:17 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-06-06 12:02 - 2014-04-05 01:02 - 00000286 _____ () C:\Windows\Tasks\bench-Updater removing.job

2014-06-06 12:02 - 2013-12-28 18:17 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-06-06 12:02 - 2009-07-13 23:51 - 00046620 _____ () C:\Windows\setupact.log

2014-06-06 12:01 - 2013-12-28 18:44 - 00000000 ____D () C:\ProgramData\NVIDIA

2014-06-06 12:01 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-06-06 12:00 - 2014-01-02 13:32 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-06-06 12:00 - 2014-01-01 09:43 - 00000000 ____D () C:\Users\Aidan

2014-06-06 11:59 - 2014-03-06 17:12 - 00000344 _____ () C:\Windows\Tasks\bench-sys.job

2014-06-06 11:59 - 2014-01-19 10:26 - 00000938 _____ () C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000UA.job

2014-06-05 19:58 - 2009-07-13 23:45 - 00022064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-06-05 19:58 - 2009-07-13 23:45 - 00022064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-06-05 19:15 - 2014-06-05 12:37 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-06-05 19:15 - 2014-01-02 12:54 - 00000000 ____D () C:\Fraps

2014-06-05 19:15 - 2014-01-01 12:16 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Skype

2014-06-05 16:44 - 2014-01-01 09:37 - 00001232 __RSH () C:\Users\Owner\ntuser.pol

2014-06-05 16:44 - 2013-12-28 18:06 - 00000000 ____D () C:\Users\Owner

2014-06-05 16:27 - 2014-05-03 19:19 - 00000000 ____D () C:\ProgramData\Sony

2014-06-05 16:26 - 2014-01-01 12:37 - 00000000 ____D () C:\ProgramData\Origin

2014-06-05 13:07 - 2014-01-01 21:58 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Spotify

2014-06-05 13:02 - 2010-11-20 22:47 - 00173722 _____ () C:\Windows\PFRO.log

2014-06-05 12:44 - 2013-12-28 18:12 - 00016278 _____ () C:\Windows\DPINST.LOG

2014-06-05 12:37 - 2014-06-05 12:37 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-06-05 12:37 - 2014-06-05 12:37 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

2014-06-05 12:36 - 2014-06-05 12:36 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Aidan\Downloads\mbam-setup-2.0.2.1012.exe

2014-06-05 12:07 - 2014-03-06 20:40 - 00000000 ___RD () C:\Program Files (x86)\Skype

2014-06-05 12:06 - 2014-01-01 12:15 - 00000000 ____D () C:\ProgramData\Skype

2014-06-05 12:02 - 2014-04-06 08:26 - 00000000 ____D () C:\Program Files (x86)\Origin

2014-06-04 14:02 - 2014-04-17 14:10 - 00000000 ____D () C:\ProgramData\Tunngle

2014-06-04 09:31 - 2014-01-19 10:26 - 00000886 _____ () C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000Core.job

2014-06-04 09:06 - 2014-01-01 12:04 - 00000000 ____D () C:\Users\Aidan\Desktop\Mystery Bin

2014-06-04 07:44 - 2014-01-01 15:32 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2014-06-04 06:08 - 2014-01-01 13:06 - 00000023 _____ () C:\Users\Aidan\jagexappletviewer.preferences

2014-06-03 20:39 - 2014-01-03 19:57 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\TS3Client

2014-06-03 12:40 - 2014-06-03 12:42 - 02346942 _____ () C:\Users\Aidan\Desktop\TechnicLauncher.exe

2014-06-03 12:40 - 2014-06-03 12:40 - 02346942 _____ () C:\Users\Aidan\Downloads\TechnicLauncher.exe

2014-06-01 16:47 - 2014-06-01 16:47 - 03587298 _____ () C:\Users\Aidan\Downloads\strafingmap_trilluxe.bsp

2014-05-31 17:34 - 2014-04-18 22:05 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr

2014-05-31 17:33 - 2014-04-18 22:02 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0

2014-05-30 14:24 - 2014-01-01 15:53 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\.minecraft

2014-05-29 23:58 - 2014-03-30 14:06 - 00000000 ____D () C:\Users\Aidan\AppData\Local\ArmA 2 OA

2014-05-29 11:08 - 2014-05-29 11:08 - 00000000 ____D () C:\Users\Aidan\Documents\Battlefield 3

2014-05-29 11:08 - 2014-04-18 22:04 - 00000000 ____D () C:\Users\Aidan\AppData\Local\PunkBuster

2014-05-29 11:07 - 2014-05-29 11:07 - 02247960 _____ () C:\Users\Aidan\Downloads\battlelog-web-plugins_2.4.0_141 (1).exe

2014-05-29 11:05 - 2014-05-29 11:05 - 00000000 ____D () C:\Users\Aidan\AppData\Local\ESN

2014-05-29 11:05 - 2014-05-29 11:05 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins

2014-05-29 11:04 - 2014-05-29 11:04 - 02247960 _____ () C:\Users\Aidan\Downloads\battlelog-web-plugins_2.4.0_141.exe

2014-05-29 11:03 - 2014-01-01 12:37 - 00000000 ____D () C:\ProgramData\Electronic Arts

