Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:20-07-2015 Ran by Chase (administrator) on CHASE-PC on 25-07-2015 01:49:42 Running from C:\Users\Chase\Desktop Loaded Profiles: Chase (Available Profiles: Chase) Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States) Internet Explorer Version 11 (Default browser: IE) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe (DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe (RealNetworks, Inc.) C:\Program Files (x86)\Online Games Manager\ogmservice.exe (VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe (Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5263504 2012-08-09] (VIA) HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-07-09] (Raptr, Inc) HKLM-x32\...\Run: [avast] => C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2014-01-22] (AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation) HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe [1493288 2011-09-20] (Nero AG) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-22] (Advanced Micro Devices, Inc.) HKU\S-1-5-21-2213509919-2853325218-3059417636-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [4527424 2011-08-17] (DT Soft Ltd) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-01-22] (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) BHO: avast! WebRep -> {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-22] (AVAST Software) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-22] (Oracle Corporation) BHO-x32: avast! WebRep -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-22] (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-22] (Oracle Corporation) Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-22] (AVAST Software) Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-22] (AVAST Software) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{173B7A18-93F6-40C3-8067-D68086A0B6D1}: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN) FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-12-22] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-22] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2213509919-2853325218-3059417636-1000: @citrixonline.com/appdetectorplugin -> C:\Users\Chase\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2014-12-09] (Citrix Online) FF Plugin HKU\S-1-5-21-2213509919-2853325218-3059417636-1000: tdameritrade.com/thinkorswim -> C:\Program Files\thinkorswim\npthinkorswim.dll [2015-07-24] (TD Ameritrade) FF Plugin HKU\S-1-5-21-2213509919-2853325218-3059417636-1000: tdameritrade.com/tossc -> C:\Program Files\thinkorswim\nptossc.dll [2015-07-24] (TD Ameritrade) Chrome: ======= CHR Profile: C:\Users\Chase\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (YouTube) - C:\Users\Chase\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-05] CHR Extension: (Google Search) - C:\Users\Chase\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-05] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Chase\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13] CHR Extension: (Chrome Web Store Payments) - C:\Users\Chase\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-05] CHR Extension: (Gmail) - C:\Users\Chase\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-05] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-06-22] (Advanced Micro Devices, Inc.) [File not signed] S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2014-01-22] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [137960 2014-01-22] (AVAST Software) R2 ogmservice; C:\Program Files (x86)\Online Games Manager\ogmservice.exe [581568 2014-03-27] (RealNetworks, Inc.) R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-03] (VIA Technologies, Inc.