Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Sneeky Malware on Windows 10 Dell Laptop

Dell Windows 10 Malware Hidden Background

  • Please log in to reply

#1
wind10hlp

wind10hlp

    New Member

  • Member
  • Pip
  • 1 posts

Hello, geekstogo, I seem to have a virus infection. A couple weeks ago, I was browsing Google and one of the pages I stumbled upon opened up one of those javascript prompts saying the whole "YOU'VE BEEN INFECTED..." spiel and I don't know if it's noteworthy but the prompt also mentioned an option to pay to get a virus un-installed. I could not close the tab or even the window so I had to turn my computer off physically. Anyway, after I turn off my computer, I figure that that page was probably dangerous so I reset Windows (the option that says "Remove files and clean the drive."). After resetting, I haven't stumbled over many problems but many of the things in the control panel have been really fishy (like disk being near 100% and anti-virus programs using a lot of resources). I am no expert but I suspect there is an exploit going on with ​McAfee or some other program (considering the fact that it turned off my firewall through McAfee setting (I uninstalled McAfee after this)). I also think it's worth noting that Avira could not scan a folder (it was hidden in C: and named "$WINDOWS.~BT") when I did a full scan today. McAfee also did not return any threats when I used it to scan my computer (figures). I am not completely sure of what else to share about my experience so definitely ask questions if you need more information. Please help soon because either this thing has a mind of it's own or is being remote controlled.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-12-2015
Ran by E2C (administrator) on DESKTOP-73U4UPC (26-12-2015 19:29:23)
Running from C:\Users\E2C\Downloads
Loaded Profiles: E2C (Available Profiles: E2C)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
() C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell) C:\Program Files\Dell\Dell Data Services\DDSSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
() C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell) C:\Program Files\Dell\Product Registration\PRSvc.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
 

==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8495320 2015-06-23] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [611248 2015-05-26] (Waves Audio Ltd.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-12-08] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [803200 2015-12-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [14408 2015-12-16] (Avira Operations GmbH & Co. KG)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0db5fdc6-99fb-402e-9a6d-fe2f881d9bcf}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
HKU\S-1-5-21-1199668086-3105664550-3261884340-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell15.msn.com/?pc=DCTE
HKU\S-1-5-21-1199668086-3105664550-3261884340-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-1199668086-3105664550-3261884340-1001 -> DefaultScope {E8F9898D-3059-48E6-B32C-EE2421A2ABD1} URL =
SearchScopes: HKU\S-1-5-21-1199668086-3105664550-3261884340-1001 -> {E8F9898D-3059-48E6-B32C-EE2421A2ABD1} URL =
 
FireFox:
========
FF ProfilePath: C:\Users\E2C\AppData\Roaming\Mozilla\Firefox\Profiles\rvT28KZ2.default
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Extension: Avira Browser Safety - C:\Users\E2C\AppData\Roaming\Mozilla\Firefox\Profiles\rvT28KZ2.default\Extensions\[email protected] [2015-12-26]
 