2014-05-29 11:00 - 2014-05-29 11:00 - 00001174 _____ () C:\Users\Public\Desktop\Battlefield 3.lnk

2014-05-29 11:00 - 2014-05-29 11:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3

2014-05-29 11:00 - 2009-07-14 00:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2014-05-29 10:58 - 2014-01-01 17:34 - 00119052 _____ () C:\Windows\DirectX.log

2014-05-29 00:35 - 2014-05-29 00:35 - 03028804 _____ () C:\Users\Aidan\Downloads\The Test v1.rar

2014-05-28 23:58 - 2014-01-02 23:00 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2014-05-28 23:01 - 2014-01-01 12:55 - 00000000 ____D () C:\Program Files (x86)\Origin Games

2014-05-28 22:40 - 2014-05-28 22:39 - 00000024 _____ () C:\Users\Aidan\Documents\Template.txt

2014-05-27 20:03 - 2014-01-01 09:43 - 00001232 __RSH () C:\Users\Aidan\ntuser.pol

2014-05-27 16:19 - 2014-05-27 16:19 - 00001031 _____ () C:\Users\Aidan\Documents\Mail 2 Anderp.txt

2014-05-26 12:00 - 2014-05-10 18:44 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat

2014-05-25 09:07 - 2014-05-25 09:07 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Apple Computer

2014-05-24 22:30 - 2014-05-24 12:40 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Purplizer

2014-05-24 12:41 - 2014-05-24 12:38 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Overwolf

2014-05-24 08:05 - 2014-05-24 08:05 - 00001975 _____ () C:\Users\Public\Desktop\Overwolf.lnk

2014-05-24 08:05 - 2014-05-24 08:04 - 00000000 ____D () C:\Program Files (x86)\Overwolf

2014-05-24 07:59 - 2014-05-24 07:59 - 00993208 _____ (Overwolf) C:\Users\Aidan\Downloads\OverwolfInstaller.exe

2014-05-23 12:43 - 2014-05-23 12:43 - 00334936 _____ () C:\Users\Aidan\Downloads\[Electro] - Case & Point - Savage [Monstercat Release].mp3.sfk

2014-05-23 12:20 - 2014-04-21 12:44 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Windows Live

2014-05-23 08:07 - 2014-01-03 19:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client

2014-05-22 21:01 - 2014-05-22 21:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Apple Computer

2014-05-22 14:40 - 2014-05-19 17:15 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2014-05-22 14:04 - 2014-05-22 14:04 - 00619576 _____ () C:\Users\Aidan\Downloads\BroeselCustomV1.13.rar

2014-05-21 18:10 - 2014-05-21 18:03 - 189007974 _____ () C:\Users\Aidan\Downloads\Gerudoku Faithful.zip

2014-05-21 18:08 - 2014-05-21 18:01 - 175837634 _____ () C:\Users\Aidan\Downloads\snowsong1_4_for_minecraft_version_1_7_x_and_up_by_aleciashepherd-d6seklp.zip

2014-05-20 23:07 - 2014-05-20 20:05 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\.aether

2014-05-20 20:50 - 2014-05-20 20:50 - 00814735 _____ () C:\Users\Aidan\Downloads\OptiFine_1.7.9_HD_U_D2.jar

2014-05-20 20:45 - 2014-05-20 20:45 - 00000000 ____D () C:\.jagex_cache_32

2014-05-20 20:31 - 2014-05-19 20:00 - 00000000 ____D () C:\Nexon

2014-05-20 20:24 - 2014-05-20 20:24 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk

2014-05-20 20:24 - 2014-05-20 20:24 - 00000000 ____D () C:\Program Files\Common Files\Apple

2014-05-20 20:24 - 2014-05-20 20:24 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update

2014-05-20 20:24 - 2014-05-20 20:23 - 00000000 ____D () C:\ProgramData\Apple

2014-05-20 20:22 - 2014-05-20 20:18 - 97206096 _____ (Apple Inc.) C:\Users\Aidan\Downloads\iTunes64Setup.exe

2014-05-20 20:05 - 2014-05-20 20:05 - 00014817 _____ () C:\Users\Aidan\Downloads\launcher-start.jar

2014-05-19 20:15 - 2014-05-19 20:15 - 00000000 ____D () C:\ProgramData\Nexon

2014-05-19 20:07 - 2014-05-19 20:07 - 00001658 _____ () C:\Users\Aidan\Desktop\MapleStory.lnk

2014-05-19 20:03 - 2014-05-19 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon

2014-05-19 20:00 - 2014-05-19 20:00 - 00000000 ____D () C:\ProgramData\NexonUS

2014-05-19 19:33 - 2014-05-19 19:33 - 03909878 _____ () C:\Users\Aidan\Downloads\Werian-1.7.zip

2014-05-19 19:31 - 2014-05-19 19:31 - 22368606 _____ () C:\Users\Aidan\Downloads\FRA-High-Noon-1.7.zip

2014-05-19 18:09 - 2014-05-19 18:09 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\LolClient

2014-05-19 18:09 - 2014-05-19 18:08 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader (2).exe

2014-05-19 18:09 - 2014-05-19 17:34 - 00000356 _____ () C:\console.log

2014-05-19 17:33 - 2014-05-19 17:32 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader (1).exe

