Untitled

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by Erik (administrator) on ERIK-PC on 18-09-2014 15:03:23
Running from D:\
Platform: Windows 8.1 (X64) OS Language: Hungarian (Hungary)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Razer Inc.) D:\Program Files\Razer\Razer Game Booster\RzKLService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Akamai Technologies, Inc.) C:\Users\Erik\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Erik\AppData\Local\Akamai\netsession_win.exe
() C:\Users\Erik\AppData\Roaming\Lantern\Lantern.exe
(Valve Corporation) D:\Program Files\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) D:\Program Files\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Users\Erik\AppData\Roaming\Lantern\pt\flashlight\flashlight.exe
() C:\Users\Erik\AppData\Roaming\Lantern\pt\flashlight\flashlight.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403288 2014-08-09] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5694640 2013-08-16] (VIA)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5694640 2013-08-16] (VIA)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-07-30] (Oracle Corporation)
HKU\S-1-5-21-114360063-1743958253-1703873298-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22734160 2014-08-08] (Google)
HKU\S-1-5-21-114360063-1743958253-1703873298-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Erik\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-114360063-1743958253-1703873298-1001\...\Run: [DAEMON Tools Lite] => D:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-114360063-1743958253-1703873298-1001\...\Run: [Lantern] => C:\Users\Erik\AppData\Roaming\Lantern\Lantern.exe [236568 2014-08-12] ()
HKU\S-1-5-21-114360063-1743958253-1703873298-1001\...\Run: [Steam] => D:\Program Files\Steam\steam.exe [1939136 2014-08-28] (Valve Corporation)
HKU\S-1-5-21-114360063-1743958253-1703873298-1001\...\Run: [CMD] => cmd.exe /c start http://extendedunlimited.org && exit <===== ATTENTION
Startup: C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Disconnect Private Search.lnk
ShortcutTarget: Disconnect Private Search.lnk -> C:\Users\Erik\Documents\Disconnect\Disconnect Private Search\SearchSysTray.exe (No File)
Startup: C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar164.lnk
ShortcutTarget: Sidebar164.lnk -> C:\Program Files (x86)\Windows Sidebar\sidebar.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKCU - {B29E1EFB-AE72-451E-BD68-AFC9A1A12FED} URL = https://search.disconnect.me/searchTerms/search?source=ie&query={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files\Java\jre8 (x86)\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files\Java\jre8 (x86)\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 213.46.246.54 213.46.246.53