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2015-12-03] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1418560 2015-12-03] (Avira Operations GmbH & Co. KG)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [251160 2015-12-08] (Avira Operations GmbH & Co. KG)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [137968 2015-09-22] (Dell Inc.)
R2 Dell Data Services; C:\Program Files\Dell\Dell Data Services\DDSSvc.exe [46792 2015-06-19] (Dell)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [119656 2015-12-07] (Dell)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [49864 2015-08-24] ()
R2 Dell Product Registration; C:\Program Files\Dell\Product Registration\PRSvc.exe [32104 2015-12-05] (Dell)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-27] (Dell Inc.)
R2 ibtsiva; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [150256 2015-06-09] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [350312 2015-09-08] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
S3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S3 Intel® WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [223520 2015-07-11] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-06-12] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-05-22] (Realtek Semiconductor)
S2 SpeedupService; C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [24216 2015-12-16] (Avira Operations GmbH & Co. KG)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [564144 2015-05-26] (Waves Audio Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831200 2015-06-12] (Intel® Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2015-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146696 2015-12-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2015-12-03] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [32464 2015-09-11] (Dell Computer Corporation)
S3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-09-11] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [19440 2015-05-08] (OSR Open Systems Resources, Inc.)
S3 iaLPSS_GPIO; C:\Windows\System32\drivers\iaLPSS_GPIO.sys [46856 2015-06-15] (Intel Corporation)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [132360 2015-06-15] (Intel Corporation)
S3 iaLPSS_SPI; C:\Windows\System32\drivers\iaLPSS_SPI.sys [113416 2015-06-15] (Intel Corporation)
S3 iaLPSS_UART2; C:\Windows\System32\drivers\iaLPSS_UART2.sys [155400 2015-06-15] (Intel Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [255728 2015-06-09] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-07] (Intel Corporation)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3776792 2015-06-22] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402960 2015-05-13] (Realsil Semiconductor Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Windows ® Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-12-26 19:12 - 2015-12-26 19:12 - 00016148 _____ C:\Windows\system32\DESKTOP-73U4UPC_E2C_HistoryPrediction.bin
2015-12-26 19:07 - 2015-12-26 19:07 - 00000717 _____ C:\Users\E2C\Desktop\New Text Document.txt
2015-12-26 18:43 - 2015-12-26 18:47 - 00022315 _____ C:\Users\E2C\Downloads\Addition.txt
2015-12-26 18:42 - 2015-12-26 19:29 - 00013536 _____ C:\Users\E2C\Downloads\FRST.txt
2015-12-26 18:31 - 2015-12-26 19:29 - 00000000 ____D C:\FRST
2015-12-26 18:31 - 2015-12-26 18:35 - 02370560 _____ (Farbar) C:\Users\E2C\Downloads\FRST64.exe
2015-12-26 16:30 - 2015-12-26 16:30 - 00000000 ____D C:\Users\E2C\AppData\Roaming\Avira
2015-12-26 16:25 - 2015-12-26 16:25 - 00003450 _____ C:\Windows\System32\Tasks\Avira System Speedup Tray
2015-12-26 16:25 - 2015-12-26 16:25 - 00001218 _____ C:\Users\Public\Desktop\Avira System Speedup.lnk
2015-12-26 16:24 - 2015-12-26 16:25 - 00000000 ____D C:\Users\Public\Speedup Sessions
2015-12-26 16:24 - 2015-12-26 16:24 - 00000000 ____D C:\Users\E2C\AppData\Roaming\Mozilla
2015-12-26 16:22 - 2015-12-03 15:24 - 00146696 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-12-26 16:22 - 2015-12-03 15:24 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-12-26 16:22 - 2015-12-03 15:24 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-12-26 16:22 - 2015-12-03 15:24 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-12-26 16:19 - 2015-12-26 16:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-12-26 16:19 - 2015-12-26 16:25 - 00000000 ____D C:\ProgramData\Avira
2015-12-26 16:19 - 2015-12-26 16:24 - 00000000 ____D C:\Program Files (x86)\Avira
2015-12-26 16:19 - 2015-12-26 16:19 - 00001285 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-12-26 16:18 - 2015-12-26 16:18 - 04638208 _____ (Avira Operations GmbH & Co. KG) C:\Users\E2C\Downloads\avira_en_av_567f04052d6d9__ws.exe
2015-12-26 14:54 - 2015-12-26 14:54 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-12-15 18:13 - 2015-12-15 18:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-12-15 17:57 - 2015-12-15 17:59 - 00000000 ____D C:\Users\E2C\AppData\Local\Comms
2015-12-15 17:44 - 2015-12-15 17:44 - 00000000 ____D C:\Windows\system32\SleepStudy
2015-12-14 17:16 - 2015-12-14 17:16 - 00003616 _____ C:\Windows\System32\Tasks\UninstallDDS-C960901F-CE14-4DE1-9729-1305F719A337
2015-12-14 16:25 - 2015-12-14 16:25 - 00002215 _____ C:\Users\Public\Desktop\Dell Help & Support.lnk
2015-12-14 16:11 - 2015-12-14 16:11 - 00000000 ____D C:\Program Files (x86)\Dell Customer Connect
2015-12-14 16:10 - 2015-12-26 17:43 - 00004164 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{EB661F5E-B27D-4EEB-947B-B99FDD198C64}
2015-12-14 15:12 - 2015-12-14 15:12 - 00000000 ____D C:\Windows\system32\MRT
2015-12-14 15:12 - 2015-11-23 19:10 - 140158008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-14 15:06 - 2015-12-14 15:06 - 00000000 ____D C:\Users\E2C\AppData\Local\NetworkTiles
2015-12-14 15:02 - 2015-12-26 19:17 - 00003834 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2015-12-14 15:02 - 2015-12-14 15:03 - 00002363 _____ C:\Users\E2C\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-14 15:02 - 2015-12-14 15:03 - 00000000 ___RD C:\Users\E2C\OneDrive
2015-12-14 14:59 - 2015-12-14 14:59 - 00000000 ____D C:\Users\E2C\AppData\Roaming\Macromedia
2015-12-14 14:57 - 2015-12-14 14:57 - 00000000 ____D C:\Program Files (x86)\Dell Update
2015-12-14 14:56 - 2015-12-14 14:56 - 00000000 ____D C:\Users\E2C\AppData\Local\MicrosoftEdge
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\Default\My Documents
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\Default\Documents\My Videos
