Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-12-2017
Ran by Dillon (administrator) on DILLONSGAMINGPC (16-12-2017 19:31:24)
Running from C:\Users\Dillon\Downloads
Loaded Profiles: Dillon (Available Profiles: Dillon & Guest)
Platform: Windows 10 Home Version 1703 15063.726 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(TOSHIBA CORPORATION) C:\Windows\System32\mbkzuslsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ThreatTrack Security Inc.) C:\Program Files (x86)\VIPRE\SBPIMSvc.exe
(LogMeIn Inc.) A:\Programs\LogMeIn Hamachi\x64\hamachi-2.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(LogMeIn, Inc.) A:\Programs\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Akamai Technologies, Inc.) C:\Users\Dillon\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Dillon\AppData\Local\Akamai\netsession_win.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Users\Dillon\AppData\Local\zaihupn\zaihupn.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Discord Inc.) C:\Users\Dillon\AppData\Local\Discord\app-0.0.299\Discord.exe
(Discord Inc.) C:\Users\Dillon\AppData\Local\Discord\app-0.0.299\Discord.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Discord Inc.) C:\Users\Dillon\AppData\Local\Discord\app-0.0.299\Discord.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SndVol.exe
() C:\Users\Dillon\AppData\Local\zaihupn\usrvhcg.exe
() C:\Users\Dillon\AppData\Local\zaihupn\usrvhcg.exe
() C:\Users\Dillon\AppData\Local\zaihupn\usrvhcg.exe
() C:\Users\Dillon\AppData\Local\zaihupn\usrvhcg.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() C:\Users\Dillon\AppData\Local\zaihupn\usrvhcg.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13513288 2013-03-28] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [17987704 2017-10-19] (Logitech Inc.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-05-11] (Apple Inc.)
HKLM\...\Run: [Fences] => "A:\Programs\Stardock\Fences\Fences.exe" /startup
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM-x32\...\Run: [LWS] => A:\Programs\Logitech\LWS\Webcam Software\LWS.exe -hide
HKLM-x32\...\Run: [SBAMTray] => C:\Program Files (x86)\VIPRE\SBAMTray.exe [3000288 2015-07-30] (ThreatTrack Security Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => "A:\Programs\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-07-12] (Razer Inc.)
HKLM-x32\...\Run: [KrakenLauncher] => C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe [1598920 2017-06-30] (Razer Inc)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Akamai NetSession Interface] => C:\Users\Dillon\AppData\Local\Akamai\netsession_win.exe [4490200 2017-09-08] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [60688 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [61200 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [5345672 2017-11-09] (Nota Inc.)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [568904 2015-03-30] ()
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Spotify Web Helper] => C:\Users\Dillon\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524336 2016-02-27] (Spotify Ltd)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Postimage] => C:\Program Files (x86)\Postimage\postimage.exe [16306936 2013-07-21] ()
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Discord] => C:\Users\Dillon\AppData\Local\Discord\app-0.0.299\Discord.exe [57954808 2017-12-11] (Discord Inc.)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Spotify] => C:\Users\Dillon\AppData\Roaming\Spotify\Spotify.exe [6743664 2016-02-27] (Spotify Ltd)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [join.me.launcher] => C:\Users\Dillon\AppData\Local\join.me.launcher\join.me.launcher.exe [176560 2015-10-27] (LogMeIn, Inc)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [EvolveClient] => A:\Programs\Echobit\Evolve\EvolveClient.exe -autorun
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [GNE_DualMonitorTools] => C:\Program Files (x86)\Dual Monitor Tools\DMT.exe [705536 2016-02-01] (GNE)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-04] (Autodesk, Inc.)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [WallpaperEngine] => "A:\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe" -silent
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [vibranceGUI] => C:\Users\Dillon\Desktop\vibranceGUI.exe [797184 2017-07-08] (juvlarN)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [Fences] => "A:\Programs\Stardock\Fences\Fences.exe" /startup
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Run: [f.lux] => C:\Users\Dillon\AppData\Local\FluxSoftware\Flux\flux.exe [1678840 2017-10-10] (f.lux Software LLC)
HKU\S-1-5-21-1564100291-600091279-963294945-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1564100291-600091279-963294945-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [570880 2017-07-07] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Peace.lnk [2017-09-05]
ShortcutTarget: Peace.lnk -> C:\Program Files\EqualizerAPO\config\Peace.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2017-09-05]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\Dillon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech Gaming Software 8.57.lnk [2014-11-27]
ShortcutTarget: Logitech Gaming Software 8.57.lnk -> C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
BootExecute: autocheck autochk * sh4native 7099
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{a8091ac9-1609-49ed-aa8a-eee6fcfa0cf2}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{a8fd7c20-3000-47a5-a283-f6c1fccb7947}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e43da66b-64ee-448d-a259-95ed77597f20}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{f03c8adb-5ae7-40db-9be6-88811ab08ed8}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{f03c8adb-5ae7-40db-9be6-88811ab08ed8}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
SearchScopes: HKLM-x32 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = 
SearchScopes: HKLM-x32 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1564100291-600091279-963294945-1002 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1564100291-600091279-963294945-1002 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={38401D21-5AAA-41A6-AD27-4689C61E65E9}&mid=f30846395a7247d3a1d30dcc98a72e95-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=&ds=&coid=&cmpid=&pr=&d=&v=18.0.5.292&pid=avg&sg=&sap=dsp&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2017-01-16] (Oracle Corporation)
BHO: VIPRE Search Guard Helper -> {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} -> C:\Program Files (x86)\VIPRE\x64\VSGNx64.dll [2015-07-30] ()
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2017-01-16] (Oracle Corporation)
BHO-x32: VIPRE Search Guard Helper -> {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} -> C:\Program Files (x86)\VIPRE\VSGN.dll [2015-07-30] ()
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - VIPRE Search Guard Toolbar - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\x64\VSGNx64.dll [2015-07-30] ()
Toolbar: HKLM-x32 - VIPRE Search Guard Toolbar - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\VSGN.dll [2015-07-30] ()
Toolbar: HKU\S-1-5-21-1564100291-600091279-963294945-1002 -> VIPRE Search Guard Toolbar - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\x64\VSGNx64.dll [2015-07-30] ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-04-05] (Skype Technologies)
Handler: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} - C:\Program Files (x86)\VIPRE\x64\VSGNx64.dll [2015-07-30] ()
Handler-x32: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} - C:\Program Files (x86)\VIPRE\VSGN.dll [2015-07-30] ()
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.0.5\ViProtocol.dll [2014-03-20] (AVG Secure Search)

FireFox:
========
FF DefaultProfile: jbwloee1.default
FF ProfilePath: C:\Users\Dillon\AppData\Roaming\Mozilla\Firefox\Profiles\jbwloee1.default [2017-11-27]
FF Extension: (Adblock Plus) - C:\Users\Dillon\AppData\Roaming\Mozilla\Firefox\Profiles\jbwloee1.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-07-06] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.3.0.49
FF Extension: (AVG SafeGuard toolbar) - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.3.0.49 [2014-01-05] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-12] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2017-01-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2017-01-16] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.0.5\\npsitesafety.dll [2014-03-20] (AVG Technologies)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nhnent.com/npNHNSetup,version=3.0.0.0 -> C:\Windows\Downloaded Program Files\npNHNSetup.dll [2013-09-06] (NHN Entertainment)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-12-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-12-05] (NVIDIA Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> A:\Games\Arc\Plugins\npArcPluginFF.dll [2016-08-18] (Perfect World Entertainment Inc)
FF Plugin-x32: @tongbu.com/tongbu,version=0.1 -> C:\Program Files (x86)\Tongbu\Addin\npTongbuAddin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: BYOND -> C:\Program Files (x86)\BYOND\bin\npbyond.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-1564100291-600091279-963294945-1002: @my.com/Games -> C:\Users\Dillon\AppData\Local\MyComGames\NPMyComDetector.dll [2017-05-23] (MY.COM B.V.)
FF Plugin HKU\S-1-5-21-1564100291-600091279-963294945-1002: @onlive.com/OnLiveGameClientDetector,version=1.0.0 -> C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll [No File]
FF Plugin HKU\S-1-5-21-1564100291-600091279-963294945-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Dillon\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-04-29] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1564100291-600091279-963294945-1002: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-11-17] (The Happy Cloud)

Chrome: 
=======
CHR DefaultProfile: Profile 5
CHR HomePage: Profile 5 -> hxxp://search.babylon.com/?affID=111789&tt=3112_6&babsrc=HP_ss&mntrId=725b836b000000000000446d5718f9c0
CHR StartupUrls: Profile 5 -> "chrome://apps/"
CHR NewTab: Profile 5 ->  Active:"chrome-extension://icpgjfneehieebagbmdbhnlpiopdcmna/main.html"
CHR Profile: C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5 [2017-12-16]
CHR Extension: (Slides) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-05]
CHR Extension: (James White) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2017-09-05]
CHR Extension: (YouTube) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-06]
CHR Extension: (Adblock Plus) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-26]
CHR Extension: (Sheets) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (AdBlock) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07]
CHR Extension: (New Tab Redirect) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna [2017-09-05]
CHR Extension: (Roblox+) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\jfbnmfgkohlfclfnplnlenbalpppohkm [2017-12-16]
CHR Extension: (Video Blocker) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\jknkjnpcbbgcbdbaampbjlhkcghmgfhk [2017-09-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-05]
CHR Extension: (Hover Zoom) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2017-09-05]
CHR Extension: (Gmail) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-05]
CHR Extension: (Chrome Media Router) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-15]
CHR Profile: C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\System Profile [2017-11-04]
CHR Extension: (Google Slides) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-06]
CHR Extension: (Google Docs) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-01]
CHR Extension: (Google Drive) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-01]
CHR Extension: (YouTube) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-01]
CHR Extension: (Google Search) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-01]
CHR Extension: (Google Sheets) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-06]
CHR Extension: (Gmail) - C:\Users\Dillon\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-01]
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\18.0.5.292\avg.crx [2014-03-20]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S3 ArcService; A:\Games\Arc\ArcService.exe [88024 2016-08-18] (Perfect World Entertainment Inc)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1536520 2017-12-09] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [383016 2017-06-15] (EasyAntiCheat Ltd)
S3 EvoSvc; C:\ProgramData\Echobit\Evolve\EvoSvc.log [255157 2017-12-10] () [File not signed]
S2 HiPatchService; A:\Games\Hi-Rez Studios\HiPatchService.exe [9728 2016-09-15] (Hi-Rez Studios) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [225400 2017-10-19] (Logitech Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [5449136 2016-05-16] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [463664 2017-12-05] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-11-15] (NVIDIA Corporation)
S3 Origin Client Service; A:\Origin\OriginClientService.exe [2134848 2017-11-22] (Electronic Arts)
S2 Origin Web Helper Service; A:\Origin\OriginWebHelperService.exe [3014472 2017-11-22] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2016-03-06] ()
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2017-11-22] ()
S2 SBAMSvc; C:\Program Files (x86)\VIPRE\SBAMSvc.exe [4298032 2015-07-30] (ThreatTrack Security Inc.)
R2 SBPIMSvc; C:\Program Files (x86)\VIPRE\SBPIMSvc.exe [212448 2015-07-30] (ThreatTrack Security Inc.)
S2 SpyHunter 4 Service; C:\Program Files\SpyHunter\SH4Service.exe [673464 2017-05-23] (Enigma Software Group USA, LLC.)
S2 vToolbarUpdater18.0.5; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\ToolbarUpdater.exe [1771032 2014-03-20] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WebProxy; C:\Program Files (x86)\VIPRE\WebProxy.exe [6339552 2015-07-30] (ThreatTrack Security Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [652240 2016-07-14] (Wacom Technology, Corp.)
R2 Hamachi2Svc; "A:\Programs\LogMeIn Hamachi\x64\hamachi-2.exe" -s [X]
S2 Razer Game Scanner Service; "C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [49952 2014-03-20] (AVG Technologies)
R1 ElRawDisk; C:\Windows\system32\drivers\ElRawDsk.sys [30752 2013-12-03] (EldoS Corporation)
R3 EvolveVirtualAdapter; C:\WINDOWS\System32\drivers\evolve.sys [21656 2016-06-09] (Echobit, LLC)
S3 GameKB; C:\WINDOWS\system32\drivers\GameKB.sys [26624 2011-11-25] ()
S3 gfiark; C:\WINDOWS\System32\drivers\gfiark.sys [40584 2015-08-27] (ThreatTrack Security)
S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [32400 2016-03-04] (ThreatTrack Security)
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [21048 2013-03-14] ()
R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [21048 2013-03-14] ()
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [47008 2013-07-30] ()
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-10-19] (Logitech Inc.)
R4 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-12-16] (Malwarebytes)
R2 memudrv; A:\Programs\Microvirt\MEmuHyperv\MEmuDrv.sys [260368 2015-11-02] (Microvirt Corporation)
R2 mfmonitor; C:\WINDOWS\System32\DRIVERS\mfmonitor_x64.sys [20696 2015-04-07] (Windows (R) Win 7 DDK provider)
R3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2017-03-18] (MediaTek Inc.)
S4 ninr; C:\WINDOWS\System32\drivers\gjkq.sys [79064 2017-10-22] (Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c68c1eb90f6d242e\nvlddmkm.sys [17025992 2017-12-06] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-11-15] (NVIDIA Corporation)
S3 NVVADARM; C:\WINDOWS\system32\drivers\nvvadarm.sys [39056 2015-05-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-10] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-12-05] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [45752 2017-07-19] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [139704 2017-08-19] (Razer, Inc.)
R2 sbapifs; C:\WINDOWS\System32\DRIVERS\sbapifs.sys [90464 2015-07-30] (ThreatTrack Security Inc.)
S3 sbhips; C:\WINDOWS\System32\drivers\sbhips.sys [63696 2015-07-30] (ThreatTrack Security)
R1 sbwfw; C:\WINDOWS\system32\DRIVERS\sbwfw.sys [345392 2015-07-30] (ThreatTrack Security)
S3 sbwtis; C:\WINDOWS\system32\DRIVERS\sbwtis.sys [95608 2015-07-30] (ThreatTrack Security)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [11376 2017-08-30] () [File not signed]
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46408 2017-06-01] (SteelSeries ApS)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [45936 2017-08-15] (SteelSeries ApS)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [102864 2016-03-02] (Wacom Technology)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R2 WebExaminer; C:\WINDOWS\system32\Drivers\WebExaminer64.sys [44680 2015-07-30] (ThreatTrack Security Inc.)
S3 WPRO_41_2001; C:\WINDOWS\System32\drivers\WPRO_41_2001.sys [34752 2016-02-22] ()
R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2014-07-02] (SplitmediaLabs Limited)
S3 SBFWIMCL; \SystemRoot\system32\DRIVERS\sbfwim.sys [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-12-16 14:28 - 2017-12-16 14:28 - 004500482 _____ C:\Users\Dillon\Downloads\695632 Karen, Koharu Meu, Harukawa Akari - Jounetsu Utopia.osz
2017-12-16 13:36 - 2017-12-16 13:36 - 001792640 _____ (Bleeping Computer, LLC) C:\Users\Dillon\Downloads\rkill.exe
2017-12-16 13:18 - 2017-12-16 19:38 - 000034116 _____ C:\Users\Dillon\Downloads\FRST.txt
2017-12-16 13:17 - 2017-12-16 19:31 - 000000000 ____D C:\FRST
2017-12-16 13:17 - 2017-12-16 13:17 - 002392576 _____ (Farbar) C:\Users\Dillon\Downloads\FRST64.exe
2017-12-16 13:08 - 2017-12-16 13:08 - 000003144 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2017-12-16 13:07 - 2017-12-16 13:07 - 000253880 ____N (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2017-12-16 12:32 - 2017-12-16 12:32 - 000116560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iacvybfi.sys
2017-12-16 12:27 - 2017-12-16 13:08 - 000000000 ____D C:\VIPRERESCUE
2017-12-16 12:18 - 2017-12-16 12:19 - 330309632 _____ C:\Users\Dillon\Downloads\VIPRERescue.exe
2017-12-16 12:08 - 2017-12-16 13:46 - 000019470 _____ C:\Users\Dillon\Desktop\CheckResults.txt
2017-12-16 12:08 - 2017-12-16 12:08 - 001706112 _____ (Malwarebytes) C:\Users\Dillon\Downloads\mbam-check-2.3.2.0.exe
2017-12-16 12:03 - 2017-12-16 12:04 - 014161479 _____ C:\Users\Dillon\Downloads\mbar-1.10.3.1001-nr.exe
2017-12-15 23:55 - 2017-12-15 23:55 - 000001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-15 23:55 - 2017-12-15 23:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-15 23:55 - 2017-11-29 09:11 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-12-15 23:54 - 2017-12-15 23:54 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-15 23:53 - 2017-12-15 23:54 - 083316440 _____ (Malwarebytes ) C:\Users\Dillon\Downloads\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374.exe
2017-12-15 23:44 - 2017-12-16 12:45 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-12-15 23:38 - 2017-12-15 23:42 - 000000000 ____D C:\WINDOWS\pss
2017-12-15 23:20 - 2017-12-15 23:22 - 185013656 _____ (Sophos Limited) C:\Users\Dillon\Downloads\Sophos Virus Removal Tool.exe
2017-12-15 23:17 - 2017-12-15 23:18 - 014178840 _____ (Malwarebytes Corp.) C:\Users\Dillon\Downloads\mbar-1.10.3.1001.exe
2017-12-15 22:58 - 2017-12-15 22:58 - 000000000 ____D C:\ProgramData\MB3CoreBackup
2017-12-15 21:34 - 2017-12-05 14:36 - 000137200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-12-15 21:32 - 2017-09-13 18:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-12-15 21:32 - 2017-09-13 18:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-12-15 21:32 - 2017-09-13 18:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-12-15 21:32 - 2017-09-13 18:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-12-15 21:30 - 2017-12-15 21:32 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-12-15 21:26 - 2017-12-05 16:17 - 000045496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-12-15 21:23 - 2017-12-05 16:17 - 023267096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-12-15 21:23 - 2017-12-05 16:17 - 019040512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-12-15 21:23 - 2017-12-05 16:17 - 013255032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-12-15 21:23 - 2017-12-05 16:17 - 010883744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 040238576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 036348400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 035156368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 029379568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 013867840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 011782096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 004202808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 003615032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001989944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438859.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001674736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438859.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001331200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001321264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001135464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001102368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001044664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001038496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 001032688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000982888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000932424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000885496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000794576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000741224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000634224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000616240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000599536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-12-15 21:22 - 2017-12-05 16:17 - 000506680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-12-12 18:28 - 2017-12-12 18:28 - 009497600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2017-12-09 23:32 - 2017-12-09 23:32 - 000000000 ____D C:\Users\Dillon\AppData\Local\Bohemia_Interactive
2017-12-09 23:31 - 2017-12-13 17:42 - 000000000 ____D C:\Users\Dillon\AppData\Local\Arma 3 Launcher
2017-12-06 17:29 - 2017-12-06 17:29 - 000031580 _____ C:\Users\Dillon\Desktop\RUCKSACKS_RIGHT.webp
2017-12-04 21:06 - 2017-12-04 21:06 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-12-03 20:44 - 2017-12-04 18:05 - 000000745 _____ C:\Users\Public\Desktop\Middle-Earth - Shadow of War.lnk
2017-12-02 23:22 - 2017-12-02 23:28 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\Tera_Awesomium
2017-11-27 21:59 - 2015-04-29 14:20 - 000344320 _____ C:\Users\Dillon\Desktop\Nguyen - House.skp
2017-11-27 15:18 - 2017-11-27 15:18 - 000000000 ___HD C:\$WINDOWS.~BT
2017-11-26 19:51 - 2017-11-26 19:51 - 000001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LOOT.lnk
2017-11-26 19:51 - 2017-11-26 19:51 - 000001027 _____ C:\Users\Public\Desktop\LOOT.lnk
2017-11-26 19:50 - 2017-11-26 19:50 - 000000000 ____D C:\Program Files (x86)\LOOT
2017-11-26 19:49 - 2017-11-26 19:50 - 036343609 _____ (LOOT Team ) C:\Users\Dillon\Downloads\LOOT.Installer.exe
2017-11-26 19:42 - 2017-11-26 19:49 - 000000000 ____D C:\Textures Backup
2017-11-26 19:41 - 2017-11-26 19:49 - 000000000 ____D C:\Users\Dillon\Desktop\Ordenador
2017-11-26 19:41 - 2017-11-26 19:41 - 000386855 _____ C:\Users\Dillon\Downloads\Ordenador-12801-0-8-3.7z
2017-11-26 19:32 - 2017-11-26 19:32 - 000020955 _____ C:\Users\Dillon\Downloads\FNV 4GB Patch-62552-1-3.7z
2017-11-26 19:30 - 2017-11-26 19:30 - 000000238 _____ C:\Users\Dillon\Downloads\FNV4GB-55061-1-9.7z
2017-11-25 02:26 - 2017-11-25 02:26 - 000000000 ____D C:\Users\Dillon\AppData\Local\DCS
2017-11-25 01:43 - 2017-11-25 01:43 - 003251722 _____ C:\Users\Dillon\Downloads\PSO2_Tweaker_Installer (1).exe
2017-11-23 20:46 - 2017-11-23 20:46 - 000000000 ____D C:\Program Files\Logitech
2017-11-23 20:46 - 2017-11-23 20:46 - 000000000 ____D C:\Program Files\Common Files\Logitech
2017-11-23 20:44 - 2017-11-23 20:46 - 016082320 _____ (Logitech Inc.) C:\Users\Dillon\Downloads\lgs510_x64.exe
2017-11-23 20:25 - 2017-11-23 20:27 - 005582456 _____ (Logitech Inc.) C:\Users\Dillon\Downloads\G403Update_3.4.12.exe
2017-11-23 20:25 - 2017-11-23 20:26 - 120137512 _____ (Logitech Inc.) C:\Users\Dillon\Downloads\LGS_8.96.88_x64_Logitech.exe
2017-11-23 03:51 - 2017-11-23 03:51 - 000712979 _____ C:\Users\Dillon\Downloads\nvse_5_1_beta4 (1).7z
2017-11-23 03:47 - 2017-11-23 03:47 - 000712979 _____ C:\Users\Dillon\Downloads\nvse_5_1_beta4.7z
2017-11-22 23:40 - 2017-11-22 23:41 - 000583772 _____ C:\WINDOWS\Minidump\112217-54625-01.dmp
2017-11-22 23:21 - 2017-11-22 23:40 - 000000000 ____D C:\WINDOWS\Minidump
2017-11-22 23:14 - 2017-11-22 23:52 - 000669184 _____ C:\WINDOWS\SysWOW64\pbsvc.exe
2017-11-22 22:55 - 2017-11-22 22:55 - 000000031 _____ C:\Users\Dillon\Desktop\remind.txt
2017-11-19 15:24 - 2017-11-19 16:26 - 000000000 ____D C:\Users\Dillon\Desktop\Scarlet Blade Screenshots
2017-11-19 14:53 - 2017-11-19 14:53 - 000000000 ____D C:\Users\Dillon\Documents\NCSOFT
2017-11-19 14:18 - 2017-11-19 14:18 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\NCSOFT
2017-11-19 14:18 - 2017-11-19 14:18 - 000000000 ____D C:\Users\Dillon\AppData\Local\NCSOFT
2017-11-19 13:29 - 2017-11-19 13:29 - 000001156 _____ C:\Users\Dillon\Desktop\Scarlet Blade Vendetta.lnk
2017-11-19 13:25 - 2017-11-19 13:25 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Scarlet Blade Vendetta
2017-11-19 13:12 - 2005-05-10 17:54 - 000258352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unicows.dll
2017-11-19 01:54 - 2017-11-19 03:45 - 3571086063 _____ C:\Users\Dillon\Downloads\SBV-v73-Client.rar
2017-11-19 01:52 - 2017-11-19 01:52 - 000007149 _____ C:\Users\Dillon\Downloads\Stories.txt
2017-11-18 15:21 - 2017-11-18 15:22 - 018689800 _____ (En Masse Entertainment ) C:\Users\Dillon\Downloads\CLOSERS-Minimal-Installer (1).exe
2017-11-18 15:17 - 2017-11-18 15:17 - 018689800 _____ (En Masse Entertainment ) C:\Users\Dillon\Downloads\CLOSERS-Minimal-Installer.exe
2017-11-18 02:30 - 2017-11-18 02:30 - 000000160 _____ C:\Users\Dillon\Desktop\uyguyg.txt
2017-11-17 14:13 - 2017-11-09 04:43 - 000540784 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-11-17 14:13 - 2017-11-09 04:43 - 000446392 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-11-16 17:34 - 2017-11-16 17:34 - 000181922 _____ C:\Users\Dillon\Desktop\C6goynPXEAInzng.jpg_large

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-12-16 19:29 - 2017-10-22 18:49 - 000000000 ____D C:\Users\Dillon\AppData\Local\zaihupn
2017-12-16 17:10 - 2017-07-15 23:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-12-16 13:58 - 2014-06-16 16:25 - 000000000 ____D C:\Program Files (x86)\Steam
2017-12-16 13:25 - 2017-07-16 00:06 - 000000000 ____D C:\Users\Dillon
2017-12-16 13:24 - 2015-08-16 15:31 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-12-16 13:21 - 2017-07-16 00:03 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-16 12:47 - 2017-10-22 18:41 - 002843648 _____ (TOSHIBA CORPORATION) C:\WINDOWS\system32\mbkzuslsvc.exe
2017-12-16 12:47 - 2017-07-16 00:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-16 12:46 - 2017-03-18 06:40 - 018612224 _____ C:\WINDOWS\system32\config\HARDWARE
2017-12-16 12:46 - 2017-03-18 06:40 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-12-16 11:54 - 2017-07-16 00:34 - 002781780 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-15 22:56 - 2013-12-11 20:55 - 000000000 ____D C:\Users\Dillon\AppData\Local\ElevatedDiagnostics
2017-12-15 22:50 - 2017-07-16 00:46 - 000004166 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{473F5468-B136-4E5D-9BC5-CD2BD5349014}
2017-12-15 21:40 - 2017-03-18 16:01 - 000000000 ____D C:\WINDOWS\INF
2017-12-15 21:40 - 2013-11-16 14:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-12-15 21:39 - 2017-07-16 00:03 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-15 21:34 - 2014-11-09 13:38 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\WTablet
2017-12-15 21:32 - 2016-08-09 14:44 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-12-15 21:32 - 2014-01-03 18:34 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\NVIDIA
2017-12-15 20:10 - 2013-12-10 18:23 - 000000000 ____D C:\Users\Dillon\AppData\Local\CrashDumps
2017-12-15 19:50 - 2016-01-23 15:15 - 000002291 _____ C:\Users\Dillon\Desktop\yuh (2).lnk
2017-12-15 19:38 - 2015-12-19 19:04 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\discord
2017-12-15 18:05 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\rescache
2017-12-15 15:51 - 2017-03-18 16:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-12-15 15:51 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-14 17:23 - 2017-06-13 16:51 - 000002279 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-14 17:23 - 2017-06-13 16:51 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-13 21:46 - 2013-12-10 17:52 - 000000000 ____D C:\Users\Dillon\AppData\Local\Packages
2017-12-13 21:41 - 2017-03-18 15:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-12-13 21:24 - 2013-12-16 17:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-13 21:11 - 2017-10-11 16:38 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-13 21:11 - 2013-12-16 17:52 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-13 17:10 - 2014-03-15 15:40 - 000000000 ____D C:\Users\Dillon\AppData\Local\Arma 3
2017-12-12 19:31 - 2016-01-23 15:09 - 000001483 _____ C:\Users\Dillon\Desktop\Roblox Player.lnk
2017-12-12 18:28 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-12-12 18:28 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-12-11 21:41 - 2013-12-10 18:24 - 000000000 ____D C:\ProgramData\Origin
2017-12-11 19:15 - 2015-12-19 19:04 - 000000000 ____D C:\Users\Dillon\AppData\Local\Discord
2017-12-11 19:15 - 2014-04-23 19:17 - 000000000 ____D C:\Users\Dillon\Documents\Battlefield 4
2017-12-11 19:14 - 2013-12-10 18:25 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\Origin
2017-12-09 23:32 - 2014-03-15 15:40 - 000000000 ____D C:\Users\Dillon\Documents\Arma 3
2017-12-05 16:17 - 2017-11-09 03:57 - 000048442 _____ C:\WINDOWS\system32\nvinfo.pb
2017-12-05 16:17 - 2017-07-08 21:07 - 004485560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-12-05 16:17 - 2017-07-08 21:07 - 003817400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-12-05 16:17 - 2017-07-08 21:07 - 001615472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-12-05 16:17 - 2017-07-08 21:07 - 000225208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-12-05 16:17 - 2017-07-08 21:07 - 000057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-12-05 14:56 - 2017-07-16 00:03 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-12-05 14:32 - 2017-07-16 00:03 - 005966696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-12-05 14:32 - 2017-07-16 00:03 - 002589168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-12-05 14:32 - 2017-07-16 00:03 - 001766288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-12-05 14:32 - 2017-07-16 00:03 - 000607304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-12-05 14:32 - 2017-07-16 00:03 - 000450352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-12-05 14:32 - 2017-07-16 00:03 - 000122768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-12-05 14:32 - 2017-07-16 00:03 - 000082744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-12-04 21:11 - 2014-11-30 13:12 - 000000000 ____D C:\Users\Dillon\Documents\WB Games
2017-12-03 20:51 - 2013-12-11 17:47 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\uTorrent
2017-12-03 19:25 - 2017-03-04 14:20 - 000000000 ____D C:\Users\Dillon\AppData\LocalLow\uTorrent
2017-12-03 17:17 - 2015-09-30 16:19 - 000000000 ____D C:\Users\Dillon\AppData\Local\Roblox
2017-12-03 02:06 - 2017-07-16 00:06 - 000000000 ____D C:\Users\Guest.DillonsGamingPC
2017-12-03 01:07 - 2015-02-17 15:12 - 000000000 ____D C:\Users\Dillon\AppData\Local\Warframe
2017-12-02 23:11 - 2014-09-18 16:15 - 000000000 ____D C:\ProgramData\boost_interprocess
2017-12-01 21:25 - 2017-03-18 16:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-12-01 21:25 - 2017-03-18 16:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-28 19:39 - 2014-11-27 23:04 - 000000000 ____D C:\Users\Dillon\AppData\Local\Logitech
2017-11-27 21:57 - 2017-07-06 23:04 - 000000000 ____D C:\Users\Dillon\AppData\LocalLow\Mozilla
2017-11-27 15:19 - 2017-07-15 22:28 - 000000000 ___DC C:\WINDOWS\Panther
2017-11-26 19:52 - 2015-03-21 19:26 - 000000000 ____D C:\Users\Dillon\AppData\Local\LOOT
2017-11-25 23:05 - 2017-07-16 00:46 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-25 23:05 - 2017-07-16 00:46 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-25 23:05 - 2017-03-11 02:04 - 000001492 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-11-25 23:04 - 2017-07-16 00:46 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-25 23:04 - 2017-07-16 00:46 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-25 23:04 - 2017-07-16 00:46 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-25 23:04 - 2017-07-16 00:46 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-25 23:04 - 2017-07-16 00:46 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-25 23:04 - 2017-07-16 00:46 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-25 23:04 - 2017-07-16 00:03 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-11-25 23:04 - 2017-07-16 00:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-11-25 07:40 - 2017-07-16 00:03 - 007874971 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-11-24 17:11 - 2015-11-27 19:19 - 000000000 ____D C:\Users\Dillon\AppData\Local\Frontier_Developments
2017-11-23 20:58 - 2015-06-08 17:47 - 000000000 ____D C:\Program Files\Logitech Gaming Software
2017-11-23 20:57 - 2014-11-27 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-11-23 11:36 - 2013-12-10 16:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-11-23 05:17 - 2017-07-15 23:59 - 005143864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-11-23 05:13 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-11-23 05:13 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-11-23 05:13 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\Provisioning
2017-11-23 05:13 - 2017-03-18 16:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-11-23 05:13 - 2017-03-18 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-11-23 05:09 - 2017-09-05 16:32 - 000000000 ____D C:\Users\Dillon\AppData\Roaming\steelseries-engine-3-client
2017-11-23 03:35 - 2014-03-20 20:54 - 000000000 ____D C:\Users\Dillon\AppData\Local\FalloutNV
2017-11-23 02:30 - 2013-12-13 22:37 - 000000000 ____D C:\Users\Dillon\Documents\My Games
2017-11-22 23:52 - 2013-12-10 21:48 - 000103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2017-11-22 23:52 - 2013-12-10 21:48 - 000066872 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2017-11-22 23:40 - 2017-06-12 20:49 - 865796776 _____ C:\WINDOWS\MEMORY.DMP
2017-11-19 14:36 - 2017-11-13 21:49 - 000004851 _____ C:\Users\Dillon\Desktop\USMC Ranks.txt
2017-11-19 13:15 - 2016-06-09 13:09 - 000000000 ____D C:\Games
2017-11-18 15:11 - 2013-12-17 19:44 - 000000000 ____D C:\Users\Dillon\AppData\Local\NVIDIA

==================== Files in the root of some directories =======

2013-10-12 23:47 - 2013-10-12 23:47 - 000000732 _____ () C:\Program Files (x86)\visit-www.nosteam.ro.html
2014-09-30 14:08 - 2014-10-03 14:49 - 000000004 _____ () C:\Users\Dillon\AppData\Roaming\appdataFr2.bin
2017-08-26 19:43 - 2017-08-26 19:43 - 000000000 _____ () C:\Users\Dillon\AppData\Roaming\Stardockfences_debug_snapshot.dat
2016-06-22 14:48 - 2016-07-16 13:26 - 000003973 _____ () C:\Users\Dillon\AppData\Roaming\VoiceMeeterDefault.xml
2014-09-02 17:47 - 2014-12-28 00:47 - 000000161 _____ () C:\Users\Dillon\AppData\Roaming\WB.CFG
2014-07-26 15:07 - 2014-07-26 15:08 - 174606558 _____ () C:\Users\Dillon\AppData\Local\ACCCx2_7_1_418.zip.aamdownload
2014-07-26 15:07 - 2014-07-26 15:08 - 000002111 _____ () C:\Users\Dillon\AppData\Local\ACCCx2_7_1_418.zip.aamdownload.aamd
2017-06-05 14:54 - 2017-06-05 16:23 - 000000063 _____ () C:\Users\Dillon\AppData\Local\Autosofted License.txt
2017-04-27 17:10 - 2017-04-27 17:10 - 000003584 _____ () C:\Users\Dillon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-01 18:47 - 2014-12-17 15:47 - 000000010 _____ () C:\Users\Dillon\AppData\Local\DSI.DAT
2015-03-30 14:45 - 2015-03-30 14:55 - 001065984 _____ () C:\Users\Dillon\AppData\Local\file__0.localstorage
2017-10-22 18:39 - 2017-10-22 18:39 - 000140800 _____ () C:\Users\Dillon\AppData\Local\installer.dat
2014-03-15 15:44 - 2014-03-15 15:44 - 000000000 ___SH () C:\Users\Dillon\AppData\Local\LumaEmu
2015-05-11 15:41 - 2015-05-11 15:44 - 000000031 _____ () C:\Users\Dillon\AppData\Local\ModManagerGamePath.txt
2016-07-23 16:50 - 2016-07-23 16:50 - 000000841 _____ () C:\Users\Dillon\AppData\Local\recently-used.xbel
2017-05-17 10:32 - 2017-05-17 10:32 - 000125952 _____ () C:\Users\Dillon\AppData\Local\report
2016-01-24 02:45 - 2016-01-24 02:45 - 000007602 _____ () C:\Users\Dillon\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2017-08-27 13:06 - 2017-08-27 13:06 - 000619464 _____ () C:\Users\Dillon\AppData\Local\Temp\0KrakenDevProps.dll
2017-11-19 15:22 - 2017-11-19 15:22 - 000000069 _____ () C:\Users\Dillon\AppData\Local\Temp\1e7306d9a5ec8f0e809089ec2dcd11ec.dll
2017-11-22 23:54 - 2017-11-24 12:32 - 000204800 _____ (Sony DADC Austria AG) C:\Users\Dillon\AppData\Local\Temp\drm_dyndata_7370014.dll
2017-11-19 15:22 - 2017-11-19 15:22 - 000000512 _____ () C:\Users\Dillon\AppData\Local\Temp\e213d06104e180a8194b041123dfe554.dll
2017-10-22 18:37 - 2017-10-22 18:37 - 002761179 _____ () C:\Users\Dillon\AppData\Local\Temp\golm.exe
2017-10-27 19:53 - 2017-10-27 19:52 - 032880296 _____ (ArenaNet) C:\Users\Dillon\AppData\Local\Temp\Gw2.exe
2017-09-05 15:45 - 2016-03-09 15:39 - 004839768 ____N (Conexant Systems, Inc.) C:\Users\Dillon\AppData\Local\Temp\KUIU.EXE
2017-12-15 23:04 - 2017-12-15 22:58 - 083316440 _____ (Malwarebytes                                                ) C:\Users\Dillon\AppData\Local\Temp\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374.exe
2017-11-02 16:00 - 2017-10-22 19:19 - 071535032 _____ (Malwarebytes                                                ) C:\Users\Dillon\AppData\Local\Temp\mbam-setup.exe
2017-11-17 14:14 - 2017-10-27 11:06 - 000874368 _____ (NVIDIA Corporation) C:\Users\Dillon\AppData\Local\Temp\nvSCPAPI64.dll
2017-12-15 21:27 - 2017-10-27 11:06 - 000370296 _____ (NVIDIA Corporation) C:\Users\Dillon\AppData\Local\Temp\nvStInst.exe
2017-10-22 18:37 - 2017-10-22 18:37 - 001792071 _____ () C:\Users\Dillon\AppData\Local\Temp\pi.exe
2017-09-15 14:32 - 2017-11-04 01:21 - 000492544 _____ () C:\Users\Dillon\AppData\Local\Temp\s3.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-12-09 16:56

==================== End of FRST.txt ============================