2014-05-19 17:15 - 2013-12-28 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2014-05-19 17:09 - 2014-05-19 17:09 - 02556712 _____ () C:\Users\Aidan\Downloads\MapleStory_Downloader.exe

2014-05-19 15:55 - 2014-01-01 09:58 - 00000486 _____ () C:\Users\Aidan\AppData\Roaming\Microsoft\Windows\Start Menu\Google.website

2014-05-18 22:08 - 2014-05-18 22:08 - 00282928 _____ (Mozilla) C:\Users\Aidan\Downloads\Firefox Setup Stub 29.0.1.exe

2014-05-18 20:47 - 2014-01-30 21:31 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios

2014-05-18 20:47 - 2014-01-30 21:31 - 00000000 ____D () C:\Program Files (x86)\Hi-Rez Studios

2014-05-18 20:38 - 2014-05-18 20:38 - 00000003 _____ () C:\Windows\system32\HRUPPROG.TXT

2014-05-18 20:38 - 2014-05-18 20:38 - 00000003 _____ () C:\Windows\system32\HRUPPROG.DIE.NOW

2014-05-18 20:34 - 2014-05-18 19:39 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Riot Games

2014-05-18 19:43 - 2014-05-18 19:43 - 00001613 _____ () C:\Users\Public\Desktop\League of Legends.lnk

2014-05-18 19:43 - 2014-05-18 19:43 - 00000000 ____D () C:\Riot Games

2014-05-18 19:43 - 2014-05-18 19:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends

2014-05-18 19:43 - 2014-01-01 22:31 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin

2014-05-18 19:40 - 2014-05-18 19:40 - 00000000 ____D () C:\Program Files (x86)\Pando Networks

2014-05-18 19:38 - 2014-05-18 19:37 - 32229024 _____ (Riot Games) C:\Users\Aidan\Downloads\LeagueofLegends_NA_Installer_05_07_13.exe

2014-05-18 19:37 - 2014-01-02 11:03 - 00000000 ____D () C:\Users\Aidan\Documents\My Games

2014-05-18 19:37 - 2014-01-01 17:22 - 00000000 ____D () C:\Windows\SysWOW64\directx

2014-05-18 19:36 - 2014-05-18 19:36 - 00000000 ____D () C:\Users\Aidan\AppData\Local\WarThunder

2014-05-18 19:36 - 2014-05-18 19:36 - 00000000 ____D () C:\ProgramData\WarThunder

2014-05-18 19:36 - 2014-01-01 17:22 - 00000000 ___HD () C:\Windows\msdownld.tmp

2014-05-17 20:02 - 2014-05-17 20:02 - 00006228 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_2.rar

2014-05-17 20:02 - 2014-05-17 20:02 - 00004159 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_1.rar

2014-05-17 20:02 - 2014-05-17 20:02 - 00003844 _____ () C:\Users\Aidan\Downloads\file_184609935005793_2526_3.rar

2014-05-17 15:05 - 2014-05-17 15:05 - 00000222 _____ () C:\Users\Aidan\Desktop\War Thunder.url

2014-05-17 12:51 - 2014-05-16 13:59 - 00000000 ____D () C:\Users\Aidan\AppData\Local\Arma 3

2014-05-16 14:01 - 2014-05-16 13:59 - 00000000 ____D () C:\Users\Aidan\Documents\Arma 3

2014-05-16 13:59 - 2014-05-16 13:59 - 00000000 ____D () C:\ProgramData\Bohemia Interactive

2014-05-15 13:12 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache

2014-05-15 12:57 - 2014-01-01 09:44 - 00000000 ___RD () C:\Users\Aidan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2014-05-15 12:57 - 2014-01-01 09:44 - 00000000 ___RD () C:\Users\Aidan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2014-05-15 03:33 - 2014-05-15 03:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi

2014-05-15 03:33 - 2014-05-15 03:33 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi

2014-05-15 03:22 - 2014-05-07 03:01 - 00000000 ___SD () C:\Windows\system32\CompatTel

2014-05-15 03:04 - 2013-12-28 19:45 - 00000000 ____D () C:\Windows\system32\MRT

2014-05-15 03:02 - 2013-12-28 19:45 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2014-05-14 15:00 - 2014-04-28 20:00 - 17938608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe

2014-05-14 15:00 - 2014-01-02 13:32 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2014-05-14 15:00 - 2014-01-02 13:32 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2014-05-13 15:39 - 2014-05-13 15:39 - 00000222 _____ () C:\Users\Aidan\Desktop\Terraria.url

2014-05-13 14:11 - 2014-05-13 14:11 - 10407696 _____ () C:\Users\Aidan\Downloads\Brickston Manor.rar

2014-05-13 14:11 - 2014-05-13 14:11 - 05759618 _____ () C:\Users\Aidan\Downloads\Faithful Texture Pack 64x64 1.6.zip

2014-05-13 14:11 - 2014-05-13 14:10 - 04281787 _____ () C:\Users\Aidan\Downloads\Harves Luna Dur.rar

2014-05-13 13:05 - 2013-12-28 18:37 - 00000000 ____D () C:\NVIDIA

2014-05-12 18:31 - 2014-05-12 18:31 - 00000000 ____D () C:\Program Files\ESEA

2014-05-12 18:31 - 2014-05-12 18:29 - 15340591 _____ () C:\Users\Aidan\Downloads\ESEAClientInstall.exe