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.20.2 -> D:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.20.2 -> D:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.20.2 -> D:\Program Files\Java\jre8 (x86)\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.20.2 -> D:\Program Files\Java\jre8 (x86)\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @nsroblox.roblox.com/launcher -> C:\Users\Erik\AppData\Local\Roblox\Versions\version-c4060e4821af4163\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Extension: Lantern Proxy Configurator - C:\Users\Erik\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\lantern@getlantern.org [2014-08-15]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://isearch.avg.com/?cid={823284B4-87A8-4AEF-9C20-5B82FD5C0948}&mid=9efc704fad7047d09b0dd1565027d43f-6f5ee6eedd96aeaa0c226192ec5cbc5f20447355&lang=hu&ds=AVG&pr=fr&d=2012-12-08 13:40:51&v=13.2.0.4&sap=hp", "hxxp://isearch.avg.com/?cid={823284B4-87A8-4AEF-9C20-5B82FD5C0948}&mid=9efc704fad7047d09b0dd1565027d43f-6f5ee6eedd96aeaa0c226192ec5cbc5f20447355&lang=hu&ds=AVG&pr=fr&d=2012-12-08 13:40:51&v=14.2.0.1&pid=avg&sg=&sap=hp", "hxxp://websearch.searchinweb.info/?pid=2145&r=2014/01/29&hid=5430671792359018244&lg=EN&cc=HU&unqvl=47"
CHR NewTab: Default -> "chrome-extension://oogmkbpkoblajkomflhkkdmbfggdmefd/inicio.html"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2014-06-27]
CHR Extension: (Angry Birds) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-06-27]
CHR Extension: (Textcraft) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\alkilhboimleigdblhagakfnfdalebbm [2014-06-27]
CHR Extension: (Google Docs) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-27]
CHR Extension: (Google Drive) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-27]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-26]
CHR Extension: (The Latest Versions of Google Chrome) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\bibclkcoilbnbnppanidhimphmfbjaab [2014-06-27]
CHR Extension: (MEGA) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2014-06-27]
CHR Extension: (YouTube) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-27]
CHR Extension: (YouTube Center) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdcifocibecgcgigbanojipblimlaoij [2014-08-16]
CHR Extension: (Google Search) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-27]
CHR Extension: (Gmail Offline) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2014-06-27]
CHR Extension: (AdBlock) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-06-27]
CHR Extension: (Typing Lessons) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\heehkcnmhmdicclbnofindfmokhfnjag [2014-07-11]
CHR Extension: (Disconnect) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2014-07-11]
CHR Extension: (Country Flags) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\keifkkbjefbkgedeolmccljagcmphldp [2014-08-01]
CHR Extension: (Google Play) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-06-27]
CHR Extension: (Ghostery) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-07-11]
CHR Extension: (FastestFox for Chrome) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmffncokckfccddfenhkhnllmlobdahm [2014-06-27]
CHR Extension: (CleverOmegle) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbpijnnbbpbakagopaneogjpfngjngf [2014-06-27]
CHR Extension: (Google Wallet) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-27]
CHR Extension: (Google Quick Scroll) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc [2014-06-27]
CHR Extension: (Minecraft Origins) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooemofofigijedhcifaimglnncjmckaa [2014-06-27]
CHR Extension: (new metroTab) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\oogmkbpkoblajkomflhkkdmbfggdmefd [2014-07-05]
CHR Extension: (Click&Clean App) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2014-06-27]
CHR Extension: (Outlook.com) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2014-07-02]
CHR Extension: (Gmail) - C:\Users\Erik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-09-11] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2013-09-11] (ASUSTeK Computer Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-07-10] (Microsoft Corporation)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-07-10] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720792 2014-08-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18973144 2014-08-09] (NVIDIA Corporation)
R2 RzKLService; D:\Program Files\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S2 SkypeUpdate; D:\Program Files\Skype\Updater\Updater.exe [315008 2014-04-03] (Skype Technologies)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-12-11] (VIA Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-07-10] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
S3 AU8168; C:\Windows\system32\DRIVERS\au630x64.sys [792648 2013-09-23] (Realtek                                            )
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-07-27] (Disc Soft Ltd)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20440 2014-08-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2014-04-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-07-10] (Microsoft Corporation)
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-18 15:02 - 2014-09-18 15:03 - 00000000 ____D () C:\FRST
2014-09-13 22:02 - 2014-09-13 22:02 - 00000000 ____D () C:\Users\Erik\AppData\Local\My Games
