This topic is locked
Hi I just found this site and I was wondering if you could help me out. My computer got infected somehow I used Malwarebytes scans to clean it up, which usually works fine. Many infections were found and removed. However, now every time the computer is rebooted or a program is run, Windows is throwing a "Bad Image" error on ever program. Clicking OK closes the error, and the programs work, but the errors are very annoying. Is there some way to correct this problem?
Error example:
chrome.exe - Bad Image
C:\WINDOWS\system32/VCL.DLL is either not designed to run on Windows or it contains an error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support. Error status 0xc000012f.
I already ran Frst but I need some help, can you please make me a fixlist
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by BENJMAIN (administrator) on JAVON on 28-03-2015 01:13:36
Running from C:\Users\BENJMAIN\Downloads\New folder
Loaded Profiles: BENJMAIN (Available profiles: Javon & BENJMAIN & Guest)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\HitmanPro.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(BitTorrent Inc.) C:\Users\Javon\AppData\Roaming\uTorrent\uTorrent.exe
(PowerISO Computing, Inc.) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoUpdate.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472992 2013-03-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2015-02-14] (IDT, Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [570152 2014-08-14] (Acronis)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [307200 2011-06-15] (PowerISO Computing, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-07-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5306776 2014-11-27] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [603904 2014-10-17] (Acronis International GmbH)
HKU\S-1-5-21-2828251583-3788881194-2388449128-1014\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-2828251583-3788881194-2388449128-1014\...\Run: [uTorrent] => C:\Users\Javon\AppData\Roaming\uTorrent\uTorrent.exe [1442384 2015-03-26] (BitTorrent Inc.)
AppInit_DLLs-x32: c:\progra~2\searchprotect\searchprotect\bin\vc32loader.dll => "c:\progra~2\searchprotect\searchprotect\bin\vc32loader.dll" File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start odrive.lnk
ShortcutTarget: Start odrive.lnk -> C:\Program Files\odrive\odrive.exe ()
Startup: C:\Users\Javon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
ShellIconOverlayIdentifiers: [ 0xygenS7ActivityIcon] -> {F89D1C5C-417C-4692-957E-88C9B739179D} => C:\Program Files\odrive\OdriveShellExtension_64.dll (LeapFILE Inc.)
ShellIconOverlayIdentifiers: [ 0xygenS7AlertIcon] -> {FEA880BF-087C-4970-A34A-C311D200DB2D} => C:\Program Files\odrive\OdriveShellExtension_64.dll (LeapFILE Inc.)
ShellIconOverlayIdentifiers: [ 0xygenS7SyncIcon] -> {DB3F4C84-E47D-4b34-84FD-DF8D979F95D2} => C:\Program Files\odrive\OdriveShellExtension_64.dll (LeapFILE Inc.)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
BootExecute: autocheck autochk * bootdelete
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <======= ATTENTION (Policy Restriction on ProxySettings)
ProxyServer: [HKLM] => http=127.0.0.1:8800;https=127.0.0.1:8800
ProxyServer: [HKLM-x32] => http=127.0.0.1:8800;https=127.0.0.1:8800
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-2828251583-3788881194-2388449128-1014\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-02-14] (IObit)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO-x32: Cyti Web 1.0.0.7 -> {9de1d63d-fdbf-47b9-8e12-8455694e2b78} -> No File
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-03-12] (Microsoft Corporation)
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\VCL.dll [335064] ()
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\VCL.dll [335064] ()
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\VCL.dll [335064] ()
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\VCL.dll [335064] ()
Winsock: Catalog9 16 C:\WINDOWS\SysWOW64\VCL.dll [335064] ()
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{D9F1CA3A-EE05-433E-BEDB-0045743EC415}: [NameServer] 4.2.2.2,8.8.8.8
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2013-03-21] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-05] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2013-11-15] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2013-03-21] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2013-11-15] (Microsoft Corporation)
FF Extension: No Name - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta3484\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha738\ff [Not Found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3069\ff [Not Found]
Chrome:
=======
CHR Profile: C:\Users\BENJMAIN\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Docs) - C:\Users\BENJMAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-27]
CHR Extension: (Google Drive) - C:\Users\BENJMAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-27]
CHR Extension: (YouTube) - C:\Users\BENJMAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-27]
CHR Extension: (Google Search) - C:\Users\BENJMAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-27]
CHR Extension: (Gmail) - C:\Users\BENJMAIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-27]
CHR HKLM-x32\...\Chrome\Extension: [apakconhimjjmdcelnkdaichgkghjhfn] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3069\ch\MediaViewV1alpha3069.crx [Not Found]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2014-11-04] (IObit)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-07-04] (Advanced Micro Devices, Inc.) [File not signed]
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-02-14] (Broadcom Corporation.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-28] (Microsoft Corporation)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-03-27] (SurfRight B.V.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-01-16] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339968 2015-02-14] (IDT, Inc.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604856 2015-02-12] (AVG Technologies)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44856 2015-02-12] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36664 2015-02-12] (AVG Technologies)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)
S2 guqukoge; No ImagePath
S2 HitmanPro37CrusaderBoot; "C:\Users\BENJMAIN\AppData\Local\Temp\7ZipSfx.000\HitmanPro_x64.exe.exe" /crusader:boot [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-20] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2015-02-14] (Advanced Micro Devices)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2015-02-14] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [6831688 2013-11-22] (Broadcom Corporation)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-29] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [32768 2014-10-08] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 DrvAgent64; C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS [13824 2015-02-14] (Phoenix Technologies) [File not signed]
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2015-02-21] (Acronis International GmbH)
R3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [43664 2015-03-28] ()
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-02-14] (REALiX™)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [136408 2015-03-28] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-03-17] (Malwarebytes Corporation)
R3 mlkumidi; C:\Windows\system32\drivers\mlkumidi.sys [57408 2012-08-29] (MusicLab, Inc.)
S3 MotioninJoyXFilter; C:\Windows\System32\drivers\MijXfilt.sys [121416 2012-05-12] (MotioninJoy) [File not signed]
S3 paeusbaudio; C:\Windows\System32\drivers\paeusbaudio_x64.sys [252280 2012-05-24] ()
S3 paeusbaudiodsp; C:\Windows\System32\drivers\paeusbaudiodsp_x64.sys [71544 2012-05-24] ()
S3 paeusbaudioks; C:\Windows\system32\DRIVERS\paeusbaudioks_x64.sys [53112 2012-05-24] ()
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 tapoas; C:\Windows\system32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1328928 2015-02-21] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [234784 2015-02-21] (Acronis International GmbH)
S0 Tpkd; No ImagePath
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-28 01:10 - 2015-03-28 01:10 - 00043664 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2015-03-28 01:05 - 2015-03-28 01:05 - 00000672 _____ () C:\WINDOWS\PFRO.log
2015-03-28 01:01 - 2015-03-28 01:13 - 00000000 ____D () C:\Users\BENJMAIN\Downloads\New folder
2015-03-28 01:01 - 2015-03-28 01:13 - 00000000 ____D () C:\FRST
2015-03-28 00:54 - 2015-03-28 00:54 - 02168320 _____ () C:\Users\BENJMAIN\Downloads\adwcleaner_4.113.exe
2015-03-28 00:27 - 2015-03-28 00:27 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\MFAData
2015-03-27 23:16 - 2015-03-27 23:16 - 00292184 _____ (Microsoft Corporation) C:\Users\BENJMAIN\Downloads\dxwebsetup.exe
2015-03-27 23:06 - 2015-03-27 23:23 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2015-03-27 23:06 - 2015-03-27 23:06 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2015-03-27 22:43 - 2015-03-27 22:43 - 00019918 _____ () C:\WINDOWS\system32\.crusader
2015-03-27 22:43 - 2015-03-27 22:43 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2015-03-27 22:43 - 2015-03-27 22:43 - 00008602 _____ () C:\WINDOWS\system32\bootdelete.lst
2015-03-27 22:02 - 2015-03-27 22:06 - 00001869 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2015-03-27 22:02 - 2015-03-27 22:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2015-03-27 22:02 - 2015-03-27 22:02 - 00000000 ____D () C:\Program Files\HitmanPro
2015-03-27 22:02 - 2015-03-27 22:00 - 09641683 ____N (Oleg N. Scherbakov) C:\Users\BENJMAIN\Desktop\Hitman Pro 3.7.9 Build 238 RePack by Killer000.exe
2015-03-27 21:59 - 2015-03-27 22:01 - 00002402 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_BENJMAIN
2015-03-27 21:59 - 2015-03-27 22:01 - 00000296 _____ () C:\WINDOWS\Tasks\Uninstaller_SkipUac_BENJMAIN.job
2015-03-27 21:43 - 2015-03-27 22:43 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-03-27 21:31 - 2015-03-28 01:11 - 00176639 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-27 21:30 - 2015-03-28 01:05 - 00000231 _____ () C:\WINDOWS\setupact.log
2015-03-27 21:30 - 2015-03-27 21:30 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-03-27 21:25 - 2015-03-27 21:25 - 00050158 _____ () C:\Users\BENJMAIN\Documents\cc_20150327_212507.reg
2015-03-27 21:21 - 2015-03-27 21:21 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\PCFixKit
2015-03-27 21:14 - 2015-03-27 21:14 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\Titanium
2015-03-27 21:14 - 2015-03-27 21:14 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\Apple Computer
2015-03-27 21:14 - 2015-03-27 21:14 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\Apple Computer
2015-03-27 19:19 - 2015-03-27 18:50 - 05615749 _____ (Swearware) C:\Users\Javon\Desktop\ComboFix.exe
2015-03-27 19:15 - 2015-03-27 18:50 - 05615749 ____N (Swearware) C:\Users\BENJMAIN\Desktop\ComboFix.exe
2015-03-27 18:24 - 2015-03-27 21:26 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\Deployment
2015-03-27 18:24 - 2015-03-27 18:24 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\Apps\2.0
2015-03-27 17:25 - 2015-03-27 17:25 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\Kodi
2015-03-27 16:32 - 2015-03-28 01:07 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-27 16:32 - 2015-03-27 16:32 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-03-27 16:32 - 2015-03-27 16:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-03-27 16:32 - 2015-03-17 06:15 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-03-27 16:32 - 2015-03-17 06:15 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-03-27 16:32 - 2015-03-17 06:15 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-03-27 16:10 - 2015-03-27 16:10 - 00001757 _____ () C:\Users\Javon\Desktop\chrome - Shortcut.lnk
2015-03-27 15:48 - 2015-03-27 21:49 - 00003926 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6FCE1FCA-2C5E-4C8E-A830-9097F011C573}
2015-03-27 15:48 - 2015-03-27 15:48 - 00000000 __SHD () C:\Users\BENJMAIN\AppData\Local\EmieUserList
2015-03-27 15:48 - 2015-03-27 15:48 - 00000000 __SHD () C:\Users\BENJMAIN\AppData\Local\EmieSiteList
2015-03-27 15:48 - 2015-03-27 15:48 - 00000000 __SHD () C:\Users\BENJMAIN\AppData\Local\EmieBrowserModeList
2015-03-27 15:46 - 2015-03-28 01:10 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2828251583-3788881194-2388449128-1014
2015-03-27 15:41 - 2015-03-27 15:41 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\Synaptics
2015-03-27 15:41 - 2015-03-27 15:41 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\ATI
