Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-02-2017 01 Ran by Daddy (administrator) on DESKTOP-GTCAE22 (28-02-2017 18:35:16) Running from C:\Users\Daddy\Desktop Loaded Profiles: Daddy (Available Profiles: Daddy) Platform: Windows 10 Pro Version 1607 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Hewlett-Packard Company) C:\Windows\System32\hpservice.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe () C:\Windows\System32\fpCSEvtSvc.exe () C:\Program Files (x86)\Droid4X\Droid4XService.exe (O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe (Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe (Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe (Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro Advanced\DiscSoftBusService.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe (OVH) C:\Program Files\OVH\hubiC\hubiC.exe (Wargaming.net) C:\Games\World_of_Tanks\WargamingGameUpdater.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Cisco) C:\Users\Daddy\AppData\Local\Cisco\VideoGuardPlayer\VideoGuardMonitor\CiscoVideoGuardMonitor.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro Advanced\DTShellHlp.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Just Great Software) C:\Program Files\Just Great Software\EditPad Lite 7\EditPadLite7.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1702.312.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11610.1001.25.0_x64__8wekyb3d8bbwe\WinStore.App.exe (FastStone Soft) C:\Program Files (x86)\FastStone Capture\FSCapture.exe (Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\swriter.exe (Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe (Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.bin (Corel, Inc.) C:\Program Files\Corel\Corel PaintShop Pro X8 (64-bit)\Corel PaintShop Pro.exe () C:\Program Files\Everything\Everything.exe () C:\Program Files\Everything\Everything.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Corel Update Helper] => c:\Program Files\Corel\Corel PaintShop Pro X8 (64-bit)\pua.exe [2012104 2015-11-27] (Corel Corporation) HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [5128904 2016-11-03] (O&O Software GmbH) HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [1441792 2014-08-05] () HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2779136 2016-06-11] (Dominik Reichl) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2017-02-05] (AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation) HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google) HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\...\Run: [hubiC] => C:\Program Files\OVH\hubiC\hubiC.exe [3527168 2015-03-03] (OVH) HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\...\Run: [World of Tanks] => C:\Games\World_of_Tanks\WargamingGameUpdater.exe [3135752 2016-11-18] (Wargaming.net) HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\...\Run: [World of Warships] => C:\Games\World_of_Warships\WargamingGameUpdater.exe [3134216 2016-12-05] (Wargaming.net) HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\...\Run: [VideoGuardMonitor] => C:\Users\Daddy\AppData\Local\Cisco\VideoGuardPlayer\VideoGuardMonitor\CiscoVideoGuardMonitor.exe [4155656 2016-06-29] (Cisco) HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd) HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\...\MountPoints2: I - "I:\splash.exe" HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\...\MountPoints2: {8b7e42bc-77a9-11e6-8801-a01d48b9cc19} - "I:\splash.exe" ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-05] (AVAST Software) ShellIconOverlayIdentifiers: [HubicBackupRootOverlayHandler] -> {2DF0C6DB-1E85-4894-9D4F-63CB0EAB17EA} => C:\WINDOWS\system32\mscoree.dll [2016-07-16] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicPublishedItemOverlayHandler] -> {7C76B697-27DF-4CFF-9909-863905561298} => C:\WINDOWS\system32\mscoree.dll [2016-07-16] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicSyncItemOverlayHandler] -> {9B497753-D273-4A80-9DE8-72248D7FA595} => C:\WINDOWS\system32\mscoree.dll [2016-07-16] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicUnsyncItemOverlayHandler] -> {D5454A6E-0904-4BA3-9E4A-240A5080259D} => C:\WINDOWS\system32\mscoree.dll [2016-07-16] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk [2017-02-22] ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{B30EBF12-4268-45F5-8948-99C983025151}\app_icon.ico () ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: 0.0.0.0 telemetry.malwarebytes.com Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{a2f008e3-7253-40a7-9d47-1aa99583952b}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-05] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-05] (Oracle Corporation) FireFox: ======== FF ProfilePath: C:\Users\Daddy\AppData\Roaming\Mozilla\Firefox\Profiles\EhdQn8Ij.default [2016-09-21] FF Extension: (Avira Browser Safety) - C:\Users\Daddy\AppData\Roaming\Mozilla\Firefox\Profiles\EhdQn8Ij.default\Extensions\abs@avira.com [2016-09-21] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-02-05] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-02-05] FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-05] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-05] (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-4165892814-1024816220-1682150976-1001: jpl.nasa.gov/NASAEyes -> C:\Users\Daddy\AppData\Roaming\JPL-NASA-Caltech\NASA's Eyes\npNASAEyes.dll [2017-01-12] (Jet Propulsion Laboratory) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.com/_/chrome/newtab?espv=2&ie=UTF-8" CHR Session Restore: Default -> is enabled. CHR Profile: C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default [2017-02-28] CHR Extension: (Google Docs) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-13] CHR Extension: (Google Drive) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-13] CHR Extension: (Galaxy Aero 1440p) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\baobdjafbehnhgceapbejnfcfebhoafb [2017-02-13] CHR Extension: (YouTube) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-13] CHR Extension: (Ebates Cash Back) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\chhjbpecpncaggjpdakmflnfcopglcmi [2017-02-28] CHR Extension: (Find Big Mail) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlhfndmknegaiibciljinpmkhiakhhmp [2017-02-13] CHR Extension: (Email Exporter) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecnfbegpagpeocjegnecbifjepfcpnhe [2017-02-23] CHR Extension: (VTchromizer) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\efbjojhplkelaegfbieplglfidafgoka [2017-02-13] CHR Extension: (Volume Booster) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejkiikneibegknkgimmihdpcbcedgmpo [2017-02-13] CHR Extension: (Google Docs Offline) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-13] CHR Extension: (Super Simple Highlighter) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhlhjgianpocpoppaiihmlpgcoehlhio [2017-02-13] CHR Extension: (Grammarly for Chrome) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2017-02-27] CHR Extension: (Boomerang for Gmail) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdanidgdpmkimeiiojknlnekblgmpdll [2017-02-13] CHR Extension: (Wikibuy) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2017-02-27] CHR Extension: (Chrome Web Store Payments) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-13] CHR Extension: (Gmail) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-13] CHR Extension: (Chrome Media Router) - C:\Users\Daddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-13] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-4165892814-1024816220-1682150976-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2017-02-05] (AVAST Software) R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2286848 2016-06-27] (Broadcom Corporation.) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed] R3 Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro Advanced\DiscSoftBusService.exe [1291024 2015-02-27] (Disc Soft Ltd) R2 Droid4XService; C:\Program Files (x86)\Droid4X\Droid4XService.exe [279552 2016-06-12] () [File not signed] R2 fpCsEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [13824 2017-02-05] () R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2017-02-05] (Intel Corporation) R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1735368 2016-11-03] (O&O Software GmbH) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-29] (Microsoft Corporation) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246888 2017-02-05] (Synaptics Incorporated) R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [91688 2017-02-05] (Synaptics Incorporated) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) S3 DfSdkS; "C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2017\DfsdkS64.exe" [X] ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2017-02-05] (AVAST Software) R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2017-02-05] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2017-02-05] (AVAST Software) R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2017-02-05] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2017-02-05] (AVAST Software) R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2017-02-05] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2017-02-05] (AVAST Software) R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2017-02-05] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2017-02-05] (AVAST Software) R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [186152 2017-02-05] (Broadcom Corporation.) S3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [11751168 2017-02-05] (Broadcom Corp) R3 BCMWL63A; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [11751168 2017-02-05] (Broadcom Corp) S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Windows (R) Win 7 DDK provider) S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-14] (Windows (R) Win 7 DDK provider) R3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [30352 2016-09-05] (Disc Soft Ltd) R3 e1cexpress; C:\WINDOWS\system32\DRIVERS\e1c64x64.sys [468752 2016-06-27] (Intel Corporation) R1 epp; C:\EEK\bin64\epp.sys [114968 2016-10-31] (Emsisoft Ltd) R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2016-08-30] (REALiX(tm)) R3 johci; C:\WINDOWS\System32\drivers\johci.sys [26208 2012-07-16] (JMicron Technology Corp.) R3 Neo_VPN69; C:\WINDOWS\System32\drivers\Neo6_x64_VPN69.sys [38224 2016-09-20] (SoftEther Corporation) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () S0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [381608 2016-11-20] (Duplex Secure Ltd.) R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [760832 2017-02-05] (Sunplus) R1 VBoxDrv; C:\Windows\SysWOW64\DRIVERS\VBoxDrv.sys [254240 2014-05-16] (Oracle Corporation) S1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [132120 2016-11-21] (Oracle Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [31656 2016-06-27] (HP) S3 digitalpower; \SystemRoot\system32\drivers\digitalpower.sys [X] S3 Revoflt; system32\DRIVERS\revoflt.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-02-28 18:35 - 2017-02-28 18:36 - 00021174 _____ C:\Users\Daddy\Desktop\FRST.txt 2017-02-28 18:31 - 2017-02-28 18:35 - 00000000 ____D C:\FRST 2017-02-28 18:07 - 2017-02-28 18:09 - 02423296 _____ (Farbar) C:\Users\Daddy\Desktop\FRST64.exe 2017-02-28 16:19 - 2017-02-28 16:19 - 00347618 _____ C:\Users\Daddy\Downloads\2017 Spring Fundraiser PAGE 1.pdf 2017-02-28 14:36 - 2017-02-28 14:36 - 00001234 _____ C:\Users\Daddy\Desktop\___TEMP FILES - Shortcut.lnk 2017-02-28 14:14 - 2017-02-28 14:14 - 00000358 _____ C:\Users\Daddy\Documents\cc_20170228_141359.reg 2017-02-28 14:13 - 2017-02-28 14:13 - 00038050 _____ C:\Users\Daddy\Documents\cc_20170228_141312.reg 2017-02-28 13:51 - 2017-02-28 14:30 - 00000000 ____D C:\Program Files\CCleaner 2017-02-28 13:51 - 2017-02-28 13:51 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-02-28 00:06 - 2017-02-28 00:06 - 01284415 _____ C:\Users\Daddy\Downloads\Home Remodel Goals, Quotes & Revisions JOB SHEET. - OLD SAMPLE to Oron.pdf 2017-02-27 23:26 - 2017-02-27 23:26 - 00001599 _____ C:\Users\Daddy\Desktop\Speccy Stuff #2.txt 2017-02-27 22:31 - 2017-02-27 22:31 - 00001044 _____ C:\Users\Daddy\Desktop\Speccy Stuff #1.txt 2017-02-27 22:00 - 2017-02-27 22:00 - 00023197 _____ C:\Users\Daddy\Documents\DESKTOP-GTCAE22_2.27.17.speccy 2017-02-27 20:02 - 2017-02-27 20:02 - 00000055 _____ C:\Users\Daddy\Desktop\GlobalXplorer.org - Archaeological Layman Assistance Site.txt 2017-02-27 18:59 - 2017-02-27 18:59 - 00000378 _____ C:\Users\Daddy\Desktop\GF.txt 2017-02-27 17:13 - 2017-02-27 17:33 - 00013290 _____ C:\Users\Daddy\Desktop\Vicky's Israel Addressee List.odt 2017-02-27 15:48 - 2017-02-27 15:48 - 00000478 _____ C:\Users\Daddy\Documents\Yelp - HND (Ron Y. - Potential Lawsuit).txt 2017-02-27 13:54 - 2017-02-27 13:54 - 00000861 _____ C:\Users\Daddy\Desktop\My Scans.lnk 2017-02-27 10:52 - 2017-02-27 10:52 - 00107506 _____ C:\Users\Daddy\Documents\Acurio Lattice.odt 2017-02-26 16:29 - 2017-02-26 16:29 - 00001148 _____ C:\Users\Public\Desktop\FastStone Capture.lnk 2017-02-26 16:29 - 2017-02-26 16:29 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\FastStone 2017-02-26 16:29 - 2017-02-26 16:29 - 00000000 ____D C:\Users\Daddy\AppData\Local\FastStone 2017-02-26 16:29 - 2017-02-26 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Capture 2017-02-26 16:29 - 2017-02-26 16:29 - 00000000 ____D C:\Program Files (x86)\FastStone Capture 2017-02-26 12:39 - 2017-02-26 12:39 - 00000405 _____ C:\Users\Daddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programs and Features.lnk 2017-02-26 00:55 - 2017-02-26 00:55 - 00341894 _____ C:\Users\Daddy\Desktop\Federal Asbestos Information Act.pdf 2017-02-25 16:23 - 2017-02-25 16:24 - 00000080 _____ C:\Users\Daddy\Desktop\Programs not to Install.txt 2017-02-25 16:11 - 2017-02-25 16:11 - 00001143 _____ C:\Users\Public\Desktop\VLC media player.lnk 2017-02-25 16:11 - 2017-02-25 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2017-02-25 16:07 - 2017-02-25 16:08 - 30533688 _____ C:\Users\Daddy\Downloads\vlc-2.2.4-win32.exe 2017-02-25 15:59 - 2017-02-27 22:35 - 00000000 _____ C:\hsrv.txt 2017-02-25 14:13 - 2017-02-26 09:34 - 00024297 _____ C:\Users\Daddy\Documents\DESKTOP-GTCAE22.speccy 2017-02-25 14:10 - 2017-02-25 14:10 - 00000837 _____ C:\Users\Public\Desktop\Speccy.lnk 2017-02-25 14:10 - 2017-02-25 14:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2017-02-25 09:50 - 2017-02-28 13:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2017-02-25 09:50 - 2017-02-25 14:13 - 00000000 ____D C:\Program Files\Speccy 2017-02-25 09:50 - 2017-02-25 09:50 - 00002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2017-02-25 09:49 - 2017-02-25 09:49 - 06293184 _____ (Piriform Ltd) C:\Users\Daddy\Downloads\spsetup130.exe 2017-02-24 19:41 - 2017-02-24 17:25 - 00370394 _____ C:\Users\Daddy\Documents\Israel%20Trip%20Fundraiser%20Introduction%20Letter.doc_0.odt 2017-02-24 14:45 - 2017-02-24 14:45 - 00233739 _____ C:\Users\Daddy\Downloads\Financial Peace Info.pdf 2017-02-24 09:33 - 2017-02-24 13:26 - 00043202 _____ C:\Users\Daddy\Downloads\Addition.txt 2017-02-24 09:26 - 2017-02-24 09:27 - 02423296 _____ (Farbar) C:\Users\Daddy\Downloads\FarberRecovScanTool_64.exe 2017-02-23 22:10 - 2017-02-23 22:10 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\2681142F.sys 2017-02-23 20:03 - 2017-02-28 14:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft 2017-02-23 19:39 - 2017-02-23 19:42 - 00000000 ____D C:\Users\TEMP 2017-02-23 17:22 - 2017-02-23 17:22 - 134217728 ____T C:\oodwipefreespace-1D28E3C665DFCF8-0 2017-02-22 19:22 - 2017-02-22 19:36 - 00000285 _____ C:\Users\Daddy\Documents\Hosts.txt 2017-02-22 18:17 - 2017-02-22 18:17 - 00001276 _____ C:\WINDOWS\system32\oodbs.lor 2017-02-22 03:38 - 2017-02-22 03:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software 2017-02-19 01:15 - 2017-02-28 14:19 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\Everything 2017-02-19 01:15 - 2017-02-19 01:15 - 00001062 _____ C:\Users\Daddy\Desktop\Search Everything.lnk 2017-02-19 01:15 - 2017-02-19 01:15 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Everything 2017-02-19 01:15 - 2017-02-19 01:15 - 00000000 ____D C:\Program Files\Everything 2017-02-18 13:16 - 2017-02-18 13:16 - 00000000 ____D C:\Users\Daddy\AppData\Local\Cisco 2017-02-18 09:35 - 2017-02-18 09:35 - 00000237 _____ C:\Users\Daddy\Desktop\PERSONAL SAFETY APPS.txt 2017-02-18 01:42 - 2017-02-18 01:42 - 00000523 _____ C:\Users\Daddy\Desktop\Psoriasis Treatment Options.txt 2017-02-17 17:30 - 2017-02-17 17:36 - 00018284 _____ C:\Users\Daddy\Documents\MADD VIP Course location.odt 2017-02-17 11:34 - 2017-02-17 11:34 - 00386988 _____ C:\Users\Daddy\Downloads\HealthSummary20170217.zip 2017-02-16 22:21 - 2017-02-16 22:21 - 00009967 _____ C:\Users\Daddy\Documents\Zenni.odt 2017-02-15 15:08 - 2017-02-15 15:08 - 00002551 _____ C:\Users\Public\Desktop\TurboTax 2011.lnk 2017-02-15 15:08 - 2017-02-15 15:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TurboTax 2011 2017-02-15 14:46 - 2017-02-15 14:46 - 00002551 _____ C:\Users\Public\Desktop\TurboTax 2010.lnk 2017-02-15 14:46 - 2017-02-15 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TurboTax 2010 2017-02-15 14:43 - 2017-02-15 14:43 - 00002547 _____ C:\Users\Public\Desktop\TurboTax 2015.lnk 2017-02-15 14:43 - 2017-02-15 14:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TurboTax 2015 2017-02-15 14:42 - 2017-02-15 14:42 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\6CF04BEB.sys 2017-02-15 13:35 - 2017-02-15 13:35 - 00002547 _____ C:\Users\Public\Desktop\TurboTax 2009.lnk 2017-02-15 13:35 - 2017-02-15 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TurboTax 2009 2017-02-15 00:57 - 2017-02-15 00:58 - 00000000 ___RD C:\Users\Daddy\Documents\Scanned Documents 2017-02-15 00:57 - 2017-02-15 00:58 - 00000000 ____D C:\Users\Daddy\Documents\Fax 2017-02-14 17:54 - 2017-02-14 18:18 - 01026048 _____ C:\Users\Daddy\Documents\Irma - Valentine's Day - 2017.car 2017-02-14 17:37 - 2017-02-14 17:37 - 01431552 _____ C:\Users\Daddy\Documents\My Ugly Valentine - 2017 (Vicky).car 2017-02-14 16:14 - 2017-02-22 03:38 - 00002513 _____ C:\Users\Public\Desktop\O&O Defrag.lnk 2017-02-14 01:17 - 2017-02-14 01:17 - 00110592 _____ (Hyun Won inc. RDcenter) C:\WINDOWS\SysWOW64\HwiUfat.dll 2017-02-14 01:17 - 2017-02-14 01:17 - 00040960 _____ (Hyun Won inc. RDcenter) C:\WINDOWS\SysWOW64\HWusbfmc.dll 2017-02-14 01:17 - 2017-02-14 01:17 - 00012721 _____ (Barom Technologies Co., Ltd.) C:\WINDOWS\SysWOW64\Drivers\PortRST.sys 2017-02-14 01:17 - 2017-02-14 01:17 - 00009472 _____ (HyunWon Inc) C:\WINDOWS\SysWOW64\Drivers\OtisPlay.sys 2017-02-14 01:14 - 2017-02-14 01:14 - 00003338 _____ C:\WINDOWS\System32\Tasks\{5E74C86F-F012-4AA9-93EF-5E5BCDBC79F0} 2017-02-13 20:52 - 2017-02-13 20:52 - 00365596 _____ C:\Users\Daddy\Downloads\MyFonts Order M8167497.zip 2017-02-13 20:42 - 2017-02-13 20:42 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA 2017-02-13 20:42 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll 2017-02-13 20:42 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll 2017-02-13 20:42 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll 2017-02-13 20:42 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll 2017-02-13 20:42 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll 2017-02-13 20:42 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll 2017-02-13 20:42 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll 2017-02-13 20:11 - 2017-02-13 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2017-02-13 20:10 - 2017-02-13 20:11 - 01129376 _____ (Google Inc.) C:\Users\Daddy\Downloads\googledrivesync.exe 2017-02-13 19:21 - 2017-02-13 19:21 - 00002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-02-13 19:21 - 2017-02-13 19:21 - 00002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-02-13 19:06 - 2017-02-13 19:06 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 2017-02-13 17:38 - 2017-02-13 17:38 - 00112465 _____ C:\Users\Daddy\Downloads\MyFonts Order M8167471.zip 2017-02-13 16:42 - 2017-02-13 16:43 - 55566792 _____ (Malwarebytes ) C:\Users\Daddy\Downloads\mb3-setup-consumer-3.0.6.1469.exe 2017-02-13 14:26 - 2017-02-13 14:45 - 00000000 ____D C:\ProgramData\BSD 2017-02-13 14:17 - 2017-02-25 10:15 - 00000042 _____ C:\WINDOWS\oodjobd.INI 2017-02-13 14:03 - 2017-02-13 14:03 - 02001544 _____ C:\Users\Daddy\Downloads\pc-decrapifier-3.0.1.exe 2017-02-12 21:45 - 2017-02-12 21:45 - 00000000 ____D C:\Users\Daddy\AppData\Local\O&O 2017-02-12 21:42 - 2017-02-12 23:18 - 00000000 ____D C:\WINDOWS\system32\oodag 2017-02-12 21:42 - 2017-02-12 21:42 - 00000000 ____D C:\Program Files\OO Software 2017-02-12 21:37 - 2017-02-12 21:37 - 00000000 ____D C:\ProgramData\OO Software 2017-02-11 14:15 - 2017-02-25 11:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2017-02-11 14:15 - 2009-08-24 21:13 - 00034304 _____ (mst software GmbH, Germany) C:\WINDOWS\system32\DfSdkBt.exe 2017-02-11 02:07 - 2017-02-11 02:07 - 00000000 ___HD C:\$SysReset 2017-02-10 15:56 - 2017-02-28 14:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2017-02-10 15:56 - 2017-02-25 11:26 - 00000000 ____D C:\Users\Daddy\AppData\Local\VS Revo Group 2017-02-09 17:30 - 2017-02-09 17:30 - 01160201 _____ C:\Users\Daddy\Downloads\12312016 - Member Statement.pdf 2017-02-05 19:35 - 2017-02-27 22:35 - 00000000 ____D C:\ProgramData\Synaptics 2017-02-05 19:35 - 2017-02-05 19:35 - 00420456 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll 2017-02-05 19:35 - 2017-02-05 19:35 - 00281704 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo35-02.dll 2017-02-05 19:35 - 2017-02-05 19:35 - 00057448 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys 2017-02-05 19:35 - 2017-02-05 19:35 - 00042600 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys 2017-02-05 19:35 - 2017-02-05 19:35 - 00042088 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys 2017-02-05 19:35 - 2017-02-05 19:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_wbf_vfs_003d_adv_01_09_00.Wdf 2017-02-05 19:34 - 2017-02-05 19:34 - 03787304 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvui64.dll 2017-02-05 19:34 - 2017-02-05 19:34 - 03114512 _____ (Synaptics Incorporated) C:\WINDOWS\system32\vcsAPIFORWBF.dll 2017-02-05 19:34 - 2017-02-05 19:34 - 00678928 _____ (Synaptics Incorporated) C:\WINDOWS\system32\ValEFIResDll.dll 2017-02-05 19:34 - 2017-02-05 19:34 - 00091688 _____ (Synaptics Incorporated) C:\WINDOWS\system32\valWBFPolicyService.exe 2017-02-05 19:34 - 2017-02-05 19:34 - 00044048 _____ (Synaptics Incorporated) C:\WINDOWS\system32\secureMigrationCI.dll 2017-02-05 19:34 - 2017-02-05 19:34 - 00013824 _____ C:\WINDOWS\system32\fpCSEvtSvc.exe 2017-02-05 19:34 - 2017-02-05 19:34 - 00000000 ____D C:\Program Files (x86)\Intel 2017-02-05 19:31 - 2017-02-05 19:31 - 22914048 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 17846264 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 11895520 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 11051448 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 10574472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 08522232 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 06509048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 04382840 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 04379256 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 04024312 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 03691672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 02497568 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 02035712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 01995256 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 01794560 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 01766904 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 01469944 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 01155992 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 01151840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00959608 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00872432 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00659440 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00617976 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00616952 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00545912 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00545400 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00467696 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00433784 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00399992 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00399480 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00385528 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00380408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00378824 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00374784 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00357872 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00330232 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00295416 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00280696 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00264184 _____ C:\WINDOWS\system32\igfxCPL.cpl 2017-02-05 19:31 - 2017-02-05 19:31 - 00229880 _____ C:\WINDOWS\system32\igdde64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00229656 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00223728 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00218112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00213312 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwampfl.sys 2017-02-05 19:31 - 2017-02-05 19:31 - 00199160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4425.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00199088 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00195192 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00194360 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00193536 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00191480 _____ C:\WINDOWS\SysWOW64\igdde32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00191476 _____ C:\WINDOWS\system32\resTHA.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00190968 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00184036 _____ C:\WINDOWS\system32\resELL.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00179828 _____ C:\WINDOWS\system32\resRUS.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00171008 _____ C:\WINDOWS\system32\igdail64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00169368 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00165460 _____ C:\WINDOWS\system32\resARA.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00164948 _____ C:\WINDOWS\system32\resJPN.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00164884 _____ C:\WINDOWS\system32\resHEB.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00163840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00160260 _____ C:\WINDOWS\system32\resHUN.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00160196 _____ C:\WINDOWS\system32\resFRA.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00158532 _____ C:\WINDOWS\system32\resKOR.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00158388 _____ C:\WINDOWS\system32\resDEU.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00158356 _____ C:\WINDOWS\system32\resITA.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00158148 _____ C:\WINDOWS\system32\resROM.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00158052 _____ C:\WINDOWS\system32\resESN.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00157652 _____ C:\WINDOWS\system32\resPLK.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00157492 _____ C:\WINDOWS\system32\resSKY.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00157332 _____ C:\WINDOWS\system32\resNLD.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00156708 _____ C:\WINDOWS\system32\resPTB.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00156628 _____ C:\WINDOWS\system32\resCSY.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00156596 _____ C:\WINDOWS\system32\resTRK.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00156420 _____ C:\WINDOWS\system32\resPTG.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00156280 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe 2017-02-05 19:31 - 2017-02-05 19:31 - 00155972 _____ C:\WINDOWS\system32\resFIN.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00155540 _____ C:\WINDOWS\system32\resHRV.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00155124 _____ C:\WINDOWS\system32\resSVE.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00154964 _____ C:\WINDOWS\system32\resSLV.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00154004 _____ C:\WINDOWS\system32\resNOR.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00153508 _____ C:\WINDOWS\system32\resDAN.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00152576 _____ C:\WINDOWS\SysWOW64\igdail32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00152164 _____ C:\WINDOWS\system32\resENU.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00150404 _____ C:\WINDOWS\system32\resCHT.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00149524 _____ C:\WINDOWS\system32\resCHS.cui 2017-02-05 19:31 - 2017-02-05 19:31 - 00141816 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00107504 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00102904 _____ C:\WINDOWS\system32\IccLibDll_x64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00095224 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00078328 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00070810 _____ C:\WINDOWS\system32\Drivers\BCM20702A1_001.002.014.1502.1770.hex 2017-02-05 19:31 - 2017-02-05 19:31 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00068600 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00040712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00039424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00019456 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00019448 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00018944 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00013824 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00013816 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll 2017-02-05 19:31 - 2017-02-05 19:31 - 00002582 _____ C:\WINDOWS\system32\iglhxs64.vp 2017-02-05 19:30 - 2017-02-05 19:30 - 00760832 _____ (Sunplus) C:\WINDOWS\system32\Drivers\SPUVCBv64.sys 2017-02-05 19:30 - 2017-02-05 19:30 - 00389632 _____ (SunplusIT) C:\WINDOWS\system32\VCamPPage_x64.dll 2017-02-05 19:30 - 2017-02-05 19:30 - 00326144 _____ (SunplusIT) C:\WINDOWS\SysWOW64\VCamPPage.dll 2017-02-05 19:30 - 2017-02-05 19:30 - 00071168 _____ (Dext5xx) C:\WINDOWS\SysWOW64\DextUVCB.ax 2017-02-05 19:24 - 2017-02-05 19:24 - 00002494 _____ C:\WINDOWS\System32\Tasks\Uninstaller_Install_Daddy 2017-02-05 19:24 - 2017-02-05 19:24 - 00000308 _____ C:\WINDOWS\Tasks\Uninstaller_Install_Daddy.job 2017-02-05 19:24 - 2017-02-05 19:24 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled 2017-02-05 19:20 - 2017-02-26 12:44 - 00000000 ____D C:\ProgramData\ProductData 2017-02-05 19:20 - 2017-02-05 19:20 - 00000000 ____D C:\WINDOWS\IObit 2017-02-05 19:16 - 2017-02-25 16:21 - 00003038 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Daddy) 2017-02-05 19:16 - 2017-02-05 23:14 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\IObit 2017-02-05 19:16 - 2017-02-05 23:14 - 00000000 ____D C:\Users\Daddy\AppData\LocalLow\IObit 2017-02-05 19:16 - 2017-02-05 23:14 - 00000000 ____D C:\ProgramData\IObit 2017-02-05 19:14 - 2017-02-05 19:15 - 17628560 _____ (IObit ) C:\Users\Daddy\Downloads\driver_booster_setup.exe 2017-02-05 18:46 - 2017-02-05 18:46 - 00074379 _____ C:\Users\Daddy\Documents\Scholarshare.odt 2017-02-05 18:44 - 2017-02-05 18:44 - 00001448 _____ C:\Users\Daddy\Documents\OOShutup10 Exported Config Files.cfg 2017-02-05 17:34 - 2017-02-05 17:55 - 00004020 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1486344878 2017-02-05 17:34 - 2017-02-05 17:55 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-02-05 17:34 - 2017-02-05 17:34 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2017-02-05 17:32 - 2017-02-05 23:14 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software 2017-02-05 17:32 - 2017-02-05 17:32 - 00004004 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2017-02-05 17:32 - 2017-02-05 17:32 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk 2017-02-05 17:32 - 2017-02-05 17:32 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2017-02-05 17:32 - 2017-02-05 17:32 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\AVAST Software 2017-02-05 17:31 - 2017-02-05 17:32 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys 2017-02-05 17:31 - 2017-02-05 17:32 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys 2017-02-05 17:31 - 2017-02-05 17:32 - 00293352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys 2017-02-05 17:31 - 2017-02-05 17:31 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2017-02-05 17:31 - 2017-02-05 17:31 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2017-02-05 17:31 - 2017-02-05 17:31 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2017-02-05 17:31 - 2017-02-05 17:31 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2017-02-05 17:31 - 2017-02-05 17:31 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2017-02-05 17:31 - 2017-02-05 17:31 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2017-02-05 17:31 - 2017-02-05 17:31 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2017-02-05 17:29 - 2017-02-05 17:34 - 00000000 ____D C:\Program Files\AVAST Software 2017-02-05 17:29 - 2017-02-05 17:29 - 06253640 _____ (AVAST Software) C:\Users\Daddy\Downloads\avast_free_antivirus_setup_online_cnet_2.exe 2017-02-05 17:14 - 2017-02-05 17:15 - 00681536 _____ (O&O Software GmbH) C:\Users\Daddy\Downloads\OOSU10.exe 2017-02-05 12:28 - 2017-02-05 13:30 - 00000594 _____ C:\Users\Daddy\Desktop\Built-in Tools For WIndows OS.txt 2017-02-04 20:14 - 2017-02-04 20:14 - 00000144 _____ C:\Users\Daddy\Desktop\Pool Cleaners.txt 2017-02-01 14:49 - 2017-02-01 14:49 - 00098707 _____ C:\Users\Daddy\Downloads\Feb. Soccer Cal..xlsx 2017-02-01 03:57 - 2017-02-01 03:57 - 00013700 _____ C:\Users\Daddy\Desktop\College Funds Rebalance - 1.31.17.odt 2017-01-31 14:38 - 2017-01-31 14:45 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\PC-FAX TX 2017-01-30 18:00 - 2017-01-30 18:00 - 00000220 _____ C:\Users\Daddy\Desktop\X-COM UFO Defense.url 2017-01-30 18:00 - 2017-01-30 18:00 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2017-01-30 17:46 - 2017-01-30 17:46 - 00012094 _____ C:\Users\Daddy\Desktop\X-COM - UFO Defense.odt 2017-01-30 17:27 - 2017-01-30 17:27 - 00000000 ____D C:\Users\Daddy\AppData\Local\Steam 2017-01-30 17:23 - 2017-02-10 16:42 - 00000000 ____D C:\Program Files (x86)\Steam 2017-01-30 17:23 - 2017-01-30 17:23 - 00001036 _____ C:\Users\Public\Desktop\Steam.lnk 2017-01-30 17:23 - 2017-01-30 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2017-01-30 17:22 - 2017-01-30 17:22 - 01446792 _____ C:\Users\Daddy\Downloads\SteamSetup.exe 2017-01-29 16:26 - 2017-01-29 16:26 - 00000108 _____ C:\Users\Daddy\Desktop\Jvion Health.txt 2017-01-29 15:18 - 2017-01-29 15:18 - 00137863 _____ C:\Users\Daddy\Downloads\000009.pdf ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-02-28 16:52 - 2016-09-29 15:08 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-02-28 14:31 - 2016-08-27 19:47 - 00000000 ___RD C:\Users\Daddy\Google Drive 2017-02-28 14:22 - 2016-08-27 15:28 - 00000000 __SHD C:\Users\Daddy\IntelGraphicsProfiles 2017-02-28 14:19 - 2016-08-27 19:43 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\KeePass 2017-02-28 14:06 - 2016-10-24 13:53 - 00000000 ____D C:\Users\Daddy\Desktop\RARELY USED App Shortcuts & Downloads 2017-02-28 14:05 - 2016-09-08 15:34 - 00000000 ____D C:\Users\Daddy\AppData\Local\CrashDumps 2017-02-27 22:35 - 2016-09-29 15:33 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-02-27 22:34 - 2016-07-15 22:04 - 01310720 _____ C:\WINDOWS\system32\config\BBI 2017-02-27 17:35 - 2016-08-31 21:07 - 00000079 _____ C:\Users\Daddy\Desktop\BofA CC Stuff.txt 2017-02-27 00:09 - 2017-01-20 21:06 - 00000000 ____D C:\__My aMule Temp Files 2017-02-27 00:09 - 2017-01-19 01:58 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\aMule 2017-02-27 00:06 - 2017-01-20 21:06 - 00000000 ____D C:\__My aMule Downloads 2017-02-27 00:04 - 2016-08-27 23:32 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\vlc 2017-02-26 16:12 - 2016-09-24 10:33 - 00000000 ____D C:\EEK 2017-02-26 14:37 - 2016-08-22 12:17 - 01662590 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-02-26 12:52 - 2016-08-27 15:28 - 00000000 ____D C:\Users\Daddy\AppData\Local\Packages 2017-02-26 12:52 - 2016-07-16 03:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-02-26 12:52 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-02-26 12:43 - 2016-08-30 19:30 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-02-25 22:28 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-02-25 12:58 - 2016-09-29 15:15 - 00000000 ____D C:\Users\Daddy 2017-02-25 12:33 - 2016-10-30 22:23 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\JAM Software 2017-02-24 20:49 - 2016-09-03 02:03 - 00000000 ____D C:\Users\Daddy\Documents\Old CCleaner BU's 2017-02-24 19:50 - 2016-09-01 01:13 - 00000000 ___HD C:\Users\Daddy\Desktop\Corel Auto-Preserve 2017-02-23 22:33 - 2016-10-26 00:12 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\hubiC 2017-02-23 20:00 - 2016-09-15 00:59 - 00000000 ____D C:\Users\Daddy\AppData\Local\IIIQF 2017-02-23 19:40 - 2016-08-27 15:28 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-02-23 16:16 - 2016-09-29 10:01 - 00000000 ____D C:\Users\Daddy\Documents\TurboTax 2017-02-23 14:49 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-02-23 14:49 - 2016-07-16 03:45 - 00000000 ____D C:\WINDOWS\INF 2017-02-23 13:47 - 2016-10-24 12:51 - 00000000 ____D C:\Users\Daddy\Desktop\My hubiC 2017-02-23 03:45 - 2016-08-27 16:59 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-02-23 03:42 - 2016-08-27 16:59 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-02-22 08:26 - 2016-09-20 15:47 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-02-21 23:00 - 2016-07-16 03:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-02-21 20:08 - 2016-08-27 23:32 - 00000000 ____D C:\Users\Guest 2017-02-21 20:08 - 2016-08-27 23:32 - 00000000 ____D C:\Users\DefaultAccount 2017-02-21 20:08 - 2016-08-27 23:32 - 00000000 ____D C:\Users\Administrator 2017-02-18 19:59 - 2016-10-13 14:27 - 00000000 ____D C:\Google Drive 2017-02-15 15:09 - 2016-09-29 09:59 - 00001094 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc 2017-02-15 15:07 - 2016-09-29 09:59 - 00000000 ____D C:\Program Files (x86)\TurboTax 2017-02-14 16:37 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2017-02-14 01:21 - 2017-01-16 16:46 - 00000000 ____D C:\Users\Daddy\AppData\Local\Audible 2017-02-14 01:17 - 2017-01-16 16:10 - 00000000 ____D C:\Program Files (x86)\Audible 2017-02-13 20:45 - 2016-08-27 22:50 - 00000000 ____D C:\ProgramData\Package Cache 2017-02-13 20:11 - 2016-08-27 16:09 - 00000000 ____D C:\Program Files (x86)\Google 2017-02-13 19:56 - 2016-07-16 03:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2017-02-13 19:38 - 2016-08-27 16:09 - 00000000 ____D C:\Users\Daddy\AppData\Local\Google 2017-02-13 19:38 - 2016-08-27 15:18 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2017-02-13 17:02 - 2016-09-14 17:27 - 00000000 ____D C:\Users\Daddy\AppData\Local\{2F66193A-0BCE-7582-6656-506A423EACF2} 2017-02-13 15:01 - 2016-10-10 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-02-13 15:01 - 2016-10-10 19:45 - 00000000 ____D C:\Program Files (x86)\Java 2017-02-13 14:26 - 2016-08-22 09:58 - 00000155 _____ C:\WINDOWS\win.ini 2017-02-12 21:35 - 2016-07-15 22:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2017-02-12 16:49 - 2017-01-21 18:05 - 00000000 ____D C:\__Torrent RT Free Downloads 2017-02-11 21:14 - 2016-10-02 12:38 - 00000000 ____D C:\WINDOWS\Minidump 2017-02-11 14:33 - 2016-12-22 20:55 - 00000000 ____D C:\Users\Daddy\AppData\Local\Bongiovi_Acoustics 2017-02-11 14:33 - 2016-12-22 20:54 - 00000000 ____D C:\ProgramData\Bongiovi Acoustics 2017-02-11 14:28 - 2016-09-29 16:06 - 00000000 ___DC C:\WINDOWS\Panther 2017-02-11 14:28 - 2016-09-04 11:52 - 00000000 ____D C:\Users\Daddy\AppData\LocalLow\Temp 2017-02-10 16:42 - 2016-10-12 23:59 - 00000000 __SHD C:\found.002 2017-02-07 01:16 - 2016-10-27 00:05 - 00000000 ____D C:\Users\Daddy\hubiC 2017-02-06 11:48 - 2016-12-14 16:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2017-02-06 11:48 - 2016-12-14 16:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2017-02-05 23:15 - 2016-11-06 21:57 - 00000000 ____D C:\Program Files (x86)\WordPress.com 2017-02-05 23:15 - 2016-09-29 15:11 - 00000000 ____D C:\Program Files (x86)\HP Universal Camera Driver 2017-02-05 23:15 - 2016-09-29 15:10 - 00000000 ____D C:\Program Files\Intel 2017-02-05 23:15 - 2016-09-09 00:47 - 00000000 ____D C:\Program Files\WinRAR 2017-02-05 23:14 - 2016-09-09 00:47 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-02-05 23:14 - 2016-09-09 00:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-02-05 23:14 - 2016-08-30 19:29 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe 2017-02-05 23:14 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2017-02-05 23:14 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\security 2017-02-05 23:03 - 2016-07-16 03:47 - 00000000 ____D C:\WINDOWS\registration 2017-02-05 19:35 - 2016-06-27 13:05 - 00770152 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll 2017-02-05 19:35 - 2016-06-27 13:05 - 00631400 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys 2017-02-05 19:35 - 2016-06-27 13:05 - 00268904 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll 2017-02-05 19:34 - 2016-06-27 15:00 - 11751168 _____ (Broadcom Corp) C:\WINDOWS\system32\Drivers\bcmwl63a.sys 2017-02-05 19:34 - 2016-06-27 15:00 - 04143136 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvsrv64.dll 2017-02-05 19:32 - 2016-08-27 15:31 - 00000000 ___RD C:\Users\Daddy\OneDrive 2017-02-05 19:31 - 2016-09-29 15:11 - 00072704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2017-02-05 19:31 - 2016-07-16 06:29 - 00069120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll 2017-02-05 19:31 - 2016-06-27 13:23 - 12326840 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll 2017-02-05 19:31 - 2016-06-27 13:23 - 04661040 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll 2017-02-05 19:31 - 2016-06-27 13:23 - 03802600 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys 2017-02-05 19:31 - 2016-06-27 13:23 - 00680960 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll 2017-02-05 19:31 - 2016-06-27 13:23 - 00530552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe 2017-02-05 19:31 - 2016-06-27 13:23 - 00372856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe 2017-02-05 19:31 - 2016-06-27 13:23 - 00319096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe 2017-02-05 19:31 - 2016-06-27 13:23 - 00293368 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll 2017-02-05 19:31 - 2016-06-27 13:23 - 00261120 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll 2017-02-05 19:31 - 2016-06-27 13:23 - 00247416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe 2017-02-05 19:31 - 2016-06-27 13:05 - 00186152 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\bcbtums.sys 2017-02-05 19:30 - 2016-06-27 15:00 - 00076288 _____ (Dext5xx) C:\WINDOWS\system32\DextUVCB_x64.ax 2017-02-05 19:29 - 2016-06-27 13:02 - 00195152 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys 2017-02-05 17:44 - 2016-10-10 19:45 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2017-02-05 17:34 - 2016-08-27 16:11 - 00000000 ____D C:\ProgramData\AVAST Software 2017-02-05 17:32 - 2016-09-10 14:20 - 00000000 ____D C:\Program Files\Common Files\AV 2017-02-03 18:37 - 2016-09-05 00:44 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\DAEMON Tools Pro 2017-02-02 14:51 - 2016-12-09 18:19 - 00000000 ____D C:\Users\Daddy\AppData\Roaming\Grammarly 2017-01-31 14:56 - 2016-08-27 22:36 - 00000911 _____ C:\WINDOWS\Brpfx04a.ini 2017-01-31 14:54 - 2016-08-27 22:35 - 00000000 _____ C:\WINDOWS\brdfxspd.dat 2017-01-31 14:53 - 2016-08-27 22:36 - 00000131 _____ C:\WINDOWS\brpcfx.ini 2017-01-29 14:52 - 2016-10-29 17:54 - 00000000 ____D C:\WINDOWS\system32\appmgmt 2017-01-29 14:49 - 2016-10-27 22:42 - 00000000 ____D C:\ProgramData\Trend Micro ==================== Files in the root of some directories ======= 2016-11-03 18:08 - 2016-11-21 14:25 - 0002366 _____ () C:\Users\Daddy\AppData\Roaming\droid4xinstaller.log 2016-10-30 09:04 - 2017-01-05 01:00 - 1711371 _____ () C:\Users\Daddy\AppData\Local\ars.cache 2016-10-30 09:06 - 2017-01-05 01:01 - 24028642 _____ () C:\Users\Daddy\AppData\Local\census.cache 2016-10-27 22:39 - 2016-10-27 22:39 - 0000036 _____ () C:\Users\Daddy\AppData\Local\housecall.guid.cache 2016-10-27 22:59 - 2016-12-04 19:35 - 0000010 _____ () C:\Users\Daddy\AppData\Local\sponge.last.runtime.cache 2016-11-20 01:31 - 2016-11-20 01:31 - 0000000 _____ () C:\Users\Daddy\AppData\Local\{3E2AE7C5-90BD-4EB6-B1F0-A8E6E97A15D5} 2016-09-29 09:59 - 2017-02-15 15:09 - 0001094 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc Some files in TEMP: ==================== 2017-02-26 14:33 - 2010-08-27 18:44 - 1238448 _____ (Audible Inc.) C:\Users\Daddy\AppData\Local\Temp\Upgrade.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-02-28 16:12 ==================== End of FRST.txt ============================