firstly windows 10 sucks ballls so bad OMG um all my windows apps like the built in video camera app and pic viewer app and etc are not working !!!
Secondly i look at porn although trying to stay safe from malware cant help it got that dammed webpage redirect thing....
my mate tells my u guys are awesome pls help
FRST>TXT>=(Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-07-2016
Ran by james (administrator) on DRAGON (10-07-2016 18:28:09)
Running from C:\Users\james\Downloads
Loaded Profiles: james (Available Profiles: james)
Platform: Windows 10 Home Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: "C:\Program Files (x86)\Lefttoe\Application\chrome.exe" "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Winziper Pvt Ltd.) C:\Program Files (x86)\WinZipper\winzipersvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(TData.com) C:\Program Files (x86)\TData\TData.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FACSMon.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FAsenmon.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\Temp\irstrtsv\scrncap.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Intel) C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareTactXMacroController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Akamai Technologies, Inc.) C:\Users\james\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\james\AppData\Local\Akamai\netsession_win.exe
() C:\Program Files (x86)\FastWeb\fastweb.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe
(Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe
() C:\Program Files (x86)\Sensible Vision\Fast Access\FAAppMonOT.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
() C:\Users\james\AppData\Roaming\TSv\TSvr.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
() C:\Program Files (x86)\SFK\SSFK.exe
(Sensible Vision) C:\Program Files (x86)\Sensible Vision\Fast Access\FAupgradeNoticeOT.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
() C:\Program Files (x86)\WinSaber\WinSaber.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
() C:\ProgramData\Lefttoe\Lefttoe.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Components\DBRUpdate\DBRUpd.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
() C:\Program Files (x86)\AlienRespawn\Components\Shell\DBRCrawler.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SndVol.exe
(PC-Doctor, Inc.) C:\Program Files\Alienware\SupportAssist\imstrayicon.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.22\deploy\LoLLauncher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.62\deploy\LoLPatcher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.205\deploy\LolClient.exe
(Google Inc.) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
(NVIDIA Corporation) C:\Users\james\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-08] (Intel Corporation)
HKLM\...\Run: [Command Center Controllers] => C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [13840 2013-11-05] (Alienware)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2774256 2013-08-14] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] => C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [4593968 2013-11-16] ()
HKLM-x32\...\Run: [FAStartup] => [X]
HKLM-x32\...\Run: [FATrayAlert] => C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe [95464 2015-08-08] (Sensible Vision )
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-24] (Autodesk Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
Winlogon\Notify\FastAccess: C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll [2015-08-08] (Sensible Vision )
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\...\Run: [Akamai NetSession Interface] => C:\Users\james\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\...\Run: [Speech Recognition] => C:\WINDOWS\Speech\Common\sapisvr.exe [45056 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\...\Run: [fastweb] => C:\Program Files (x86)\FastWeb\fastweb.exe [191488 2016-06-18] ()
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\VC64LO~1.DLL => No File
AppInit_DLLs-x32: C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\VC32LO~1.DLL => No File
Lsa: [Notification Packages] scecli FAPassSync
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2014-05-14]
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{F9D8E17A-8670-4D39-AFBE-9B599BB85B1A}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 61.9.211.1 61.9.211.33
Tcpip\..\Interfaces\{5d76a4ef-3b37-4f61-a9b7-8abdc3400d7b}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e951b356-af8f-4bfd-a6d6-a532d04fd6b6}: [DhcpNameServer] 61.9.211.1 61.9.211.33
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nuesearch.com/?type=hp&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nuesearch.com/?type=hp&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nuesearch.com/?type=hp&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.alienwarearena.com/welcome-au
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.alienwarearena.com/welcome-au
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001 -> {015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISID=C23CBDFF-96CA-420B-A01C-C0C8533AFC2A&SearchSource=58&CUI=&UM=8&UP=SPB2875944-5602-4B25-9E68-EFA6873D5CA6&D=041416&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001 -> {CFD60793-5C3C-4DDA-88C0-4E893986A44F} URL =
SearchScopes: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001 -> {E1A1345E-9886-421C-8D65-0800B7F144F5} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISID=C23CBDFF-96CA-420B-A01C-C0C8533AFC2A&SearchSource=58&CUI=&UM=8&UP=SPB2875944-5602-4B25-9E68-EFA6873D5CA6&D=041416&q={searchTerms}&SSPV=
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-04-13] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-13] (Microsoft Corporation)
BHO: Face recognition web login for FastAccess -> {DA5BCE70-D057-4D63-943D-5F3927EC59F1} -> C:\Program Files (x86)\Sensible Vision\Fast Access\x64\FAIESSO.dll [2015-08-08] (Sensible Vision )
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Face recognition web login for FastAccess -> {DA5BCE70-D057-4D63-943D-5F3927EC59F1} -> C:\Program Files (x86)\Sensible Vision\Fast Access\FAIESSO.dll [2015-08-08] (Sensible Vision )
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-02-25] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001 -> hxxp://www.nuesearch.com/?type=hp&ts=1466768771&z=299021b7edfca7fd4cec5ffg1z0q9q9m5qabcmam4m&from=ihpm0624&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
FireFox:
========
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-26] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-26] (Wacom)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-19] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-19] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-02-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-06-03] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-06-03] (NVIDIA Corporation)
FF Plugin-x32: @sensiblevision.com/FastAccess,version=4.1.110 -> C:\Program Files (x86)\Sensible Vision\Fast Access\xpcom_fasso\nprt.dll [2014-05-23] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-26] (Wacom)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-26] (Wacom)
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Sensible Vision\Fast Access\xpcom_fasso
FF Extension: FastAccess Web Login - C:\Program Files (x86)\Sensible Vision\Fast Access\xpcom_fasso [2016-02-17] [not signed]
Chrome:
=======
CHR HomePage: ChromeDefaultData -> hxxp://www.nicesearches.com?type=hp&ts=1466579795&from=f0510621&uid=wdcxwd10jpvx-75jc3t0_wxd1eb3pst40eb3pst40&z=882a67b1694d815657f0a09gbzcqaq8w4m1tdb7e1m
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.com.au/"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.nuesearch.com/search/?type=ds&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40&q={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> nuesearch
CHR Profile: C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData
CHR Extension: (Image Translate, Documents to Text) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\adfcjpalgioeneepkmehnebhgkgmfadj [2016-06-24]
CHR Extension: (Google Drive) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-17]
CHR Extension: (YouTube) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-17]
CHR Extension: (Adblock Plus) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-29]
CHR Extension: (Adblock for Youtube™) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-03-05]
CHR Extension: (Google Search) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-17]
CHR Extension: (Google Docs Offline) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Skype) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-05-24]
CHR Extension: (Google Mail Checker) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-02-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\james\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-17]
CHR Extension: (Extutil) - C:\Users\james\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B [2016-02-18]
CHR Extension: (Managera) - C:\Users\james\AppData\Local\Temp\39fdaae5-8e0e-493c-88ec-e05c3be06e42 [2016-02-18]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3009264 2016-05-17] (Microsoft Corporation)
S2 CLKMSVC10_99E320F5; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\kmsvc.exe [243464 2013-08-07] (CyberLink)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-03-11] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-03-11] (Dell Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [238376 2015-07-01] (EasyAntiCheat Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-15] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-08] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 IhPul; C:\Users\james\AppData\Roaming\TSv\TSvr.exe [475856 2016-07-07] ()
R2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel® Corporation)
S3 ioloEnergyBooster; C:\Program Files\Alienware\Command Center\ioloEnergyBooster.exe [6145872 2012-11-02] (iolo technologies, LLC)
R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [783264 2013-09-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-19] (Intel Corporation)
R2 LefttoeP; C:\ProgramData\Lefttoe\Lefttoe.exe [424832 2016-06-30] ()
S2 LefttoeU; C:\Program Files (x86)\Lefttoe\Update\LefttoeUpdate.exe [590208 2016-06-30] ()
S3 mi-raysat_3dsmax2016_64; C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-15] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-15] (NVIDIA Corporation)
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056 2015-08-04] (Realtek Semiconductor)
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [132320 2016-07-08] ()
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-04-22] (Dell Inc.)
R2 TDataSvr; C:\Program Files (x86)\TData\TData.exe [137416 2016-06-24] (TData.com)
S2 WdMan; C:\ProgramData\LwinpL\WFini.exe [531688 2016-07-06] (WFini LIMITED)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
R2 winsaber; C:\Program Files (x86)\WinSaber\WinSaber.exe [518360 2016-07-08] ()
R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [1301112 2016-06-29] (Winziper Pvt Ltd.) <==== ATTENTION
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [730304 2016-01-12] (Wacom Technology, Corp.)