2014-05-12 07:26 - 2014-06-05 12:37 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2014-05-12 07:26 - 2014-06-05 12:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2014-05-12 07:25 - 2014-06-05 12:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-05-11 14:45 - 2014-05-11 14:45 - 03033247 _____ () C:\Users\Aidan\Downloads\Hairstyle_F_toddler-166-TSR Skysims3.sims3pack

2014-05-11 14:41 - 2014-05-11 14:41 - 03133326 _____ () C:\Users\Aidan\Downloads\Skysims Hair Child 196.sims3pack

2014-05-11 14:38 - 2014-05-11 14:38 - 04145372 _____ () C:\Users\Aidan\Downloads\Cazy_c130_cf.sims3pack

2014-05-11 14:37 - 2014-05-11 14:37 - 03796968 _____ () C:\Users\Aidan\Downloads\Skysims Hair Adult 203.sims3pack

2014-05-11 06:54 - 2014-05-11 06:54 - 00622547 _____ () C:\Users\Aidan\Downloads\broesel custom 1.8.zip

2014-05-10 09:40 - 2014-05-10 09:40 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Sony Creative Software Inc

2014-05-10 08:38 - 2014-05-03 19:28 - 00000000 ____D () C:\Users\Aidan\AppData\Roaming\Sony

2014-05-09 16:12 - 2014-05-09 16:11 - 01061272 _____ () C:\Users\Aidan\Downloads\Royalty Free Ambient Horror Music & Dark Soundscapes- 13 Days Of Nightmares.mp3.sfk

2014-05-09 01:14 - 2014-05-14 14:51 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-05-09 01:11 - 2014-05-14 14:51 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

 

Some content of TEMP:

====================

C:\Users\Owner\AppData\Local\Temp\BingBarSetup-Partner.exe

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

 

==================== End Of Log ============================

 

Addition 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2014

Ran by Aidan at 2014-06-06 12:11:10

Running from I:\

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

 

==================== Installed Programs ======================

 

Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)

Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.05) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.05 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.)

Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Arma 2 (HKLM-x32\...\Steam App 33900) (Version:  - Bohemia Interactive)

Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)

Battlefield 3ô (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)

Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)

BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )

BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )

Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)

Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )

Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)

Google Chrome (HKLM-x32\...\{1B729E3D-B16D-3A41-A9AE-6AEC20C6580D}) (Version: 65.156.32831 - Google, Inc.)

Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden

ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)

Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)

Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)

Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden

Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)

League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden

LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)

LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.193 - LogMeIn, Inc.)

LogMeIn Hamachi (x32 Version: 2.2.0.193 - LogMeIn, Inc.) Hidden

Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.)

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4024.1220 - Microsoft Corporation)

Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden

Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden

Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)

Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden

MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden

MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden

Nexon Game Manager (HKLM-x32\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version:  - )

Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.3 - Notepad++ Team)

NVIDIA 3D Vision Controller Driver 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 332.21 - NVIDIA Corporation)

NVIDIA 3D Vision Driver 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 332.21 - NVIDIA Corporation)

NVIDIA Control Panel 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden

NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)

NVIDIA Graphics Driver 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.21 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)

NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden

NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden

NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)

NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden

NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden

NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden

NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden

NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden

Origin (HKLM-x32\...\Origin) (Version: 9.0.14.2148 - Electronic Arts, Inc.)

Overwolf (HKLM-x32\...\{FB83467F-D8EB-43E6-8B3D-860B045C1C52}) (Version: 0.51.325 - Overwolf)

Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)

puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)

Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.16.6 - Razer Inc.)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)

RuneScape Launcher 1.2.3 (HKLM-x32\...\{FAE99C85-0732-4C58-9C6B-10B5B12FA2E9}) (Version: 1.2.3 - Jagex Ltd)

SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden

Skypeô 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)

Spotify (HKCU\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)

Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)

TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)

Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)

Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version:  - Tunngle.net GmbH)

VLC media player 2.1.2 (HKLM-x32\...\VLC media player) (Version: 2.1.2 - VideoLAN)

War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)

Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)

Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live Family Safety (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live Family Safety (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

 

==================== Restore Points  =========================

 

Could not list Restore Points. Check "winmgmt" service or repair WMI.

 

 

==================== Hosts content: ==========================

 

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (whitelisted) =============

 

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?

Task: C:\Windows\Tasks\bench-sys.job => ?

Task: C:\Windows\Tasks\bench-Updater removing.job => ? <==== ATTENTION

Task: C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000Core.job => ?

Task: C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-1131576993-2969418412-3415741453-1000UA.job => ?

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?