2014-09-13 21:58 - 2014-09-13 21:58 - 00000792 _____ () C:\Users\Erik\Desktop\Play Civilization V.lnk
2014-09-12 12:40 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
2014-09-12 12:39 - 2014-09-12 12:44 - 00000000 ____D () C:\AdwCleaner
2014-09-10 22:23 - 2014-09-10 22:25 - 00000000 ____D () C:\WINDOWS\SysWOW64\data
2014-09-10 22:23 - 2014-09-10 22:23 - 02809240 _____ () C:\WINDOWS\SysWOW64\elsword.exe
2014-09-10 11:05 - 2014-08-16 04:40 - 23591424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-09-10 11:05 - 2014-08-16 04:04 - 17455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-09-10 11:05 - 2014-08-16 04:00 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-09-10 11:05 - 2014-08-16 04:00 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-09-10 11:05 - 2014-08-16 03:56 - 00547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-09-10 11:05 - 2014-08-16 03:54 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-09-10 11:05 - 2014-08-16 03:45 - 04232704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-09-10 11:05 - 2014-08-16 03:43 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-09-10 11:05 - 2014-08-16 03:32 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-09-10 11:05 - 2014-08-16 03:25 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-09-10 11:05 - 2014-08-16 03:22 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-09-10 11:05 - 2014-08-16 03:20 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-09-10 11:05 - 2014-08-16 03:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-09-10 11:05 - 2014-08-16 03:18 - 02185728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-09-10 11:05 - 2014-08-16 03:18 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-09-10 11:05 - 2014-08-16 03:11 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-09-10 11:05 - 2014-08-16 03:06 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-09-10 11:05 - 2014-08-16 03:05 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-09-10 11:05 - 2014-08-16 03:05 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-09-10 11:05 - 2014-08-16 03:03 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-09-10 11:05 - 2014-08-16 03:03 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-09-10 11:05 - 2014-08-16 02:58 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 11:05 - 2014-08-16 02:56 - 02310656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-09-10 11:05 - 2014-08-16 02:53 - 13588480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-09-10 11:05 - 2014-08-16 02:53 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-09-10 11:05 - 2014-08-16 02:53 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-09-10 11:05 - 2014-08-16 02:51 - 11769856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-09-10 11:05 - 2014-08-16 02:45 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-09-10 11:05 - 2014-08-16 02:44 - 02014208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-09-10 11:05 - 2014-08-16 02:44 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-09-10 11:05 - 2014-08-16 02:34 - 01447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-09-10 11:05 - 2014-08-16 02:20 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-09-10 11:05 - 2014-08-16 02:18 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-09-10 11:05 - 2014-08-16 02:14 - 01190400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-09-10 11:05 - 2014-08-16 02:12 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-09-10 11:01 - 2014-08-29 03:58 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-09-10 11:01 - 2014-08-29 03:32 - 02779136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-09-10 11:01 - 2014-08-29 02:59 - 03117568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-09-10 11:01 - 2014-08-29 01:56 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-09-10 11:01 - 2014-08-29 01:47 - 02321920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-09-10 11:01 - 2014-08-26 00:27 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-09-10 11:01 - 2014-08-23 09:48 - 02374784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-09-10 11:01 - 2014-08-23 09:13 - 02084520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-09-10 11:01 - 2014-08-23 08:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-09-10 11:01 - 2014-08-23 07:32 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-09-10 11:01 - 2014-08-23 06:44 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-09-10 11:01 - 2014-08-23 06:34 - 13423104 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-09-10 11:01 - 2014-08-23 06:33 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-09-10 11:01 - 2014-08-23 06:31 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-09-10 11:01 - 2014-08-23 06:20 - 11818496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-09-10 11:01 - 2014-08-16 06:08 - 21195616 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-09-10 11:01 - 2014-08-16 06:08 - 01507648 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-09-10 11:01 - 2014-08-16 06:01 - 01710184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-09-10 11:01 - 2014-08-16 05:58 - 01112512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-09-10 11:01 - 2014-08-16 05:57 - 02498880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-09-10 11:01 - 2014-08-16 05:57 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-09-10 11:01 - 2014-08-16 05:16 - 18722600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-09-10 