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\Default\Documents\My Pictures
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\Default\Documents\My Music
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\Default User\Documents\My Videos
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\Default User\Documents\My Pictures
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\Default User\Documents\My Music
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\Default User
2015-12-14 02:12 - 2015-12-14 02:12 - 00000000 _SHDL C:\Users\All Users
2015-12-14 02:11 - 2015-12-14 02:11 - 00022744 _____ C:\Windows\system32\emptyregdb.dat
2015-12-14 02:02 - 2015-07-10 05:59 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2015-12-14 01:59 - 2015-12-26 19:09 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-14 01:57 - 2015-12-14 01:57 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-14 01:49 - 2015-12-14 01:49 - 00000000 ____D C:\Windows\system32\config\bbimigrate
2015-12-14 01:43 - 2015-12-26 19:12 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-12-14 01:43 - 2015-12-14 01:43 - 00000200 _____ C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-12-14 01:43 - 2015-12-14 01:43 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-12-14 01:43 - 2015-12-14 01:43 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-12-14 01:43 - 2015-12-14 01:43 - 00000000 ____D C:\Windows\system32\SRSLabs
2015-12-14 01:43 - 2015-12-14 01:43 - 00000000 ____D C:\Program Files\Realtek
2015-12-14 01:43 - 2015-09-08 13:18 - 00086528 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2015-12-14 01:43 - 2015-09-08 13:18 - 00082432 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2015-12-14 01:42 - 2015-12-14 01:50 - 00000000 ____D C:\Program Files\Intel
2015-12-14 01:42 - 2015-12-14 01:49 - 00000000 ____D C:\Intel
2015-12-14 01:38 - 2015-12-26 19:08 - 00202096 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-14 01:38 - 2015-12-14 01:38 - 00000000 ____D C:\Windows\ServiceProfiles
2015-12-14 01:36 - 2015-12-14 01:36 - 00000000 _____ C:\Recovery.txt
2015-12-13 23:30 - 2015-12-13 23:31 - 00000000 ____D C:\Users\E2C\AppData\Roaming\DropboxOEM
2015-12-13 23:30 - 2015-12-13 23:30 - 00000000 ____D C:\Users\E2C\AppData\Local\DropboxOEM
2015-12-13 23:30 - 2015-12-13 23:30 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-12-13 23:29 - 2015-12-13 23:29 - 00000000 ____D C:\Users\E2C\AppData\Local\Power2Go8
2015-12-13 23:28 - 2015-12-13 23:28 - 00000000 ____D C:\Users\E2C\AppData\Local\Publishers
2015-12-13 23:27 - 2015-12-26 19:12 - 00000000 __SHD C:\Users\E2C\IntelGraphicsProfiles
2015-12-13 23:27 - 2015-12-26 16:09 - 00000000 ____D C:\Users\E2C\AppData\Local\Packages
2015-12-13 23:27 - 2015-12-14 17:46 - 00000000 ____D C:\Users\E2C
2015-12-13 23:27 - 2015-12-13 23:27 - 00016148 _____ C:\Windows\system32\DESKTOP-73U4UPC_defaultuser0_HistoryPrediction.bin
2015-12-13 23:27 - 2015-12-13 23:27 - 00004152 _____ C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask
2015-12-13 23:27 - 2015-12-13 23:27 - 00003560 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2015-12-13 23:27 - 2015-12-13 23:27 - 00003322 _____ C:\Windows\System32\Tasks\SystemToolsDailyTest
2015-12-13 23:27 - 2015-12-13 23:27 - 00000020 ___SH C:\Users\E2C\ntuser.ini
2015-12-13 23:27 - 2015-12-13 23:27 - 00000000 _SHDL C:\Users\E2C\My Documents
2015-12-13 23:27 - 2015-12-13 23:27 - 00000000 _SHDL C:\Users\E2C\Documents\My Videos
2015-12-13 23:27 - 2015-12-13 23:27 - 00000000 _SHDL C:\Users\E2C\Documents\My Pictures
2015-12-13 23:27 - 2015-12-13 23:27 - 00000000 _SHDL C:\Users\E2C\Documents\My Music
2015-12-13 23:27 - 2015-12-13 23:27 - 00000000 ____D C:\Users\E2C\AppData\Roaming\Intel
2015-12-13 23:27 - 2015-12-13 23:27 - 00000000 ____D C:\Users\E2C\AppData\Roaming\Adobe
2015-12-13 23:27 - 2015-12-13 23:27 - 00000000 ____D C:\Users\E2C\AppData\Local\VirtualStore
2015-12-13 23:27 - 2015-12-13 23:27 - 00000000 ____D C:\Users\E2C\AppData\Local\TileDataLayer
2015-12-13 22:18 - 2015-12-14 17:23 - 00000000 ___DC C:\Windows\Panther
2015-12-13 22:17 - 2015-12-13 22:18 - 00000000 ____D C:\Windows.old
2015-12-13 22:17 - 2015-12-13 22:17 - 00008192 _____ C:\Windows\system32\config\userdiff
2015-12-13 22:17 - 2015-12-13 22:17 - 00000000 ____D C:\Windows\InfusedApps
2015-12-13 22:16 - 2015-12-13 22:16 - 00000000 ____D C:\Windows\Setup
2015-12-13 22:12 - 2015-12-13 22:12 - 00000000 ____D C:\Windows\OCR
2015-12-13 22:12 - 2015-12-13 22:12 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-12-13 22:12 - 2015-12-13 22:12 - 00000000 ____D C:\Program Files\MSBuild
2015-12-13 22:12 - 2015-12-13 22:12 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-12-13 22:12 - 2015-12-13 22:12 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\winrm
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\WCN
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\0409
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\winrm
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\WCN
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\slmgr
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\0409
2015-12-13 22:10 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\DigitalLocker
2015-12-13 22:07 - 2015-11-30 19:32 - 00826872 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-12-13 22:07 - 2015-11-30 19:32 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-13 22:06 - 2015-12-26 19:04 - 00000000 ___HD C:\Windows\ELAMBKUP
2015-12-13 22:06 - 2015-12-26 18:33 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2015-12-13 22:06 - 2015-12-26 16:14 - 00000000 ____D C:\Windows\AppReadiness
2015-12-13 22:06 - 2015-12-26 16:03 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ___SD C:\Windows\SysWOW64\F12
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ___SD C:\Windows\system32\F12
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ___RD C:\Windows\PurchaseDialog
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ____D C:\Windows\system32\oobe
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ____D C:\Windows\system32\appraiser
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ____D C:\Windows\Provisioning
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ____D C:\Windows\L2Schemas
2015-12-13 22:06 - 2015-12-18 18:18 - 00000000 ____D C:\Program Files\Windows Journal
2015-12-13 22:06 - 2015-12-14 15:01 - 00000000 ___RD C:\Windows\DevicesFlow
2015-12-13 22:06 - 2015-12-14 02:13 - 00000000 ____D C:\Windows\rescache