 

==================== Loaded Modules (whitelisted) =============

 

2012-01-10 15:41 - 2014-01-10 20:30 - 00567880 _____ () C:\Program Files (x86)\puush\puush.exe

 

==================== Alternate Data Streams (whitelisted) =========

 

 

==================== Safe Mode (whitelisted) ===================

 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\plsapp => ""="service"

 

==================== EXE Association (whitelisted) =============

 

 

==================== Disabled items from MSCONFIG ==============

 

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

 

==================== Faulty Device Manager Devices =============

 

Name: Ethernet Controller

Description: Ethernet Controller

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (06/06/2014 00:03:25 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/06/2014 00:02:21 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x764

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/06/2014 11:59:13 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0xe78

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/05/2014 07:51:22 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/05/2014 07:51:07 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x83c

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/05/2014 07:48:52 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )

Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

 

Error: (06/05/2014 07:15:22 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x2a0

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/05/2014 06:14:00 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x1570

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/05/2014 05:00:52 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0xb58

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/05/2014 05:00:50 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

 

System errors:

=============

Error: (06/06/2014 11:59:03 AM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

 

Error: (06/05/2014 06:13:43 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

 

Error: (06/05/2014 04:52:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )

Description: The Windows Search service hung on starting.

 

Error: (06/05/2014 04:17:28 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

 

Error: (06/05/2014 01:22:48 PM) (Source: DCOM) (EventID: 10005) (User: )

Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

 

Error: (06/05/2014 01:22:48 PM) (Source: DCOM) (EventID: 10005) (User: )

Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

 

Error: (06/05/2014 01:22:38 PM) (Source: DCOM) (EventID: 10005) (User: )

Description: 1084LMIGuardianSvc{D4258A22-CF85-489D-83AE-49FCD0DFAD29}

 

Error: (06/05/2014 01:22:37 PM) (Source: DCOM) (EventID: 10005) (User: )

Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

 

Error: (06/05/2014 01:22:24 PM) (Source: DCOM) (EventID: 10005) (User: )

Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

 

Error: (06/05/2014 01:22:22 PM) (Source: DCOM) (EventID: 10005) (User: )

Description: 1084LMIGuardianSvc{D4258A22-CF85-489D-83AE-49FCD0DFAD29}

 

 

Microsoft Office Sessions:

=========================

Error: (06/06/2014 00:03:25 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/06/2014 00:02:21 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de76401cf81a909cd69ceC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll5240cf89-ed9c-11e3-83ac-fa1d9ead2f8e

 

Error: (06/06/2014 11:59:13 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027dee7801cf81a8a44a25beC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dlle2651415-ed9b-11e3-acd3-be101702798e

 

Error: (06/05/2014 07:51:22 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/05/2014 07:51:07 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de83c01cf81215cb686e8C:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dlla426094b-ed14-11e3-acd3-be101702798e

 

Error: (06/05/2014 07:48:52 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )

Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

 

Error: (06/05/2014 07:15:22 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de2a001cf811c54121c0eC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dlla5a6d476-ed0f-11e3-9d3f-df43b203f185

 

Error: (06/05/2014 06:14:00 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de157001cf8113cf8743d9C:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll137bc77e-ed07-11e3-9d3f-df43b203f185

 

Error: (06/05/2014 05:00:52 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027deb5801cf81097eed05d5C:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dlldc02a01d-ecfc-11e3-9d3f-df43b203f185

 

Error: (06/05/2014 05:00:50 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

 

==================== Memory info =========================== 

 

Percentage of memory in use: 20%

Total physical RAM: 8190.98 MB

Available physical RAM: 6527.67 MB

Total Pagefile: 16380.13 MB

Available Pagefile: 14664.52 MB

Total Virtual: 8192 MB

Available Virtual: 8191.86 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:465.66 GB) (Free:203.38 GB) NTFS

Drive i: () (Removable) (Total:3.74 GB) (Free:3.51 GB) FAT32

 

==================== MBR & Partition Table ==================

 

==================== End Of Log ============================
Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

Open device manager, scroll to and expand "Network Adapter" Right click on "Ethernet Controller" and select "Properties" A new window will open. Select "Driver" tab at the top menu bar, then select "Driver Details" tab. You will see something similar to the image I attach.
That may show the driver file, if so post that detail. You should also see the Provider and file version reference, can you also post that...

post-3601-0-72263900-1402084025_thumb.jp

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

How do you normally connect to the internet, wired or wireless. Was there any information regarding make of the Ethernet controller etc.

 

Please download MiniToolBox from here:

 

[url]http://www.bleepingcomputer.com/download/minitoolbox/dl/65/

 

Transfer to sick PC save to desktop and run it.

 

Checkmark the following checkboxes:

 

 

  •  

     

  • Flush DNS

     

     

  • Report IE Proxy Settings

     

     

  • Reset IE Proxy Settings

     

     

  • Report FF Proxy Settings

     

     

  • Reset FF Proxy Settings

     

     

  • List content of Hosts

     

     

  • List IP configuration

     

     

  • List Winsock Entries

     

     

  • List last 10 Event Viewer log

     

     

  • List Installed Programs

     

     

  • List Devices

     

     

  • List Users, Partitions and Memory size.

