Sorry it's been a busy few days with Christmas! Here is my scan
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:30-12-2015
Ran by Lisa Manis (administrator) on LISAMANIS-PC (30-12-2015 10:51:12)
Running from C:\Users\Lisa Manis\Downloads
Loaded Profiles: Lisa Manis (Available Profiles: Lisa Manis)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Audible, Inc.) C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [CnxtCoInstallerDefer] => C:\Program Files\CONEXANT\PREINSTALL\SETUP564238410\KESLYN.EXE [1574528 2010-12-15] (Conexant Systems, Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1424896 2011-09-08] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-10-16] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-23] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-311360127-3291622852-1042216310-1000\...\MountPoints2: {1654bfa4-a987-11e5-ad45-78e3b55c506f} - G:\VZW_Software_upgrade_assistant.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-23] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk [2015-12-18]
ShortcutTarget: Audible Download Manager.lnk -> C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe (Audible, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.203.226 205.171.2.226
Tcpip\..\Interfaces\{4848D22D-C616-40E1-8546-0C6E309B0C0F}: [DhcpNameServer] 67.142.166.10 67.142.166.11
Tcpip\..\Interfaces\{CD1D6664-1187-4454-B092-6AA4538C1F2E}: [DhcpNameServer] 192.168.0.1 205.171.203.226 205.171.2.226
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
HKU\S-1-5-21-311360127-3291622852-1042216310-1000\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-24] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-24] (AVAST Software)
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-07] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-23]
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-23]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Lisa Manis\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Lisa Manis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-10]
CHR Extension: (YouTube) - C:\Users\Lisa Manis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-10]
CHR Extension: (Google Search) - C:\Users\Lisa Manis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lisa Manis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-10]
CHR Extension: (Gmail) - C:\Users\Lisa Manis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-10]
CHR HKLM-x32\...\Chrome\Extension: [emhginjpijfggbofeediiojmdlmlkoik] - C:\Program Files\AVAST Software\Avast\pam\Chrome\pam.crx [2015-12-23]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-24]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-23] (AVAST Software)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-23] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-23] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-23] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-23] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-12-30 10:51 - 2015-12-30 10:51 - 00010097 _____ C:\Users\Lisa Manis\Downloads\FRST.txt
2015-12-30 10:49 - 2015-12-30 10:51 - 00000000 ____D C:\FRST
2015-12-30 10:49 - 2015-12-30 10:49 - 02370560 _____ (Farbar) C:\Users\Lisa Manis\Downloads\FRST64.exe
2015-12-23 16:23 - 2015-12-23 16:23 - 00004420 _____ C:\Users\Lisa Manis\Downloads\ChristmasWedding.odm
2015-12-23 16:16 - 2015-12-23 16:16 - 00005365 _____ C:\Users\Lisa Manis\Downloads\CowboyforChristmas.odm
2015-12-23 16:12 - 2015-12-23 16:12 - 00005231 _____ C:\Users\Lisa Manis\Downloads\HisChristmasPleasure.odm
2015-12-23 13:57 - 2015-12-23 10:07 - 00386096 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-12-23 13:53 - 2015-12-23 13:53 - 05066104 _____ (AVAST Software) C:\Users\Lisa Manis\Downloads\avast_free_antivirus_setup_online_cnet2.exe
2015-12-23 13:05 - 2015-12-23 13:05 - 00000000 ____D C:\Users\Public\Documents\Verizon2.0_Log
2015-12-23 13:05 - 2015-12-23 13:05 - 00000000 ____D C:\Users\Lisa Manis\AppData\Roaming\VERIZON
2015-12-23 13:01 - 2015-12-23 13:01 - 00000000 ____D C:\Users\Lisa Manis\Desktop\New folder (2)
2015-12-23 12:59 - 2015-12-23 12:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2015-12-23 10:07 - 2015-12-23 10:07 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-12-23 10:01 - 2015-12-23 10:01 - 05066096 _____ (AVAST Software) C:\Users\Lisa Manis\Downloads\avast_free_antivirus_setup_online (1).exe
2015-12-18 16:38 - 2015-12-18 16:38 - 00000399 _____ C:\Users\Lisa Manis\Downloads\admhelper (3).adh
2015-12-18 16:37 - 2015-12-18 16:37 - 00000399 _____ C:\Users\Lisa Manis\Downloads\BK_RAND_004320_LC_64_22050_ster_z9g3NG7SzBc5VDV5ZcTu_a2oy812bhU0RD1OmdzQRUBXfua_U-hv3zoub6v3Ew.adh
2015-12-18 16:31 - 2015-12-18 16:31 - 00000399 _____ C:\Users\Lisa Manis\Downloads\admhelper (1).adh
2015-12-18 16:21 - 2015-12-18 16:21 - 00000399 _____ C:\Users\Lisa Manis\Downloads\BK_RAND_004320_LC_64_22050_ster_qNv3xXXSUrte7ulDkErT_laanwHO4arMPKDIDXEuNY04nnZtMTq3dDkUhfDxww.adh
2015-12-18 16:21 - 2015-12-18 16:21 - 00000399 _____ C:\Users\Lisa Manis\Downloads\admhelper.adh
2015-12-18 16:15 - 2015-12-18 16:15 - 00000000 ____D C:\Users\Public\Documents\Audible
2015-12-18 16:07 - 2015-12-18 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager
2015-12-18 16:07 - 2015-12-18 16:07 - 00000000 ____D C:\Program Files (x86)\Audible
2015-12-18 16:06 - 2015-12-18 16:06 - 02025792 _____ (Audible, Inc.) C:\Users\Lisa Manis\Downloads\AudibleDM_iTunesSetup.exe
2015-12-18 16:06 - 2015-12-18 16:06 - 02025792 _____ (Audible, Inc.) C:\Users\Lisa Manis\Downloads\AudibleDM_iTunesSetup (1).exe
2015-12-18 16:03 - 2015-12-18 16:03 - 00000399 _____ C:\Users\Lisa Manis\Downloads\admhelper (1)
2015-12-18 15:59 - 2015-12-18 15:59 - 00000399 _____ C:\Users\Lisa Manis\Downloads\admhelper
2015-12-18 13:51 - 2015-12-18 13:51 - 00000000 ____D C:\Users\Lisa Manis\Desktop\New folder
2015-12-16 13:12 - 2015-12-16 13:12 - 00004872 _____ C:\Users\Lisa Manis\Downloads\TroublemakerSurvivingHollywoodandScientology-62185 (1).odm
2015-12-16 13:12 - 2015-12-16 13:12 - 00000000 ____D C:\Users\Lisa Manis\AppData\Roaming\OverDrive
2015-12-16 13:10 - 2015-12-16 13:10 - 00002178 _____ C:\Users\Public\Desktop\Adobe Digital Editions 4.5.lnk
2015-12-16 13:10 - 2015-12-16 13:10 - 00000000 ____D C:\Users\Lisa Manis\AppData\Local\Adobe_Systems_Incorporate
2015-12-16 13:08 - 2015-12-16 13:08 - 08532144 _____ (Adobe Systems Incorporated) C:\Users\Lisa Manis\Downloads\ADE_4.5_Installer.exe
2015-12-16 13:05 - 2015-12-16 13:05 - 00002521 _____ C:\Users\Public\Desktop\OverDrive for Windows.lnk
2015-12-16 13:05 - 2015-12-16 13:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OverDrive for Windows
2015-12-16 13:05 - 2015-12-16 13:05 - 00000000 ____D C:\Program Files (x86)\OverDrive for Windows
2015-12-16 13:00 - 2015-12-16 13:00 - 04405248 _____ C:\Users\Lisa Manis\Downloads\ODMediaConsoleSetup.msi
2015-12-16 12:57 - 2015-12-16 12:57 - 00004872 _____ C:\Users\Lisa Manis\Downloads\TroublemakerSurvivingHollywoodandScientology-62185.odm
2015-12-07 19:07 - 2015-12-07 19:07 - 00000000 ____D C:\Users\Lisa Manis\AppData\Local\ElevatedDiagnostics
2015-12-03 17:11 - 2015-12-03 17:11 - 00001610 _____ C:\Users\Lisa Manis\AppData\Local\recently-used.xbel
2015-12-03 16:37 - 2015-12-03 16:37 - 00000000 ____D C:\Users\Lisa Manis\AppData\Local\webkit
2015-12-03 16:01 - 2015-12-03 17:11 - 00000000 ____D C:\Users\Lisa Manis\AppData\Local\gtk-2.0
2015-12-03 15:59 - 2015-12-03 15:59 - 00000000 ____D C:\Users\Lisa Manis\.thumbnails
2015-12-03 10:33 - 2015-12-03 10:33 - 00000000 ____D C:\Users\Lisa Manis\AppData\Local\AVAST Software
2015-12-03 10:32 - 2015-12-03 10:32 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2015-12-03 10:31 - 2015-12-03 10:31 - 00000000 ____D C:\Program Files\Common Files\AV
2015-11-30 16:24 - 2015-11-30 16:24 - 00014335 _____ C:\Users\Lisa Manis\Downloads\Calvin Lance Mauk (1).pdf
2015-11-30 16:08 - 2015-11-30 16:08 - 00014335 _____ C:\Users\Lisa Manis\Downloads\Calvin Lance Mauk.pdf
2015-11-30 12:32 - 2015-12-23 21:41 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-30 12:31 - 2015-11-30 12:31 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-30 12:31 - 2015-11-30 12:31 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-30 12:31 - 2015-11-30 12:31 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-30 12:31 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-11-30 12:31 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-11-30 12:31 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-11-30 12:27 - 2015-11-30 12:27 - 22908888 _____ (Malwarebytes ) C:\Users\Lisa Manis\Downloads\mbam-setup-2.2.0.1024 (1).exe
2015-11-30 12:26 - 2015-11-30 12:27 - 22908888 _____ (Malwarebytes ) C:\Users\Lisa Manis\Downloads\mbam-setup-2.2.0.1024.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-12-30 10:50 - 2009-07-13 22:20 - 00000000 ____D C:\Windows
2015-12-30 10:45 - 2009-07-13 23:45 - 00022544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-30 10:45 - 2009-07-13 23:45 - 00022544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-30 10:43 - 2009-07-14 00:13 - 00781790 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-30 10:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\inf
2015-12-30 10:36 - 2015-11-10 11:59 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-30 10:36 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-23 13:57 - 2015-11-24 14:09 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-12-23 13:57 - 2015-11-24 14:09 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-12-23 13:57 - 2015-11-24 14:08 - 00451040 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-12-23 13:57 - 2015-11-24 14:08 - 00097648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-12-23 10:07 - 2015-11-24 14:08 - 00273784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-12-23 10:07 - 2015-11-24 14:08 - 00155304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-12-23 10:07 - 2015-11-24 14:08 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-12-23 10:07 - 2015-11-24 14:08 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-12-23 10:07 - 2015-11-24 14:08 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-12-23 10:06 - 2015-11-24 14:08 - 01055560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-12-16 15:12 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF
2015-12-16 13:09 - 2015-11-10 20:24 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-12-16 13:09 - 2015-11-07 21:23 - 00000000 ____D C:\Users\Lisa Manis\Documents\My Digital Editions
2015-12-11 10:44 - 2015-11-10 12:37 - 00000000 ____D C:\Users\Lisa Manis\.gimp-2.8
2015-12-08 10:59 - 2015-11-10 11:59 - 00000000 ____D C:\Users\Lisa Manis\AppData\Local\Google
2015-12-07 17:05 - 2015-11-10 11:59 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-07 17:05 - 2015-11-10 11:59 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-07 17:05 - 2015-11-10 11:59 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-03 15:59 - 2015-11-09 11:12 - 00000000 ____D C:\Users\Lisa Manis
2015-12-03 11:37 - 2015-11-09 11:15 - 00000000 ____D C:\Users\Lisa Manis\AppData\Local\VirtualStore
2015-11-30 12:10 - 2015-11-10 20:24 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories =======
2015-12-03 17:11 - 2015-12-03 17:11 - 0001610 _____ () C:\Users\Lisa Manis\AppData\Local\recently-used.xbel
Some files in TEMP:
====================
C:\Users\Lisa Manis\AppData\Local\Temp\AudibleDM_iTunesSetup.exe
C:\Users\Lisa Manis\AppData\Local\Temp\NetFramework45.exe
C:\Users\Lisa Manis\AppData\Local\Temp\SAMSUNG_USB_Driver_for_Mobile_Phones.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-12-23 12:45
==================== End of FRST.txt ============================