2015-12-13 22:06 - 2015-12-14 02:12 - 00000000 ____D C:\Windows\Registration
2015-12-13 22:06 - 2015-12-14 02:10 - 00000000 __RHD C:\Users\Public\Libraries
2015-12-13 22:06 - 2015-12-14 01:56 - 00000000 ____D C:\Windows\system32\spool
2015-12-13 22:06 - 2015-12-14 01:54 - 00000000 ____D C:\ProgramData\USOPrivate
2015-12-13 22:06 - 2015-12-14 01:54 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-12-13 22:06 - 2015-12-14 01:49 - 00000000 ____D C:\Windows\appcompat
2015-12-13 22:06 - 2015-12-14 01:45 - 00000000 ____D C:\Windows\system32\Sysprep
2015-12-13 22:06 - 2015-12-14 01:36 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2015-12-13 22:06 - 2015-12-13 23:28 - 00000000 ___RD C:\Windows\PrintDialog
2015-12-13 22:06 - 2015-12-13 23:28 - 00000000 ___RD C:\Windows\MiracastView
2015-12-13 22:06 - 2015-12-13 23:27 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-12-13 22:06 - 2015-12-13 22:16 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-12-13 22:06 - 2015-12-13 22:16 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-12-13 22:06 - 2015-12-13 22:16 - 00000000 ____D C:\Windows\system32\Dism
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ___SD C:\Windows\system32\dsc
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\MUI
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\setup
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\MUI
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\migwiz
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\system32\Com
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\IME
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\Help
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Program Files\Windows Defender
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Program Files\Common Files\System
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-12-13 22:06 - 2015-12-13 22:10 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 __RSD C:\Windows\Media
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ___SD C:\Windows\SysWOW64\Nui
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ___SD C:\Windows\SysWOW64\Configuration
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ___SD C:\Windows\system32\Nui
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ___SD C:\Windows\system32\Configuration
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ___SD C:\Windows\Downloaded Program Files
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ___RD C:\Windows\Offline Web Pages
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ___RD C:\Windows\DesktopTileResources
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\Web
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\Vss
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\tracing
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\TAPI
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\WinMetadata
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\SMI
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\ras
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\NDF
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\MsDtc
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\Ipmi
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\InputMethod
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\inetsrv
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\IME
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\icsxml
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicyUsers
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\FxsTmp
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\downlevel
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\Bthprops
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\AppLocker
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SystemResources
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SystemApps
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\WinMetadata
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\winevt
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\ras
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\ProximityToast
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\PointOfService
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\NDF
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\MsDtc
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\MailContactsCalendarSync
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\Macromed
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\Ipmi
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\InputMethod
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\inetsrv
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\IME
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\icsxml
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\ias
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\FxsTmp
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\downlevel
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\config\Journal
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\Bthprops
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\AppLocker
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\System
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SKB
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\ShellNew
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\security
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\schemas
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\SchCache
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\Resources
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\PLA
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\Performance
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\ModemLogs
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\LiveKernelReports
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\InputMethod
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\Globalization
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\Cursors
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\Branding
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\addins
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\ProgramData\Comms
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Program Files\Windows Portable Devices
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Program Files\Windows NT