     

     

  • List Minidump Files

     

     

  • List Restore Points

     

     

 

 

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

 

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Link to post
Share on other sites
Blitson

Blitson

Posted
  • Author
Posted
sorry mixed it when i read over that.    MiniToolBox by Farbar  Version: 23-01-2014

Ran by Aidan (ATTENTION: The logged in user is not administrator) on 06-06-2014 at 17:02:09

Running from "I:\"

Microsoft Windows 7 Home Premium  Service Pack 1 (X64)

Boot Mode: Normal

***************************************************************************

 

========================= Flush DNS: ===================================

 

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

 

========================= IE Proxy Settings: ============================== 

 

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ============================== 

 

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

 

========================= Hosts content: =================================

 

 

 

========================= IP Configuration: ================================

 

Hamachi Network Interface = Hamachi (Connected)

TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Media disconnected)

 

 

# ----------------------------------

# IPv4 Configuration

# ----------------------------------

pushd interface ipv4

 

reset

 

 

popd

# End of IPv4 configuration

 

 

 

Windows IP Configuration

 

   Host Name . . . . . . . . . . . . : Owner-PC

   Primary Dns Suffix  . . . . . . . : 

   Node Type . . . . . . . . . . . . : Hybrid

   IP Routing Enabled. . . . . . . . : No

   WINS Proxy Enabled. . . . . . . . : No

 

Ethernet adapter Tunngle:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : TAP-Win32 Adapter V9 (Tunngle)

   Physical Address. . . . . . . . . : 00-FF-2D-59-00-69

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Ethernet adapter Hamachi:

 

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Hamachi Network Interface

   Physical Address. . . . . . . . . : 7A-79-19-2B-F3-C4

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

   IPv6 Address. . . . . . . . . . . : 2620:9b::192b:f3c4(Preferred) 

   Link-local IPv6 Address . . . . . : fe80::b479:65b1:3892:2022%12(Preferred) 

   IPv4 Address. . . . . . . . . . . : 25.43.243.196(Preferred) 

   Subnet Mask . . . . . . . . . . . : 255.0.0.0

   Lease Obtained. . . . . . . . . . : Friday, June 06, 2014 12:01:46 PM

   Lease Expires . . . . . . . . . . : Saturday, June 06, 2015 5:00:40 PM

   Default Gateway . . . . . . . . . : 2620:9b::1900:1

   DHCP Server . . . . . . . . . . . : 25.0.0.1

   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1

                                       fec0:0:0:ffff::2%1

                                       fec0:0:0:ffff::3%1

   NetBIOS over Tcpip. . . . . . . . : Enabled

 

Tunnel adapter Teredo Tunneling Pseudo-Interface:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{2D590069-2428-4ECB-B816-B35D13EEDBA5}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{68D371C7-2831-44D7-BE9F-A26D13126D9E}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

DNS request timed out.

    timeout was 2 seconds.

Server:  UnKnown

Address:  fec0:0:0:ffff::1

 

DNS request timed out.

    timeout was 2 seconds.

DNS request timed out.

    timeout was 2 seconds.

DNS request timed out.

    timeout was 2 seconds.

DNS request timed out.

    timeout was 2 seconds.

Ping request could not find host google.com. Please check the name and try again.

DNS request timed out.

    timeout was 2 seconds.

Server:  UnKnown

Address:  fec0:0:0:ffff::1

 

DNS request timed out.

    timeout was 2 seconds.

DNS request timed out.

    timeout was 2 seconds.

DNS request timed out.

    timeout was 2 seconds.

DNS request timed out.

    timeout was 2 seconds.

Ping request could not find host yahoo.com. Please check the name and try again.

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================

Interface List

 14...00 ff 2d 59 00 69 ......TAP-Win32 Adapter V9 (Tunngle)

 12...7a 79 19 2b f3 c4 ......Hamachi Network Interface

  1...........................Software Loopback Interface 1

 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface

 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2

 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3

===========================================================================

 

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

         25.0.0.0        255.0.0.0         On-link     25.43.243.196    276

    25.43.243.196  255.255.255.255         On-link     25.43.243.196    276

   25.255.255.255  255.255.255.255         On-link     25.43.243.196    276

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link     25.43.243.196    276

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link     25.43.243.196    276

===========================================================================

Persistent Routes:

  None

 

IPv6 Route Table

===========================================================================

Active Routes:

 If Metric Network Destination      Gateway

 12   9020 ::/0                     2620:9b::1900:1

  1    306 ::1/128                  On-link

 12    276 2620:9b::/96             On-link

 12    276 2620:9b::192b:f3c4/128   On-link

 12    276 fe80::/64                On-link

 12    276 fe80::b479:65b1:3892:2022/128

                                    On-link

  1    306 ff00::/8                 On-link

 12    276 ff00::/8                 On-link

===========================================================================

Persistent Routes:

 If Metric Network Destination      Gateway

  0 4294967295 2620:9b::/96             On-link

  0   9000 ::/0                     2620:9b::1900:1

===========================================================================

========================= Winsock entries =====================================

 

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)

Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)

Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)

Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)

Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)

x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)

x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (06/06/2014 02:51:52 PM) (Source: Application Error) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x1194

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/06/2014 00:28:41 PM) (Source: Customer Experience Improvement Program) (User: )

Description: 80004005

 

Error: (06/06/2014 00:03:25 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/06/2014 00:02:21 PM) (Source: Application Error) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x764

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/06/2014 11:59:13 AM) (Source: Application Error) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0xe78

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/05/2014 07:51:22 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/05/2014 07:51:07 PM) (Source: Application Error) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x83c

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/05/2014 07:48:52 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )

Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

 

Error: (06/05/2014 07:15:22 PM) (Source: Application Error) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x2a0

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

Error: (06/05/2014 06:14:00 PM) (Source: Application Error) (User: )

Description: Faulting application name: taskeng.exe, version: 6.1.7601.17514, time stamp: 0x4ce79d2c

Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f

Exception code: 0xc0000005

Fault offset: 0x00000000000027de

Faulting process id: 0x1570

Faulting application start time: 0xtaskeng.exe0

Faulting application path: taskeng.exe1

Faulting module path: taskeng.exe2

Report Id: taskeng.exe3

 

 

System errors:

=============

Error: (06/06/2014 03:05:15 PM) (Source: Microsoft Antimalware) (User: )

Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

 

New Signature Version: 

 

Previous Signature Version: 1.175.1381.0

 

Update Source: %NT AUTHORITY59

 

Update Stage: 4.5.0216.00

 

Source Path: 4.5.0216.01

 

Signature Type: %NT AUTHORITY602

 

Update Type: %NT AUTHORITY604

 

User: NT AUTHORITY\SYSTEM

 

Current Engine Version: %NT AUTHORITY605

 

Previous Engine Version: %NT AUTHORITY606

 

Error code: %NT AUTHORITY607

 

Error description: %NT AUTHORITY608

 

Error: (06/06/2014 00:15:53 PM) (Source: Microsoft Antimalware) (User: )

Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

 

New Signature Version: 

 

Previous Signature Version: 1.175.1381.0

 

Update Source: %NT AUTHORITY59

 

Update Stage: 4.5.0216.00

 

Source Path: 4.5.0216.01

 

Signature Type: %NT AUTHORITY602

 

Update Type: %NT AUTHORITY604

 

User: NT AUTHORITY\SYSTEM

 

Current Engine Version: %NT AUTHORITY605

 

Previous Engine Version: %NT AUTHORITY606

 

Error code: %NT AUTHORITY607

 

Error description: %NT AUTHORITY608

 

Error: (06/06/2014 11:59:03 AM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

 

Error: (06/05/2014 06:13:43 PM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

 

Error: (06/05/2014 04:52:32 PM) (Source: Service Control Manager) (User: )

Description: The Windows Search service hung on starting.

 

Error: (06/05/2014 04:17:28 PM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

 

Error: (06/05/2014 01:22:48 PM) (Source: DCOM) (User: )

Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

 

Error: (06/05/2014 01:22:48 PM) (Source: DCOM) (User: )

Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

 

Error: (06/05/2014 01:22:38 PM) (Source: DCOM) (User: )

Description: 1084LMIGuardianSvc{D4258A22-CF85-489D-83AE-49FCD0DFAD29}

 

Error: (06/05/2014 01:22:37 PM) (Source: DCOM) (User: )

Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

 

 

Microsoft Office Sessions:

=========================

Error: (06/06/2014 02:51:52 PM) (Source: Application Error)(User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de119401cf81c0c2c27f7eC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll00bced0b-edb4-11e3-83ac-fa1d9ead2f8e

 

Error: (06/06/2014 00:28:41 PM) (Source: Customer Experience Improvement Program)(User: )

Description: 80004005

 

Error: (06/06/2014 00:03:25 PM) (Source: WinMgmt)(User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/06/2014 00:02:21 PM) (Source: Application Error)(User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de76401cf81a909cd69ceC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll5240cf89-ed9c-11e3-83ac-fa1d9ead2f8e

 

Error: (06/06/2014 11:59:13 AM) (Source: Application Error)(User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027dee7801cf81a8a44a25beC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dlle2651415-ed9b-11e3-acd3-be101702798e

 

Error: (06/05/2014 07:51:22 PM) (Source: WinMgmt)(User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/05/2014 07:51:07 PM) (Source: Application Error)(User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de83c01cf81215cb686e8C:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dlla426094b-ed14-11e3-acd3-be101702798e

 

Error: (06/05/2014 07:48:52 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )

Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

 

Error: (06/05/2014 07:15:22 PM) (Source: Application Error)(User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de2a001cf811c54121c0eC:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dlla5a6d476-ed0f-11e3-9d3f-df43b203f185

 

Error: (06/05/2014 06:14:00 PM) (Source: Application Error)(User: )

Description: taskeng.exe6.1.7601.175144ce79d2cmsvcrt.dll7.0.7601.177444eeb033fc000000500000000000027de157001cf8113cf8743d9C:\Windows\system32\taskeng.exeC:\Windows\system32\msvcrt.dll137bc77e-ed07-11e3-9d3f-df43b203f185

 

 

=========================== Installed Programs ============================

 

Adobe Flash Player 13 ActiveX (Version: 13.0.0.214)

Adobe Flash Player 13 Plugin (Version: 13.0.0.214)

Adobe Reader XI (11.0.05) (Version: 11.0.05)

Adobe Shockwave Player 12.0 (Version: 12.0.7.148)

Apple Application Support (Version: 2.3.6)

Apple Mobile Device Support (Version: 7.0.0.117)

Apple Software Update (Version: 2.1.3.127)

Arma 2

Arma 2: Operation Arrowhead

Battlefield 3ô (Version: 1.6.0.0)

Battlelog Web Plugins (Version: 2.4.0)

BattlEye for OA Uninstall

BattlEye Uninstall

Counter-Strike: Global Offensive

Cube World version 0.0.1 (Version: 0.0.1)

D3DX10 (Version: 15.4.2368.0902)

Fraps (remove only)

Garry's Mod

Google Chrome (Version: 65.156.32831)

Google Update Helper (Version: 1.3.24.7)

ImgBurn (Version: 2.5.8.0)

Java 7 Update 45 (64-bit) (Version: 7.0.450)

Java 7 Update 51 (Version: 7.0.510)

Java Auto Updater (Version: 2.1.9.8)

Junk Mail filter update (Version: 16.4.3522.0110)

League of Legends (Version: 3.0.0)

LibreOffice 4.1.4.2 (Version: 4.1.4.2)

LogMeIn Hamachi (Version: 2.2.0.193)

Malwarebytes Anti-Malware version 2.0.2.1012 (Version: 2.0.2.1012)

McAfee Security Scan Plus (Version: 3.8.141.11)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft OneDrive (Version: 17.0.4024.1220)

Microsoft Security Client (Version: 4.5.0216.0)

Microsoft Security Essentials (Version: 4.5.216.0)

Microsoft Silverlight (Version: 5.1.30214.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (Version: 11.0.60610.1)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (Version: 11.0.60610.1)

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (Version: 11.0.60610)

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)

Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)

Movie Maker (Version: 16.4.3522.0110)

MSVCRT (Version: 15.4.2862.0708)

MSVCRT Redists (Version: 1.0)

MSVCRT_amd64 (Version: 15.4.2862.0708)

MSVCRT110 (Version: 16.4.1108.0727)

MSVCRT110_amd64 (Version: 16.4.1109.0912)

Nexon Game Manager

Notepad++ (Version: 6.5.3)

NVIDIA 3D Vision Controller Driver 332.21 (Version: 332.21)

NVIDIA 3D Vision Driver 332.21 (Version: 332.21)

NVIDIA Control Panel 332.21 (Version: 332.21)

NVIDIA GeForce Experience 2.0.1 (Version: 2.0.1)

NVIDIA Graphics Driver 332.21 (Version: 332.21)

NVIDIA HD Audio Driver 1.3.30.1 (Version: 1.3.30.1)

NVIDIA Install Application (Version: 2.1002.151.1095)

NVIDIA LED Visualizer 1.0 (Version: 1.0)

NVIDIA Network Service (Version: 1.0)

NVIDIA PhysX (Version: 9.13.0725)

NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725)

NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67)

NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.3221)

NVIDIA Update 12.4.67 (Version: 12.4.67)

NVIDIA Update Core (Version: 12.4.67)

NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23)

Origin (Version: 9.0.14.2148)

Overwolf (Version: 0.51.325)

Photo Gallery (Version: 16.4.3522.0110)

Portal 2

puush (Version: 1.0.0.0)

Razer Synapse 2.0 (Version: 1.16.6)

Realtek High Definition Audio Driver (Version: 6.0.1.7083)

RuneScape Launcher 1.2.3 (Version: 1.2.3)

SHIELD Streaming (Version: 2.1.108)

Skypeô 6.16 (Version: 6.16.105)

Spotify (Version: 0.9.10.14.g578d350b)

Steam

swMSM (Version: 12.0.0.1)

Team Fortress 2

TeamSpeak 3 Client (Version: 3.0.13)

Terraria

Tunngle beta

VLC media player 2.1.2 (Version: 2.1.2)

War Thunder

Windows Live Communications Platform (Version: 16.4.3522.0110)

Windows Live Essentials (Version: 16.4.3522.0110)

Windows Live Family Safety (Version: 16.4.3522.0110)

Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)

Windows Live Installer (Version: 16.4.3522.0110)

Windows Live Mail (Version: 16.4.3522.0110)

Windows Live Messenger (Version: 16.4.3522.0110)

Windows Live MIME IFilter (Version: 16.4.3522.0110)

Windows Live Photo Common (Version: 16.4.3522.0110)

Windows Live PIMT Platform (Version: 16.4.3522.0110)

Windows Live SOXE (Version: 16.4.3522.0110)

Windows Live SOXE Definitions (Version: 16.4.3522.0110)

Windows Live UX Platform (Version: 16.4.3522.0110)

Windows Live UX Platform Language Pack (Version: 16.4.3522.0110)

Windows Live Writer (Version: 16.4.3522.0110)

Windows Live Writer Resources (Version: 16.4.3522.0110)

WinRAR 5.01 (32-bit) (Version: 5.01.0)

 

========================= Devices: ================================

 

Name: Ethernet Controller

Description: Ethernet Controller

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

 

========================= Memory info: ===================================

 

Percentage of memory in use: 12%

Total physical RAM: 8190.98 MB

Available physical RAM: 7205.11 MB

Total Pagefile: 16380.13 MB

Available Pagefile: 14625.93 MB

Total Virtual: 4095.88 MB

Available Virtual: 3968.94 MB

 

========================= Partitions: =====================================

 

1 Drive c: () (Fixed) (Total:465.66 GB) (Free:203.37 GB) NTFS

7 Drive i: () (Removable) (Total:3.74 GB) (Free:3.51 GB) FAT32

 

========================= Users: ========================================

 

User accounts for \\OWNER-PC

 

Administrator            Aidan                    Guest                    

Owner                    

 

========================= Minidump Files ==================================

 

No minidump file found

 

========================= Restore Points ==================================

 

 

**** End of log ****
Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.