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] () R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2014-01-22] (AVAST Software) R1 aswFW; C:\Windows\System32\Drivers\aswFW.sys [131232 2014-01-22] (AVAST Software) R0 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2014-01-22] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2014-01-22] (AVAST Software) R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12368 2013-03-06] (ALWIL Software) R0 aswNdis2; C:\Windows\System32\Drivers\aswNdis2.sys [270824 2014-01-22] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2014-01-22] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2014-01-22] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1031392 2014-12-07] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2014-01-22] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2014-01-22] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2014-01-22] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [271424 2014-12-18] (DT Soft Ltd) R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions) R3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [231112 2013-01-02] (VIA Technologies, Inc.) R3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [301256 2013-01-02] (VIA Technologies, Inc.) S3 gdrv; \??\C:\Windows\gdrv.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-25 01:49 - 2015-07-25 01:49 - 00010822 _____ C:\Users\Chase\Desktop\FRST.txt 2015-07-25 01:49 - 2015-07-25 01:49 - 00000000 ____D C:\FRST 2015-07-25 01:48 - 2015-07-25 01:48 - 02135552 _____ (Farbar) C:\Users\Chase\Desktop\FRST64.exe 2015-07-25 01:47 - 2015-07-25 01:47 - 01638912 _____ (Farbar) C:\Users\Chase\Desktop\FRST.exe 2015-07-25 00:34 - 2015-07-25 00:34 - 00000826 _____ C:\Users\Chase\Downloads\TDSSKiller.exe [IPT].torrent 2015-07-22 21:51 - 2015-07-22 21:51 - 00056484 _____ C:\Users\Chase\Downloads\The X Files - Fight The Future (1998) marra.avi [IPT].torrent 2015-07-22 19:32 - 2015-07-22 19:32 - 00301048 _____ C:\Windows\Minidump\072215-12386-01.dmp 2015-07-22 18:22 - 2015-07-22 18:22 - 00000930 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2015-07-22 18:22 - 2015-07-22 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2015-07-22 18:22 - 2015-07-22 18:22 - 00000000 ____D C:\Program Files\CPUID 2015-07-22 18:21 - 2015-07-22 18:21 - 01191992 _____ ( ) C:\Users\Chase\Downloads\hwmonitor_1.27.exe 2015-07-22 17:54 - 2015-07-22 17:54 - 00016791 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E09.720p.HDTV.X264-DIMENSION [IPT].torrent 2015-07-21 14:53 - 2015-07-21 15:10 - 00000000 ____D C:\Users\Chase\AppData\Roaming\TeamViewer 2015-07-21 14:53 - 2015-07-21 14:53 - 08009896 _____ (TeamViewer GmbH) C:\Users\Chase\Downloads\TeamViewer_Setup_en (1).exe 2015-07-21 01:59 - 2015-07-21 01:59 - 00024630 _____ C:\Users\Chase\Downloads\Blue october Discography [IPT].torrent 2015-07-15 17:51 - 2015-07-15 17:51 - 00000000 ____D C:\Program Files (x86)\WinRAR 2015-07-15 17:46 - 2015-07-15 17:46 - 00000492 _____ C:\Users\Chase\Downloads\WinRAR v5.21.INCL.KEY [IPT].torrent 2015-07-15 17:34 - 2015-07-15 17:34 - 00017773 _____ C:\Users\Chase\Downloads\Justice.League.Gods.and.Monsters.2015.720p.HDRiP.XVID.AC3-MAJESTIC [IPT].torrent 2015-07-14 22:58 - 2015-07-14 22:58 - 00000000 ____D C:\Users\Chase\AppData\Roaming\ATI 2015-07-14 22:58 - 2015-07-14 22:58 - 00000000 ____D C:\Users\Chase\AppData\Local\ATI 2015-07-14 22:58 - 2015-07-14 22:58 - 00000000 ____D C:\ProgramData\ATI 2015-07-14 22:58 - 2015-07-14 22:58 - 00000000 _____ C:\Windows\ativpsrm.bin 2015-07-14 22:56 - 2015-07-14 22:56 - 00064103 _____ C:\Windows\SysWOW64\CCCInstall_201507142256141112.log 2015-07-14 22:56 - 2015-07-14 22:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2015-07-14 22:55 - 2015-07-14 22:55 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2015-07-14 22:55 - 2015-07-14 22:55 - 00000000 ____D C:\Program Files (x86)\AMD 2015-07-14 22:53 - 2015-07-14 22:56 - 00000000 ____D C:\Program Files\AMD 2015-07-14 22:48 - 2015-07-14 22:51 - 300721760 _____ (AMD Inc.) C:\Users\Chase\Downloads\amd-catalyst-15.7-with-dotnet45-win7-64bit.exe 2015-07-14 22:41 - 2015-07-14 22:41 - 01122099 _____ C:\Users\Chase\Downloads\[Guru3D.com]-DDU.zip 2015-07-14 00:45 - 2015-07-14 00:45 - 00019119 _____ C:\Users\Chase\Downloads\Fast.and.Furious.7.READNFO.HDRip.XviD-EVO [IPT].torrent 2015-07-11 04:23 - 2015-07-11 04:23 - 05451464 _____ (Advanced Micro Devices, Inc.) C:\Users\Chase\Downloads\autodetectutility.exe 2015-07-11 01:26 - 2015-07-11 01:26 - 00040540 _____ C:\Users\Chase\Downloads\The.Hunt.2012.720p.BluRay.x264-x0r [IPT].torrent 2015-07-11 01:01 - 2015-07-11 01:01 - 00018988 _____ C:\Users\Chase\Downloads\The Brave [IPT].torrent 2015-07-09 22:08 - 2015-07-09 22:08 - 00014477 _____ C:\Users\Chase\Downloads\Insidious Chapter 3 2015 HC HDRip AAC x264-SSDD [IPT].torrent 2015-07-09 21:39 - 2015-07-09 21:39 - 00039196 _____ C:\Users\Chase\Downloads\Minions.2015.TS.x264.AC3.HQ.Garmin [IPT].torrent 2015-07-09 21:21 - 2015-07-09 21:21 - 00018089 _____ C:\Users\Chase\Downloads\Ren.and.Stimpy.Adult.Party.Cartoon.2003.DVDRip.x264-SDxT [IPT].torrent 2015-07-09 18:15 - 2015-07-09 18:15 - 00020891 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E08.HDTV.x264-LOL [IPT].torrent 2015-07-08 23:09 - 2015-07-13 15:03 - 00014433 _____ C:\Users\Chase\Documents\Contract.odt 2015-07-08 03:05 - 2015-07-08 03:05 - 00057892 _____ C:\Users\Chase\Downloads\Martyrs.2008.DVDRip.XviD-EBX [IPT].torrent 2015-07-08 02:29 - 2015-07-08 02:29 - 00014968 _____ C:\Users\Chase\Downloads\Irreversible {unrated} [IPT].torrent 2015-07-07 02:28 - 2015-07-07 02:28 - 00060398 _____ C:\Users\Chase\Downloads\The.Ren.and.Stimpy.Show.Complete.DVDRip.x264-SDxT [IPT].torrent 2015-07-07 02:24 - 2015-07-07 02:24 - 00019672 _____ C:\Users\Chase\Downloads\Be Cool 2005 DVDRip x264 MPOD.mkv [IPT].torrent 2015-07-05 23:39 - 2015-07-05 23:39 - 00007455 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E06.HDTV.XviD-AFG [IPT].torrent 2015-07-05 23:39 - 2015-07-05 23:39 - 00007266 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E07.XviD-AFG [IPT].torrent 2015-07-05 23:38 - 2015-07-05 23:38 - 00008275 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E04.HDTV.XviD-AFG [IPT].torrent 2015-07-05 23:38 - 2015-07-05 23:38 - 00007615 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E05.HDTV.XviD-AFG [IPT].torrent 2015-07-05 23:38 - 2015-07-05 23:38 - 00007442 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E03.INTERNAL.HDTV.XviD-AFG [IPT].torrent 2015-07-05 23:37 - 2015-07-05 23:37 - 00007615 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E02.HDTV.XviD-AFG [IPT].torrent 2015-07-04 02:58 - 2015-07-04 02:58 - 00007615 _____ C:\Users\Chase\Downloads\Wayward.Pines.S01E01.HDTV.XviD-AFG [IPT].torrent 2015-07-04 00:47 - 2015-07-04 00:47 - 00017956 _____ C:\Users\Chase\Downloads\Splinter.2008.DVDScr.Xvid.TFE [IPT].torrent 2015-07-04 00:47 - 2015-07-04 00:47 - 00014755 _____ C:\Users\Chase\Downloads\Splinter.2008.BDRip.XviD.AC3-WAR [IPT].torrent 2015-07-03 22:47 - 2015-07-03 22:47 - 00045868 _____ C:\Users\Chase\Downloads\Splinter.2008.1080p.Blu-Ray.ReMuX.VC-1.DTS-HD.MA.5.1-R2D2 [IPT].torrent 2015-07-03 00:47 - 2015-07-03 00:47 - 00016436 _____ C:\Users\Chase\Downloads\1408 [2007] [Directors Cut] DVD Rip Xvid [StB] [IPT].torrent 2015-07-03 00:27 - 2015-07-03 00:27 - 00056449 _____ C:\Users\Chase\Downloads\Virus.1999.BRRip.XviD-WAR [IPT].torrent 2015-06-30 23:26 - 2015-06-30 23:26 - 00056960 _____ C:\Users\Chase\Downloads\Dark Circles 2013 DVDRip XViD juggs [IPT].torrent 2015-06-27 22:06 - 2015-06-27 22:06 - 00031155 _____ C:\Users\Chase\Downloads\Dead.End.2003.LiMiTED.DVDRip.XviD-DoNE [IPT].torrent 2015-06-27 17:07 - 2015-06-27 17:07 - 00057066 _____ C:\Users\Chase\Downloads\The.Blair.Witch.Project.1999.BRRip.XviD-playXD [IPT].torrent ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-25 01:43 - 2014-12-05 15:54 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-07-25 01:36 - 2015-05-30 21:36 - 00000658 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-2213509919-2853325218-3059417636-1000.job 2015-07-25 01:27 - 2014-12-09 00:10 - 00000562 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-2213509919-2853325218-3059417636-1000.job 2015-07-25 00:46 - 2009-07-14 00:45 - 00022080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-07-25 00:46 - 2009-07-14 00:45 - 00022080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-07-25 00:43 - 2009-07-14 01:13 - 00814926 _____ C:\Windows\system32\PerfStringBackup.INI 2015-07-25 00:42 - 2014-12-05 15:46 - 01361630 _____ C:\Windows\WindowsUpdate.log 2015-07-25 00:39 - 2014-12-05 17:06 - 00000000 ____D C:\Users\Chase\AppData\Roaming\Raptr 2015-07-25 00:39 - 2014-12-05 15:54 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-07-25 00:39 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-07-25 00:38 - 2014-12-06 00:54 - 00000000 ____D C:\Users\Chase\AppData\Roaming\uTorrent 2015-07-25 00:38 - 2009-07-14 00:51 - 00057348 _____ C:\Windows\setupact.log 2015-07-24 16:58 - 2014-12-08 15:20 - 00000000 ____D C:\Users\Chase\.thinkorswim 2015-07-24 16:58 - 2014-12-08 15:10 - 00000000 ____D C:\Program Files\thinkorswim 2015-07-23 17:19 - 2014-12-06 18:43 - 00000000 ____D C:\Users\Chase\AppData\Roaming\vlc 2015-07-22 19:36 - 2014-12-21 23:20 - 00007597 _____ C:\Users\Chase\AppData\Local\Resmon.ResmonCfg 2015-07-22 19:32 - 2014-12-07 14:19 - 827070461 _____ C:\Windows\MEMORY.DMP 2015-07-22 19:32 - 2014-12-07 14:19 - 00000000 ____D C:\Windows\Minidump 2015-07-22 19:31 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\LiveKernelReports 2015-07-22 18:04 - 2014-12-06 02:11 - 00000000 ____D C:\Users\Chase\AppData\Roaming\Skype 2015-07-17 17:06 - 2015-05-23 00:55 - 00019201 _____ C:\Users\Chase\Documents\Running Average 1.ods 2015-07-15 16:23 - 2015-01-06 18:01 - 00065024 ___SH C:\Users\Chase\Documents\Thumbs.db 2015-07-15 14:38 - 2014-12-05 15:54 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-07-15 14:37 - 2014-12-05 15:54 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-07-14 22:51 - 2014-12-05 16:30 - 00000000 ____D C:\AMD 2015-07-14 22:46 - 2014-12-05 16:34 - 00000000 ____D C:\ProgramData\AMD 2015-07-14 22:45 - 2014-12-23 16:06 - 00207872 _____ (Power Admin LLC) C:\Windows\PAExec.exe 2015-07-14 14:48 - 2015-02-21 01:30 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-07-14 14:47 - 2015-02-21 19:23 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-07-14 13:38 - 2014-12-05 15:54 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-07-11 04:31 - 2014-12-05 17:06 - 00000000 ____D C:\Program Files (x86)\Raptr 2015-07-11 01:20 - 2015-05-30 21:36 - 00003684 _____ C:\Windows\System32\Tasks\G2MUploadTask-S-1-5-21-2213509919-2853325218-3059417636-1000 2015-07-11 01:20 - 2014-12-09 00:10 - 00003588 _____ C:\Windows\System32\Tasks\G2MUpdateTask-S-1-5-21-2213509919-2853325218-3059417636-1000 2015-07-08 23:08 - 2015-01-05 16:25 - 00014597 _____ C:\Users\Chase\Documents\Untitled 1.odt 2015-07-07 16:25 - 2010-11-20 23:47 - 00022430 _____ C:\Windows\PFRO.log 2015-07-04 21:26 - 2014-12-06 02:11 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-07-04 21:26 - 2014-12-06 02:11 - 00000000 ____D C:\ProgramData\Skype 2015-07-02 22:07 - 2015-06-15 03:40 - 00000000 ____D C:\Users\Chase\Desktop\Sandy Hook ==================== Files in the root of some directories ======= 2014-12-23 01:14 - 2014-12-23 01:14 - 0099384 _____ () C:\Users\Chase\AppData\Roaming\inst.exe 2014-12-23 01:14 - 2014-12-23 01:14 - 0007859 _____ () C:\Users\Chase\AppData\Roaming\pcouffin.cat 2014-12-23 01:14 - 2014-12-23 01:14 - 0001167 _____ () C:\Users\Chase\AppData\Roaming\pcouffin.inf 2014-12-23 01:14 - 2014-12-23 01:14 - 0000055 _____ () C:\Users\Chase\AppData\Roaming\pcouffin.log 2014-12-23 01:14 - 2014-12-23 01:14 - 0082816 _____ (VSO Software) C:\Users\Chase\AppData\Roaming\pcouffin.sys 2014-12-21 23:20 - 2015-07-22 19:36 - 0007597 _____ () C:\Users\Chase\AppData\Local\Resmon.ResmonCfg 2014-12-16 16:14 - 2014-12-16 16:14 - 0000113 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc 2014-12-06 02:26 - 2014-12-06 02:26 - 0000115 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc Some files in TEMP: ==================== C:\Users\Chase\AppData\Local\Temp\amd-catalyst-14-9-win7-win8.1-64bit-dd-ccc-whql.exe C:\Users\Chase\AppData\Local\Temp\amd-catalyst-15.7-without-dotnet45-win7-64bit.exe C:\Users\Chase\AppData\Local\Temp\AutoDetectUtilApp.exe C:\Users\Chase\AppData\Local\Temp\G2MInstallerExtractor.exe C:\Users\Chase\AppData\Local\Temp\i4jdel0.exe C:\Users\Chase\AppData\Local\Temp\jre-8u40-windows-au.exe C:\Users\Chase\AppData\Local\Temp\jre-8u45-windows-au.exe C:\Users\Chase\AppData\Local\Temp\ochelper.exe C:\Users\Chase\AppData\Local\Temp\Offercast2802_MTV_.exe C:\Users\Chase\AppData\Local\Temp\raptrpatch.exe C:\Users\Chase\AppData\Local\Temp\raptr_stub.exe C:\Users\Chase\AppData\Local\Temp\SkypeSetup.exe C:\Users\Chase\AppData\Local\Temp\Update_Simplitec_PowerSuite_Auto.exe C:\Users\Chase\AppData\Local\Temp\uttF33D.tmp.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-23 04:26 ==================== End of log ============================