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Program Files\Common Files\Services
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Program Files (x86)\Windows NT
2015-12-13 22:06 - 2015-12-13 22:06 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2015-12-13 22:06 - 2015-12-13 22:04 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2015-12-13 22:06 - 2015-12-13 22:04 - 00215943 _____ C:\Windows\SysWOW64\dssec.dat
2015-12-13 22:06 - 2015-12-13 22:04 - 00215943 _____ C:\Windows\system32\dssec.dat
2015-12-13 22:06 - 2015-12-13 22:04 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2015-12-13 22:06 - 2015-12-13 22:04 - 00015462 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2015-12-13 22:06 - 2015-12-13 22:04 - 00008798 _____ C:\Windows\SysWOW64\icrav03.rat
2015-12-13 22:06 - 2015-12-13 22:04 - 00008798 _____ C:\Windows\system32\icrav03.rat
2015-12-13 22:06 - 2015-12-13 22:04 - 00003683 _____ C:\Windows\system32\Drivers\etc\lmhosts.sam
2015-12-13 22:06 - 2015-12-13 22:04 - 00001988 _____ C:\Windows\SysWOW64\ticrf.rat
2015-12-13 22:06 - 2015-12-13 22:04 - 00001988 _____ C:\Windows\system32\ticrf.rat
2015-12-13 22:06 - 2015-12-13 22:04 - 00000858 _____ C:\Windows\system32\DefaultQuestions.json
2015-12-13 22:06 - 2015-12-13 22:04 - 00000741 _____ C:\Windows\SysWOW64\NOISE.DAT
2015-12-13 22:06 - 2015-12-13 22:04 - 00000741 _____ C:\Windows\system32\NOISE.DAT
2015-12-13 22:06 - 2015-12-13 22:04 - 00000389 _____ C:\Windows\system32\AutoWorkplace.exe.config
2015-12-13 22:04 - 2015-12-26 19:16 - 00000000 ____D C:\Windows\INF
2015-12-13 21:56 - 2015-12-14 15:12 - 00000000 ____D C:\Windows\CbsTemp
2015-12-13 21:53 - 2015-12-26 19:08 - 00131072 ___SH C:\Windows\system32\config\BBI
2015-12-13 21:53 - 2015-12-26 19:04 - 00032768 ___SH C:\Windows\system32\config\ELAM
2015-12-13 21:53 - 2015-12-13 22:10 - 00000000 ____D C:\Windows\servicing
2015-12-13 21:53 - 2015-12-13 22:06 - 00000000 ____D C:\Windows\system32\SMI
2015-12-13 21:53 - 2015-07-10 04:11 - 00000164 _____ C:\Windows\system32\config\FP
2015-12-08 19:27 - 2015-12-01 02:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-12-08 19:27 - 2015-12-01 01:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\gpuenergydrv.sys
2015-12-08 19:27 - 2015-12-01 00:54 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2015-12-08 19:27 - 2015-12-01 00:51 - 07523840 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2015-12-08 19:27 - 2015-12-01 00:49 - 04792320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-12-08 19:27 - 2015-12-01 00:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-12-08 19:27 - 2015-11-30 23:59 - 05455360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2015-12-08 19:27 - 2015-11-25 00:42 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-12-08 19:27 - 2015-11-25 00:42 - 00168288 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2015-12-08 19:27 - 2015-11-25 00:41 - 01822280 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-12-08 19:27 - 2015-11-25 00:40 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-12-08 19:27 - 2015-11-25 00:33 - 03622272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-08 19:27 - 2015-11-25 00:32 - 00113184 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2015-12-08 19:27 - 2015-11-25 00:27 - 01366680 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-08 19:27 - 2015-11-25 00:12 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-12-08 19:27 - 2015-11-25 00:11 - 01532984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-12-08 19:27 - 2015-11-25 00:09 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-12-08 19:27 - 2015-11-25 00:01 - 02879024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-12-08 19:27 - 2015-11-24 23:59 - 00092992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2015-12-08 19:27 - 2015-11-24 23:49 - 01569280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-12-08 19:27 - 2015-11-24 23:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2015-12-08 19:27 - 2015-11-24 23:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2015-12-08 19:27 - 2015-11-24 23:49 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2015-12-08 19:27 - 2015-11-24 23:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\EthernetMediaManager.dll
2015-12-08 19:27 - 2015-11-24 23:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\DAMediaManager.dll
2015-12-08 19:27 - 2015-11-24 23:44 - 21872640 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2015-12-08 19:27 - 2015-11-24 23:42 - 24592384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-12-08 19:27 - 2015-11-24 23:37 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-12-08 19:27 - 2015-11-24 23:36 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2015-12-08 19:27 - 2015-11-24 23:36 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-12-08 19:27 - 2015-11-24 23:35 - 00929792 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-12-08 19:27 - 2015-11-24 23:35 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2015-12-08 19:27 - 2015-11-24 23:34 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-12-08 19:27 - 2015-11-24 23:31 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2015-12-08 19:27 - 2015-11-24 23:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2015-12-08 19:27 - 2015-11-24 23:30 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-08 19:27 - 2015-11-24 23:30 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2015-12-08 19:27 - 2015-11-24 23:29 - 01649152 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-08 19:27 - 2015-11-24 23:29 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2015-12-08 19:27 - 2015-11-24 23:28 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-12-08 19:27 - 2015-11-24 23:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-08 19:27 - 2015-11-24 23:27 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-12-08 19:27 - 2015-11-24 23:26 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-12-08 19:27 - 2015-11-24 23:26 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2015-12-08 19:27 - 2015-11-24 23:25 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-12-08 19:27 - 2015-11-24 23:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2015-12-08 19:27 - 2015-11-24 23:23 - 19323392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-12-08 19:27 - 2015-11-24 23:23 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2015-12-08 19:27 - 2015-11-24 23:23 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-12-08 19:27 - 2015-11-24 23:22 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-12-08 19:27 - 2015-11-24 23:22 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2015-12-08 19:27 - 2015-11-24 23:22 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-12-08 19:27 - 2015-11-24 23:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2015-12-08 19:27 - 2015-11-24 23:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL
2015-12-08 19:27 - 2015-11-24 23:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2015-12-08 19:27 - 2015-11-24 23:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2015-12-08 19:27 - 2015-11-24 23:19 - 01795584 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-12-08 19:27 - 2015-11-24 23:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-12-08 19:27 - 2015-11-24 23:18 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-12-08 19:27 - 2015-11-24 23:17 - 00774656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-12-08 19:27 - 2015-11-24 23:16 - 01442816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2015-12-08 19:27 - 2015-11-24 23:16 - 00786432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2015-12-08 19:27 - 2015-11-24 23:13 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-12-08 19:27 - 2015-11-24 23:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2015-12-08 19:27 - 2015-11-24 23:10 - 18801664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2015-12-08 19:27 - 2015-11-24 23:10 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-12-08 19:27 - 2015-11-24 23:10 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-12-08 19:27 - 2015-11-24 23:10 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2015-12-08 19:27 - 2015-11-24 23:08 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2015-12-08 19:27 - 2015-11-24 23:07 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2015-12-08 19:27 - 2015-11-24 23:05 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-12-08 19:27 - 2015-11-24 23:04 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-12-08 19:27 - 2015-11-24 23:04 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2015-12-08 19:27 - 2015-11-24 23:04 - 00474624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-12-08 19:27 - 2015-11-24 23:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2015-12-08 19:27 - 2015-11-24 23:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL
2015-12-08 19:27 - 2015-11-24 23:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2015-12-08 19:27 - 2015-11-24 23:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2015-12-08 19:27 - 2015-11-24 21:52 - 00775312 _____ C:\Windows\SysWOW64\locale.nls
2015-12-08 19:27 - 2015-11-24 21:52 - 00775312 _____ C:\Windows\system32\locale.nls
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-12-26 19:16 - 2015-10-09 04:49 - 00875126 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-26 19:13 - 2015-10-09 05:09 - 00000000 ____D C:\ProgramData\Dell
2015-12-26 19:09 - 2015-10-09 04:58 - 00000000 ____D C:\ProgramData\McAfee
2015-12-26 19:09 - 2015-10-09 04:58 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-12-26 19:02 - 2015-07-10 04:05 - 00000000 ____D C:\Users\Default.migrated
2015-12-26 16:19 - 2015-10-09 04:47 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-26 15:18 - 2015-10-09 04:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2015-12-26 15:18 - 2015-10-09 04:55 - 00000000 ____D C:\Program Files\Dell
2015-12-26 14:46 - 2015-10-09 05:38 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-12-14 17:17 - 2015-10-30 04:42 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-14 17:17 - 2015-10-09 04:44 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-14 15:02 - 2015-10-09 04:50 - 00000000 ____D C:\ProgramData\Intel
2015-12-14 02:11 - 2015-10-09 04:54 - 00000000 ____D C:\Windows\System32\Tasks\Intel
2015-12-14 01:56 - 2015-10-09 04:51 - 00000000 ___HD C:\Windows\system32\WLANProfiles
2015-12-14 01:56 - 2015-10-09 04:50 - 00000000 ____D C:\Windows\SysWOW64\sda
2015-12-14 01:54 - 2015-10-09 04:55 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2015-12-14 01:54 - 2015-10-09 04:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 20 GB
2015-12-14 01:54 - 2015-10-09 04:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Dell
2015-12-14 01:54 - 2015-10-09 04:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2015-12-14 01:54 - 2015-10-09 04:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2015-12-14 01:54 - 2015-10-09 04:48 - 00000000 ____D C:\Users\Public\CyberLink
2015-12-14 01:54 - 2015-10-09 04:44 - 00000000 ____D C:\ProgramData\Temp
2015-12-14 01:54 - 2015-07-10 07:22 - 00000000 ____D C:\ProgramData\USOShared
2015-12-14 01:53 - 2015-10-09 04:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-12-14 01:53 - 2015-10-09 04:55 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-12-14 01:53 - 2015-10-09 04:55 - 00000000 ____D C:\Program Files (x86)\Dell Digital Delivery
2015-12-14 01:53 - 2015-10-09 04:54 - 00000000 ____D C:\ProgramData\Intel Corporation
2015-12-14 01:53 - 2015-10-09 04:54 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2015-12-14 01:53 - 2015-10-09 04:51 - 00000000 ____D C:\ProgramData\Intel.sav
2015-12-14 01:53 - 2015-10-09 04:49 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-12-14 01:53 - 2015-10-09 04:44 - 00000000 ____D C:\ProgramData\install_clap
2015-12-14 01:53 - 2015-10-09 04:44 - 00000000 ____D C:\ProgramData\CyberLink
2015-12-14 01:53 - 2015-10-09 04:44 - 00000000 ____D C:\ProgramData\CLSK
2015-12-14 01:53 - 2015-10-09 04:44 - 00000000 ____D C:\Program Files (x86)\CyberLink
2015-12-14 01:53 - 2015-10-09 04:35 - 00000000 ____D C:\Program Files (x86)\Intel
2015-12-14 01:50 - 2015-10-09 04:55 - 00000000 ____D C:\Program Files\Dell Support Center
2015-12-14 01:50 - 2015-10-09 04:54 - 00000000 ____D C:\Program Files\Intel Corporation
2015-12-14 01:50 - 2015-10-09 04:51 - 00000000 ____D C:\Program Files (x86)\Cisco
2015-12-14 01:50 - 2015-10-09 04:50 - 00000000 ____D C:\Program Files\Waves
2015-12-14 01:49 - 2015-10-09 05:30 - 00000000 ____D C:\backup
2015-12-14 01:49 - 2015-10-09 04:53 - 00000000 ____D C:\DELL
2015-12-14 01:49 - 2015-10-09 04:51 - 00000000 ____D C:\Program Files\Common Files\Intel
2015-12-14 01:36 - 2015-11-04 18:39 - 00000000 ___HD C:\$SysReset
2015-12-13 23:26 - 2015-10-09 04:55 - 00000000 ____D C:\ProgramData\PCDr
2015-12-13 22:01 - 2015-07-10 05:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys
 