2015-03-27 15:41 - 2015-03-27 15:41 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\ATI
2015-03-27 15:41 - 2015-03-27 15:41 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\AMD
2015-03-27 15:40 - 2015-03-27 20:03 - 00000000 ____D () C:\Users\BENJMAIN
2015-03-27 15:40 - 2015-03-27 18:24 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\Google
2015-03-27 15:40 - 2015-03-27 15:44 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\Packages
2015-03-27 15:40 - 2015-03-27 15:41 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\Adobe
2015-03-27 15:40 - 2015-03-27 15:40 - 00001406 _____ () C:\Users\BENJMAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-03-27 15:40 - 2015-03-27 15:40 - 00000020 ___SH () C:\Users\BENJMAIN\ntuser.ini
2015-03-27 15:40 - 2015-03-27 15:40 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\VirtualStore
2015-03-27 15:40 - 2015-03-12 11:53 - 00000000 ___RD () C:\Users\BENJMAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-27 15:40 - 2015-02-27 20:11 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\ProductData
2015-03-27 15:40 - 2015-02-27 20:11 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\IObit
2015-03-27 15:40 - 2015-01-30 10:44 - 00000000 ___RD () C:\Users\BENJMAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-27 15:40 - 2015-01-30 10:44 - 00000000 ___RD () C:\Users\BENJMAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-27 15:40 - 2014-05-28 12:18 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\TuneUp Software
2015-03-27 15:40 - 2014-03-04 23:18 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\Macromedia
2015-03-27 15:40 - 2014-02-22 00:37 - 00000369 _____ () C:\Users\BENJMAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-03-27 15:40 - 2014-02-22 00:37 - 00000369 _____ () C:\Users\BENJMAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-03-27 15:40 - 2014-01-08 07:36 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Local\Microsoft Help
2015-03-27 15:40 - 2013-08-22 11:36 - 00000000 ____D () C:\Users\BENJMAIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-03-27 15:34 - 2015-03-27 15:34 - 00003914 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8DCA2F0D-FE0D-41B8-A728-C1F02F9F3638}
2015-03-27 12:25 - 2015-03-27 12:25 - 00000000 ____D () C:\Users\Javon\AppData\Local\Deployment
2015-03-27 12:19 - 2015-03-27 12:19 - 00000000 __SHD () C:\Users\Javon\AppData\Local\EmieUserList
2015-03-27 12:19 - 2015-03-27 12:19 - 00000000 __SHD () C:\Users\Javon\AppData\Local\EmieSiteList
2015-03-27 12:19 - 2015-03-27 12:19 - 00000000 __SHD () C:\Users\Javon\AppData\Local\EmieBrowserModeList
2015-03-27 08:34 - 2015-03-27 08:35 - 00000000 ____D () C:\Users\Javon\Downloads\Supernatural.S10E16.HDTV.x264-LOL[ettv]
2015-03-27 08:34 - 2015-03-27 08:34 - 00025288 _____ () C:\Users\Javon\Downloads\[kickass.to]scandal.us.s04e17.hdtv.x264.killers.ettv (1).torrent
2015-03-27 08:34 - 2015-03-27 08:34 - 00019103 _____ () C:\Users\Javon\Downloads\[kickass.to]the.blacklist.s02e17.hdtv.x264.lol.ettv (1).torrent
2015-03-27 08:33 - 2015-03-27 08:33 - 00025288 _____ () C:\Users\Javon\Downloads\[kickass.to]scandal.us.s04e17.hdtv.x264.killers.ettv.torrent
2015-03-27 08:33 - 2015-03-27 08:33 - 00019103 _____ () C:\Users\Javon\Downloads\[kickass.to]the.blacklist.s02e17.hdtv.x264.lol.ettv.torrent
2015-03-27 08:33 - 2015-03-27 08:33 - 00016727 _____ () C:\Users\Javon\Downloads\[kickass.to]supernatural.s10e16.hdtv.x264.lol.ettv.torrent
2015-03-27 00:30 - 2015-03-27 16:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-03-27 00:30 - 2015-03-27 00:30 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-03-27 00:24 - 2015-03-27 00:24 - 00014128 _____ () C:\Users\Javon\Downloads\[kickass.to]malwarebytes.anti.malware.premium.2.1.4.1018.final.karanpc.torrent
2015-03-25 14:22 - 2015-03-25 14:22 - 00000000 ____D () C:\WINDOWS\LastGood
2015-03-25 13:23 - 2015-03-25 13:23 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2015-03-25 02:28 - 2015-03-10 22:38 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-03-25 02:28 - 2015-03-10 18:08 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-03-25 02:28 - 2015-03-10 18:08 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-03-25 02:28 - 2015-03-10 18:08 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-03-25 02:28 - 2015-03-10 18:08 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-03-25 02:28 - 2015-03-10 18:08 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-03-25 02:28 - 2015-03-10 18:08 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-03-24 16:30 - 2014-11-13 11:53 - 2349629522 _____ () C:\Users\Javon\Downloads\N900TUVUENK3_N900TTMBENK3_N900TUVUENK3_HOME.tar.md5
2015-03-24 15:54 - 2015-03-24 16:16 - 1536791505 _____ () C:\Users\Javon\Downloads\N900TUVUENK3_N900TTMBENK3_TMB-v4.4.2.zip
2015-03-24 11:24 - 2014-11-13 12:03 - 01677312 _____ (Samsung) C:\Users\Javon\Downloads\SS_DL.dll
2015-03-24 11:23 - 2015-02-24 15:56 - 2433269924 _____ () C:\Users\Javon\Downloads\N900TUVUFOB6_N900TTMBFOB6_N900TUVUFOB6_HOME.tar.md5
2015-03-24 11:08 - 2015-03-24 11:08 - 04017098 _____ () C:\Users\Javon\Downloads\UPDATE-SuperSU-v2.46.zip
2015-03-24 10:56 - 2015-03-24 10:56 - 13096960 _____ () C:\Users\Javon\Downloads\openrecovery-twrp-2.8.5.0-hltetmo-4.4.img.tar
2015-03-24 10:55 - 2015-03-24 11:05 - 1556790508 _____ () C:\Users\Javon\Downloads\TMB-N900TUVUFOB6-FULL.zip
2015-03-24 09:32 - 2015-03-24 10:23 - 00000000 ____D () C:\Users\Javon\Desktop\Odin v3.10.6
2015-03-24 09:32 - 2015-03-24 09:32 - 00006170 _____ () C:\Users\Javon\Downloads\[kickass.to]odin.v3.10.6.torrent
2015-03-24 09:12 - 2015-03-20 09:54 - 00335064 _____ () C:\WINDOWS\SysWOW64\VCL.dll
2015-03-24 08:47 - 2015-03-24 08:47 - 00000000 ____D () C:\ProgramData\2db7963800000133
2015-03-24 08:46 - 2015-03-24 08:46 - 00000000 ____D () C:\ProgramData\aa3cde0c00004f5b
2015-03-24 08:45 - 2015-03-27 13:44 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\43313539-1427201129-3041-3336-434531314531
2015-03-24 08:45 - 2015-03-24 08:45 - 00000000 ____D () C:\Program Files (x86)\predm
2015-03-24 08:42 - 2015-03-27 13:44 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\43313539-1427186520-3041-3336-434531314531
2015-03-24 08:42 - 2015-03-27 13:43 - 00000000 ____D () C:\Users\Javon\AppData\Local\43313539-1427186522-3041-3336-434531314531
2015-03-24 08:42 - 2015-03-24 08:47 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro 3.64
2015-03-24 08:40 - 2015-03-27 22:43 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\43313539-1427186456-3041-3336-434531314531
2015-03-24 08:38 - 2015-03-24 08:38 - 00659512 _____ () C:\Users\Javon\Downloads\Odin-V3.10.6.exe
2015-03-24 07:42 - 2015-03-24 07:42 - 01160783 _____ () C:\Users\Javon\Downloads\BasicInstallPrep.zip
2015-03-24 07:29 - 2015-03-24 08:40 - 1023194280 _____ () C:\Users\Javon\Downloads\Unconfirmed 560314.crdownload
2015-03-24 06:49 - 2015-03-24 06:50 - 00000000 ____D () C:\Users\Javon\Downloads\Shameless.US.S05E10.HDTV.x264-LOL[ettv]
2015-03-22 22:20 - 2015-03-22 22:27 - 1019961519 _____ () C:\Users\Javon\Downloads\DomPop.v5.zip
2015-03-22 15:51 - 2015-03-22 23:14 - 112898993 _____ () C:\Users\Javon\Downloads\DomPop.v.5.0.4-UPDATE.zip
2015-03-22 15:49 - 2015-03-22 16:07 - 87714997 _____ () C:\Users\Javon\Downloads\tekhd_recommended_bloat_v5.zip
2015-03-21 20:03 - 2015-03-21 20:03 - 00000000 ____D () C:\Users\Javon\Documents\FabFilter
2015-03-21 20:03 - 2015-03-21 20:03 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\FabFilter
2015-03-21 19:57 - 2015-03-21 19:57 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\iZotope
2015-03-19 15:22 - 2015-03-19 15:50 - 1241483804 _____ () C:\Users\Javon\Downloads\ViSXN900TUVUFOB6r1.zip
2015-03-19 15:19 - 2015-03-19 15:19 - 00047586 _____ () C:\Users\Javon\Downloads\ViSXN900TUVUFOB6r1.zip (1).torrent
2015-03-19 15:18 - 2015-03-19 15:18 - 00047586 _____ () C:\Users\Javon\Downloads\ViSXN900TUVUFOB6r1.zip.torrent
2015-03-18 20:07 - 2015-03-18 20:07 - 00000261 _____ () C:\Users\Javon\Downloads\advancedsettings.xml (1).zip
2015-03-18 19:57 - 2015-03-18 19:57 - 00000261 _____ () C:\Users\Javon\Downloads\advancedsettings.xml.zip
2015-03-18 19:08 - 2015-03-18 22:39 - 00000204 ____H () C:\Users\Javon\.swfinfo
2015-03-18 17:48 - 2015-03-18 17:48 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2015-03-18 14:47 - 2015-03-18 14:47 - 00175978 _____ () C:\Users\Javon\Downloads\SuperTV-1.105.7.zip
2015-03-18 11:11 - 2015-03-26 10:59 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\Kodi
2015-03-18 11:03 - 2015-03-18 17:48 - 00000000 ____D () C:\Program Files (x86)\Kodi
2015-03-18 10:51 - 2015-03-18 11:03 - 71110753 _____ () C:\Users\Javon\Downloads\kodi-14.2-Helix_rc1 (1).exe
2015-03-16 18:43 - 2015-03-16 18:45 - 00000000 ____D () C:\Users\Javon\Desktop\Kick Drum Melody
2015-03-16 14:30 - 2015-03-16 14:30 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\MusicLab
2015-03-14 09:52 - 2015-03-27 13:22 - 00000000 ____D () C:\Users\Javon\Downloads\AVG Internet Security 2015 15.0.5576 + Serial [TechTools.net]
2015-03-14 09:36 - 2015-03-14 09:36 - 00000000 ____D () C:\Users\Javon\AppData\Local\MFAData
2015-03-13 19:23 - 2015-03-13 19:23 - 06924208 _____ () C:\Users\Javon\Downloads\FREESTYLE
2015-03-13 12:18 - 2015-03-13 12:18 - 00000000 ____D () C:\Users\Javon\AppData\Local\112dB
2015-03-12 17:41 - 2015-03-14 02:53 - 00004946 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for JAVON-Javon Javon
2015-03-11 16:28 - 2015-02-06 19:09 - 00396419 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-03-11 16:28 - 2015-02-03 19:58 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-03-11 16:28 - 2015-02-03 19:58 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-03-11 16:28 - 2015-02-03 19:58 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-03-11 16:28 - 2015-02-02 19:53 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-03-11 16:28 - 2015-02-02 19:53 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-03-11 16:28 - 2015-01-26 23:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-03-11 16:28 - 2015-01-23 21:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-03-11 16:28 - 2015-01-23 03:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-03-11 16:28 - 2015-01-23 01:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-03-11 16:27 - 2015-03-05 22:53 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-03-11 16:27 - 2015-03-05 22:33 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-03-11 16:27 - 2015-02-25 19:26 - 04178944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-03-11 16:27 - 2015-01-28 21:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-03-11 16:27 - 2015-01-28 21:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-03-11 16:22 - 2015-02-19 23:03 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-03-11 16:22 - 2015-02-19 22:58 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-03-11 16:22 - 2015-02-19 22:20 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-03-11 16:22 - 2015-02-19 22:15 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-03-11 16:22 - 2015-02-05 16:24 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-03-11 16:22 - 2015-01-30 19:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-03-11 16:22 - 2015-01-30 19:29 - 02484224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-03-11 16:22 - 2015-01-28 21:04 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-03-11 16:22 - 2015-01-28 21:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-03-11 16:19 - 2015-01-29 23:01 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2DP.sys
2015-03-11 16:19 - 2015-01-29 23:01 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-03-11 16:19 - 2015-01-29 23:00 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-03-11 16:14 - 2015-02-05 21:28 - 02257408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-03-11 16:14 - 2015-02-05 21:08 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-03-11 16:09 - 2015-02-02 20:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-03-11 16:09 - 2015-02-02 20:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-03-11 16:09 - 2015-01-29 22:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-03-11 16:09 - 2015-01-29 22:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-03-11 16:09 - 2015-01-29 21:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-03-11 16:09 - 2015-01-29 21:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-03-11 16:09 - 2015-01-29 21:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-03-11 16:09 - 2015-01-28 21:11 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-11 16:09 - 2015-01-28 21:00 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-11 16:09 - 2015-01-28 20:59 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-03-11 16:09 - 2015-01-28 20:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-03-11 16:09 - 2015-01-28 20:50 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-03-11 16:09 - 2015-01-28 20:49 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-03-11 16:09 - 2015-01-27 22:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-03-11 16:09 - 2015-01-27 21:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-03-11 16:01 - 2015-01-30 19:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-03-11 16:01 - 2015-01-28 11:41 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-03-11 16:01 - 2015-01-28 11:41 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-03-11 16:01 - 2015-01-28 11:41 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-03-11 15:56 - 2015-01-29 22:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-03-11 15:56 - 2015-01-29 21:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-03-11 15:56 - 2015-01-29 21:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-03-11 15:56 - 2015-01-29 21:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-03-11 15:56 - 2015-01-29 21:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-03-11 15:56 - 2015-01-29 21:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-03-11 15:56 - 2015-01-29 21:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-03-11 15:56 - 2015-01-29 21:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-03-11 15:56 - 2015-01-27 00:22 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-03-11 15:56 - 2015-01-26 22:11 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-03-11 15:54 - 2015-02-20 21:16 - 25021440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-03-11 15:54 - 2015-02-20 20:41 - 12827648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-03-11 15:54 - 2015-02-20 20:27 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-03-11 15:54 - 2015-02-20 20:27 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-03-11 15:54 - 2015-02-20 20:25 - 19720192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-03-11 15:54 - 2015-02-20 19:58 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-03-11 15:54 - 2015-02-20 19:32 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-03-11 15:54 - 2015-02-19 22:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-03-11 15:54 - 2015-02-19 22:48 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-03-11 15:54 - 2015-02-19 22:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-03-11 15:54 - 2015-02-19 22:35 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-03-11 15:54 - 2015-02-19 22:34 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-03-11 15:54 - 2015-02-19 22:32 - 06035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-03-11 15:54 - 2015-02-19 22:09 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-03-11 15:54 - 2015-02-19 22:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-03-11 15:54 - 2015-02-19 22:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-03-11 15:54 - 2015-02-19 22:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-03-11 15:54 - 2015-02-19 22:03 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-03-11 15:54 - 2015-02-19 21:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-03-11 15:54 - 2015-02-19 21:56 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-03-11 15:54 - 2015-02-19 21:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-03-11 15:54 - 2015-02-19 21:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-03-11 15:54 - 2015-02-19 21:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-03-11 15:54 - 2015-02-19 21:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-03-11 15:54 - 2015-02-19 21:43 - 14398976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-03-11 15:54 - 2015-02-19 21:30 - 04300288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-03-11 15:54 - 2015-02-19 21:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-03-11 15:54 - 2015-02-19 21:29 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-03-11 15:54 - 2015-02-19 21:28 - 02358784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-03-11 15:54 - 2015-02-19 21:26 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-03-11 15:54 - 2015-02-19 21:24 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-03-11 15:54 - 2015-02-19 21:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-03-11 15:54 - 2015-02-19 21:16 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-03-11 15:54 - 2015-02-19 21:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-03-11 15:54 - 2015-02-19 21:01 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-03-11 15:54 - 2015-02-19 20:57 - 01311232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-03-11 15:54 - 2015-02-19 20:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-03-11 15:53 - 2015-02-12 13:40 - 22291584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-03-11 15:53 - 2015-02-12 13:34 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-03-11 15:53 - 2015-01-29 14:45 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-03-11 15:53 - 2015-01-29 14:34 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-03-11 15:53 - 2014-12-11 01:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-03-11 15:52 - 2015-02-07 19:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-03-11 15:52 - 2015-02-07 19:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-03-11 15:52 - 2015-01-27 21:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-03-11 15:52 - 2015-01-27 21:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-03-11 15:52 - 2015-01-27 19:47 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-03-11 15:52 - 2015-01-27 19:41 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-03-11 15:52 - 2015-01-21 01:54 - 01384712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-03-11 15:52 - 2015-01-21 01:15 - 01123848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-03-06 10:31 - 2015-03-06 10:31 - 162927577 _____ () C:\Users\Javon\Downloads\gapps-lp-20141109-signed.zip
2015-03-06 10:15 - 2015-03-06 10:17 - 264911412 _____ () C:\Users\Javon\Downloads\cm-12-20150304-NIGHTLY-hltetmo.zip
2015-03-06 09:19 - 2015-03-06 09:21 - 264961533 _____ () C:\Users\Javon\Downloads\cm-12-20150304-NIGHTLY-hlte.zip
2015-03-05 00:16 - 2015-03-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-03-04 22:48 - 2015-03-15 11:09 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics
2015-03-04 22:24 - 2015-03-04 22:24 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2015-03-04 22:22 - 2015-03-04 22:22 - 00831488 _____ () C:\Users\Javon\Downloads\Detection.msi
2015-03-03 16:40 - 2015-03-03 16:40 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\IDT
2015-03-03 01:26 - 2015-03-03 01:26 - 00074552 _____ () C:\Users\Javon\Downloads\wicked_dak_1_0_beta_by_designbymichaels-d71ksvd.rmskin
2015-03-03 01:18 - 2015-03-03 01:18 - 00522047 _____ () C:\Users\Javon\Downloads\textime_1_01_rainmeter_skin__by_jlynnxx-d65iqux.rmskin
2015-03-03 01:04 - 2015-03-27 13:44 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\Rainmeter
2015-03-03 01:04 - 2015-03-03 01:04 - 00001678 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2015-03-03 01:04 - 2015-03-03 01:04 - 00000000 ____D () C:\Users\Javon\Documents\Rainmeter
2015-03-03 01:04 - 2015-03-03 01:04 - 00000000 ____D () C:\Program Files\Rainmeter
2015-03-03 01:03 - 2015-03-03 01:03 - 02330856 _____ () C:\Users\Javon\Downloads\Rainmeter-3.2-r2378-beta.exe
2015-03-02 17:37 - 2015-03-02 17:38 - 06446245 _____ () C:\Users\Javon\Downloads\vsthostx64.zip
2015-03-02 17:23 - 2015-03-02 17:23 - 00306456 _____ () C:\Users\Javon\Downloads\savihostx64.zip
2015-03-01 18:39 - 2015-03-01 22:53 - 00000000 ____D () C:\Users\Javon\Downloads\[R.G. Mechanics] Call of Duty - Advanced Warfare
2015-02-28 15:10 - 2015-02-28 15:10 - 00000000 ____D () C:\Users\Javon\AppData\Local\Apple
2015-02-28 13:08 - 2015-02-28 13:08 - 00002868 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Javon)
2015-02-27 20:12 - 2015-02-27 20:12 - 00000000 ____D () C:\Users\Guest.Javon\AppData\Roaming\ProductData
2015-02-27 20:11 - 2015-02-27 20:11 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\IObit
2015-02-27 20:11 - 2015-02-27 20:11 - 00000000 ____D () C:\Users\Default\AppData\Roaming\ProductData
2015-02-27 20:11 - 2015-02-27 20:11 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\ProductData
2015-02-27 01:20 - 2015-02-27 01:23 - 193657053 ____R () C:\Users\Javon\Downloads\Lex Luger and Luger Smoked Out Drum Kits.zip
2015-02-27 01:20 - 2015-02-27 01:22 - 00000000 ____D () C:\Users\Javon\Downloads\One Hit Drum Kits Collection by SJD
2015-02-27 01:19 - 2015-02-27 01:23 - 518048134 ____R () C:\Users\Javon\Producer Kits.rar
2015-02-27 00:17 - 2015-02-27 00:17 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\Image-Line
2015-02-26 23:39 - 2015-02-26 23:39 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\PreSonus
2015-02-26 19:28 - 2015-02-26 19:28 - 00000000 ____D () C:\Users\Benjamin\Documents\Helios Ray Library
2015-02-26 19:05 - 2015-02-28 21:57 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\Waves Audio
2015-02-26 19:05 - 2015-02-26 19:05 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\AMD
2015-02-26 18:06 - 2015-02-26 18:12 - 17083770 _____ () C:\Users\Javon\Downloads\ovo-sound-kit.zip
2015-02-26 18:05 - 2015-02-26 18:06 - 07462200 _____ () C:\Users\Javon\Downloads\triton-drum-kit.zip
2015-02-26 00:15 - 2015-02-26 00:15 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\MPC-HC
2015-02-26 00:00 - 2015-02-26 00:00 - 00000346 _____ () C:\WINDOWS\Tasks\0215aviUpdateInfo.job
2015-02-26 00:00 - 2015-02-26 00:00 - 00000000 ____D () C:\ProgramData\Avg_Update_0215avi
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-31 12:13 - 2014-01-05 16:21 - 00003926 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CAB6B073-F939-479D-BF2C-840DCCFDCBAB}
2015-03-28 01:17 - 2015-02-23 11:20 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\uTorrent
2015-03-28 01:10 - 2015-02-18 20:25 - 00003758 _____ () C:\WINDOWS\System32\Tasks\AutoKMS
2015-03-28 01:06 - 2014-10-12 16:05 - 00000434 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-03-28 01:06 - 2014-02-18 16:22 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-03-28 01:06 - 2014-01-05 22:13 - 00000914 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-28 01:05 - 2015-02-20 16:48 - 00001360 _____ () C:\WINDOWS\Tasks\EDAAL.job
2015-03-28 01:05 - 2014-12-30 20:34 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-03-28 01:05 - 2014-02-28 07:46 - 00000000 ____D () C:\ProgramData\MFAData
2015-03-28 01:05 - 2014-02-16 19:20 - 00055243 _____ () C:\WINDOWS\mlkumidi.log
2015-03-28 01:05 - 2013-08-22 10:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-28 01:02 - 2013-08-22 11:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2015-03-28 01:00 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-03-28 00:28 - 2014-12-30 20:36 - 00000000 ___HD () C:\$AVG
2015-03-28 00:24 - 2014-03-13 10:47 - 00000932 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2828251583-3788881194-2388449128-1001UA.job
2015-03-28 00:09 - 2014-01-05 22:13 - 00000918 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-27 22:43 - 2015-02-20 16:44 - 00000000 ____D () C:\Users\Benjamin\AppData\Roaming\43313539-1424447069-3041-3336-434531314531
2015-03-27 22:43 - 2015-02-20 16:32 - 00000000 ____D () C:\Users\Benjamin\AppData\Roaming\43313539-1424446368-3041-3336-434531314531
2015-03-27 22:43 - 2015-02-20 16:18 - 00000000 ____D () C:\Users\Benjamin\Downloads\Laplink PCMover Pro 2014 Latest Version Kazi4S@bbir
2015-03-27 22:43 - 2014-07-10 20:30 - 00000000 ____D () C:\Program Files\Windows KMS Activator Ultimate 2014 v2.2
2015-03-27 21:23 - 2015-02-23 00:09 - 00002778 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-03-27 19:24 - 2015-02-23 10:15 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2828251583-3788881194-2388449128-1013
2015-03-27 19:18 - 2015-02-23 11:18 - 00000000 ___DO () C:\Users\Javon\OneDrive
2015-03-27 19:15 - 2015-02-23 09:24 - 00000000 ____D () C:\Users\Javon
2015-03-27 18:18 - 2013-08-22 09:25 - 01048576 ___SH () C:\WINDOWS\system32\config\BBI
2015-03-27 17:24 - 2014-03-13 10:47 - 00000880 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2828251583-3788881194-2388449128-1001Core.job
2015-03-27 16:36 - 2014-02-28 08:22 - 00338232 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-27 15:49 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-03-27 15:41 - 2014-01-05 15:45 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2015-03-27 15:18 - 2015-02-24 11:38 - 00003354 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Javon
2015-03-27 13:45 - 2015-02-23 08:25 - 00000000 ____D () C:\Users\Guest.Javon
2015-03-27 13:45 - 2014-01-06 00:37 - 00000000 ____D () C:\Users\Javon1
2015-03-27 13:45 - 2014-01-06 00:37 - 00000000 ____D () C:\Users\Benjamin
2015-03-27 13:44 - 2015-02-23 10:06 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\ProductData
2015-03-27 13:44 - 2015-02-23 09:24 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\IObit
2015-03-27 13:43 - 2015-02-20 16:46 - 00000000 ____D () C:\Users\Benjamin\AppData\Local\SmartWeb
2015-03-27 13:43 - 2015-02-20 16:37 - 00000000 ____D () C:\Users\Benjamin\AppData\Local\43313539-1424446672-3041-3336-434531314531
2015-03-27 13:43 - 2015-02-17 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo PCTrans 8.0
2015-03-27 13:43 - 2015-02-14 04:40 - 00000000 ____D () C:\ProgramData\ProductData
2015-03-27 13:23 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\registration
2015-03-27 13:22 - 2015-02-23 09:24 - 00000000 ____D () C:\Users\Javon\AppData\Local\Packages
2015-03-27 13:20 - 2015-02-20 16:29 - 00000000 ____D () C:\ProgramData\micron
2015-03-27 13:19 - 2015-02-17 15:36 - 00000000 ____D () C:\Program Files (x86)\EaseUS
2015-03-27 13:19 - 2014-01-05 22:13 - 00000000 ____D () C:\Program Files (x86)\Google
2015-03-27 12:42 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-03-27 12:25 - 2015-02-23 10:56 - 00000000 ____D () C:\Users\Javon\AppData\Local\Apps\2.0
2015-03-25 08:38 - 2014-12-11 00:07 - 00000000 ____D () C:\WINDOWS\system32\appraiser
2015-03-25 08:38 - 2014-07-10 10:37 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2015-03-25 04:42 - 2013-08-22 11:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-03-23 15:51 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\LiveKernelReports
2015-03-21 19:56 - 2013-10-07 13:16 - 00000000 ____D () C:\Users\Javon\Documents\Native Instruments
2015-03-18 16:44 - 2014-12-30 20:36 - 00000000 ____D () C:\ProgramData\AVG2015
2015-03-18 11:08 - 2014-01-15 05:21 - 00000000 ____D () C:\ProgramData\Package Cache
2015-03-14 09:53 - 2013-08-22 11:36 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2015-03-14 08:06 - 2014-01-19 14:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-03-13 14:51 - 2013-08-22 09:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2015-03-13 06:53 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-03-12 12:03 - 2013-08-22 10:44 - 06866512 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-12 11:53 - 2013-08-22 11:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-03-12 11:53 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-12 11:53 - 2013-08-22 11:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-12 11:53 - 2013-08-22 11:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-12 11:53 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-03-12 11:53 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2015-03-12 11:53 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-03-12 11:53 - 2013-08-22 11:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-03-11 18:53 - 2014-01-06 20:17 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-03-11 18:53 - 2014-01-06 19:34 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-11 18:21 - 2014-01-05 16:44 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-03-11 18:21 - 2013-08-22 09:25 - 00000167 _____ () C:\WINDOWS\win.ini
2015-03-11 18:09 - 2014-01-05 16:44 - 122905848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-03-11 09:32 - 2015-02-23 09:24 - 00000000 ____D () C:\Users\Javon\AppData\Local\Google
2015-03-04 17:24 - 2015-01-30 10:57 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-03-04 17:24 - 2015-01-30 10:57 - 00178144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-03 00:56 - 2014-01-29 12:00 - 00000000 ____D () C:\WINDOWS\Minidump
2015-03-01 16:51 - 2014-09-12 18:04 - 00000000 ____D () C:\Program Files\pia_manager
2015-02-28 13:25 - 2015-02-21 12:32 - 00000000 ____D () C:\ProgramData\Acronis
2015-02-28 13:07 - 2015-02-23 11:22 - 00000000 ____D () C:\Users\Javon\AppData\Roaming\Azureus
2015-02-27 20:11 - 2015-02-25 12:46 - 00000000 ____D () C:\Users\Default\AppData\Roaming\IObit
2015-02-27 20:11 - 2015-02-25 12:46 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\IObit
2015-02-26 19:28 - 2015-02-23 11:47 - 00000000 ____D () C:\Users\Javon\AppData\Local\Native Instruments
==================== Files in the root of some directories =======
2014-01-08 11:00 - 2014-01-08 11:00 - 2387968 _____ (Waves Audio Ltd.) C:\Program Files\WaveShell-VST 9.2_x64.dll
2014-01-14 22:13 - 2009-10-24 03:00 - 5811712 _____ (reFX) C:\Program Files (x86)\Nexus.dll
2014-01-08 11:00 - 2014-01-08 11:00 - 1732608 _____ (Waves Audio Ltd.) C:\Program Files (x86)\WaveShell-VST 9.2.dll
Some content of TEMP:
====================
C:\Users\Benjamin\AppData\Local\Temp\1ABE0482-DFC1-E888-DB66-3EEC5D6B57BB.dll
C:\Users\Benjamin\AppData\Local\Temp\8811.exe
C:\Users\Benjamin\AppData\Local\Temp\917b0b87-3358-4e79-93de-3dfc2fc99ed0.exe
C:\Users\Benjamin\AppData\Local\Temp\amd-catalyst-omega-14.12-without-dotnet45-win8.1-64bit.exe
C:\Users\Benjamin\AppData\Local\Temp\i4jdel0.exe
C:\Users\Benjamin\AppData\Local\Temp\installer.exe
C:\Users\Benjamin\AppData\Local\Temp\Quarantine.exe
C:\Users\Benjamin\AppData\Local\Temp\SpOrder.dll
C:\Users\Benjamin\AppData\Local\Temp\Uninstall.exe
C:\Users\BENJMAIN\AppData\Local\Temp\HitmanPro.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-23 14:03
==================== End Of Log ============================
![Fixlist help [Closed] - last post by JSntgRvr](https://www.geekstogo.com/forum/uploads/av-143426.jpg?_r=0)
![Help with finding FIXLIST file from FRST program... [Solved] - last post by Essexboy](https://www.geekstogo.com/forum/uploads/profile/photo-177837.gif?_r=1396965007)
Sign In
Create Account