11:01 - 2014-08-16 05:16 - 01205976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-09-10 11:01 - 2014-08-16 05:03 - 01467384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-09-10 11:01 - 2014-08-16 03:31 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-09-10 11:01 - 2014-08-16 03:04 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2014-09-10 11:01 - 2014-08-16 02:58 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-09-10 11:01 - 2014-08-16 02:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2014-09-10 11:01 - 2014-08-16 02:46 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2014-09-10 11:01 - 2014-08-16 02:45 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-09-10 11:01 - 2014-08-16 02:43 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2014-09-10 11:01 - 2014-08-16 02:43 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2014-09-10 11:01 - 2014-08-16 02:31 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-09-10 11:01 - 2014-08-16 02:31 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2014-09-10 11:01 - 2014-08-16 02:29 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-10 11:01 - 2014-08-16 02:23 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-09-10 11:01 - 2014-08-16 02:22 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-09-10 11:01 - 2014-08-16 02:22 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-09-10 11:01 - 2014-08-16 02:20 - 00921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-09-10 11:01 - 2014-08-16 02:19 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-10 11:01 - 2014-08-16 02:18 - 04758528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-09-10 11:01 - 2014-08-16 02:17 - 08757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-09-10 11:01 - 2014-08-16 02:14 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-09-10 11:01 - 2014-08-16 02:13 - 06649344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-09-10 11:01 - 2014-08-16 02:13 - 05902848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-09-10 11:01 - 2014-08-16 02:13 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-09-10 11:01 - 2014-08-16 02:11 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-09-10 11:01 - 2014-08-16 02:11 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-09-10 11:01 - 2014-08-16 02:10 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-09-10 11:01 - 2014-08-16 02:08 - 05777408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-09-10 11:01 - 2014-08-16 02:07 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-09-10 11:01 - 2014-08-15 02:36 - 00146752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-09-10 11:01 - 2014-08-01 01:22 - 00388729 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-09-10 11:01 - 2014-07-30 03:56 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-09-10 11:01 - 2014-07-29 07:22 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2014-09-10 10:55 - 2014-08-02 02:18 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-09-10 10:54 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2014-09-10 10:54 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2014-09-06 20:00 - 2014-09-06 20:00 - 00000000 ____D () C:\Users\Erik\Documents\SimCity
2014-09-06 19:50 - 2014-09-18 14:54 - 00000000 ____D () C:\Users\Erik\AppData\Local\Deployment
2014-09-06 19:50 - 2014-09-06 19:50 - 00000000 ____D () C:\Users\Erik\AppData\Local\Apps\2.0
2014-09-06 16:08 - 2014-09-06 16:08 - 00000000 ____D () C:\Users\Erik\Documents\Electronic Arts
2014-09-06 16:02 - 2014-09-06 16:02 - 00000851 _____ () C:\Users\Public\Desktop\The SIMS 4 Deluxe Edition.lnk
2014-09-06 16:02 - 2014-09-06 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The SIMS 4 Deluxe Edition
2014-09-06 15:05 - 2014-09-06 16:08 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\Origin
2014-09-06 15:05 - 2014-09-06 15:07 - 00000000 ____D () C:\Users\Erik\AppData\Local\Origin
2014-09-06 15:04 - 2014-09-06 16:05 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-09-06 15:00 - 2014-09-06 14:52 - 00447752 ____R (On2.com) C:\WINDOWS\SysWOW64\vp6vfw.dll
2014-09-06 14:55 - 2014-09-14 01:39 - 00000000 ____D () C:\ProgramData\Origin
2014-09-04 22:16 - 2014-09-04 22:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarGame
2014-08-31 19:34 - 2014-09-03 20:27 - 00000000 ____D () C:\Users\Erik\Documents\My Cheat Tables
2014-08-31 14:24 - 2014-09-13 22:02 - 00000000 ____D () C:\Users\Erik\Documents\My Games
2014-08-31 14:23 - 2014-09-01 02:29 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-114360063-1743958253-1703873298-1006
2014-08-31 14:17 - 2014-09-12 13:13 - 00000000 ____D () C:\Users\XCOM
2014-08-26 23:20 - 2014-09-18 14:21 - 00002193 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-26 23:20 - 2014-08-26 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-25 21:04 - 2014-06-17 14:14 - 00873688 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2014-08-25 21:04 - 2014-06-17 14:14 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2014-08-22 14:32 - 2014-08-22 14:32 - 00001233 _____ () C:\Users\Erik\Desktop\Dino Storm.lnk
2014-08-22 14:32 - 2014-08-22 14:32 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dino Storm
2014-08-21 21:28 - 2014-08-22 18:40 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\SPORE
2014-08-21 21:19 - 2014-08-21 21:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-20 15:35 - 2014-08-20 15:34 - 00057392 _____ () C:\Users\Erik\Desktop\lantern-model-backup