==================== Files in the root of some directories =======
 
2015-12-14 01:43 - 2015-12-14 01:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-10-09 04:48 - 2015-10-09 04:48 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2015-10-09 04:44 - 2015-10-09 04:45 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2015-10-09 04:47 - 2015-10-09 04:48 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2015-10-09 04:45 - 2015-10-09 04:47 - 0000113 _____ () C:\ProgramData\{E1646825-D391-42A0-93AA-27FA810DA093}.log
 
Some files in TEMP:
====================
C:\Users\E2C\AppData\Local\Temp\avgnt.exe
C:\Users\E2C\AppData\Local\Temp\McCSPInstall.dll
C:\Users\E2C\AppData\Local\Temp\mccspuninstall.exe
 

==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 

LastRegBack: 2015-12-14 01:37
 
==================== End of FRST.txt ============================
 
 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:25-12-2015
Ran by E2C (2015-12-26 19:30:20)
Running from C:\Users\E2C\Downloads
Windows 10 Home (X64) (2015-12-14 04:23:32)
Boot Mode: Normal
==========================================================
 

==================== Accounts: =============================
 
Administrator (S-1-5-21-1199668086-3105664550-3261884340-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1199668086-3105664550-3261884340-503 - Limited - Disabled)
E2C (S-1-5-21-1199668086-3105664550-3261884340-1001 - Administrator - Enabled) => C:\Users\E2C
Guest (S-1-5-21-1199668086-3105664550-3261884340-501 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.129 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{eac7da46-2097-4dd4-80a6-8b67cbb2b23f}) (Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG) Hidden
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 2.0.8.999 - Avira Operations GmbH & Co. KG)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 12 - CyberLink Corp.)
Dell Customer Connect (HKLM-x32\...\{124DE80C-9BFE-4D04-A8D9-69C5019DEEBF}) (Version: 1.3.28.0 - Dell Inc.)
Dell Data Services (HKLM\...\{815D96BA-2FC6-4F61-9BE3-2CFE446E8ECF}) (Version: 1.2.7.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{AB7F2792-2ED1-4C5C-9F28-680E5110BF72}) (Version: 3.1.1018.0 - Dell Products, LP)
Dell Foundation Services (HKLM\...\{91E2DDB6-DC13-4585-8A10-04C6AB6F87A4}) (Version: 3.1.1900.0 - Dell Inc.)
Dell Help & Support (HKLM-x32\...\InstallShield_{A00269ED-FD88-4907-834B-60B70DCE82C5}) (Version: 2.0.366.0 - Dell Inc.)
Dell Help & Support (Version: 2.0.366.0 - Dell Inc.) Hidden
Dell Power Manager Lite (HKLM-x32\...\InstallShield_{BF1F9D57-57A1-4E87-A8E8-41F2B2AD6F53}) (Version: 1.0.0.3 - Compal Inc.)
Dell Power Manager Lite (x32 Version: 1.0.0.3 - Compal Inc.) Hidden
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.10 - Dell)
Dell Update (HKLM-x32\...\{DB82968B-57A4-4397-81A5-ECAB21B5DFCD}) (Version: 1.7.1015.0 - Dell Inc.)
Dropbox 20 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
DSC/AA Factory Installer (Version: 1.1.6664.10 - PC-Doctor, Inc.) Hidden
Intel® Chipset Device Software (x32 Version: 10.1.1.7 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4278 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.253.0 - Intel Corporation)
Intel® WiDi (HKLM\...\{76FAF7E1-52D0-49F7-A627-E78303F9C7EF}) (Version: 6.0.39.0 - Intel Corporation)
Intel® WiDi Software Asset Manager (x32 Version: 1.1.347 - Intel Corporation) Hidden
Intel® Wireless Bluetooth® (HKLM-x32\...\{DC5673D2-228D-45BC-B9BB-9610CE67DFC0}) (Version: 17.1.1524.1353 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{4544164b-edf0-455c-b150-bed7109d751e}) (Version: 18.11.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Maxx Audio Installer (x64) (Version: 2.6.6168.9 - Waves Audio Ltd.) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Product Registration (HKLM-x32\...\InstallShield_{B96204EB-3051-4B4F-9534-ED13FE7095D1}) (Version: 2.2.27.0 - Dell Inc.)
Product Registration (Version: 2.2.27.0 - Dell Inc.) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.31213 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.203 - McAfee, Inc.)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-1199668086-3105664550-3261884340-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\E2C\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {06468D2E-C492-402F-A3AE-63F3A901F08A} - System32\Tasks\UninstallDDS-C960901F-CE14-4DE1-9729-1305F719A337 => C:\Windows\TEMP\DeleteFolderTask.exe [2015-12-14] ()
Task: {1192AA92-B6FC-4217-80EE-18A3845332B8} - System32\Tasks\Avira System Speedup Tray => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe [2015-12-16] (Avira Operations GmbH & Co. KG)
Task: {1B800BFD-F852-403E-ABCA-EF97AB9A21C7} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation)
Task: {50BFAF9D-4AD8-4D4A-90B3-F435E907AAAA} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe [2015-08-18] (CyberLink)
Task: {6016F7E6-926F-4FF7-AF00-ECE2D8840A5F} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-05-19] (PC-Doctor, Inc.)
Task: {6D1287DF-5F9B-4B5A-8688-64DA5DF95ED0} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {7747E0B4-B600-4D7F-A1CC-13340F00C305} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-11-23] (Microsoft Corporation)
Task: {81DEB600-D8F4-4DBF-BEAB-92B56528F4C0} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {84B806D3-ADD7-42CE-96B5-0F530B7DC170} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-05-19] (PC-Doctor, Inc.)
Task: {A3C3CC1F-DBB6-4EAE-BE3C-DD2FD05F3504} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe
Task: {BEF5388C-7044-464D-AC88-CBBDC43093B6} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-16] (Intel Corporation)
Task: {F3102D19-F47F-4C8E-A388-C799C150D40D} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28] (Realtek Semiconductor)
Task: {F5DAFAA5-72BB-4390-8B14-EB2E32F1101D} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {F60E2DCD-B6AC-4F1B-9F67-1A1F322AADBB} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLVDLauncher.exe [2015-01-28] (CyberLink Corp.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 