S2 PhakichreenashadapterS; "C:\Program Files (x86)\Phakichreenash\PhakichreenashadapterS.xhtm5" {79740E79-A383-47A7-B513-3DF6563D007F} {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83} [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7474864 2014-05-14] (Broadcom Corporation)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [75056 2013-02-14] (Qualcomm Atheros, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-06] (CyberLink)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [32464 2016-01-06] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2016-01-06] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
R0 EMSC; C:\Windows\System32\drivers\EMSC.SYS [17720 2012-07-11] ()
R0 EMSC; C:\Windows\SysWOW64\drivers\EMSC.SYS [15160 2012-07-11] ()
S3 facap; C:\Windows\system32\DRIVERS\facap.sys [37888 2012-09-03] (Windows ® Win 7 DDK provider)
R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [20192 2013-09-12] (Intel Corporation)
R3 Ke2200; C:\Windows\System32\drivers\e22w8x64.sys [163536 2013-03-21] (Qualcomm Atheros, Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-19] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-14] (Synaptics Incorporated)
R3 ST_Accel; C:\Windows\system32\DRIVERS\ST_Accel.sys [83456 2013-08-07] (STMicroelectronics)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R3 XtuAcpiDriver; C:\Windows\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-06] (Intel Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-10 16:20 - 2016-07-10 16:20 - 00000001 _____ C:\WINDOWS\SysWOW64\us.html
2016-07-09 20:40 - 2016-07-10 18:28 - 00035961 _____ C:\Users\james\Downloads\FRST.txt
2016-07-09 20:40 - 2016-07-09 20:41 - 00077888 _____ C:\Users\james\Downloads\Addition.txt
2016-07-09 20:39 - 2016-07-10 18:28 - 00000000 ____D C:\FRST
2016-07-09 20:39 - 2016-07-09 20:39 - 02390016 _____ (Farbar) C:\Users\james\Downloads\FRST64.exe
2016-07-09 12:19 - 2016-07-09 12:19 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_129546.html
2016-07-09 12:19 - 2016-07-09 12:19 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_128609.html
2016-07-09 12:19 - 2016-07-09 12:19 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_128359.html
2016-07-09 12:19 - 2016-07-09 12:19 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_100640.html
2016-07-09 12:19 - 2016-07-09 12:19 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_100390.html
2016-07-09 12:18 - 2016-07-09 12:19 - 00000000 ____D C:\Program Files (x86)\WinSaber
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\us_53093.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_84906.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_84671.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_79531.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_79296.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_66984.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_66671.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_64921.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_64671.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000003 _____ C:\WINDOWS\SysWOW64\EN_53656.html
2016-07-09 12:18 - 2016-07-09 12:18 - 00000000 ____D C:\WINDOWS\SysWOW64\_SSpm
2016-07-09 12:18 - 2016-07-09 12:18 - 00000000 ____D C:\ProgramData\LwinpL
2016-07-06 22:07 - 2016-07-06 22:07 - 00000000 ____D C:\Users\james\AppData\Roaming\Silverlode Interactive
2016-07-02 11:12 - 2016-07-02 11:12 - 00258149 _____ C:\Users\james\Downloads\Rent Certificate.pdf
2016-07-02 04:21 - 2016-07-02 04:21 - 00000000 ____D C:\Users\james\AppData\Roaming\Ubisoft
2016-07-01 15:17 - 2016-07-01 16:24 - 00000000 ____D C:\Users\james\AppData\Local\dof
2016-07-01 06:35 - 2016-07-01 06:35 - 00000000 ____D C:\Users\james\AppData\Roaming\The Creative Assembly
2016-07-01 06:28 - 2016-07-01 06:28 - 00000000 ____D C:\Users\james\Documents\UFO Online
2016-07-01 04:27 - 2016-07-01 04:27 - 00000000 ____D C:\Users\james\AppData\Local\Doctor Entertainment AB
2016-07-01 03:41 - 2016-07-01 03:41 - 00000000 ____D C:\Users\james\Documents\DogsOfWar
2016-06-30 22:11 - 2016-06-30 22:11 - 00000000 ____D C:\Users\james\AppData\LocalLow\none
2016-06-30 20:44 - 2016-06-30 20:44 - 00000000 ____D C:\Users\Public\Documents\chrome
2016-06-30 19:44 - 2016-06-30 19:44 - 00003654 _____ C:\WINDOWS\System32\Tasks\LefttoeUpdateTaskMachineCore
2016-06-30 19:44 - 2016-06-30 19:44 - 00003564 _____ C:\WINDOWS\System32\Tasks\LefttoeUpdateTaskMachineUA
2016-06-30 19:44 - 2016-06-30 19:44 - 00000000 ____D C:\Users\james\AppData\Local\Lefttoe
2016-06-30 19:44 - 2016-06-30 19:44 - 00000000 ____D C:\ProgramData\Lefttoe
2016-06-30 19:44 - 2016-06-30 19:44 - 00000000 ____D C:\Program Files (x86)\Lefttoe
2016-06-30 19:43 - 2016-07-10 18:19 - 00000000 _____ C:\Users\Public\Documents\report.dat
2016-06-30 19:43 - 2016-06-30 19:43 - 00000000 ____D C:\Users\james\AppData\Roaming\eCyber
2016-06-30 18:57 - 2016-06-30 18:57 - 00428962 _____ C:\Users\james\Downloads\JamesZomer-LetterofExtension-22-10-2015.pdf
2016-06-30 18:52 - 2016-06-30 18:09 - 00258149 _____ C:\Users\james\Desktop\PDF_Low Res..PDF
2016-06-30 17:00 - 2016-06-30 17:00 - 00000000 ____D C:\Users\james\AppData\LocalLow\Animus Interactive
2016-06-30 16:25 - 2016-06-30 16:25 - 00000000 ____D C:\Users\james\AppData\Roaming\uWebKit
2016-06-30 16:25 - 2016-06-30 16:25 - 00000000 ____D C:\Users\james\AppData\Roaming\AtomicPlayer
2016-06-30 15:14 - 2016-06-30 15:14 - 00000000 ____D C:\Users\james\AppData\LocalLow\Unity
2016-06-30 15:10 - 2016-06-30 15:10 - 00000000 ____D C:\Users\james\AppData\LocalLow\KIXEYE
2016-06-30 14:59 - 2016-06-30 15:10 - 00000000 ____D C:\Users\james\AppData\Roaming\endless-sky
2016-06-29 19:18 - 2016-07-01 07:30 - 00000000 ____D C:\Users\james\AppData\LocalLow\uTorrent
2016-06-29 16:36 - 2016-05-18 11:08 - 00017673 _____ C:\Users\james\Desktop\requestDocumentResultPage.pdf
2016-06-29 15:42 - 2016-06-29 15:42 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533764015.html
2016-06-29 15:42 - 2016-06-29 15:42 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533762781.html
2016-06-29 15:42 - 2016-06-29 15:42 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533762593.html
2016-06-29 15:42 - 2016-06-29 15:42 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533761562.html
2016-06-29 15:42 - 2016-06-29 15:42 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533761375.html
2016-06-29 15:42 - 2016-06-29 15:42 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533757656.html
2016-06-29 15:42 - 2016-06-29 15:42 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533757468.html
2016-06-29 15:42 - 2016-06-29 15:42 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533746500.html
2016-06-29 15:41 - 2016-07-09 12:18 - 00000000 ____D C:\ProgramData\jwinpj
2016-06-29 15:41 - 2016-06-29 15:41 - 02774265 _____ (Update) C:\Program Files (x86)\SSFK.exe
2016-06-29 15:41 - 2016-06-29 15:41 - 00000072 _____ C:\WINDOWS\SysWOW64\us_533741390.html
2016-06-29 15:41 - 2016-06-29 15:41 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533746328.html
2016-06-29 15:41 - 2016-06-29 15:41 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533746078.html
2016-06-29 15:41 - 2016-06-29 15:41 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533745890.html
2016-06-29 15:41 - 2016-06-29 15:41 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_533741843.html
2016-06-28 18:11 - 2016-06-28 18:11 - 00000000 ____D C:\ProgramData\TwinpT
2016-06-28 18:10 - 2016-06-28 18:11 - 00000000 ____D C:\Program Files (x86)\h5s9g4at
2016-06-27 20:11 - 2016-06-27 20:11 - 00000000 ____D C:\Users\james\AppData\Roaming\Uncheckit
2016-06-27 20:11 - 2016-06-27 20:11 - 00000000 ____D C:\ProgramData\Uncheckit
2016-06-27 20:11 - 2016-06-27 20:11 - 00000000 ____D C:\ProgramData\uckt
2016-06-27 20:10 - 2016-06-27 20:11 - 00000000 ____D C:\Program Files (x86)\z7ohqhvc
2016-06-24 21:47 - 2016-06-24 21:47 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123680062.html
2016-06-24 21:47 - 2016-06-24 21:47 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123676968.html
2016-06-24 21:47 - 2016-06-24 21:47 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123676609.html
2016-06-24 21:46 - 2016-07-10 16:48 - 00000000 ____D C:\Program Files (x86)\SFK
2016-06-24 21:46 - 2016-06-24 21:46 - 00000376 _____ C:\WINDOWS\SysWOW64\data.bin
2016-06-24 21:46 - 2016-06-24 21:46 - 00000074 _____ C:\WINDOWS\SysWOW64\EN_123634687.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\us_123589859.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123641359.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123641031.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123634468.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123615515.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123615140.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123614781.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123614484.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123598234.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123597875.html
2016-06-24 21:46 - 2016-06-24 21:46 - 00000072 _____ C:\WINDOWS\SysWOW64\EN_123590906.html
2016-06-24 21:45 - 2016-06-29 15:41 - 00000000 ____D C:\WINDOWS\SysWOW64\_TSpm
2016-06-24 21:45 - 2016-06-24 21:45 - 04398324 _____ (Update) C:\WINDOWS\SysWOW64\en8.exe
2016-06-24 15:47 - 2016-06-24 13:51 - 01013081 _____ C:\Users\james\Desktop\PDF_Low Res.005.PDF
2016-06-23 11:30 - 2016-06-23 11:30 - 00000017 _____ C:\Users\james\AppData\Local\resmon.resmoncfg
2016-06-22 17:12 - 2016-06-22 17:12 - 00000000 ____D C:\WINDOWS\system32\log
2016-06-22 14:11 - 2016-07-09 12:20 - 00000000 ____D C:\Program Files (x86)\WinZipper
2016-06-22 14:11 - 2016-07-09 12:18 - 00000000 ____D C:\Users\james\AppData\Roaming\TSv
2016-06-22 14:11 - 2016-06-28 18:11 - 00009518 _____ C:\WINDOWS\System32\Tasks\Browser Updater Task(Core)
2016-06-22 14:11 - 2016-06-24 21:46 - 00000000 ____D C:\Program Files (x86)\TData
2016-06-22 14:11 - 2016-06-22 17:11 - 00000000 ____D C:\Users\james\AppData\Roaming\WinZiper
2016-06-22 14:11 - 2016-06-22 14:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2016-06-22 14:11 - 2016-06-22 14:11 - 00000000 ____D C:\Program Files (x86)\TXQQBrowser
2016-06-22 14:10 - 2016-06-22 14:11 - 00000000 ____D C:\Program Files (x86)\opcafen2
2016-06-19 23:36 - 2016-06-19 23:36 - 00000000 ____D C:\Users\james\AppData\Roaming\PDAppFlex
2016-06-19 23:35 - 2016-06-19 23:35 - 00003598 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-Dragon-james
2016-06-19 14:31 - 2016-06-19 14:31 - 00002212 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2016-06-19 14:31 - 2016-06-03 13:28 - 00111552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-06-19 14:29 - 2016-06-03 17:22 - 39977920 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 35115968 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 31641656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 25404864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 21812056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 21355464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 18151128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 17746664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 17432544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 10643240 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 08733792 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 02844608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 02470336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 01920960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436839.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436839.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00983488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00910392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00787384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00769984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00707520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00669952 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00565208 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00385592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00379808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00379448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00348216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-06-19 14:29 - 2016-06-03 17:22 - 00316632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-06-18 23:22 - 2016-06-18 23:22 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-06-18 23:22 - 2016-06-18 23:22 - 00001216 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-06-18 23:11 - 2016-06-18 23:11 - 00000000 ____D C:\Program Files (x86)\FastWeb
2016-06-18 23:10 - 2016-07-09 12:17 - 00000000 ____D C:\Program Files (x86)\Vupiyntaied
2016-06-18 23:10 - 2016-06-23 11:25 - 00000000 ____D C:\Users\james\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-06-18 23:10 - 2016-06-23 11:25 - 00000000 ____D C:\Program Files (x86)\Htucult
2016-06-18 23:10 - 2016-06-18 23:10 - 00009140 _____ C:\WINDOWS\System32\Tasks\Phakichreenash Adapter
2016-06-18 23:10 - 2016-06-18 23:10 - 00000000 ____D C:\Program Files (x86)\Phakichreenash
2016-06-18 23:10 - 2016-06-18 23:10 - 00000000 ____D C:\extensions
2016-06-18 23:09 - 2016-06-18 23:09 - 02340635 _____ C:\WINDOWS\chromebrowser.exe
2016-06-11 04:55 - 2016-06-23 20:57 - 00000000 ____D C:\Users\james\AppData\Roaming\BetterBudgetMod
2016-06-10 14:40 - 2016-06-10 18:12 - 00000000 ____D C:\Users\james\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-10 18:25 - 2016-02-17 09:15 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-10 18:22 - 2016-02-17 09:23 - 00000000 ____D C:\Users\james\AppData\Roaming\Skype
2016-07-10 17:35 - 2014-05-14 11:53 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-10 17:31 - 2016-02-17 09:07 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F9E65040-6B63-4682-9C6B-D166C4C0D4E1}
2016-07-10 12:48 - 2016-03-03 12:58 - 00000000 ____D C:\Users\james\AppData\Local\Adobe
2016-07-10 11:38 - 2016-02-17 22:02 - 00381176 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-07-10 10:25 - 2016-02-17 09:15 - 00000916 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-09 23:23 - 2015-10-30 17:21 - 00000000 ____D C:\WINDOWS\INF
2016-07-09 22:05 - 2016-02-17 17:10 - 00000000 ____D C:\Users\james\AppData\LocalLow\Heroes and Generals
2016-07-09 21:48 - 2016-02-17 10:09 - 00000000 ____D C:\Users\james
2016-07-09 18:05 - 2016-02-17 20:58 - 00000000 ____D C:\Users\james\AppData\Roaming\vlc
2016-07-09 12:25 - 2014-05-14 11:54 - 00000000 ____D C:\Program Files (x86)\AlienRespawn
2016-07-09 12:22 - 2016-02-17 10:15 - 00881036 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-09 12:18 - 2016-03-03 13:20 - 00000000 ___RD C:\Users\james\Creative Cloud Files
2016-07-09 12:18 - 2016-03-03 13:20 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-07-09 12:18 - 2016-02-17 09:15 - 00002550 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-09 12:18 - 2016-02-17 09:04 - 00000000 __RDO C:\Users\james\OneDrive
2016-07-09 12:17 - 2016-05-26 19:33 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-09 12:17 - 2016-02-17 10:11 - 00147656 ____N (CyberLink Corp.) C:\WINDOWS\system32\Drivers\rikvm_99E320F5.sys
2016-07-09 12:17 - 2016-02-17 10:11 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-09 12:17 - 2016-02-17 10:06 - 00338264 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-07-09 12:17 - 2015-10-30 17:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-07 10:39 - 2016-02-17 13:31 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-02 03:14 - 2016-04-14 22:35 - 00000000 ____D C:\Users\james\AppData\Roaming\uTorrent
2016-06-30 21:59 - 2016-02-29 23:48 - 00000000 ____D C:\Users\james\AppData\Local\CrashDumps
2016-06-30 16:37 - 2016-02-17 10:49 - 00000000 ____D C:\Users\james\Documents\My Games
2016-06-27 16:47 - 2016-02-17 09:00 - 00000000 ____D C:\Users\james\AppData\Local\Packages
2016-06-23 23:31 - 2016-03-17 15:26 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-06-23 11:25 - 2015-10-30 16:28 - 05242880 ___SH C:\WINDOWS\system32\config\BBI
2016-06-22 21:19 - 2016-02-17 09:23 - 00000000 ____D C:\ProgramData\Skype
2016-06-19 23:35 - 2016-05-27 19:02 - 00000000 ____D C:\Users\james\AppData\Roaming\NVIDIA
2016-06-19 19:23 - 2016-05-03 23:06 - 00000000 ____D C:\Users\james\AppData\Local\Battle.net
2016-06-19 18:43 - 2016-05-03 22:25 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-06-19 14:31 - 2016-02-17 10:09 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-06-19 14:31 - 2014-05-14 11:54 - 00000000 ____D C:\Temp
2016-06-19 14:31 - 2014-05-14 11:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-19 14:30 - 2016-05-26 19:16 - 00000000 ____D C:\WINDOWS\LastGood
2016-06-18 23:22 - 2016-03-03 13:18 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-16 21:39 - 2015-10-30 17:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-15 06:01 - 2016-02-25 11:07 - 01767944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-06-15 06:01 - 2016-02-25 11:07 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-06-15 06:01 - 2016-02-25 11:07 - 01377800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-06-15 06:01 - 2016-02-25 11:07 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-06-15 06:01 - 2016-02-25 11:07 - 00112216 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-06-10 21:20 - 2016-02-24 11:10 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-06-10 21:20 - 2015-10-30 17:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
==================== Files in the root of some directories =======
2016-06-29 15:41 - 2016-06-29 15:41 - 2774265 _____ (Update) C:\Program Files (x86)\SSFK.exe
2016-06-23 11:30 - 2016-06-23 11:30 - 0000017 _____ () C:\Users\james\AppData\Local\resmon.resmoncfg
2016-02-17 10:09 - 2016-02-17 10:09 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-03-10 14:21 - 2016-03-10 14:21 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2014-05-14 11:52 - 2014-05-14 11:52 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-05-14 11:51 - 2014-05-14 11:51 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-05-14 11:51 - 2014-05-14 11:51 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-05-14 11:52 - 2014-05-14 11:52 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-05-14 11:50 - 2014-05-14 11:51 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
Some files in TEMP:
====================
C:\Users\james\AppData\Local\Temp\acc.exe
C:\Users\james\AppData\Local\Temp\AcDeltree.exe
C:\Users\james\AppData\Local\Temp\CodecFixDivx.exe
C:\Users\james\AppData\Local\Temp\COMAP.EXE
C:\Users\james\AppData\Local\Temp\dlLogic.exe
C:\Users\james\AppData\Local\Temp\FAInstallV4.001.224.Dell.exe
C:\Users\james\AppData\Local\Temp\MediaPlayer__11426.exe
C:\Users\james\AppData\Local\Temp\msconfig.exe
C:\Users\james\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\james\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\james\AppData\Local\Temp\nvStInst.exe
C:\Users\james\AppData\Local\Temp\offer-3D0C2A57-9BC2-4278-9A10-A42BF0982588.exe
C:\Users\james\AppData\Local\Temp\offer-6AB38035-74C8-4271-9AF7-FFDEAB1B5ACB.exe
C:\Users\james\AppData\Local\Temp\SkypeSetup.exe
C:\Users\james\AppData\Local\Temp\spstub.exe
C:\Users\james\AppData\Local\Temp\utt3CDC.tmp.exe
C:\Users\james\AppData\Local\Temp\vlc-2.2.1-win32.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-06-29 03:10
==================== End of FRST.txt ============================
Addition>txt>=(Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-07-2016
Ran by james (2016-07-10 18:28:29)
Running from C:\Users\james\Downloads
Windows 10 Home Version 1511 (X64) (2016-02-17 00:13:09)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2398116273-2659702418-3458387103-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2398116273-2659702418-3458387103-503 - Limited - Disabled)
Guest (S-1-5-21-2398116273-2659702418-3458387103-501 - Limited - Disabled)
james (S-1-5-21-2398116273-2659702418-3458387103-1001 - Administrator - Enabled) => C:\Users\james
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk)
ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.2 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Alien Swarm (HKLM\...\Steam App 630) (Version: - Valve)
AlienRespawn - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.0 - Alienware)
AlienRespawn (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.0 - Alienware)
Alienware Command Center (HKLM-x32\...\InstallShield_{D4CE21D4-27E5-46DB-9FFE-553A90AD4B9F}) (Version: 3.5.14.0 - Alienware Corp.)
Alienware Command Center (Version: 3.5.14.0 - Alienware Corp.) Hidden
Alienware Digital Delivery (HKLM-x32\...\{03A9F528-A754-460F-B2C1-AC125A147114}) (Version: 2.8.5000.0 - Dell Products, LP)
Alienware On-Screen Display (HKLM-x32\...\InstallShield_{0D69462F-99CC-4F8D-942E-666E21CE59F8}) (Version: 0.33.0.11C - )
Alienware On-Screen Display (x32 Version: 0.33.0.11C - ) Hidden
AutoCAD 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (Version: 20.1.107.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - English (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk)
Autodesk 3ds Max 2016 (Version: 18.0.873.0 - Autodesk) Hidden
Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk)
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.19 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk)
Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD 2016 SP 1 (HKLM\...\AutoCAD 2016 SP1) (Version: 20.1.107.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk Backburner 2016 (HKLM-x32\...\{8C5F38D2-9EFE-49A4-B3F5-BF3210FED168}) (Version: 16.0.0.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Download Manager (HKLM-x32\...\{C897D9EC-13C6-4A22-ABF7-33F2126A7DB6}) (Version: 3.0.8.0 - Autodesk, Inc.)
Autodesk Featured Apps 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk)
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.19 - Autodesk)
Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk)
Autodesk ReCap 2016 (Version: 1.5.0.33 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max (HKLM\...\Autodesk Revit Interoperability for 3ds Max ) (Version: 16.0.394.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max (Version: 16.0.394.0 - Autodesk) Hidden
Avalon Lords: Dawn Rises (HKLM\...\Steam App 329280) (Version: - Animus Interactive Inc)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.143 - Broadcom Corporation)
Cities: Skylines (HKLM\...\Steam App 255710) (Version: - Colossal Order Ltd.)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Dell Data Vault (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6793.01 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Devilian (HKLM\...\Steam App 407510) (Version: - Bluehole Ginno Games)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Empire: Total War Demo (HKLM\...\Steam App 10620) (Version: - The Creative Assembly)
EMSC (x32 Version: 0.0.0.25 - Compal Electronics, Inc.) Hidden
Endless Sky (HKLM\...\Steam App 404410) (Version: - Michael Zahniser)
Epic Games Launcher (HKLM-x32\...\{4620A9CA-A0D7-4F15-BA89-4545B5372345}) (Version: 1.1.60.0 - Epic Games, Inc.)
Evolve Stage 2 (HKLM\...\Steam App 273350) (Version: - Turtle Rock Studios)
Face Recognition (HKLM\...\{3E90A9D2-5A2B-4532-AEED-E526536D40B2}) (Version: 4.1.224.1 - Sensible Vision)
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
Gear Up (HKLM\...\Steam App 214420) (Version: - Doctor Entertainment AB)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto)
Insecters War (HKLM\...\Steam App 335950) (Version: - GameShark)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Rapid Start Technology (HKLM-x32\...\{3D073343-CEEB-4ce7-85AC-A69A7631B5D6}) (Version: 3.0.0.1056 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Kingdom Wars (HKLM\...\Steam App 227180) (Version: - Reverie World Studios, INC)
K-Lite Codec Pack 12.0.1 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.0.1 - KLCP)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Metal War Online: Retribution (HKLM\...\Steam App 412470) (Version: - GDT Limited)
Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4823.1004 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.39 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Graphics Driver 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.39 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1052 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1052 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{56BF70E8-EC59-4F68-BEE7-8B71432048C4}) (Version: 1.0.30.1052 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.0.30.1052 - Qualcomm Atheros) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
SAGA (HKLM\...\Steam App 376140) (Version: - Silverlode Interactive)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
SketchUp Import 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.12.0046 - ST Microelectronics)
StageLight (HKLM\...\StageLight) (Version: 1.2.0.4291 - Open Labs, LLC.)
Star Conflict (HKLM-x32\...\Steam App 212070) (Version: - Star Gem Inc.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Steel Ocean (HKLM\...\Steam App 390670) (Version: - ICE Entertainment)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.2 - Synaptics Incorporated)
UFO Online: Invasion (HKLM\...\Steam App 442810) (Version: - Bad Pixel)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.8.1 (HKLM\...\VulkanRT1.0.8.1) (Version: 1.0.8.1 - LunarG, Inc.)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.15-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.7850 - Broadcom Corporation)
WinZip (HKLM-x32\...\WinZip) (Version: 2.2.41 - Winzipper Pvt Ltd.) <==== ATTENTION
World of Guns: Gun Disassembly (HKLM\...\Steam App 262410) (Version: - Noble Empire Corp.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-C49BB4BFF009}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\james\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2398116273-2659702418-3458387103-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0A74EF1E-7933-4EB7-8DCE-59617091D70D} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-03-02] ()
Task: {0BFABE7F-6B7E-4BF8-AC92-F0851E458A8C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {218B3B33-949C-4509-BAF0-2C57C9CE8B54} - System32\Tasks\AdobeAAMUpdater-1.0-Dragon-james => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated)
Task: {27C2CA29-3251-4B71-B9DA-1E224AD28271} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-17] (Google Inc.)
Task: {2A8C607E-17C0-418D-B172-3D0464DDB25C} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {3477E746-0ADC-4CED-83CD-87F99631BE6E} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\TXQQBrowser\Update\33C94A63562D6B1D0C933686CFD16193\Update\BrowserUpdate.exe [2016-04-25] (Tencent) <==== ATTENTION
Task: {3BDFC010-AB69-4FA4-8FAD-F9F1752957C5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {3C01696A-A78D-48D9-89E1-846D0C4CB797} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated)
Task: {42FB0FA0-AE6A-41A4-93F3-0AC52820A3A0} - System32\Tasks\LefttoeUpdateTaskMachineCore => C:\Program Files (x86)\Lefttoe\Update\LefttoeUpdate.exe [2016-06-30] () <==== ATTENTION
Task: {4B221305-DFA6-422B-A04A-BA32DB12FB03} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {4B8B1F40-C1A3-4B59-8234-5A067F445400} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {53E75693-566E-49A0-A6A7-076B403871D0} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-14] (Synaptics Incorporated)
Task: {6EA13D78-8527-473D-A979-3E9660223818} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {72910242-CEE7-4736-9FC1-9FFD1B33C17A} - System32\Tasks\LefttoeUpdateTaskMachineUA => C:\Program Files (x86)\Lefttoe\Update\LefttoeUpdate.exe [2016-06-30] () <==== ATTENTION
Task: {8C0121D8-BF7C-417D-99B1-F46CF6F471B0} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Alienware\SupportAssist\sessionchecker.exe [2016-03-25] (PC-Doctor, Inc.)
Task: {928FDE2D-5614-4C31-A984-EEDD96BE5246} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B9801A74-646D-4BA5-9F23-536CD1AB8D78} - System32\Tasks\Phakichreenash Adapter => C:\Program Files (x86)\Phakichreenash\PhakichreenashadapterTs.exe [2016-06-15] ()
Task: {BAD33F57-106E-42D8-BCBA-C32D8C28BA4C} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-04-22] (Dell Inc.)
Task: {C05915D3-E9AC-4D81-B354-FB3012752B65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-17] (Google Inc.)
Task: {C110BE51-8E58-4523-8295-3E85EA18378E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {C883300B-86BB-4292-9190-265EAAE1D38A} - System32\Tasks\Intel® Rapid Start Technology Manager => C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe [2013-09-12] (Intel)
Task: {D30252F0-ADFE-421F-90ED-303A8C36403C} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {D33B8A12-D050-41AE-ABF2-263FE79C9ED1} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Alienware\SupportAssist\uaclauncher.exe [2016-03-25] (PC-Doctor, Inc.)
Task: {DCA2BAB2-9D0B-4AC2-8684-A58BFC8B94DE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {E540C609-5CE2-4A75-A696-04C9064DB349} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {EBE1F486-9B81-4197-8915-33CF843F42B0} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\james\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40` (No File)
Shortcut: C:\Users\james\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40` (No File)
Shortcut: C:\Users\james\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2e13e29bcf26a9f0\Lefttoe.lnk -> hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40SC:\Users\james\AppData\Local\Lefttoe\User Data\ChromeDefaultData\Google Profile.ico (No File)
ShortcutWithArgument: C:\Users\james\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Lefttoe\Application\chrome.exe (Google Inc.) -> hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
ShortcutWithArgument: C:\Users\james\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Lefttoe\Application\chrome.exe (Google Inc.) -> hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
ShortcutWithArgument: C:\Users\james\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Lefttoe\Application\chrome.exe (Google Inc.) -> hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Lefttoe\Application\chrome.exe (Google Inc.) -> hxxp://www.nuesearch.com/?type=sc&ts=1468030702&z=e5623f053bf78e759ada43agbzdq0b3e3cae5m1g9e&from=wpm0616&uid=WDCXWD10JPVX-75JC3T0_WXD1EB3PST40EB3PST40
==================== Loaded Modules (Whitelisted) ==============
2015-10-30 17:18 - 2015-10-30 17:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-05-26 19:33 - 2016-06-03 13:59 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-02-24 11:10 - 2015-10-13 05:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-04-13 18:02 - 2016-03-29 20:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 18:02 - 2016-03-29 20:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-02-24 11:12 - 2016-02-25 12:17 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2016-04-20 01:55 - 2016-04-20 01:55 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-02-18 04:03 - 2016-02-18 04:03 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-04-13 18:01 - 2016-04-02 13:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-04-13 18:01 - 2016-04-02 13:26 - 00674816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
2016-04-13 18:01 - 2016-04-02 13:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-04-13 18:01 - 2016-04-02 12:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-13 18:01 - 2016-04-02 12:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-04-13 18:01 - 2016-04-02 13:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-03-23 10:38 - 2016-01-12 03:30 - 01349824 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2016-06-18 23:11 - 2016-06-18 23:11 - 00191488 _____ () C:\Program Files (x86)\FastWeb\fastweb.exe
2013-08-08 06:38 - 2013-08-08 06:38 - 00283648 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
2013-11-16 10:17 - 2013-11-16 10:17 - 04593968 _____ () C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
2015-08-08 11:38 - 2015-08-08 11:38 - 04358888 _____ () C:\Program Files (x86)\Sensible Vision\Fast Access\FAAppMonOT.exe
2016-07-07 11:59 - 2016-07-07 11:59 - 00475856 _____ () C:\Users\james\AppData\Roaming\TSv\TSvr.exe
2016-05-22 19:32 - 2016-05-22 19:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-06-24 21:46 - 2016-07-08 10:54 - 00132320 _____ () C:\Program Files (x86)\SFK\SSFK.exe
2016-07-09 12:18 - 2016-07-08 14:09 - 00518360 _____ () C:\Program Files (x86)\WinSaber\WinSaber.exe
2016-06-30 19:44 - 2016-06-30 12:39 - 00424832 _____ () C:\ProgramData\Lefttoe\Lefttoe.exe
2014-05-14 11:54 - 2013-11-22 10:22 - 00484880 _____ () C:\Program Files (x86)\AlienRespawn\Components\Shell\DBRCrawler.exe
2016-02-25 11:07 - 2016-06-15 06:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-02-25 11:07 - 2016-06-15 06:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-04-02 03:49 - 2016-06-15 06:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-25 11:07 - 2016-06-15 06:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-04-02 03:49 - 2016-06-15 06:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-02 03:49 - 2016-06-15 06:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-02 03:49 - 2016-06-15 06:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-02-25 11:07 - 2016-06-15 06:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-04-02 03:49 - 2016-06-15 06:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-04-02 03:49 - 2016-06-15 06:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2014-01-21 16:54 - 2014-01-21 16:54 - 01301688 _____ () C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
2016-06-29 15:39 - 2016-06-29 15:39 - 02321912 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.22\deploy\LoLLauncher.exe
2016-06-29 15:39 - 2016-06-29 15:39 - 04302328 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.62\deploy\LoLPatcher.exe
2016-04-07 21:32 - 2016-04-07 21:32 - 00074752 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.205\deploy\LolClient.exe
2015-08-08 11:52 - 2015-08-08 11:52 - 00093928 _____ () C:\WINDOWS\SYSTEM32\FAIEExtension.DLL
2013-04-04 14:42 - 2013-04-04 14:42 - 00012424 _____ () C:\Program Files (x86)\Sensible Vision\Fast Access\MFCaptureD3D_2_DLL.dll
2016-06-22 14:11 - 2015-12-30 15:34 - 00582144 _____ () C:\Program Files (x86)\WinZipper\curlpp.dll
2016-06-22 14:11 - 2016-01-26 18:27 - 00066560 _____ () C:\Program Files (x86)\WinZipper\zlib1.dll
2016-02-25 12:04 - 2016-02-24 14:48 - 00062024 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2016-02-25 12:04 - 2016-02-24 14:47 - 00110664 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2016-04-20 01:55 - 2016-04-20 01:55 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-20 01:55 - 2016-04-20 01:55 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2009-12-19 04:07 - 2009-12-19 04:07 - 00577536 _____ () C:\Program Files (x86)\Alienware On-Screen Display\EMSC.dll
2014-05-14 11:51 - 2013-03-05 13:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-06 04:41 - 2013-03-06 04:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-01-14 16:03 - 2014-01-14 16:03 - 00110088 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2014-05-14 11:47 - 2013-09-19 02:33 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2015-12-14 21:54 - 2016-04-30 06:10 - 00785920 _____ () c:\Program Files (x86)\Steam\SDL2.dll
2015-07-03 08:12 - 2015-07-04 02:12 - 04962816 _____ () c:\Program Files (x86)\Steam\v8.dll
2016-02-04 13:02 - 2016-07-09 11:06 - 02317904 _____ () c:\Program Files (x86)\Steam\video.dll
2015-09-23 16:33 - 2016-02-09 09:14 - 02549760 _____ () c:\Program Files (x86)\Steam\libavcodec-56.dll
2015-09-23 16:33 - 2016-02-09 09:14 - 00491008 _____ () c:\Program Files (x86)\Steam\libavformat-56.dll
2015-09-23 16:33 - 2016-02-09 09:14 - 00332800 _____ () c:\Program Files (x86)\Steam\libavresample-2.dll
2015-09-23 16:33 - 2016-02-09 09:14 - 00442880 _____ () c:\Program Files (x86)\Steam\libavutil-54.dll
2015-09-23 16:33 - 2016-02-09 09:14 - 00485888 _____ () c:\Program Files (x86)\Steam\libswscale-3.dll
2015-07-03 08:12 - 2015-07-04 02:12 - 01187840 _____ () c:\Program Files (x86)\Steam\icuuc.dll
2015-07-03 08:12 - 2015-07-04 02:12 - 01556992 _____ () c:\Program Files (x86)\Steam\icui18n.dll
2016-02-17 09:22 - 2016-07-09 11:06 - 00829520 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 13:44 - 2016-07-07 08:00 - 00266560 _____ () c:\Program Files (x86)\Steam\openvr_api.dll
2016-02-17 09:22 - 2016-06-15 05:14 - 49826080 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-09-24 15:56 - 2015-09-25 09:56 - 00119208 _____ () c:\Program Files (x86)\Steam\winh264.dll
2014-05-14 11:54 - 2013-11-22 08:00 - 01904928 _____ () C:\Program Files (x86)\AlienRespawn\Components\Restore\STRestoreAPI.dll
2014-05-14 11:54 - 2012-11-26 15:20 - 01153384 _____ () C:\Program Files (x86)\AlienRespawn\Components\Restore\libxml2.dll
2014-05-14 11:54 - 2012-11-26 15:20 - 00117608 _____ () C:\Program Files (x86)\AlienRespawn\Components\Restore\zlib1.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00143296 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 02631616 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00554944 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00041920 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00039872 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00086464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll
2015-04-13 23:56 - 2015-04-13 23:56 - 00070675 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 02158528 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00114112 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00245184 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00089536 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libvdr_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00055744 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00072128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00593344 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00771520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00131520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00052672 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\librar_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00023488 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00145856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 01566656 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00332736 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 01264064 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00069568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00048576 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 12001728 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00242112 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00108992 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00096704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00091584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00032192 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00084928 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00030144 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00034752 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00961472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00137152 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 01303488 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00024000 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libdiracsys_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00338368 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libogg_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00720832 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblive555_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00031680 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00418240 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libgme_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00035264 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libimage_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libxa_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00029632 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libpva_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00027072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libau_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00046528 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\librawvid_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00026048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00027584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnsv_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00168384 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libts_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00531392 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmod_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00047552 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libps_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00045504 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libty_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmjpeg_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmpgv_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00344512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00157632 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00754624 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00031680 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00089024 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00032192 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00040384 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00030144 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00078272 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00044992 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00026048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00035264 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00037312 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00261056 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00027072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00304576 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 01291200 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00052160 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00456128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00035776 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 01549248 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00356288 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liba52_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00363456 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libopus_plugin.dll
2015-04-14 00:00 - 2015-04-14 00:00 - 00121792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdvbsub_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 13522368 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00772544 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\text_renderer\libfreetype_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00038848 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00030144 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_mmx_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00702400 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00125376 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_sse2_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00064448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_mmx_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_mmx_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00027584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00030656 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00027584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00029120 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00037312 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll
2015-04-13 23:58 - 2015-04-13 23:58 - 00024000 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00023488 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libyuvp_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00027072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00140224 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00176576 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00067520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 01504704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00029632 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00034240 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2015-04-13 23:59 - 2015-04-13 23:59 - 00118720 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libpostproc_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00060864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnsc_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libdemux_cdg_plugin.dll
2015-04-13 23:57 - 2015-04-13 23:57 - 00025536 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\librawdv_plugin.dll
2016-06-30 19:44 - 2016-06-30 12:39 - 01734528 _____ () C:\Program Files (x86)\Lefttoe\Application\libglesv2.dll
2016-06-30 19:44 - 2016-06-30 12:39 - 00081280 _____ () C:\Program Files (x86)\Lefttoe\Application\libegl.dll
2016-06-08 00:10 - 2016-06-08 00:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-06-08 00:10 - 2016-06-08 00:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-06-08 00:10 - 2016-06-08 00:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-06-08 00:10 - 2016-06-08 00:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-06-08 00:41 - 2016-06-08 00:41 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-06-08 00:10 - 2016-06-08 00:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-02-25 11:07 - 2016-06-15 06:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-02-25 11:07 - 2016-06-15 06:02 - 01917888 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\Nvidia.GameServices.dll
2016-04-02 03:49 - 2016-06-15 06:02 - 00031680 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\boost_system-vc120-mt-1_58.dll
2016-04-02 03:49 - 2016-06-15 06:02 - 00749504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\boost_regex-vc120-mt-1_58.dll
2016-04-02 03:49 - 2016-06-15 06:02 - 00015808 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\icudt53.dll
2016-06-29 15:39 - 2016-06-29 15:39 - 01434616 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.62\deploy\RiotLauncher.dll
2016-04-20 09:45 - 2016-04-20 09:45 - 04887216 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.205\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
2016-04-20 09:45 - 2016-04-20 09:45 - 19397808 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.205\deploy\Adobe AIR\Versions\1.0\Resources\NPSWF32.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\Temp:$DATA [16]
AlternateDataStreams: C:\Users\james:Heroes & Generals [38]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\Software\Classes\.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe "%1"
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 23:25 - 2016-06-27 20:11 - 00002206 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
There are 8 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2398116273-2659702418-3458387103-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\james\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 61.9.211.1 - 61.9.211.33
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{1D2689F4-D542-4FE7-8A19-3173A6CAF7A2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{9CEA5628-5046-41E5-87AB-BC1239440489}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{6EADC230-1E0B-4169-A6DA-27C032A53414}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6F72FF13-ADD3-46E4-AFC4-8612BDB1C2BC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7944FB7E-06BF-4E9B-9CB0-5C14DB374EB4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{08755ED5-142B-4E67-9DD0-EE9347FFBF63}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{661A238E-E28A-4F61-BDD0-FF0884FDCC27}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{75F52FDA-8C6F-416A-B439-27C3C961848D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4CAE68C2-1CB3-4B60-A3A7-2A66881263CF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{4A82AA49-013E-4D27-AC92-2EE674946160}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{ED87232D-5A2D-4A06-8548-AE567BA56530}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\star conflict\game.exe
FirewallRules: [{99E9B6B6-8625-45D3-8984-6B4D8983D47F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\star conflict\game.exe
FirewallRules: [{C75FDE82-A84D-4CEA-8DDA-263108FF02EB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{52FA7B20-1E9D-4EE9-80A3-68A4A9CFA2B7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [TCP Query User{451AF5B4-E04B-422B-9F8D-24301DAD7EF3}C:\users\james\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\james\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{3E8C4010-039A-4117-8530-CC4B99EA4180}C:\users\james\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\james\appdata\local\akamai\netsession_win.exe
FirewallRules: [{D0BA68BC-2395-4C2F-B854-26B82CB6F0C0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{1C0A0993-D106-4863-A3AE-5E6F07E36959}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3DDF8F66-667E-4CB4-B190-3BDD943713A4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{85756EBA-8DBD-49FB-B4AC-713A183ABE68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{796305BD-39B2-43BE-9D43-E55C14B04037}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4E7208A1-5750-4FDB-8227-91F9EDAB28CF}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
FirewallRules: [{984A2846-705B-4BDE-8DC2-5027C8F7A3F7}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
FirewallRules: [{364A02B1-5B5D-46B3-9A4D-11F38979E0D5}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
FirewallRules: [{9B1D367B-7772-429D-BEFF-F79EC3766982}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
FirewallRules: [{2F00F791-1EB9-41B8-95D0-279D03AAEBBD}] => (Allow) D:\SteamLibrary\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{63A9FD26-0670-4B14-95D3-F71E5C59F264}] => (Allow) D:\SteamLibrary\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{D2094CD8-B5A8-468C-9FC9-1DE2B549AC94}] => (Allow) D:\SteamLibrary\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{3B30DFCA-A536-4B68-9CBF-2F66DBD3C772}] => (Allow) D:\SteamLibrary\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{DD8705E7-3E16-4199-8FC3-57F7D8E1BF6C}] => (Allow) D:\SteamLibrary\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{178B5212-56C5-48CA-86DA-669308A03B7D}] => (Allow) D:\SteamLibrary\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{66E9E49F-F8F0-4727-BF75-5313DD635D94}] => (Allow) LPort=50248
FirewallRules: [TCP Query User{4ACEFA09-22AF-4E8E-952D-D4FA05082DC8}D:\steamlibrary\steamapps\common\space\spacegame\binaries\win64\spserver.exe] => (Allow) D:\steamlibrary\steamapps\common\space\spacegame\binaries\win64\spserver.exe
FirewallRules: [UDP Query User{7D69036F-09CA-4446-85E5-1F715B83A6ED}D:\steamlibrary\steamapps\common\space\spacegame\binaries\win64\spserver.exe] => (Allow) D:\steamlibrary\steamapps\common\space\spacegame\binaries\win64\spserver.exe
FirewallRules: [{333CEBFD-ADC1-4D03-9C75-7C2506033734}] => (Allow) D:\SteamLibrary\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{363601A2-A210-494E-A31D-9FDEEAC72F3D}] => (Allow) D:\SteamLibrary\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [TCP Query User{BD7445AC-0A3C-486C-BFAE-3193C7B1A91B}D:\steamlibrary\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Block) D:\steamlibrary\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
FirewallRules: [UDP Query User{91BF47BE-9154-4955-8123-1B1EA1D0AD2C}D:\steamlibrary\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Block) D:\steamlibrary\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
FirewallRules: [TCP Query User{BAEC5AC4-50BC-48A3-9310-222DC7478628}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{E33D2DED-028D-411C-8768-48949BB766BB}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{A29CBBB1-44DC-4A2A-8A37-868E245D2632}] => (Allow) C:\Users\james\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CF76D148-90E1-457B-A282-A9E71AA376BB}] => (Allow) C:\Users\james\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B4A2ED21-E0DC-4583-B368-C6A75BC52C84}] => (Allow) C:\Users\james\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{739653AF-5F2C-4DDA-A44D-1131E0D6CA24}] => (Allow) C:\Users\james\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AC980E12-7D1F-4E96-A668-76ABAAD45F3E}] => (Allow) C:\Users\james\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{12540176-82E5-46A0-B085-94BD23CA61D0}] => (Allow) C:\Users\james\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{FC6B7472-03C9-4DF9-9C97-B68354462018}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{502ED066-000C-44D1-B0B1-5014C3243C4C}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{A1377D5A-BD99-48DB-B1A0-3FABB23E2ABD}D:\_installs\install.files.folder\starcraft ii\versions\base42253\sc2_x64.exe] => (Allow) D:\_installs\install.files.folder\starcraft ii\versions\base42253\sc2_x64.exe
FirewallRules: [UDP Query User{25DF5CBC-8013-4FBC-8E26-55D83CDE5616}D:\_installs\install.files.folder\starcraft ii\versions\base42253\sc2_x64.exe] => (Allow) D:\_installs\install.files.folder\starcraft ii\versions\base42253\sc2_x64.exe
FirewallRules: [{0D497D87-3CBF-4F25-9888-973DA8E85D57}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{9C526F4A-028B-4295-A691-06F5519550A6}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{DCAEC45C-856A-41C0-AAF9-B3ACA696868C}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{832A86F7-B92E-424A-8D7A-40C4E6CA277B}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [TCP Query User{AF5B7A7C-955A-43DF-B883-F0CD29C4112D}D:\_installs\install.files.folder\diablo iii\diablo iii.exe] => (Block) D:\_installs\install.files.folder\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{EB4FE3B7-F830-4C70-A4CB-15D75000E995}D:\_installs\install.files.folder\diablo iii\diablo iii.exe] => (Block) D:\_installs\install.files.folder\diablo iii\diablo iii.exe
FirewallRules: [{557AB7C5-B35B-4B77-BFB6-EFFE0756582E}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{A1792CED-0988-4F78-97C6-4F36164A205D}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{D4F6223D-43A4-4F0B-98CA-CB7BDE29536A}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{0BA8A982-38EC-4AF1-9E91-29E095CBC02A}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{86A4097E-4310-4BA4-9C07-C4F59CA1CF96}] => (Allow) C:\Games\World_of_Warplanes\WoWPLauncher.exe
FirewallRules: [{E1757FA1-8435-4F7E-9C95-9BE9B630C003}] => (Allow) C:\Games\World_of_Warplanes\WoWPLauncher.exe
FirewallRules: [{7A2CC1C6-E308-4FC7-ACFD-3BC44D698597}] => (Allow) C:\Games\World_of_Warplanes\worldofwarplanes.exe
FirewallRules: [{852772D1-3764-4AEA-A7D7-73A36150B995}] => (Allow) C:\Games\World_of_Warplanes\worldofwarplanes.exe
FirewallRules: [{102C1AAD-258D-44F1-A189-0E15331F7F52}] => (Allow) D:\SteamLibrary\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{3ABE7172-E2BE-415B-9298-8C7E548D19C2}] => (Allow) D:\SteamLibrary\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{BD7F10BE-8DB8-43D8-B952-A1C5C8E0586E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D05CAE53-B4DC-40BC-B117-8CE482130641}] => (Allow) D:\SteamLibrary\SteamApps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{521B9A59-4D99-4787-BB17-D564C0EFE7E1}] => (Allow) D:\SteamLibrary\SteamApps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{8DEC35D0-0D01-48C1-BA98-570C99EFC1B2}] => (Allow) D:\SteamLibrary\SteamApps\common\WOG\disasm.exe
FirewallRules: [{4AD833BD-C19E-4728-9042-44F3782B12E0}] => (Allow) D:\SteamLibrary\SteamApps\common\WOG\disasm.exe
FirewallRules: [{FCF1A063-730D-4A2B-AABD-9EC56D3FA5B4}] => (Allow) D:\SteamLibrary\SteamApps\common\Endless Sky\EndlessSky.exe
FirewallRules: [{4649BCBA-0272-4129-B0C0-D948241D68A9}] => (Allow) D:\SteamLibrary\SteamApps\common\Endless Sky\EndlessSky.exe
FirewallRules: [{D4DD7184-C3B2-4B99-8070-5EA0DCECCF32}] => (Allow) D:\SteamLibrary\SteamApps\common\Alien Swarm\swarm.exe
FirewallRules: [{1BBABEDB-ED79-4E86-B645-08D06AF374B6}] => (Allow) D:\SteamLibrary\SteamApps\common\Alien Swarm\swarm.exe
FirewallRules: [{9EAA5C94-4856-4E83-849E-FAB16F6994BD}] => (Allow) D:\SteamLibrary\SteamApps\common\Steel Ocean\Binaries\win32\SeaGame.exe
FirewallRules: [{EE68FEF5-841D-46DE-9EBF-8C5CB2BD9A6C}] => (Allow) D:\SteamLibrary\SteamApps\common\Steel Ocean\Binaries\win32\SeaGame.exe
FirewallRules: [{C21F889B-26E8-4812-A3C3-4B2278953306}] => (Allow) D:\SteamLibrary\SteamApps\common\Metal War Online Retribution\MWOLauncher.exe
FirewallRules: [{B20A60F6-FD67-4CEA-9D51-924DC7CC333D}] => (Allow) D:\SteamLibrary\SteamApps\common\Metal War Online Retribution\MWOLauncher.exe
FirewallRules: [{95379D8C-D8E0-4F35-8C7C-630D016FF3A3}] => (Allow) D:\SteamLibrary\SteamApps\common\Insecters War\InsectersWar.exe
FirewallRules: [{46FE3EFE-4D49-4504-8DA7-758C62D86958}] => (Allow) D:\SteamLibrary\SteamApps\common\Insecters War\InsectersWar.exe
FirewallRules: [{5C4C515C-4A84-4301-86F0-01C439072801}] => (Allow) D:\SteamLibrary\SteamApps\common\Avalon Lords\Avalonlords.exe
FirewallRules: [{5BB37002-10AF-4798-8CAD-1B6143CAE9AC}] => (Allow) D:\SteamLibrary\SteamApps\common\Avalon Lords\Avalonlords.exe
FirewallRules: [{44706E87-4497-4678-8A69-427AD549940B}] => (Allow) D:\SteamLibrary\SteamApps\common\UFO Online Invasion\UFO Online.exe
FirewallRules: [{746FBAE2-0B73-4C6D-8420-4E70D9501AFD}] => (Allow) D:\SteamLibrary\SteamApps\common\UFO Online Invasion\UFO Online.exe
FirewallRules: [{3107A510-0A75-4898-A5EE-3286A796B107}] => (Allow) C:\Program Files (x86)\Lefttoe\Update\LefttoeUpdate.exe
FirewallRules: [{AB140FF0-2ED5-4CC5-A6A0-FD57C27A095E}] => (Allow) C:\Program Files (x86)\Lefttoe\Application\chrome.exe
FirewallRules: [{B995ECD5-16F5-4B30-936D-BE731C04BEDF}] => (Allow) C:\ProgramData\Lefttoe\Lefttoe.exe
FirewallRules: [{0971F98D-6ECF-4C75-9A32-E9F46CF42D38}] => (Allow) D:\SteamLibrary\SteamApps\common\Devilian\GlyphClient.exe
FirewallRules: [{F07E4E2F-9FEA-487C-A92A-014E7EDB3589}] => (Allow) D:\SteamLibrary\SteamApps\common\Devilian\GlyphClient.exe
FirewallRules: [{8E37762D-F17C-484F-813E-326E10173A44}] => (Allow) D:\SteamLibrary\SteamApps\common\GearUp\bin\Traktor.Amalgam.App.exe
FirewallRules: [{4FACB04A-298E-4C8D-A989-7497DF8527D8}] => (Allow) D:\SteamLibrary\SteamApps\common\GearUp\bin\Traktor.Amalgam.App.exe
FirewallRules: [{ED587B29-C5F8-45A3-8ACA-0F30B775A2CF}] => (Allow) D:\SteamLibrary\SteamApps\common\Empire Total War Demo\Empire.exe
FirewallRules: [{55B3419F-1871-44A1-9344-A61DD487B2E2}] => (Allow) D:\SteamLibrary\SteamApps\common\Empire Total War Demo\Empire.exe
FirewallRules: [{BDEF9882-9030-4920-8540-A5B02E1205B6}] => (Allow) D:\SteamLibrary\SteamApps\common\Dawn of Fantasy\Dof.exe
FirewallRules: [{FFE3D082-9065-4239-99A4-E2C56B0D71EF}] => (Allow) D:\SteamLibrary\SteamApps\common\Dawn of Fantasy\Dof.exe
FirewallRules: [{7950E318-891A-4809-AA82-2C1CA9C04C07}] => (Allow) D:\SteamLibrary\SteamApps\common\Dawn of Fantasy\dof_options.exe
FirewallRules: [{C6817336-18BF-44C4-ACC3-EE48FEA68087}] => (Allow) D:\SteamLibrary\SteamApps\common\Dawn of Fantasy\dof_options.exe
FirewallRules: [{0D2C7E20-C3CB-48DE-904F-82254924311E}] => (Allow) D:\SteamLibrary\SteamApps\common\Dawn of Fantasy\Editor.exe
FirewallRules: [{3CB85794-6F3E-41C5-B985-B58C8BC6510E}] => (Allow) D:\SteamLibrary\SteamApps\common\Dawn of Fantasy\Editor.exe
FirewallRules: [{51096D2C-DBA7-44BA-B0C2-FDDA3C1BE70F}] => (Allow) D:\SteamLibrary\SteamApps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{170ACCD6-4920-45D1-8C23-FF7311738612}] => (Allow) D:\SteamLibrary\SteamApps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
==================== Restore Points =========================
27-06-2016 08:38:36 Scheduled Checkpoint
01-07-2016 03:41:25 Installed Microsoft Visual C++ 2005 Redistributable (x64)
01-07-2016 06:35:12 Installed DirectX
08-07-2016 06:41:24 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
Name: facap, FastAccess Video Capture
Description: facap, FastAccess Video Capture
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Sensible Vision
Service: facap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/10/2016 06:26:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Dragon)
Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (07/10/2016 06:26:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Dragon)
Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (07/10/2016 06:26:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Dragon)
Description: Activation of app GAMETROOPERS.Overkill3_334sksj6ker18!App failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (07/10/2016 06:25:18 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Dragon)
Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (07/10/2016 06:25:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Dragon)
Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (07/10/2016 06:25:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Dragon)
Description: Activation of app Microsoft.WindowsCamera_8wekyb3d8bbwe!App failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (07/10/2016 06:25:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 9.7.2016.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 116c
Start Time: 01d1d9ce3109f837
Termination Time: 4294967295
Application Path: C:\Users\james\Downloads\FRST64.exe
Report Id: ccc116f4-4677-11e6-8288-54271ebea5cf
Faulting package full name:
Faulting package-relative application ID:
Error: (07/10/2016 06:24:21 PM) (Source: irstrtsv) (EventID: 0) (User: )
Description: irstrtsvError: Unable to read LBA sector directly. : The parameter is incorrect.
Error: (07/10/2016 06:24:21 PM) (Source: irstrtsv) (EventID: 0) (User: )
Description: irstrtsvError: Unable to read LBA sector directly. : The parameter is incorrect.
Error: (07/10/2016 06:24:21 PM) (Source: irstrtsv) (EventID: 0) (User: )
Description: irstrtsvError: Unable to read LBA sector directly. : The parameter is incorrect.
System errors:
=============
Error: (07/10/2016 06:24:59 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
Error: (07/09/2016 10:19:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.
Error: (07/09/2016 10:19:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
Error: (07/09/2016 08:31:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The WFini WdMan Service service terminated unexpectedly. It has done this 1 time(s).
Error: (07/09/2016 08:29:01 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
Error: (07/09/2016 12:20:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB2267602 (Definition 1.225.919.0).
Error: (07/09/2016 12:17:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The luafv service failed to start due to the following error:
%%1275 = This driver has been blocked from loading
Error: (07/09/2016 12:17:34 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 11:55:34 AM on 7/9/2016 was unexpected.
Error: (07/08/2016 03:11:37 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6}
Error: (07/07/2016 02:53:24 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6}
CodeIntegrity:
===================================
Date: 2016-07-01 04:03:13.226
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-19 01:24:39.928
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-19 01:24:39.818
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-19 01:24:39.810
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-19 01:24:39.779
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-19 01:24:39.770
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-18 23:09:04.987
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-18 23:09:04.861
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-18 23:09:04.855
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-18 23:09:04.822
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\winhttp.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel® Core™ i7-4910MQ CPU @ 2.90GHz
Percentage of memory in use: 18%
Total physical RAM: 32691.02 MB
Available physical RAM: 26542.6 MB
Total Virtual: 37555.02 MB
Available Virtual: 30796.41 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:196.25 GB) (Free:60.33 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:37.63 GB) NTFS
Drive e: (SEEKING A FRIEND FOR THE END) (CDROM) (Total:5.38 GB) (Free:0 GB) UDF
Drive g: (My Passport) (Fixed) (Total:1862.98 GB) (Free:46.2 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: CA2032D3)
Partition: GPT.
========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 7549B981)
Partition: GPT.
========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 2D0AE41C)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Sign In
Create Account