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-18 15:03 - 2014-09-18 15:02 - 00000000 ____D () C:\FRST
2014-09-18 15:03 - 2014-07-09 23:22 - 01159055 _____ () C:\WINDOWS\WindowsUpdate.log
2014-09-18 15:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-09-18 14:59 - 2014-06-27 18:26 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-114360063-1743958253-1703873298-1001
2014-09-18 14:54 - 2014-09-06 19:50 - 00000000 ____D () C:\Users\Erik\AppData\Local\Deployment
2014-09-18 14:34 - 2014-06-27 18:24 - 00001040 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-18 14:28 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-09-18 14:22 - 2014-07-10 12:52 - 00003936 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{513ECA37-1960-4000-B5AB-5F05B266956B}
2014-09-18 14:21 - 2014-08-26 23:20 - 00002193 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-18 14:21 - 2014-06-27 18:24 - 00001036 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-18 14:20 - 2014-08-15 14:35 - 00000000 ____D () C:\Users\Erik\.lantern
2014-09-14 01:39 - 2014-09-06 14:55 - 00000000 ____D () C:\ProgramData\Origin
2014-09-14 01:39 - 2014-06-27 19:05 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\uTorrent
2014-09-13 22:02 - 2014-09-13 22:02 - 00000000 ____D () C:\Users\Erik\AppData\Local\My Games
2014-09-13 22:02 - 2014-08-31 14:24 - 00000000 ____D () C:\Users\Erik\Documents\My Games
2014-09-13 21:58 - 2014-09-13 21:58 - 00000792 _____ () C:\Users\Erik\Desktop\Play Civilization V.lnk
2014-09-13 11:52 - 2014-07-09 23:22 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-13 11:52 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-09-12 15:46 - 2014-08-09 11:55 - 00000000 ____D () C:\Users\Erik\AppData\Local\Windows Live
2014-09-12 13:13 - 2014-08-31 14:17 - 00000000 ____D () C:\Users\XCOM
2014-09-12 13:13 - 2014-08-05 09:55 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\.minecraft
2014-09-12 12:45 - 2014-03-18 03:49 - 00017360 _____ () C:\WINDOWS\PFRO.log
2014-09-12 12:44 - 2014-09-12 12:39 - 00000000 ____D () C:\AdwCleaner
2014-09-12 12:44 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-09-10 22:25 - 2014-09-10 22:23 - 00000000 ____D () C:\WINDOWS\SysWOW64\data
2014-09-10 22:23 - 2014-09-10 22:23 - 02809240 _____ () C:\WINDOWS\SysWOW64\elsword.exe
2014-09-10 18:33 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-09-10 14:04 - 2013-08-22 16:44 - 00337872 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-09-10 11:10 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-09-10 11:10 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-09-10 11:09 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-09-10 11:06 - 2014-07-10 00:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-09-10 11:06 - 2014-07-10 00:17 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-09-10 11:06 - 2014-07-10 00:17 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-09-10 11:06 - 2014-07-10 00:17 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-09-10 11:06 - 2014-07-10 00:17 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-09-10 11:06 - 2014-07-10 00:13 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-09-10 11:06 - 2014-07-10 00:13 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-09-10 11:05 - 2014-06-27 19:27 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-09-10 11:02 - 2014-06-27 19:27 - 101694776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-09-06 20:00 - 2014-09-06 20:00 - 00000000 ____D () C:\Users\Erik\Documents\SimCity
2014-09-06 19:50 - 2014-09-06 19:50 - 00000000 ____D () C:\Users\Erik\AppData\Local\Apps\2.0
2014-09-06 16:08 - 2014-09-06 16:08 - 00000000 ____D () C:\Users\Erik\Documents\Electronic Arts
2014-09-06 16:08 - 2014-09-06 15:05 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\Origin
2014-09-06 16:05 - 2014-09-06 15:04 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-09-06 16:02 - 2014-09-06 16:02 - 00000851 _____ () C:\Users\Public\Desktop\The SIMS 4 Deluxe Edition.lnk
2014-09-06 16:02 - 2014-09-06 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The SIMS 4 Deluxe Edition
2014-09-06 15:07 - 2014-09-06 15:05 - 00000000 ____D () C:\Users\Erik\AppData\Local\Origin
2014-09-06 14:59 - 2014-06-27 19:52 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-06 14:52 - 2014-09-06 15:00 - 00447752 ____R (On2.com) C:\WINDOWS\SysWOW64\vp6vfw.dll
2014-09-04 22:17 - 2014-07-19 22:37 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-09-04 22:16 - 2014-09-04 22:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarGame
2014-09-03 20:27 - 2014-08-31 19:34 - 00000000 ____D () C:\Users\Erik\Documents\My Cheat Tables
2014-09-02 22:06 - 2014-08-15 13:34 - 00706016 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-09-02 22:06 - 2014-08-15 13:34 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-02 18:22 - 2014-07-09 18:22 - 00045433 _____ () C:\WINDOWS\DirectX.log
2014-09-01 02:29 - 2014-08-31 14:23 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-114360063-1743958253-1703873298-1006
2014-08-31 14:20 - 2014-07-09 23:27 - 00000000 ____D () C:\Users\Erik
2014-08-29 14:50 - 2014-08-05 15:38 - 00111016 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2014-08-29 14:49 - 2014-08-05 15:39 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-08-29 14:49 - 2014-06-27 19:07 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-29 03:58 - 2014-09-10 11:01 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-08-29 03:32 - 2014-09-10 11:01 - 02779136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-08-29 02:59 - 2014-09-10 11:01 - 03117568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-08-29 01:56 - 2014-09-10 11:01 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-08-29 01:47 - 2014-09-10 11:01 - 02321920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-08-26 23:20 - 2014-08-26 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-26 23:20 - 2014-06-27 18:24 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-26 00:27 - 2014-09-10 11:01 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-25 21:04 - 2014-06-27 18:59 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-08-24 23:45 - 2013-08-22 16:46 - 00293625 _____ () C:\WINDOWS\setupact.log
2014-08-24 16:49 - 2014-08-15 00:20 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\vlc
2014-08-23 09:48 - 2014-09-10 11:01 - 02374784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-08-23 09:13 - 2014-09-10 11:01 - 02084520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-08-23 08:10 - 2014-09-10 11:01 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-08-23 07:32 - 2014-09-10 11:01 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-08-23 06:44 - 2014-09-10 11:01 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-08-23 06:34 - 2014-09-10 11:01 - 13423104 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-08-23 06:33 - 2014-09-10 11:01 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-08-23 06:31 - 2014-09-10 11:01 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-08-23 06:20 - 2014-09-10 11:01 - 11818496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-08-23 02:20 - 2014-08-07 07:16 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\Skype
2014-08-22 18:40 - 2014-08-21 21:28 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\SPORE
2014-08-22 14:32 - 2014-08-22 14:32 - 00001233 _____ () C:\Users\Erik\Desktop\Dino Storm.lnk
2014-08-22 14:32 - 2014-08-22 14:32 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dino Storm
2014-08-22 14:32 - 2014-08-17 15:08 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\Splitscreen Studios
2014-08-21 21:25 - 2014-06-27 18:59 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-21 21:19 - 2014-08-21 21:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-21 20:51 - 2014-07-09 17:58 - 00000000 ____D () C:\Users\Erik\AppData\Roaming\DAEMON Tools Lite
2014-08-21 19:12 - 2014-06-27 18:19 - 00000000 ____D () C:\Users\Erik\AppData\Local\Packages
2014-08-20 15:34 - 2014-08-20 15:35 - 00057392 _____ () C:\Users\Erik\Desktop\lantern-model-backup

Some content of TEMP:
====================
C:\Users\Erik\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-15 13:47

==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-09-2014
Ran by Erik at 2014-09-18 15:04:09
Running from D:\
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

"Need for Speed Rivals" (HKLM-x32\...\{E0E5B250-5C80-45ED-9AAB-829655B3E39D}_is1) (Version: 1.4.0.0 - )
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.31515 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
8GadgetPack (HKLM-x32\...\{32A7C3B0-E5C3-4913-B1F2-49FE860FAA5E}) (Version: 11.0.0 - Helmut Buhler)
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{C23EE7CE-C1A3-4F94-A8F0-9E0AC9C6DE6E}) (Version: 1.1 - Eyeo GmbH)
Adblock Plus for IE (HKLM-x32\...\{fd97d1e2-368a-4cd9-af63-8eeff938044a}) (Version: 1.1 - )
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Aura Kingdom (HKLM-x32\...\Steam App 268420) (Version:  - X-Legend)
Bloons TD 5 Deluxe version 1.21 (HKLM-x32\...\Bloons TD 5 Deluxe_is1) (Version: 1.21 - )
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
CM Installer (HKLM-x32\...\{E8F42777-958D-4C14-9A42-8DCA1929FD26}) (Version: 1.0.0.0 - Cyanogen Inc.)
CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Cube World - July 23, 2013 (HKLM-x32\...\Cube World - July 23, 2013July 23, 2013) (Version: July 23, 2013 - Friends in War)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dino Storm (HKCU\...\Dino Storm) (Version: 12345.0.0.0 - Splitscreen Studios GmbH)
Disconnect Private Search (HKCU\...\Disconnect Private Search 1.0.1) (Version: 1.0.1 - Disconnect)
Disconnect Private Search (x32 Version: 1.0.1 - Disconnect) Hidden
Dxtory version 2.0.127 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.127 - ExKode Co. Ltd.)
Elsword version v4.0625.7.1 (HKLM-x32\...\{E655DDFC-24DB-4FC3-8474-271E911309B4}_is1) (Version: v4.0625.7.1 - Kill3rCombo)
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.10.1 - SCS Software)
Europe MapleStory (HKLM-x32\...\Europe MapleStory_is1) (Version:  - Nexon)
Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 0.5.0 - Hotger)
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Gameforge Live 2.0.3 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.3 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Drive (HKLM-x32\...\{C6640705-7479-4EE5-BC86-879F05F65E74}) (Version: 1.17.7290.4094 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Intel(R) Chipset Device Software (Version: 10.0.13 - Intel Corporation) Hidden
Intel® Chipkészlet-illesztő szoftver (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java 8 Update 11 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418011FF}) (Version: 8.0.110 - Oracle Corporation)
Java 8 Update 11 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218011FF}) (Version: 8.0.110 - Oracle Corporation)
Java 8 Update 20 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418020F0}) (Version: 8.0.200 - Oracle Corporation)
Java 8 Update 20 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218020F0}) (Version: 8.0.200 - Oracle Corporation)
Java Auto Updater (x32 Version: 2.8.20.26 - Oracle Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
Lantern 1.4.6 (HKLM-x32\...\3831-6452-7413-7646) (Version: 1.4.6 - Team Lantern)
LEGO - The Hobbit (HKLM-x32\...\TEVHT1RoZUhvYmJpdA==_is1) (Version: 1 - )
LEGO Minifigures Online (HKLM-x32\...\LEGO Minifigures Online_is1) (Version: 1.0.0 - Funcom)
LEGO® Batman™ 2: DC Super Heroes (HKLM-x32\...\{4E2EA555-3DAE-4BE1-96BF-6A632ACFE8DE}) (Version: 1.0.0.0 - Warner Bros. Interactive Entertainment)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Nostale(UK) (HKLM-x32\...\NosTale(UK)_is1) (Version:  - Gameforge 4D GmbH)
NVIDIA 3D Vision Controller Driver 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Control Panel 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.160.1244 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX rendszerszoftver 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 15.3.36 (Version: 15.3.36 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 15.3.36 (Version: 15.3.36 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 15.3.36 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pirate Galaxy (HKCU\...\Pirate Galaxy) (Version: 12345.0.0.0 - Splitscreen Studios GmbH)
Pirate101 (HKLM-x32\...\{662140BE-138C-4DC1-B4CD-B62C6C855A25}) (Version: 1.0.0 - KingsIsle Entertainment, Inc.)
Plague Inc Evolved v0.7.5.1 (2014) (HKLM-x32\...\Plague Inc Evolved v0.7.5.1 (2014)0.7.5.1) (Version: 0.7.5.1 - Friends in War)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
ROBLOX Player for Erik (HKCU\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - ROBLOX Corporation)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
Sid Meier's Civilization 5.Gold Edition.v 1.0.1.674 + 13 DLC (HKLM-x32\...\Sid Meier's Civilization 5.Gold Edition.v 1.0.1.~1A495BFE_is1) (Version: Sid Meier's Civilization 5.Gold Edition.v 1.0.1.674 + 13 DLC - Fenixx--Repack--(23.06.2012))
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.05.0001 - Electronic Arts)
SPORE™ Creepy & Cute Parts Pack (HKLM-x32\...\{C07F8D75-7A8D-400E-A8F9-A3F396B49BB1}) (Version: 1.00.0000 - Electronic Arts)
SPORE™ Galactic Adventures (HKLM-x32\...\{63CEA2E4-4FE7-4F2C-B388-C1313D24157C}) (Version: 1.01.0001 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
The Sims 4 Deluxe Edition version 1.0 Update 1 (HKLM-x32\...\The Sims 4 Deluxe Edition_is1) (Version: 1.0 Update 1 - GMT-MAX.ORG)
TreeSize Free V3.0.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.0.1 - JAM Software)
Tropico 5 version 1.03 (HKLM-x32\...\Tropico 5_is1) (Version: 1.03 - GMT-MAX.ORG)
Vegas Pro 13.0 (64-bit) (HKLM\...\{3814DB30-091D-11E4-BDE0-F04DA23A5C58}) (Version: 13.0.373 - Sony)
VIA Platform eszközkezelő (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
XCOM: Enemy Within (HKLM-x32\...\WENPTUVuZW15V2l0aGlu_is1) (Version: 1 - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-114360063-1743958253-1703873298-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\Erik\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler)
CustomCLSID: HKU\S-1-5-21-114360063-1743958253-1703873298-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\Erik\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler)

==================== Restore Points  =========================

10-09-2014 09:01:47 Windows Update
17-09-2014 21:36:38 Ütemezett ellenőrzési pont

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0DEA1532-B9C5-439B-BF57-89D32749803B} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {1B53DECA-D5E2-4767-B6A5-27EA60CB5293} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-03-18] (Microsoft Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {C00EBA1B-D2BC-4FEE-9830-387C8630F272} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {C7D6E12E-8325-4BDD-83CD-40273BDDE0C6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-27] (Google Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D0AEE9D7-CD27-43D4-BE0B-316E9F007123} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E43C395F-499B-409A-B513-3F445998B43C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-09-10] (Microsoft Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {E9B3EF09-084A-4EF2-BE45-7B319EB1A892} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-27] (Google Inc.)
Task: {F6FF5FDF-DA36-43FF-9DF6-D5D7BAAEF182} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {FED3D62B-5A9D-459B-86FB-FE2F922AB16F} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-07-10 00:33 - 2013-09-11 11:24 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2014-07-09 23:22 - 2014-07-02 20:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-07-10 00:32 - 2012-11-14 15:22 - 00078456 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2014-07-10 00:32 - 2012-11-14 15:22 - 00386168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2014-08-15 14:34 - 2014-08-12 12:07 - 00236568 _____ () C:\Users\Erik\AppData\Roaming\Lantern\Lantern.exe
2014-09-09 22:39 - 2014-09-04 04:09 - 01442120 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libglesv2.dll
2014-09-09 22:39 - 2014-09-04 04:09 - 00168264 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libegl.dll
2014-09-09 22:39 - 2014-09-04 04:09 - 10329928 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\pdf.dll
2014-09-09 22:39 - 2014-09-04 04:09 - 00405320 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll
2014-09-09 22:39 - 2014-09-04 04:09 - 01831752 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ffmpegsumo.dll
2014-08-15 14:34 - 2014-08-12 12:07 - 04908544 _____ () C:\Users\Erik\AppData\Roaming\Lantern\pt\flashlight\flashlight.exe
2014-09-09 22:39 - 2014-09-04 04:09 - 26697032 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\PepperFlash\pepflashplayer.dll
2014-07-10 00:33 - 2014-09-13 11:52 - 00022528 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2014-07-10 00:33 - 2010-06-29 10:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2014-09-18 14:19 - 2014-09-18 14:19 - 00057344 ____N () C:\Users\Erik\AppData\Local\Temp\1411042779097-0\jdpapi.dll
2014-08-15 14:35 - 2014-09-18 14:19 - 00009216 _____ () C:\Users\Erik\.lantern\winproxy4j.dll
2014-08-15 14:35 - 2014-08-15 14:35 - 00202096 _____ () C:\Users\Erik\.jnaerator\extractedLibraries\jninatpmp.dll
2014-08-15 14:35 - 2014-08-12 12:07 - 00108544 _____ () C:\Users\Erik\.littleshoot\lib\x86-Windows-gpp\jni\libgcc_s_sjlj-1.dll
2014-08-15 14:35 - 2014-08-12 12:07 - 00863744 _____ () C:\Users\Erik\.littleshoot\lib\x86-Windows-gpp\jni\libstdc++-6.dll
2014-08-15 14:35 - 2014-08-12 12:07 - 00507393 _____ () C:\Users\Erik\.littleshoot\lib\x86-Windows-gpp\jni\barchart-udt-core-2.3.0-SNAPSHOT.dll
2014-08-29 13:54 - 2014-08-21 20:15 - 01171456 _____ () D:\Program Files\Steam\libavcodec-56.dll
2014-08-29 13:54 - 2014-08-21 20:15 - 00332800 _____ () D:\Program Files\Steam\libavresample-2.dll
2014-08-29 13:54 - 2014-08-21 20:15 - 00442368 _____ () D:\Program Files\Steam\libavutil-54.dll
2014-08-29 13:54 - 2014-08-21 00:38 - 00774656 _____ () D:\Program Files\Steam\SDL2.dll
2014-08-29 13:54 - 2014-08-28 13:48 - 02224320 _____ () D:\Program Files\Steam\video.dll
2014-08-29 13:54 - 2014-08-21 20:15 - 00403968 _____ () D:\Program Files\Steam\libavformat-56.dll
2014-08-29 13:54 - 2014-08-21 20:15 - 00485888 _____ () D:\Program Files\Steam\libswscale-3.dll
2014-08-29 13:54 - 2014-08-28 13:48 - 00678080 _____ () D:\Program Files\Steam\bin\chromehtml.DLL
2014-09-18 14:18 - 2014-09-18 14:18 - 00098816 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32api.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00110080 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\pywintypes27.dll
2014-09-18 14:18 - 2014-09-18 14:18 - 00364544 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\pythoncom27.dll
2014-09-18 14:18 - 2014-09-18 14:18 - 00045568 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\_socket.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 01160704 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\_ssl.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00320512 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32com.shell.shell.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00713216 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\_hashlib.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 01175040 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\wx._core_.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00805888 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\wx._gdi_.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00811008 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\wx._windows_.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 01062400 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\wx._controls_.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00735232 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\wx._misc_.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00128512 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\_elementtree.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00127488 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\pyexpat.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00557056 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\pysqlite2._sqlite.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00007168 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\hashobjs_ext.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00087552 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\_ctypes.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00119808 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32file.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00108544 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32security.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00018432 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32event.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00038912 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32inet.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00070656 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\wx._html2.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00167936 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32gui.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00011264 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32crypt.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00027136 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\_multiprocessing.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00686080 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\unicodedata.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00122368 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\wx._wizard.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00010240 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\select.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00024064 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32pipe.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00025600 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32pdh.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00525640 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\windows._lib_cacheinvalidation.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00035840 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32process.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00017408 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32profile.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00022528 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\win32ts.pyd
2014-09-18 14:18 - 2014-09-18 14:18 - 00078336 _____ () C:\Users\Erik\AppData\Local\Temp\_MEI66042\wx._animate.pyd
2014-08-29 13:54 - 2014-08-21 00:38 - 34589376 _____ () D:\Program Files\Steam\bin\libcef.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKCU\...\StartupApproved\StartupFolder: => "Disconnect Private Search.lnk"
HKCU\...\StartupApproved\StartupFolder: => "Sidebar415.lnk"
HKCU\...\StartupApproved\StartupFolder: => "Sidebar164.lnk"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/13/2014 10:09:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CivilizationV.exe version 1.0.3.18 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 618

Start Time: 01cfcf8e5a52f05f

Termination Time: 4294967295

Application Path: D:\Games\Civilization V\CivilizationV.exe

Report Id: ce8d61c6-3b81-11e4-be9b-08606ed9ae30

Faulting package full name:

Faulting package-relative application ID:

Error: (09/13/2014 10:07:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CivilizationV_DX11.exe version 1.0.3.18 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1a94

Start Time: 01cfcf8e45a905a7

Termination Time: 36

Application Path: D:\Games\Civilization V\CivilizationV_DX11.exe

Report Id: 960bb80d-3b81-11e4-be9b-08606ed9ae30

Faulting package full name:

Faulting package-relative application ID:

Error: (09/13/2014 10:06:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CivilizationV_DX11.exe version 1.0.3.18 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1834

Start Time: 01cfcf8d9689a80e

Termination Time: 15

Application Path: D:\Games\Civilization V\CivilizationV_DX11.exe

Report Id: 7ebed697-3b81-11e4-be9b-08606ed9ae30

Faulting package full name:

Faulting package-relative application ID:

Error: (09/13/2014 09:57:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program LiveComm.exe version 17.5.9600.20605 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 19d0

Start Time: 01cfcf8c30585f7a

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: 28199889-3b80-11e4-be9b-08606ed9ae30

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (09/13/2014 09:50:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program LiveComm.exe version 17.5.9600.20605 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 17ac

Start Time: 01cfcf8b409e61eb

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: 35041e88-3b7f-11e4-be9b-08606ed9ae30

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (09/13/2014 09:45:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program LiveComm.exe version 17.5.9600.20605 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: d7c

Start Time: 01cfcf388039c1b2

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: 783a9055-3b7e-11e4-be9b-08606ed9ae30

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (09/12/2014 03:32:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ERIK-PC)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147009280 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (09/12/2014 03:32:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ERIK-PC)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147009280 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (09/12/2014 01:14:00 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1533) (User: ERIK-PC)
Description: Windows cannot delete the profile directory C:\Users\XCOM. This error may be caused by files in this directory being used by another program.

 DETAIL - The directory is not empty.

Error: (09/11/2014 01:22:20 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows cannot access the file  for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program The Sims™ 4 because of this error.

Program: The Sims™ 4
File:

The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
	- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
	- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.

Additional Data
Error value: 00000000
Disk type: 0


System errors:
=============
Error: (09/14/2014 01:39:24 AM) (Source: DCOM) (EventID: 10010) (User: ERIK-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (09/14/2014 01:39:24 AM) (Source: DCOM) (EventID: 10010) (User: ERIK-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (09/14/2014 01:39:23 AM) (Source: DCOM) (EventID: 10010) (User: ERIK-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (09/14/2014 01:39:23 AM) (Source: DCOM) (EventID: 10010) (User: ERIK-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (09/13/2014 11:51:46 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 32212256844648013608813264

Error: (09/13/2014 11:52:05 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 1:25:11 on ‎2014.‎09.‎13. was unexpected.

Error: (09/12/2014 03:32:26 PM) (Source: DCOM) (EventID: 10001) (User: ERIK-PC)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15616Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNem érhető elNem érhető el

Error: (09/12/2014 03:32:26 PM) (Source: DCOM) (EventID: 10001) (User: ERIK-PC)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15616Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNem érhető elNem érhető el

Error: (09/11/2014 11:56:32 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 32212256844648013608813264

Error: (09/11/2014 11:56:57 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 0:44:21 on ‎2014.‎09.‎11. was unexpected.


Microsoft Office Sessions:
=========================
Error: (09/13/2014 10:09:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: CivilizationV.exe1.0.3.1861801cfcf8e5a52f05f4294967295D:\Games\Civilization V\CivilizationV.exece8d61c6-3b81-11e4-be9b-08606ed9ae30

Error: (09/13/2014 10:07:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: CivilizationV_DX11.exe1.0.3.181a9401cfcf8e45a905a736D:\Games\Civilization V\CivilizationV_DX11.exe960bb80d-3b81-11e4-be9b-08606ed9ae30

Error: (09/13/2014 10:06:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: CivilizationV_DX11.exe1.0.3.18183401cfcf8d9689a80e15D:\Games\Civilization V\CivilizationV_DX11.exe7ebed697-3b81-11e4-be9b-08606ed9ae30

Error: (09/13/2014 09:57:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2060519d001cfcf8c30585f7a4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe28199889-3b80-11e4-be9b-08606ed9ae30microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (09/13/2014 09:50:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2060517ac01cfcf8b409e61eb4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe35041e88-3b7f-11e4-be9b-08606ed9ae30microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (09/13/2014 09:45:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20605d7c01cfcf388039c1b24294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe783a9055-3b7e-11e4-be9b-08606ed9ae30microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (09/12/2014 03:32:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ERIK-PC)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147009280

Error: (09/12/2014 03:32:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ERIK-PC)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147009280

Error: (09/12/2014 01:14:00 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1533) (User: ERIK-PC)
Description: C:\Users\XCOMThe directory is not empty.

Error: (09/11/2014 01:22:20 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: The Sims™ 4000000000


CodeIntegrity Errors:
===================================
  Date: 2014-09-13 14:15:40.185
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:15:40.098
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:14:01.760
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:14:01.687
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:14:01.505
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:14:01.301
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:13:11.928
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:13:11.838
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:12:41.469
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-13 14:12:40.007
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz
Percentage of memory in use: 32%
Total physical RAM: 8123.96 MB
Available physical RAM: 5479.75 MB
Total Pagefile: 9403.96 MB
Available Pagefile: 6275.27 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100 GB) (Free:62.39 GB) NTFS
Drive d: () (Fixed) (Total:781.17 GB) (Free:403.08 GB) NTFS
Drive f: (Risk Factions) (CDROM) (Total:0.84 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8E3FFF3D)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=50 GB) - (Type=83)
Partition 4: (Not Active) - (Size=781.2 GB) - (Type=07 NTFS)

==================== End Of Log ============================