==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-10-09 05:27 - 2015-10-09 05:27 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-10-09 05:27 - 2015-10-09 05:27 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2015-05-19 11:11 - 2015-05-19 11:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
2015-10-09 04:46 - 2014-04-14 20:59 - 00253776 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2015-10-23 17:02 - 2015-09-17 01:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-10-23 17:02 - 2015-09-17 01:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-10-09 05:14 - 2015-09-08 13:17 - 00395880 _____ () C:\Windows\system32\igfxTray.exe
2015-10-23 17:01 - 2015-09-17 00:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-08 19:27 - 2015-11-24 23:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-08 19:27 - 2015-11-24 23:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-08 19:27 - 2015-11-24 23:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-23 17:02 - 2015-09-17 00:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 06:00 - 2015-07-10 08:15 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-08-24 16:32 - 2015-08-24 16:32 - 00049864 _____ () C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
2015-10-09 04:45 - 2014-12-08 02:28 - 00627672 _____ () C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMediaLibrary.dll
2014-12-08 17:28 - 2014-12-08 17:28 - 00016856 _____ () C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvcPS.dll
2015-06-23 18:26 - 2015-06-23 18:26 - 00155888 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2015-07-11 01:37 - 2015-07-11 01:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 

==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 

==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 

==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-07-10 06:04 - 2015-07-10 06:02 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 

==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1199668086-3105664550-3261884340-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 

==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{825FAF58-B233-4B5B-ADCC-2BDC8205B329}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
FirewallRules: [{DC043AA0-BA48-4503-9CFA-8F14C3D0BBE2}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe
FirewallRules: [{1086ECBB-2109-48D7-80B4-0D00E8A677F0}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe
FirewallRules: [{6AD879CD-4C24-47DA-835D-C5E23D12E992}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe
FirewallRules: [{CDC07995-F50C-4089-AEA4-47887255D693}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{E711E118-1AFB-4EFD-B523-3C469996E6C9}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{B28EBC74-04F2-4590-BA4B-564363201122}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{A0F69FF4-73B4-4490-A11A-B16C0EC8D5BF}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDirector12\PDR10.EXE
 
==================== Restore Points =========================
 
13-12-2015 23:20:19 Windows Modules Installer
13-12-2015 23:20:39 Windows Modules Installer
26-12-2015 16:25:06 Avira System Speedup 2.0.8
 
==================== Faulty Device Manager Devices =============
 

==================== Event log errors: =========================
 
Application errors:
==================
Error: (12/26/2015 04:25:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (12/26/2015 03:54:54 PM) (Source: MsiInstaller) (EventID: 1013) (User: DESKTOP-73U4UPC)
Description: Product: Dell Update -- A newer version of Dell Update is already installed.
 
Error: (12/26/2015 03:54:45 PM) (Source: MsiInstaller) (EventID: 1013) (User: DESKTOP-73U4UPC)
Description: Product: Dell Customer Connect -- A newer version of Dell Customer Connect is already installed.
 
Error: (12/26/2015 03:00:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-73U4UPC)
Description: Activation of app Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App failed with error: -2147024770 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/18/2015 06:18:13 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-73U4UPC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/14/2015 05:46:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-73U4UPC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/14/2015 04:25:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: InstallationTool.exe, version: 1.0.0.0, time stamp: 0x55dad243
Faulting module name: KERNELBASE.dll, version: 10.0.10240.16384, time stamp: 0x559f3b2a
Exception code: 0xe0434352
Fault offset: 0x000b3e28
Faulting process id: 0x2b80
Faulting application start time: 0xInstallationTool.exe0
Faulting application path: InstallationTool.exe1
Faulting module path: InstallationTool.exe2
Report Id: InstallationTool.exe3
Faulting package full name: InstallationTool.exe4
Faulting package-relative application ID: InstallationTool.exe5
 
Error: (12/14/2015 04:25:17 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: InstallationTool.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
Stack:
   at UninstallDLC.Program.Main(System.String[])
 
Error: (12/13/2015 11:31:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-73U4UPC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/13/2015 11:20:42 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 

System errors:
=============
Error: (12/26/2015 07:09:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Avira System Speedup service failed to start due to the following error:
%%1053
 
Error: (12/26/2015 07:09:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Avira System Speedup service to connect.
 
Error: (12/26/2015 07:09:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Avira Service Host service to connect.
 
Error: (12/26/2015 07:07:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (12/26/2015 07:03:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-73U4UPC)
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (12/26/2015 07:03:26 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-73U4UPC)
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (12/26/2015 06:55:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Interactive Services Detection service terminated with the following error:
%%1
 
Error: (12/26/2015 02:48:46 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (12/26/2015 02:47:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The WMI Performance Adapter service terminated with the following error:
%%2147500037
 
Error: (12/26/2015 02:46:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error:
%%1053
 

==================== Memory info ===========================
 
Processor: Intel® Core™ i5-5250U CPU @ 1.60GHz
Percentage of memory in use: 25%
Total physical RAM: 8102.61 MB
Available physical RAM: 6005.79 MB
Total Virtual: 10022.61 MB
Available Virtual: 7836.5 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:471.58 GB) (Free:431.72 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: DEA3AF27)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

 


  • 0

Advertisements







Similar Topics


Also tagged with one or more of these keywords: Dell, Windows 10, Malware, Hidden, Background

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP