Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Internet Disconnects every 2 or 3 minutes

internet wireless deconexion

  • Please log in to reply

#1
joshuamz

joshuamz

    New Member

  • Member
  • Pip
  • 4 posts

Hi guys, I ve tried to fix this problem, it all started with the last windows 10 update on my laptop,

i know it s not the modem or anything else cause on my ipad and on my romate s computer it never disconects, so i m asking u to see if  you could possibly help me.

 

 

 

 

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
Ran by tom-t (administrator) on DESKTOP-FMLSAAF (08-12-2016 22:27:02)
Running from C:\Users\tom-t\Downloads
Loaded Profiles: tom-t (Available Profiles: tom-t & familia)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Scarlet.Crush Productions) C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(LULU SOFTWARE LIMITED) C:\Program Files\Soda PDF 8\creator-ws.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
(LULU Software Limited) C:\ProgramData\LULU Software\Soda PDF 8 Manager\Soda PDF 8\Soda Manager.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(Apple Inc.) C:\Program Files (x86)\AirPrint\airprint.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
(Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.StickyNotes.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Lenovo) C:\Users\tom-t\AppData\Local\Apps\2.0\OVQDAX6M.AD2\TDZ6JLPJ.97P\lsb...tion_2d7b41b05b24775e_0001.0006_589ac911618caaca\LSB.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\LockAppHost.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
 
==================== Registry (Whitelisted) ====================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-10-28] (Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2131344 2016-06-20] (Wondershare)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1960248 2015-12-10] ()
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [135536 2010-12-13] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-25] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9355480 2016-11-21] (Piriform Ltd)
HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\Run: [Advanced SystemCare 10] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3076896 2016-10-31] (IObit)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-11-25] (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
Tcpip\..\Interfaces\{14b4b94a-80d4-4e2c-ac85-04b87c24247d}: [DhcpNameServer] 82.163.143.171
Tcpip\..\Interfaces\{3addcba3-53ef-48eb-b30a-98108bb87e63}: [NameServer] 24.201.245.77
Tcpip\..\Interfaces\{3addcba3-53ef-48eb-b30a-98108bb87e63}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ce5def0e-1cea-4be7-9213-11d79dd482e9}: [DhcpNameServer] 82.163.143.171
Tcpip\..\Interfaces\{e5f59957-a183-452d-8bb5-a5b145dd44fd}: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-748703395-188434783-1144859813-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-30] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-30] (Microsoft Corporation)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2015-12-10] (Wondershare)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-25] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-25] (Oracle Corporation)
Toolbar: HKLM-x32 - Soda PDF 8 Toolbar - {A2689669-AD38-4AFD-B370-23E97E2B9D18} - C:\Program Files (x86)\Soda PDF 8\creator-ie-plugin.dll [2016-08-26] (LULU SOFTWARE LIMITED)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 -  No File
 
FireFox:
========
FF ProfilePath: C:\Users\tom-t\AppData\Roaming\Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 [2016-12-08]
FF NewTab: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF Homepage: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/?bcutc=sp-006
FF Keyword.URL: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchPlugin: C:\Users\tom-t\AppData\Roaming\Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357\searchplugins\google-avast.xml [2016-11-25]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Soda PDF 8\resources\sodapdf8firefoxextension
FF Extension: (Soda PDF 8 Creator) - C:\Program Files\Soda PDF 8\resources\sodapdf8firefoxextension [2016-10-09] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-11-25]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-11-25]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\Wondershare\Video Converter Ultimate\[email protected]
FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\[email protected] [2015-12-27] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-30] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
FF Plugin-x32: Soda PDF 8 -> C:\Program Files (x86)\Soda PDF 8\np-previewer.dll [2016-08-26] (LULU SOFTWARE LIMITED)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://google.ca/
CHR StartupUrls: Default -> "hxxps://www.facebook.com/"
CHR Profile: C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default [2016-12-08]
CHR Extension: (Google Drive) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-08]
CHR Extension: (YouTube) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-08]
CHR Extension: (Adblock Plus) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-08]
CHR Extension: (PDF Editor for Docs:Edit, Fill, Sign, Print) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjboohgkgchdnfnjiaggdbkdmpieoagi [2016-11-08]
CHR Extension: (Excel Viewer, Editor) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpdiahdjhpfaafoffpoaafcmjbcfmaj [2016-11-08]
CHR Extension: (Adblock for Youtube™) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-11-08]
CHR Extension: (Beach in the Maldives) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddicfadfciaeikknlkcldgockejldhek [2016-11-08]
CHR Extension: (AdBlock) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-23]
CHR Extension: (Avast Online Security) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-08]
CHR Extension: (Gmail) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [462624 2016-10-14] (IObit)
R2 AirPrint; C:\Program Files (x86)\AirPrint\airprint.exe [234784 2016-08-30] (Apple Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-11-25] (AVAST Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe [121560 2015-07-20] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3294912 2016-10-30] (Microsoft Corporation)
S3 cplspcon; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [622064 2016-11-28] (Intel Corporation)
R2 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-11-28] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-28] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [241408 2016-11-28] (Realtek Semiconductor Corp.)
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 Soda PDF 8; C:\Program Files\Soda PDF 8\ws.exe [2263504 2016-08-26] (LULU SOFTWARE LIMITED)
S3 Soda PDF 8 CrashHandler; C:\Program Files\Soda PDF 8\crash-handler-ws.exe [920016 2016-08-26] (LULU SOFTWARE LIMITED)
R2 Soda PDF 8 Creator; C:\Program Files\Soda PDF 8\creator-ws.exe [733136 2016-08-26] (LULU SOFTWARE LIMITED)
R2 Soda PDF 8 Manager; C:\ProgramData\LULU Software\Soda PDF 8 Manager\Soda PDF 8\Soda Manager.exe [900120 2016-08-11] (LULU Software Limited)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-11-25] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-11-25] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-11-25] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-11-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-11-25] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-11-25] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-11-25] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-11-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-11-25] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [71232 2016-11-28] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66624 2016-11-28] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-11-28] (Intel Corporation)
R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2016-11-28] (REALiX™)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2015-12-17] (hxxp://libusb-win32.sourceforge.net)
R3 LifeCamTrueColor; C:\WINDOWS\system32\DRIVERS\LifeCamTrueColor.sys [37928 2016-07-27] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [935168 2016-11-28] (Realtek                                            )
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [207632 2016-06-29] (Realtek Semiconductor Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [736872 2016-11-28] (Realtek Semiconductor Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-11-28] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [5164288 2016-04-13] (Realtek Semiconductor Corporation                           )
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-08 22:27 - 2016-12-08 22:27 - 00024704 _____ C:\Users\tom-t\Downloads\FRST.txt
2016-12-08 22:26 - 2016-12-08 22:27 - 00000000 ____D C:\FRST
2016-12-08 22:26 - 2016-12-08 22:26 - 02420224 _____ (Farbar) C:\Users\tom-t\Downloads\FRST64.exe
2016-12-08 20:36 - 2016-12-08 20:35 - 19299088 _____ C:\Users\tom-t\Desktop\WIN_20161208_202022.MP4
2016-12-05 22:49 - 2016-12-05 22:49 - 00000000 ____D C:\Users\tom-t\Downloads\Peter Paul Almond Joy & Mounds - _Feel Like A Nut_ (1980)
2016-12-05 21:52 - 2016-12-05 21:54 - 00000000 ____D C:\Users\tom-t\Downloads\Watch this hot bisexual orgy clip
2016-12-05 21:17 - 2016-12-05 21:22 - 00000000 ____D C:\Users\tom-t\Downloads\Bisex outdoor anal orgy
2016-12-05 20:57 - 2016-12-05 21:00 - 00000000 ____D C:\Users\tom-t\Downloads\3167916 Wild Bi Orgy 240p
2016-12-05 20:20 - 2016-12-05 20:22 - 00000000 ____D C:\Users\tom-t\Downloads\3334497 It's a BI ORGY at the [bleep] HOUSE 240p
2016-12-05 11:20 - 2016-12-05 11:20 - 11031965 _____ C:\Users\tom-t\Downloads\app-xmod-release_2.3.5_235.apk
2016-12-04 10:43 - 2016-12-01 10:06 - 00082936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2016-11-28 18:02 - 2016-11-28 18:02 - 09891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2016-11-28 18:02 - 2016-11-28 18:02 - 04332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2016-11-28 18:01 - 2016-11-28 18:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_esif_lf_01011.Wdf
2016-11-28 18:00 - 2016-11-28 18:00 - 01804688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-11-28 18:00 - 2016-11-28 18:00 - 00000000 ____D C:\WINDOWS\system32\Intel
2016-11-28 17:57 - 2016-11-28 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2016-11-28 17:57 - 2016-11-28 17:57 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-28 17:57 - 2016-02-15 18:27 - 00125720 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-11-28 17:57 - 2016-02-15 18:26 - 00126232 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-11-28 17:57 - 2016-02-15 18:25 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-11-28 17:57 - 2016-02-15 18:25 - 00042264 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-11-28 17:56 - 2016-11-28 17:56 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-11-28 17:53 - 2016-11-28 17:53 - 39834552 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 34771224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 29101592 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 19861528 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 14024128 _____ C:\WINDOWS\SysWOW64\VulkanRT-Installer.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 13601312 _____ (Intel Corporation) C:\WINDOWS\system32\ig9icd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 10298400 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig9icd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 06832016 _____ (Intel Corporation) C:\WINDOWS\system32\igvk64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 06599920 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05799386 _____ C:\WINDOWS\system32\igdclbif.bin
2016-11-28 17:53 - 2016-11-28 17:53 - 05685792 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05626664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igvk32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05262880 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05052560 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04872736 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04379168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04243912 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04215080 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 03970072 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01892200 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01816744 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01814088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01576992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01465032 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01167904 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01027056 _____ C:\WINDOWS\system32\igfxSDK.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00965104 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00961520 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00843068 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2016-11-28 17:53 - 2016-11-28 17:53 - 00632864 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00622064 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00536568 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00466928 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00439328 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00435112 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00433992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00416288 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00390176 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00388640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00381960 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00379816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00350208 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00318488 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00312328 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00301560 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00297184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00273440 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-28 17:53 - 2016-11-28 17:53 - 00266264 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00255520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00242184 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00237048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00232432 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00231920 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00225304 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00223272 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00207904 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4404.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00205384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00193048 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00181856 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00175088 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00173088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00111648 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00103968 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00103456 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00100896 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00099872 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00095264 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00084512 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00055272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00052768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00029208 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00029208 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00027680 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00027680 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00022560 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00022560 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00004834 _____ C:\WINDOWS\system32\iglhxs64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00000134 _____ C:\WINDOWS\SysWOW64\igvk32.json
2016-11-28 17:53 - 2016-11-28 17:53 - 00000134 _____ C:\WINDOWS\system32\igvk64.json
2016-11-28 17:48 - 2016-11-28 17:48 - 00812520 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\SETD751.tmp
2016-11-28 17:48 - 2016-11-28 17:48 - 00812520 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2016-11-28 17:48 - 2016-11-28 17:48 - 00241408 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtkBtManServ.exe
2016-11-28 17:48 - 2016-11-28 17:48 - 00073996 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00066368 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00064604 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00053548 _____ C:\WINDOWS\rtl8723d_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050752 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050712 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050700 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new_s1.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00045100 _____ C:\WINDOWS\rtl8822b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00038356 _____ C:\WINDOWS\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00016916 _____ C:\WINDOWS\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00000952 _____ C:\WINDOWS\PidVid_List.dll
2016-11-28 17:46 - 2016-11-28 18:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-11-28 17:45 - 2016-11-28 17:45 - 72520720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-11-28 17:45 - 2016-11-28 17:45 - 14057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 13122584 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 12988344 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 10534704 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 07101220 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-11-28 17:45 - 2016-11-28 17:45 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 06374320 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 06264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05793528 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05593624 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05341352 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03299832 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03291320 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03283248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03203592 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02895104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-11-28 17:45 - 2016-11-28 17:45 - 02825112 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02775352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02706864 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02439048 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02203752 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02110592 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02073096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02050184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01920820 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2016-11-28 17:45 - 2016-11-28 17:45 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01618032 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01529144 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01435152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01422936 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01360520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01337648 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01322656 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01213664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01186840 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01166168 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01115144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01041744 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01001800 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00999864 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00962136 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00923752 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00873464 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00864344 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00858200 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00854032 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00725944 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00678192 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00677680 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00601152 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00498648 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00472312 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00467160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00447184 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00445400 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00416512 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00372744 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00366128 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00362064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00360352 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00341160 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00341160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00258872 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00221968 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00209536 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00203848 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00190936 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00190936 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00179608 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00158704 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00154368 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00088320 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2016-11-28 17:41 - 2016-11-28 17:41 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-11-28 17:38 - 2016-11-28 17:38 - 00003114 _____ C:\WINDOWS\System32\Tasks\ASC10_PerformanceMonitor
2016-11-28 17:38 - 2016-11-28 17:38 - 00002908 _____ C:\WINDOWS\System32\Tasks\ASC10_SkipUac_tom-t
2016-11-28 17:38 - 2016-11-28 17:38 - 00002496 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_tom-t
2016-11-28 17:38 - 2016-11-28 17:38 - 00002239 _____ C:\Users\Public\Desktop\Advanced SystemCare 10.lnk
2016-11-28 17:38 - 2016-11-28 17:38 - 00001428 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2016-11-28 17:38 - 2016-11-28 17:38 - 00000310 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_tom-t.job
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2016-11-28 17:37 - 2016-12-08 20:03 - 00003038 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (tom-t)
2016-11-28 17:37 - 2016-12-06 14:43 - 00000000 ____D C:\ProgramData\ProductData
2016-11-28 17:37 - 2016-11-28 18:09 - 00000000 ____D C:\ProgramData\IObit
2016-11-28 17:37 - 2016-11-28 17:38 - 00000000 ____D C:\Users\tom-t\AppData\LocalLow\IObit
2016-11-28 17:37 - 2016-11-28 17:37 - 00027552 _____ (REALiX™) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2016-11-28 17:37 - 2016-11-28 17:37 - 00003394 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2016-11-28 17:37 - 2016-11-28 17:37 - 00000000 ____D C:\WINDOWS\IObit
2016-11-28 17:36 - 2016-11-28 18:03 - 00002352 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2016-11-28 17:36 - 2016-11-28 17:40 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\IObit
2016-11-28 17:36 - 2016-11-28 17:38 - 00000000 ____D C:\Program Files (x86)\IObit
2016-11-28 17:36 - 2016-11-28 17:36 - 17150504 _____ (IObit ) C:\Users\tom-t\Downloads\driver_booster_setup.exe
2016-11-28 17:36 - 2016-11-28 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\Users\tom-t\AppData\Local\Deployment
2016-11-28 17:32 - 2016-11-28 17:33 - 00611400 _____ () C:\Users\tom-t\Downloads\LSBsetup.exe
2016-11-26 14:22 - 2016-11-26 14:23 - 00414116 _____ C:\WINDOWS\Minidump\112616-31156-01.dmp
2016-11-26 14:22 - 2016-11-26 14:22 - 999367790 _____ C:\WINDOWS\MEMORY.DMP
2016-11-26 12:56 - 2016-11-26 12:56 - 00001461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-11-26 12:56 - 2016-11-26 12:56 - 00001449 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-11-26 12:56 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-11-26 12:45 - 2016-11-26 12:56 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\tom-t\Downloads\spybot-2.4.exe
2016-11-26 12:42 - 2016-11-27 14:36 - 00001172 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-26 12:41 - 2016-11-27 14:36 - 22851472 _____ (Malwarebytes ) C:\Users\tom-t\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-26 12:41 - 2016-11-26 12:41 - 22851472 _____ (Malwarebytes ) C:\Users\tom-t\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-11-25 11:32 - 2016-12-07 11:00 - 00000000 ____D C:\Users\tom-t\AppData\LocalLow\Mozilla
2016-11-25 11:20 - 2016-11-25 11:20 - 00001823 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-25 11:20 - 2016-11-25 11:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-25 11:20 - 2016-11-25 11:20 - 00000000 ____D C:\Program Files\iPod
2016-11-25 11:13 - 2016-11-25 11:13 - 00001140 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-11-25 11:08 - 2016-11-25 11:08 - 00000000 ___HD C:\kleaner.tmp
2016-11-25 10:47 - 2016-11-25 11:44 - 00004020 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1480088856
2016-11-25 10:47 - 2016-11-25 11:44 - 00001089 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-11-25 10:47 - 2016-11-25 10:47 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-11-25 10:47 - 2016-11-25 10:47 - 00001089 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-11-25 10:45 - 2016-11-25 10:45 - 00001980 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-11-25 10:45 - 2016-11-25 10:45 - 00001968 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-11-25 10:44 - 2016-11-25 10:44 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00293352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00004004 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-11-25 10:44 - 2016-11-25 10:43 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-11-25 10:44 - 2016-11-25 10:43 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-11-25 10:43 - 2016-11-25 10:43 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-11-25 10:42 - 2016-11-25 10:47 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-25 10:42 - 2016-11-25 10:47 - 00000000 ____D C:\Program Files\AVAST Software
2016-11-25 10:42 - 2016-11-25 10:42 - 06334848 _____ (AVAST Software) C:\Users\tom-t\Downloads\avast_free_antivirus_setup_online.exe
2016-11-24 23:20 - 2016-11-24 23:20 - 00250180 _____ C:\Users\tom-t\OneDrive\Documents\cc_20161124_232035.reg
2016-11-24 22:59 - 2016-11-24 23:00 - 00000000 ____D C:\Program Files\CCleaner
2016-11-24 22:59 - 2016-11-24 22:59 - 00002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-11-24 22:59 - 2016-11-24 22:59 - 00000864 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-24 22:59 - 2016-11-24 22:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-24 19:45 - 2016-11-24 22:58 - 08995888 _____ (Piriform Ltd) C:\Users\tom-t\Downloads\ccsetup524_protrial.exe
2016-11-24 17:29 - 2016-11-24 17:29 - 00002640 _____ C:\Users\Public\Desktop\Skype.lnk
2016-11-24 17:29 - 2016-11-24 17:29 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-24 17:29 - 2016-11-24 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-11-24 17:25 - 2016-11-24 17:25 - 00003274 _____ C:\WINDOWS\System32\Tasks\{F1DDA1AF-B206-4BCB-B01B-0CADB40C6524}
2016-11-24 17:22 - 2016-11-24 17:25 - 43878872 _____ (Skype Technologies S.A.) C:\Users\tom-t\Downloads\SkypeSetupFull.exe
2016-11-21 14:19 - 2016-11-21 14:19 - 92485932 _____ C:\Users\tom-t\Downloads\PinOutV2.apk
2016-11-20 19:03 - 2016-11-20 19:03 - 02185824 _____ C:\Users\tom-t\Downloads\[PS3]SaveGame Resigner 1.4.zip
2016-11-20 18:52 - 2016-11-20 19:03 - 00000000 ____D C:\Users\tom-t\Desktop\1.4 save resigner
2016-11-20 18:39 - 2016-11-20 18:39 - 00000217 _____ C:\Users\tom-t\Downloads\save_resigner_ps3.html
2016-11-20 16:20 - 2016-11-20 16:20 - 00189073 _____ C:\Users\tom-t\Downloads\games (1).conf
2016-11-20 16:20 - 2016-11-20 16:20 - 00177248 _____ C:\Users\tom-t\Downloads\XX0001-ENSTONEXX_00-00000000000CCAPIv2.50.pkg
2016-11-20 16:19 - 2016-11-20 16:21 - 13866963 _____ (The Prince of Codes) C:\Users\tom-t\Downloads\[PS3] Save Resigner 2.0.6 Setup.exe
2016-11-20 16:13 - 2016-11-20 18:43 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2016-11-20 16:13 - 2016-11-20 16:13 - 00000000 ____D C:\ProgramData\Caphyon
2016-11-20 16:10 - 2016-11-20 16:13 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\The Prince of Codes
2016-11-20 16:00 - 2016-11-20 16:00 - 10290074 _____ C:\Users\tom-t\Downloads\PS3 Save Resigner 2.0.rar
2016-11-20 15:35 - 2016-11-20 15:35 - 00584229 _____ C:\Users\tom-t\Downloads\MSVBVM50.DLL.RAR
2016-11-20 15:22 - 2016-11-20 15:22 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (4).exe
2016-11-20 15:19 - 2016-11-20 15:23 - 04427826 _____ C:\Users\tom-t\Downloads\Bruteforce_Save_Data_v4.4.2.rar
2016-11-20 15:10 - 2016-11-20 15:10 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (3).exe
2016-11-20 14:05 - 2016-11-20 13:19 - 01355776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVBVM50.DLL
2016-11-20 13:19 - 2016-11-20 13:19 - 01355776 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\MSVBVM50.DLL
2016-11-20 13:15 - 2016-11-20 13:15 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (2).exe
2016-11-20 13:00 - 2016-11-20 13:00 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (1).exe
2016-11-20 12:56 - 2016-11-20 12:56 - 00239017 _____ C:\Users\tom-t\Downloads\games.conf
2016-11-20 12:56 - 2016-11-20 12:56 - 00016769 _____ C:\Users\tom-t\Downloads\CheatsDB_BSD_Version file 20th feb 2014.rar
2016-11-20 12:55 - 2016-11-20 12:56 - 07672938 _____ C:\Users\tom-t\Downloads\BruteforceSaveData4.7.rar
2016-11-20 12:48 - 2016-11-20 12:48 - 07201032 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64.exe
2016-11-20 12:34 - 2016-11-20 12:34 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\WildTangent
2016-11-20 12:33 - 2016-11-20 12:35 - 04935893 _____ C:\Users\tom-t\Downloads\BruteforceSaveData 4.6.rar
2016-11-20 12:15 - 2016-11-20 12:15 - 00047369 _____ C:\Users\tom-t\Downloads\All ps3 games regions.rar
2016-11-20 11:29 - 2016-11-20 17:11 - 00000000 ____D C:\Users\tom-t\Desktop\seiya modded
2016-11-20 11:23 - 2016-11-20 11:23 - 00098164 _____ C:\Users\tom-t\Downloads\BLES02291-SAVEDATA0.zip
2016-11-20 10:46 - 2016-11-20 10:47 - 00000000 ____D C:\Users\tom-t\Desktop\backyp saint seiya
2016-11-19 21:23 - 2016-11-19 21:35 - 00000000 ____D C:\Users\tom-t\Desktop\HADES
2016-11-17 15:23 - 2015-10-06 02:37 - 00000000 ____D C:\Users\tom-t\Desktop\BLUS31559-[Saint Seiya Soldiers Soul]
2016-11-17 09:55 - 2016-11-25 11:37 - 00000016 _____ C:\WINDOWS\SysWOW64\PCProxyOff.ini
2016-11-17 09:55 - 2016-11-17 09:55 - 00073728 _____ C:\WINDOWS\SysWOW64\VistaInfo32.dll
2016-11-17 09:55 - 2016-11-17 09:55 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpOrder.dll
2016-11-17 09:21 - 2016-11-17 09:21 - 00000000 ____D C:\Users\tom-t\Downloads\Saint Seiya - AndreloPS
2016-11-17 09:18 - 2016-11-17 09:18 - 06907464 _____ (Tonec Inc.) C:\Users\tom-t\Downloads\idman626build10.exe
2016-11-16 16:40 - 2016-11-16 16:44 - 1073741824 _____ C:\Users\tom-t\Downloads\541N7.531Y4.H4D35.00.15.part01.rar
2016-11-16 15:36 - 2016-11-16 15:43 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\ImgBurn
2016-11-16 15:25 - 2016-11-16 15:25 - 00001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-11-16 15:25 - 2016-11-16 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-11-16 15:25 - 2016-11-16 15:25 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2016-11-16 15:10 - 2016-11-16 15:10 - 00000000 ____D C:\Users\tom-t\OneDrive\Documents\default
2016-11-16 15:09 - 2016-11-17 09:23 - 00000000 ____D C:\Users\tom-t\Downloads\j0q9k6340qdljok
2016-11-16 09:26 - 2016-11-16 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karmian
2016-11-16 09:26 - 2016-11-16 09:26 - 00000000 ____D C:\Program Files (x86)\Karmian
2016-11-16 08:51 - 2014-12-17 15:45 - 00000000 ____D C:\Users\tom-t\Desktop\Shining_Reso-nance_JPN_PS3-HR alberto pumper
2016-11-15 20:54 - 2016-11-15 20:54 - 11487168 _____ C:\Users\tom-t\Downloads\Dark Souls cheat Unlimited Souls TB.pkg
2016-11-15 20:53 - 2016-11-15 20:53 - 11487168 _____ C:\Users\tom-t\Downloads\Dark Souls BLES01402 Unlimited Souls.pkg
2016-11-15 20:33 - 2016-11-15 20:33 - 09200802 _____ C:\Users\tom-t\Downloads\TOWERBLOCKMODSPS3.rar
2016-11-14 18:12 - 2016-11-14 18:12 - 00728865 _____ C:\Users\tom-t\Downloads\Shin_Ohtake_Max_Workouts_Pdf.zip
2016-11-14 09:45 - 2016-11-14 09:45 - 51477528 _____ C:\Users\tom-t\Downloads\1.5.0_EasyFarmMode.apk
2016-11-12 10:09 - 2016-11-12 10:09 - 00003182 _____ C:\WINDOWS\System32\Tasks\{56948C08-F0EE-4CA9-835B-CACBD3D6724B}
2016-11-10 11:25 - 2016-11-10 11:25 - 51477505 _____ C:\Users\tom-t\Downloads\1.5.0_OnlyEnergy.apk
2016-11-09 00:02 - 2016-11-02 07:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-09 00:02 - 2016-11-02 07:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-09 00:02 - 2016-11-02 06:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-09 00:02 - 2016-11-02 06:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-09 00:02 - 2016-11-02 06:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-09 00:02 - 2016-11-02 06:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-09 00:02 - 2016-11-02 06:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-09 00:02 - 2016-11-02 06:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-09 00:02 - 2016-11-02 06:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-09 00:02 - 2016-11-02 06:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-09 00:02 - 2016-11-02 06:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-09 00:02 - 2016-11-02 06:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-09 00:02 - 2016-11-02 06:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-09 00:02 - 2016-11-02 06:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-09 00:02 - 2016-11-02 06:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-09 00:02 - 2016-11-02 06:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-09 00:02 - 2016-11-02 06:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-09 00:02 - 2016-11-02 06:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-09 00:02 - 2016-11-02 06:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-09 00:02 - 2016-11-02 06:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-09 00:02 - 2016-11-02 06:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-09 00:02 - 2016-11-02 06:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-09 00:02 - 2016-11-02 06:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-09 00:02 - 2016-11-02 05:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-09 00:02 - 2016-11-02 05:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-09 00:02 - 2016-11-02 05:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-09 00:02 - 2016-11-02 05:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-09 00:02 - 2016-11-02 05:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-09 00:02 - 2016-11-02 05:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-09 00:02 - 2016-11-02 05:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-09 00:02 - 2016-11-02 05:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-09 00:02 - 2016-11-02 05:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-09 00:02 - 2016-11-02 05:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-09 00:02 - 2016-11-02 05:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-09 00:02 - 2016-11-02 05:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-09 00:02 - 2016-11-02 05:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-09 00:02 - 2016-11-02 05:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-09 00:02 - 2016-11-02 05:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-09 00:02 - 2016-11-02 05:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-09 00:02 - 2016-11-02 05:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-09 00:02 - 2016-11-02 05:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-09 00:02 - 2016-11-02 05:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-09 00:02 - 2016-11-02 05:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-09 00:02 - 2016-11-02 05:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-09 00:02 - 2016-11-02 05:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-09 00:02 - 2016-11-02 05:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-09 00:02 - 2016-11-02 05:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-09 00:02 - 2016-11-02 05:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-09 00:02 - 2016-11-02 05:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-09 00:02 - 2016-11-02 05:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-09 00:02 - 2016-11-02 05:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-09 00:02 - 2016-11-02 05:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-09 00:02 - 2016-11-02 05:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-09 00:02 - 2016-11-02 05:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-09 00:02 - 2016-11-02 05:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-09 00:02 - 2016-11-02 05:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-09 00:02 - 2016-11-02 05:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-09 00:02 - 2016-11-02 05:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-09 00:02 - 2016-11-02 05:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-09 00:02 - 2016-11-02 05:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-09 00:02 - 2016-11-02 05:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-09 00:02 - 2016-11-02 05:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-09 00:02 - 2016-11-02 05:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-09 00:02 - 2016-11-02 05:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-09 00:02 - 2016-11-02 05:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-09 00:02 - 2016-11-02 05:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-09 00:02 - 2016-11-02 05:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-09 00:02 - 2016-11-02 05:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-09 00:02 - 2016-11-02 05:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-09 00:02 - 2016-11-02 05:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-09 00:02 - 2016-11-02 05:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-09 00:02 - 2016-11-02 05:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-09 00:02 - 2016-11-02 05:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-09 00:02 - 2016-11-02 05:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-09 00:02 - 2016-11-02 05:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-09 00:02 - 2016-11-02 05:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-09 00:02 - 2016-11-02 05:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-09 00:02 - 2016-11-02 05:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-09 00:02 - 2016-11-02 05:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-09 00:02 - 2016-11-02 03:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-09 00:01 - 2016-11-02 06:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-09 00:01 - 2016-11-02 06:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-09 00:01 - 2016-11-02 06:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-09 00:01 - 2016-11-02 06:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-09 00:01 - 2016-11-02 06:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-09 00:01 - 2016-11-02 06:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-09 00:01 - 2016-11-02 06:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-09 00:01 - 2016-11-02 06:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-09 00:01 - 2016-11-02 06:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-09 00:01 - 2016-11-02 06:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-09 00:01 - 2016-11-02 06:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-09 00:01 - 2016-11-02 06:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-09 00:01 - 2016-11-02 06:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-09 00:01 - 2016-11-02 06:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-09 00:01 - 2016-11-02 06:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-09 00:01 - 2016-11-02 06:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-09 00:01 - 2016-11-02 06:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-09 00:01 - 2016-11-02 06:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-09 00:01 - 2016-11-02 06:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-09 00:01 - 2016-11-02 06:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-09 00:01 - 2016-11-02 06:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-09 00:01 - 2016-11-02 06:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-09 00:01 - 2016-11-02 05:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-09 00:01 - 2016-11-02 05:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-09 00:01 - 2016-11-02 05:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-09 00:01 - 2016-11-02 05:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-09 00:01 - 2016-11-02 05:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-09 00:01 - 2016-11-02 05:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-09 00:01 - 2016-11-02 05:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-09 00:01 - 2016-11-02 05:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-09 00:01 - 2016-11-02 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-09 00:01 - 2016-11-02 05:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-09 00:01 - 2016-11-02 05:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-09 00:01 - 2016-11-02 05:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-09 00:01 - 2016-11-02 05:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-09 00:01 - 2016-11-02 05:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-09 00:01 - 2016-11-02 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-09 00:01 - 2016-11-02 05:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-09 00:01 - 2016-11-02 05:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-09 00:01 - 2016-11-02 05:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-09 00:01 - 2016-11-02 05:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-09 00:01 - 2016-11-02 05:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-09 00:01 - 2016-11-02 05:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-09 00:01 - 2016-11-02 05:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-09 00:01 - 2016-11-02 05:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-09 00:01 - 2016-11-02 05:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 00:01 - 2016-11-02 05:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-09 00:01 - 2016-11-02 05:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-09 00:01 - 2016-11-02 05:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-09 00:01 - 2016-11-02 05:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-09 00:01 - 2016-11-02 05:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-09 00:01 - 2016-11-02 05:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-09 00:01 - 2016-11-02 05:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-09 00:01 - 2016-11-02 05:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-09 00:01 - 2016-11-02 05:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-09 00:01 - 2016-11-02 05:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 00:01 - 2016-11-02 05:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-09 00:01 - 2016-11-02 05:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-09 00:01 - 2016-11-02 05:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-09 00:01 - 2016-11-02 05:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-09 00:01 - 2016-11-02 05:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-09 00:01 - 2016-11-02 05:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-09 00:01 - 2016-11-02 05:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 00:01 - 2016-11-02 05:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-09 00:01 - 2016-11-02 05:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-09 00:01 - 2016-11-02 05:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-09 00:01 - 2016-11-02 05:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-09 00:01 - 2016-11-02 05:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-09 00:01 - 2016-11-02 05:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-09 00:01 - 2016-11-02 05:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-09 00:01 - 2016-11-02 05:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-09 00:01 - 2016-11-02 05:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-09 00:01 - 2016-11-02 05:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-09 00:01 - 2016-11-02 05:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-09 00:01 - 2016-11-02 05:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-09 00:01 - 2016-11-02 05:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-09 00:01 - 2016-11-02 05:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-09 00:01 - 2016-11-02 05:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-09 00:01 - 2016-11-02 05:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-09 00:01 - 2016-11-02 05:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-09 00:01 - 2016-11-02 05:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-09 00:01 - 2016-11-02 05:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-09 00:01 - 2016-11-02 05:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-09 00:01 - 2016-11-02 05:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-09 00:01 - 2016-11-02 05:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-09 00:01 - 2016-11-02 05:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-09 00:01 - 2016-11-02 05:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 00:01 - 2016-11-02 05:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-09 00:01 - 2016-11-02 05:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-09 00:01 - 2016-11-02 04:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-09 00:01 - 2016-11-02 04:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-09 00:01 - 2016-08-01 23:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-08 23:37 - 2016-11-08 23:37 - 51477514 _____ C:\Users\tom-t\Downloads\1.5.0_TrialRaidMode.apk
2016-11-08 23:36 - 2016-11-08 23:36 - 51477505 _____ C:\Users\tom-t\Downloads\.5.0_OnlyEnergy.apk
2016-11-08 23:36 - 2016-11-08 23:36 - 51477498 _____ C:\Users\tom-t\Downloads\1.5.0_GodMode.apk
2016-11-08 23:35 - 2016-11-08 23:36 - 51477507 _____ C:\Users\tom-t\Downloads\1.5.0_FarmMode.apk
2016-11-08 23:32 - 2016-11-08 23:32 - 51477514 _____ C:\Users\tom-t\Downloads\1.5.0_FHMode.apk
2016-11-08 23:32 - 2016-11-08 23:32 - 51477497 _____ C:\Users\tom-t\Downloads\1.5.0_FarmParadeMode.apk
2016-11-08 10:23 - 2016-11-14 20:29 - 00002273 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-08 10:23 - 2016-11-09 19:34 - 00000928 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-08 10:23 - 2016-11-09 19:34 - 00000924 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-08 10:23 - 2016-11-08 10:23 - 01065376 _____ (Google Inc.) C:\Users\tom-t\Downloads\ChromeSetup.exe
2016-11-08 10:23 - 2016-11-08 10:23 - 00003986 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-08 10:23 - 2016-11-08 10:23 - 00003754 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-08 08:16 - 2016-11-08 08:18 - 49758096 _____ C:\Users\tom-t\Downloads\original 1.5.0_apkpure.com.apk
2016-11-08 03:46 - 2016-11-08 03:46 - 53238966 _____ C:\Users\tom-t\Downloads\BFJP166.apk
2016-11-08 03:45 - 2016-11-08 03:45 - 04206303 _____ C:\Users\tom-t\Downloads\ZarroModTool_BFJP_166.7z
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-08 22:24 - 2015-12-01 20:37 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Skype
2016-12-08 21:39 - 2016-10-31 13:17 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-08 21:39 - 2015-12-01 15:01 - 00000165 _____ C:\Users\tom-t\AppData\Roaming\sp_data.sys
2016-12-08 20:44 - 2015-12-14 16:49 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\vlc
2016-12-08 20:03 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-08 19:59 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-08 19:58 - 2016-10-31 13:28 - 00000000 ____D C:\Users\tom-t
2016-12-08 19:58 - 2016-10-31 13:21 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-12-08 19:58 - 2015-12-01 15:01 - 00000000 __SHD C:\Users\tom-t\IntelGraphicsProfiles
2016-12-08 16:14 - 2016-07-16 06:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-08 16:10 - 2015-08-18 03:36 - 01235458 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-08 16:03 - 2016-10-31 14:17 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-08 10:05 - 2015-12-14 12:18 - 00000000 ____D C:\Users\tom-t\AppData\Local\Adobe
2016-12-07 22:35 - 2016-11-02 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-07 22:35 - 2015-12-14 12:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-07 12:00 - 2016-10-31 14:17 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-12-07 12:00 - 2016-10-31 14:17 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-12-05 22:00 - 2016-01-07 12:18 - 00000000 ____D C:\Users\tom-t\AppData\Local\JDownloader v2.0
2016-11-28 21:33 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-28 18:05 - 2016-07-16 01:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-11-28 18:02 - 2016-10-31 13:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-28 18:02 - 2016-07-16 06:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-28 18:02 - 2015-12-02 12:15 - 00418784 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2016-11-28 18:02 - 2015-12-02 12:15 - 00084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2016-11-28 18:01 - 2015-07-28 22:37 - 00186424 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2016-11-28 18:00 - 2016-10-07 21:52 - 00098128 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-11-28 18:00 - 2016-10-07 21:49 - 00648512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-11-28 18:00 - 2015-10-27 16:01 - 00350272 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\esif_lf.sys
2016-11-28 18:00 - 2015-10-27 16:01 - 00071232 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_acpi.sys
2016-11-28 18:00 - 2015-10-27 16:01 - 00066624 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_cpu.sys
2016-11-28 17:59 - 2015-09-27 20:14 - 00795640 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2016-11-28 17:57 - 2015-10-27 15:50 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-28 17:56 - 2016-10-31 13:21 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-11-28 17:53 - 2016-10-31 13:21 - 00103968 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-28 17:53 - 2016-10-31 13:21 - 00099872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-28 17:53 - 2015-09-27 20:15 - 38876112 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 33439704 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 15472792 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 14560984 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 13471672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 11844056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 07917040 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-11-28 17:53 - 2015-09-27 20:15 - 02062880 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00753688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00402928 _____ C:\WINDOWS\system32\igfxTray.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00394264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00373744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00354800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00269296 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-11-28 17:48 - 2015-12-12 10:40 - 00736872 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtkBtfilter.sys
2016-11-28 17:47 - 2016-10-31 14:17 - 00003260 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2016-11-28 17:47 - 2016-10-31 14:17 - 00003194 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2016-11-28 17:46 - 2016-10-31 13:21 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-28 17:46 - 2016-10-31 13:21 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-11-28 17:45 - 2015-10-27 15:59 - 05322248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-11-28 17:45 - 2015-10-27 15:59 - 03133848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-11-28 17:45 - 2015-10-27 15:59 - 00192984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-11-28 17:45 - 2015-10-27 15:59 - 00023696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-11-28 17:41 - 2015-10-27 15:58 - 00935168 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2016-11-28 10:19 - 2015-12-01 15:01 - 00000000 ____D C:\Users\tom-t\AppData\Local\Packages
2016-11-27 14:37 - 2016-02-22 08:22 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-27 14:36 - 2016-02-22 08:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-26 14:22 - 2016-11-06 09:34 - 00000000 ____D C:\WINDOWS\Minidump
2016-11-25 12:04 - 2015-12-14 12:05 - 00001205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-25 12:03 - 2016-01-02 14:26 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-11-25 12:02 - 2016-07-16 01:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-25 12:02 - 2016-04-29 17:10 - 00000000 ____D C:\Users\Mr Anguiano
2016-11-25 12:02 - 2015-10-30 01:28 - 00000000 ____D C:\Users\Default.migrated
2016-11-25 11:33 - 2015-12-03 15:04 - 00000000 ____D C:\Program Files\WinRAR
2016-11-25 11:20 - 2015-12-17 09:05 - 00000000 ____D C:\Program Files\iTunes
2016-11-25 11:20 - 2015-12-02 13:38 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-11-25 11:13 - 2015-12-03 15:04 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-25 11:13 - 2015-12-03 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-25 11:10 - 2016-02-28 03:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-25 11:09 - 2016-02-28 03:04 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-11-25 11:09 - 2016-02-28 03:03 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-25 10:45 - 2016-03-04 14:33 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\AVAST Software
2016-11-24 23:15 - 2015-12-03 10:03 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\BitTorrent
2016-11-24 23:11 - 2016-10-31 17:15 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-24 23:11 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-11-24 23:10 - 2016-10-31 13:22 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-11-24 23:10 - 2015-08-18 03:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-11-24 23:07 - 2015-12-10 18:38 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bruteforce Save Data
2016-11-24 23:07 - 2015-12-10 18:37 - 00000000 ____D C:\Program Files (x86)\Bruteforce Save Data
2016-11-24 17:29 - 2015-12-01 20:37 - 00000000 ____D C:\ProgramData\Skype
2016-11-23 09:32 - 2016-02-23 12:44 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2016-11-20 15:11 - 2016-07-16 06:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-20 15:06 - 2016-02-23 12:44 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2016-11-20 12:34 - 2015-08-18 03:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-20 12:34 - 2015-08-18 03:37 - 00000000 ____D C:\ProgramData\WildTangent
2016-11-20 09:53 - 2016-07-16 06:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-20 09:51 - 2015-10-27 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-16 16:27 - 2015-12-24 14:58 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\dvdcss
2016-11-16 14:33 - 2016-10-09 13:21 - 00000000 ____D C:\Users\tom-t\Desktop\4 bigmuscle
2016-11-16 14:05 - 2015-12-14 12:25 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-16 10:09 - 2016-08-31 08:04 - 00000000 ____D C:\Users\tom-t\Desktop\fotos videos 31 agosto
2016-11-16 10:05 - 2016-02-09 23:25 - 00000000 ____D C:\Users\tom-t\Desktop\queu
2016-11-14 19:23 - 2016-10-31 14:17 - 00003816 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-11-14 19:23 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-14 19:23 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-14 19:13 - 2015-12-01 15:03 - 00000000 ____D C:\Users\tom-t\AppData\Local\Comms
2016-11-13 15:32 - 2016-01-20 21:24 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-13 14:02 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-11 01:27 - 2015-08-23 11:37 - 00065640 _____ C:\WINDOWS\system32\ASGCoInstaller_x64.dll
2016-11-10 22:06 - 2016-10-31 13:22 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-11-10 00:04 - 2015-10-27 15:47 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-09 19:34 - 2016-10-31 13:17 - 04963168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-09 09:25 - 2016-07-16 06:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 09:19 - 2015-12-02 15:18 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 09:14 - 2015-12-02 15:18 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-08 10:23 - 2015-12-01 20:17 - 00000000 ____D C:\Users\tom-t\AppData\Local\Google
2016-11-08 10:23 - 2015-12-01 20:17 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-08 03:44 - 2016-10-31 14:17 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
 
==================== Files in the root of some directories =======
 
2015-12-01 15:01 - 2016-12-08 21:39 - 0000165 _____ () C:\Users\tom-t\AppData\Roaming\sp_data.sys
2016-01-07 13:19 - 2016-01-07 13:19 - 0000047 _____ () C:\Users\tom-t\AppData\Roaming\WB.CFG
2016-02-04 07:04 - 2016-02-09 13:02 - 0003584 _____ () C:\Users\tom-t\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-31 13:21 - 2016-10-31 13:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
Some files in TEMP:
====================
C:\Users\tom-t\AppData\Local\Temp\proxy_vole5150257694916234934.dll
C:\Users\tom-t\AppData\Local\Temp\proxy_vole6076959345425680180.dll
C:\Users\tom-t\AppData\Local\Temp\proxy_vole7499190792889508807.dll
 
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2016-12-05 17:46
 
 
==================== End of FRST.txt ============================
 
 
 
 
 
 
 
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by tom-t (08-12-2016 22:28:13)
Running from C:\Users\tom-t\Downloads
Windows 10 Home Version 1607 (X64) (2016-10-31 19:36:30)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-748703395-188434783-1144859813-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-748703395-188434783-1144859813-503 - Limited - Disabled)
familia (S-1-5-21-748703395-188434783-1144859813-1004 - Limited - Enabled) => C:\Users\familia
Guest (S-1-5-21-748703395-188434783-1144859813-501 - Limited - Disabled)
tom-t (S-1-5-21-748703395-188434783-1144859813-1001 - Administrator - Enabled) => C:\Users\tom-t
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Advanced SystemCare 10 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 10.0.3 - IObit)
Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Ashampoo Burning Studio 11 v.11.0.2 (HKLM-x32\...\Ashampoo Burning Studio 11_is1) (Version: 11.0.2 - Ashampoo GmbH & Co. KG)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0040 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version:  - Online Media Technologies Ltd.)
AVS Video Editor 4 4.2.1.166 (HKLM-x32\...\AVS Video Editor 4_is1) (Version:  - Online Media Technologies Ltd.)
AVS Video Editor 7.2.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.2.1.269 - Online Media Technologies Ltd.)
AVS Video Recorder 2.4 (Service Version) (HKLM-x32\...\AVS Video Recorder_is1) (Version:  - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.3 (HKLM-x32\...\AVS4YOU Software Navigator_is1) (Version:  - Online Media Technologies Ltd.)
BitTorrent (HKLM-x32\...\BitTorrent) (Version:  - BitTorrent, Inc)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.)
CyberLink PhotoDirector 5 (Version: 5.0.5.6515 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
DRAGON QUEST HEROES Slime Edition (HKLM\...\ZHJhZ29ucXVlc3RoZXJvZXNzbGltZWVkaXRpb24_is1) (Version: 1 - )
Driver Booster 4.1 (HKLM-x32\...\Driver Booster_is1) (Version: 4.1.0 - IObit)
Driver Easy 5.0.6 (HKLM\...\DriverEasy_is1) (Version: 5.0.6 - Easeware)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel® Chipset Device Software (x32 Version: 10.1.1.11 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4404 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.1.0.418 - IObit)
IsoBuster 3.5 (HKLM-x32\...\IsoBuster_is1) (Version: 3.5 - Smart Projects)
iTunes (HKLM\...\{2C49F336-2E86-4407-83E2-16AC65598EF4}) (Version: 12.5.3.16 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\dda9ca0b023f4c56) (Version: 1.6.4.0 - Lenovo)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manager (x32 Version: 8.1.4.29179 - LULU Software Limited) Hidden
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 50.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 en-US)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7426.1015 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\PhotoFiltre 7) (Version:  - )
PNotes 9.3.0 (HKLM-x32\...\{949D34E5-F53F-4830-9A50-1E2C39109043}_is1) (Version: 9.3.0 - Andrey Gruber)
PS3Splitter version 1.1.5.2 (HKLM-x32\...\PS3Splitter_is1) (Version: 1.1.5.2 - Karmian.org)
REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.3.875.080715 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7936 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0273 - REALTEK Semiconductor Corp.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SixaxisPairTool 0.3.0 (HKLM-x32\...\SixaxisPairTool_is1) (Version: 0.3.0 - Dancing Pixel Studios)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Soda PDF 8 (HKLM-x32\...\Soda8) (Version: 8.1.13.29991 - LULU Software Limited)
Soda PDF 8 Asian Fonts Pack (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Convert Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Create Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Edit Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Forms Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Insert Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 OCR Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Review Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Secure Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 View Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VoiceOver Kit (HKLM\...\{703D47B8-2869-4A50-B988-BDE18772A474}) (Version: 1.43.128.3 - Apple Inc.)
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Windows Driver Package - ASUS (AsusSGDrv) Mouse  (06/18/2015 8.0.0.16) (HKLM\...\545B999BD5E2E239335F95C2AF9BED5D511CEC95) (Version: 06/18/2015 8.0.0.16 - ASUS)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.0 - Wondershare)
Wondershare Video Converter Ultimate(Build 8.5.5.6) (HKLM-x32\...\Wondershare Video Converter Ultimate_is1) (Version: 8.5.5.6 - Wondershare Software)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {05E52BD7-5CB9-443A-A5AA-6C6648A9D849} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-11-28] (Realtek Semiconductor)
Task: {086E2EE1-B0ED-48E6-918B-A9CDC659A0F4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {0C9CE5FE-7E05-4A8D-8297-6F7FDBA31A65} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-14] (Adobe Systems Incorporated)
Task: {0F817E3E-E8BF-4BD1-8536-1CB5FC97A712} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {10BDE17A-A1AE-400E-A724-8A2FF60CEF0A} - System32\Tasks\{E96CB895-FEAC-4941-B4CD-7471EC9E957E} => pcalua.exe -a E:\autorun.exe -d E:\
Task: {11D33F35-5632-4C90-8961-9B692BF609EC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {1250C84B-2D57-4EEB-9682-8E25A342CF6B} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2016-06-11] (Easeware)
Task: {1C4E6419-1EA8-4299-AE60-36D1C5CE6380} - System32\Tasks\{2A9D0AA3-4125-4038-BC72-65E345300999} => pcalua.exe -a "C:\Users\tom-t\OneDrive\Documents\ILLUSION - GHOST KILLER.exe" -d C:\Users\tom-t\OneDrive\Documents
Task: {231067CF-4780-44FC-AA64-4894054EDC12} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-11-28] (Realtek Semiconductor)
Task: {2A207307-F22F-43AE-90FA-C6EA23B9ACE4} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {335FC303-9F32-458B-A1F1-CA4544828ABA} - System32\Tasks\{525319CB-1B2E-4610-A6E5-394B7EBFE227} => pcalua.exe -a "C:\Program Files (x86)\Windows Live\Installer\wlarp.exe"
Task: {3708050F-C8E4-4CB9-AB8C-7B733A74EDF2} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {3A920A31-0B93-4D51-8723-E1106D2E9B7A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {420EED58-5A6D-43E0-B077-C7BE39785443} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-11-25] (AVAST Software)
Task: {4CCB133A-748B-42DE-A0BD-4109DA49F375} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {5F5F0E5D-B903-48C5-8E64-EDFB7227398A} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {61E0065D-FA03-4D3E-9226-83261165EABD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-21] (Piriform Ltd)
Task: {65BAA42F-40AA-4359-9405-CB5CD09CD822} - System32\Tasks\{8001F1C3-F719-4E73-A007-B12D9364C783} => pcalua.exe -a E:\autorun.exe -d E:\
Task: {66FA6AA8-F2D2-429A-8A5A-F8C8DB887550} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe [2016-11-08] (IObit)
Task: {674DE2B8-3DF6-40FC-A861-233598B0BF9B} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {6DDF4221-C35F-4D61-BC76-59D8D833DA09} - System32\Tasks\Uninstaller_SkipUac_tom-t => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-11-04] (IObit)
Task: {719891B2-2730-46F4-826A-73E7F0DE1184} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-748703395-188434783-1144859813-1001 => Rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {7A62AD34-957E-49F2-9EF5-4B8E178A4923} - System32\Tasks\{5D243367-A53C-4A35-9D04-21B28C49DB1D} => pcalua.exe -a C:\Users\tom-t\AppData\Local\{16F120AD-3259-4C15-5FC1-69FD7BA99565}\uninstall.exe -c /Uninstall /s /noun
Task: {7FB16993-3E00-40CA-AE44-70C4EFC62B73} - System32\Tasks\{F1DDA1AF-B206-4BCB-B01B-0CADB40C6524} => pcalua.exe -a "C:\Program Files (x86)\Ultimate IP Changer\unins000.exe"
Task: {856D70C1-87CF-4955-A55C-39BFA5D463BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-08] (Google Inc.)
Task: {8999CD15-C904-49BC-8CF6-BAF91E511586} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {89FE0BF9-EF8C-4CA1-ADC1-F5E3AA55FC0F} - System32\Tasks\{BD849F9C-34A6-0044-9E0F-96AB87E23B69} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\fb4bcde7\b49bd8ca.dll" <==== ATTENTION
Task: {8C0B0C38-00F5-47B7-8267-7540E154D23C} - System32\Tasks\Driver Booster SkipUAC (tom-t) => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe [2016-11-14] (IObit)
Task: {8C79EB48-86E4-4D94-BE68-294AF1CC2BBC} - System32\Tasks\{11BFE413-803D-48FC-8D04-3D1CD0838EE6} => pcalua.exe -a "C:\Program Files (x86)\AVS4YOU\AVSVideoConverter6\unins000.exe"
Task: {9EBE59A5-EA21-4B72-B85D-3FA5EF9A5ACF} - System32\Tasks\ASC10_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-11-10] (IObit)
Task: {AE18C857-1DF9-413F-B6B1-97E309394816} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {AE51C43C-68DA-42B0-8E60-6ECA1E79C4F5} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
Task: {B4EA2ED9-EE57-4809-B71A-1501C2349DE6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {B8366AA3-916F-41BD-AE77-4CBA33AF1FD3} - System32\Tasks\SafeZone scheduled Autoupdate 1480088856 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {C818DFD4-50B5-4D1A-8F9D-63DD18A20DBA} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {D4531958-6938-49C5-BE3E-7C6E9ABA2F0C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-11-09] (Microsoft Corporation)
Task: {D4783E81-6532-420A-917A-D60F597EBF11} - System32\Tasks\ASC10_SkipUac_tom-t => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-11-11] (IObit)
Task: {D75DBA80-AA77-4773-99B5-EB60935907E2} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {E3743588-7A16-4C43-8C71-1C01151FD07B} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {EFA6E86B-C3F4-45F8-AEEF-4DF3F71012FF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {F3B48B2D-9DE3-4312-808C-D5C34B8A623F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {FA07A84A-C48D-4F7A-AF63-E6C96D979671} - System32\Tasks\{1DF76EAB-FCA3-4131-B058-A4D43109C2B9} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Wrye Bash\uninstall.exe"
Task: {FB7F3287-3B4C-46D3-9D62-485266FD6C96} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {FC85335F-C8C8-48C9-A2F7-2A763E9AA957} - System32\Tasks\{56948C08-F0EE-4CA9-835B-CACBD3D6724B} => launchwinapp.exe hxxps://ui.skype.com/ui/0/7.29.80.102/en/go/help.faq.installer?LastError=1618
Task: {FDB53FA5-D36F-4EE8-95FA-6514EC7569B2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-08] (Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_tom-t.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-10-27 16:29 - 2014-04-14 20:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-10-27 16:01 - 2015-07-20 21:19 - 00121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
2016-07-16 06:42 - 2016-07-16 06:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-31 17:09 - 2016-10-31 17:09 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-31 17:09 - 2016-10-31 17:09 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-31 14:53 - 2016-10-31 14:53 - 01864384 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-09-08 12:47 - 2016-10-30 11:12 - 08924864 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2016-10-31 17:09 - 2016-10-31 17:09 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-31 23:30 - 2016-10-31 23:31 - 01573584 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2016-10-31 23:30 - 2016-10-31 23:31 - 00366080 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll
2016-11-09 00:01 - 2016-11-02 05:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 00:01 - 2016-11-02 05:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 00:01 - 2016-11-02 05:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-17 08:36 - 2016-11-17 08:44 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 08:36 - 2016-11-17 08:44 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 08:36 - 2016-11-17 08:44 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2015-09-27 20:15 - 2016-11-28 17:53 - 00402928 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-01-06 11:41 - 2016-01-06 11:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2016-11-14 20:29 - 2016-11-08 16:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-14 20:29 - 2016-11-08 16:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-12-08 15:39 - 2016-12-08 15:39 - 03066880 _____ () C:\Program Files\AVAST Software\Avast\defs\16120803\algo.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-11-26 12:56 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-11-26 12:56 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-11-26 12:56 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-11-28 17:38 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2016-11-28 17:38 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2016-11-28 17:38 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-08-07 03:09 - 2015-08-07 03:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2016-11-28 17:38 - 2016-08-18 18:43 - 00442144 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl
2016-11-28 17:38 - 2016-08-18 18:43 - 00210720 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madBasic_.bpl
2016-11-28 17:38 - 2016-08-18 18:43 - 00059680 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madDisAsm_.bpl
2016-11-28 17:38 - 2016-11-01 10:11 - 00078624 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\GetProcessDLL.dll
2015-08-25 11:40 - 2015-08-25 11:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 11:40 - 2015-08-25 11:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-10-31 14:52 - 2016-10-31 14:53 - 01383616 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-10-31 14:54 - 2016-10-31 14:54 - 00118976 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2015-12-27 19:36 - 2016-06-20 13:48 - 01506304 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-12-27 19:36 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-11-28 17:38 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\webres.dll
2016-11-28 17:38 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll
2016-11-28 17:38 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll
2016-11-28 17:38 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-07-10 06:04 - 2016-01-07 13:59 - 00000877 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-748703395-188434783-1144859813-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img2.jpg
DNS Servers: 24.200.241.37 - 24.202.72.13
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{466728A7-64B6-4ED9-AE48-9C3C116365E4}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{1B633016-B1E8-4757-ABA8-282D58B462B3}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{B853BBFD-F492-4020-871D-9317E245BE23}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{9ACEC412-F406-4B10-9598-7EFEAE049657}] => LPort=1900
FirewallRules: [{C07EA71A-12E2-45E7-A962-50EC31E70AA6}] => LPort=2869
FirewallRules: [{D57B4DAB-3D33-49BC-9959-37D46602F9A1}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{61D12C1D-700E-4FB3-8D6B-9F50BF82D47E}] => C:\Program Files (x86)\AirPrint\airprint.exe
FirewallRules: [{3CD164B3-423D-4B0D-8F4E-29F9B152F9A3}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{FF20ECF2-229B-4554-BBA1-ECFFDC41FE48}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{E3B7307A-30F7-409E-967B-5269964ADFCF}] => C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{3597AF66-1924-4B1E-9FF8-5699B1F620B7}] => C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{E4F986A6-9753-41D3-B0E4-6008743E9534}] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{BCA23BDC-8CD6-4355-9271-A335EF7EC2C9}] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{9C4AEBD9-C40E-4942-972B-B514397B47D3}] => C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{28F0077B-743F-457A-BE0B-948437C45BB2}] => C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{12C2DB9B-9B07-4110-A0F8-E77D69C48881}] => C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{CD9B02E2-65B3-453D-99D5-88A4CD137A6B}] => C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{16185E2C-2D46-44C7-A49B-7019C36A0555}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3B60FE9A-CF9F-4442-BB49-4B78C07FDD30}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BAF05B71-54A5-4EB8-801E-99DB9C02C6BB}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F00F7F01-4E5D-42F7-852C-B33DBEE933E1}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{ADE941E1-832D-4584-A3AD-37BAAB8747CE}C:\program files (x86)\bittorrent\bittorrent.exe] => C:\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [TCP Query User{2E469D58-3F9C-459E-BF92-048D0E0892F8}C:\program files (x86)\bittorrent\bittorrent.exe] => C:\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [{4F1E71D7-A7BC-49C8-A13B-1B0FB1D9EF41}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AE60A58-41A3-4987-A46F-C419160239C3}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4D2EADBB-6E01-4D24-8F9A-9C4784EA507A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{068117FD-67F1-4565-9624-91FBA84D52CD}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A757C137-60CC-4484-B2ED-6C7475F91429}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{17C03B90-4DA1-46EA-8693-4B748FF8BE62}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{4FD28958-76F3-4EEA-A71E-3400D7C6199D}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{7F3668F2-F9CE-4513-8866-62A5D47932A9}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe
FirewallRules: [{CF8213A9-E253-4E78-BCC8-DA291DBCF7C2}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe
FirewallRules: [{21AA5E63-755D-4ADD-8CB7-7FBA0B42DCD7}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe
FirewallRules: [{F300F241-C265-4C48-A66A-2D2F437F2409}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe
FirewallRules: [{8A97DF2D-60E7-4AB1-AF30-1A8260DADD38}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe
FirewallRules: [{6EB2BE1F-F08B-4DAD-ABA3-0E3AED92EE20}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe
FirewallRules: [{F5D71E21-B6E2-4DB7-9E89-FBD1E1BF9E08}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{DC2F8292-9CB8-43CA-AAAE-CE5AE20E7F60}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
 
==================== Restore Points =========================
 
24-11-2016 17:20:03 Removed Skype™ 7.26
28-11-2016 17:38:45 Driver Booster : Realtek PCIe GBE Family Controller
06-12-2016 16:15:49 Scheduled Checkpoint
 
==================== Faulty Device Manager Devices =============
 
Name: USB2.0 VGA UVC WebCam
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Microsoft® Keyboard with Fingerprint Reader
Description: Microsoft® Keyboard with Fingerprint Reader
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (12/08/2016 08:52:15 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-FMLSAAF)
Description: Activation of app Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen failed with error: -2147023170 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/08/2016 08:31:41 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
 
Error: (12/08/2016 07:58:27 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: DESKTOP-FMLSAAF)
Description: 7.488: EFS service failed to provision a user for EDP. Error code: 0x80070005.
 
Error: (12/08/2016 07:52:09 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: DESKTOP-FMLSAAF)
Description: 7.488: EFS service failed to provision a user for EDP. Error code: 0x80070005.
 
Error: (12/08/2016 04:17:08 PM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhostw (744) WebCacheLocal: Database recovery/restore failed with unexpected error -1032.
 
Error: (12/08/2016 04:17:08 PM) (Source: ESENT) (EventID: 439) (User: )
Description: taskhostw (744) WebCacheLocal: Unable to write a shadowed header for file C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk. Error -1032.
 
Error: (12/08/2016 04:17:08 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (744) WebCacheLocal: An attempt to open the file "C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ".  The open file operation will fail with error -1032 (0xfffffbf8).
 
Error: (12/08/2016 04:16:58 PM) (Source: ESENT) (EventID: 439) (User: )
Description: taskhostw (744) WebCacheLocal: Unable to write a shadowed header for file C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk. Error -1032.
 
Error: (12/08/2016 04:16:58 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (744) WebCacheLocal: An attempt to open the file "C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ".  The open file operation will fail with error -1032 (0xfffffbf8).
 
Error: (12/08/2016 04:16:48 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (744) WebCacheLocal: An attempt to open the file "C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ".  The open file operation will fail with error -1032 (0xfffffbf8).
 
 
System errors:
=============
Error: (12/08/2016 08:52:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/08/2016 08:03:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: Microsoft Sticky Notes.
 
Error: (12/08/2016 07:58:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/08/2016 07:58:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/08/2016 07:58:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/08/2016 04:14:04 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-FMLSAAF)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 and APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 to the user DESKTOP-FMLSAAF\tom-t SID (S-1-5-21-748703395-188434783-1144859813-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/08/2016 04:13:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: Microsoft Sticky Notes.
 
Error: (12/08/2016 04:11:28 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for [::]:50123. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine.  The data field contains the error number.
 
Error: (12/08/2016 04:05:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/08/2016 04:05:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-6500U CPU @ 2.50GHz
Percentage of memory in use: 49%
Total physical RAM: 8091.49 MB
Available physical RAM: 4097.05 MB
Total Virtual: 10523.49 MB
Available Virtual: 5885.91 MB
 
==================== Drives ================================
 
Drive c: © (Fixed) (Total:371.85 GB) (Free:70.26 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:328.47 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 396E593D)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

Attached Files


Edited by joshuamz, 08 December 2016 - 09:47 PM.

  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,775 posts
  • MVP

Uninstall:

 

 
Advanced SystemCare 10 
Driver Booster 4.1 
Driver Easy 5.0.6 
Intel® Security Assist
IObit Uninstaller
Java 8 Update 73 
Spybot - Search & Destroy 
 
Reboot
 
 


Please download MiniToolBox, save it to your desktop and run it.
 
Checkmark the following checkboxes:
  •  
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer Errors
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
 
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
 
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
 
Download the attached fixlist.txt to the same location as FRST
 
Attached File  fixlist.txt   12.82KB   51 downloads
 
Run FRST and press Fix
A fix log will be generated please post that 
 
 
Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.
 
You have malware bytes so have it run a full scan.  Delect anything it finds.
 
You have Avast.
 
Have you run a full boot-time scan?  
 

Open Avast, Scan, Scan for Viruses, Change the Quick Scan (in the box in the center of the page) to Boot-time Scan.  Then at the bottom of the page click on Scan Settings.
 
Make sure both boxes are checked and click on the gray box to the right of the orange ones.  It should turn orange.  Change where it says "Fix Automatically" to "Move to
Chest."  OK.  Now click on Start and then close Avast.  Mute your speakers so it doesn't wake you up when Windows boots.
 
When you reboot you will see the scan start.  It will tell you where it saves its log.  Usually it's C:\ProgramData\AVAST Software\Avast\report\aswBoot.txt but it might change so verify the location.   This is a hidden location so you will need to tell Windows to let you see it:
 
 
Copy and paste the text from the log to a Reply when done.
 
 
 
 
 

 


  • 0

#3
joshuamz

joshuamz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
Fix result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by tom-t (10-12-2016 12:55:27) Run:1
Running from C:\Users\tom-t\Desktop\FRST PROG
Loaded Profiles: tom-t (Available Profiles: tom-t & familia)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
CMD: type C:\WINDOWS\SysWOW64\PCProxyOff.ini
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction <======= ATTENTION
Tcpip\..\Interfaces\{14b4b94a-80d4-4e2c-ac85-04b87c24247d}: [DhcpNameServer] 82.163.143.171
Tcpip\..\Interfaces\{ce5def0e-1cea-4be7-9213-11d79dd482e9}: [DhcpNameServer] 82.163.143.171
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 -  No File
R2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [462624 2016-10-14] (IObit)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
Task: {10BDE17A-A1AE-400E-A724-8A2FF60CEF0A} - System32\Tasks\{E96CB895-FEAC-4941-B4CD-7471EC9E957E} => pcalua.exe -a E:\autorun.exe -d E:\
Task: {11D33F35-5632-4C90-8961-9B692BF609EC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {1250C84B-2D57-4EEB-9682-8E25A342CF6B} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2016-06-11] (Easeware)
Task: {1C4E6419-1EA8-4299-AE60-36D1C5CE6380} - System32\Tasks\{2A9D0AA3-4125-4038-BC72-65E345300999} => pcalua.exe -a "C:\Users\tom-t\OneDrive\Documents\ILLUSION - GHOST KILLER.exe" -d C:\Users\tom-t\OneDrive\Documents
Task: {65BAA42F-40AA-4359-9405-CB5CD09CD822} - System32\Tasks\{8001F1C3-F719-4E73-A007-B12D9364C783} => pcalua.exe -a E:\autorun.exe -d E:\
Task: {66FA6AA8-F2D2-429A-8A5A-F8C8DB887550} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe [2016-11-08] (IObit)
Task: {6DDF4221-C35F-4D61-BC76-59D8D833DA09} - System32\Tasks\Uninstaller_SkipUac_tom-t => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-11-04] (IObit)
Task: {7A62AD34-957E-49F2-9EF5-4B8E178A4923} - System32\Tasks\{5D243367-A53C-4A35-9D04-21B28C49DB1D} => pcalua.exe -a C:\Users\tom-t\AppData\Local\{16F120AD-3259-4C15-5FC1-69FD7BA99565}\uninstall.exe -c /Uninstall /s /noun
Task: {7FB16993-3E00-40CA-AE44-70C4EFC62B73} - System32\Tasks\{F1DDA1AF-B206-4BCB-B01B-0CADB40C6524} => pcalua.exe -a "C:\Program Files (x86)\Ultimate IP Changer\unins000.exe"
Task: {89FE0BF9-EF8C-4CA1-ADC1-F5E3AA55FC0F} - System32\Tasks\{BD849F9C-34A6-0044-9E0F-96AB87E23B69} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\fb4bcde7\b49bd8ca.dll" <==== ATTENTION
Task: {8C0B0C38-00F5-47B7-8267-7540E154D23C} - System32\Tasks\Driver Booster SkipUAC (tom-t) => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe [2016-11-14] (IObit)
Task: {8C79EB48-86E4-4D94-BE68-294AF1CC2BBC} - System32\Tasks\{11BFE413-803D-48FC-8D04-3D1CD0838EE6} => pcalua.exe -a "C:\Program Files (x86)\AVS4YOU\AVSVideoConverter6\unins000.exe"
Task: {9EBE59A5-EA21-4B72-B85D-3FA5EF9A5ACF} - System32\Tasks\ASC10_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-11-10] (IObit)
Task: {B4EA2ED9-EE57-4809-B71A-1501C2349DE6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {D4783E81-6532-420A-917A-D60F597EBF11} - System32\Tasks\ASC10_SkipUac_tom-t => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-11-11] (IObit)
Task: {FA07A84A-C48D-4F7A-AF63-E6C96D979671} - System32\Tasks\{1DF76EAB-FCA3-4131-B058-A4D43109C2B9} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Wrye Bash\uninstall.exe"
Task: {FB7F3287-3B4C-46D3-9D62-485266FD6C96} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_tom-t.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
FirewallRules: [{7F3668F2-F9CE-4513-8866-62A5D47932A9}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe
FirewallRules: [{CF8213A9-E253-4E78-BCC8-DA291DBCF7C2}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe
FirewallRules: [{21AA5E63-755D-4ADD-8CB7-7FBA0B42DCD7}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe
FirewallRules: [{F300F241-C265-4C48-A66A-2D2F437F2409}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe
FirewallRules: [{8A97DF2D-60E7-4AB1-AF30-1A8260DADD38}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe
FirewallRules: [{6EB2BE1F-F08B-4DAD-ABA3-0E3AED92EE20}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe
FirewallRules: [{F5D71E21-B6E2-4DB7-9E89-FBD1E1BF9E08}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{DC2F8292-9CB8-43CA-AAAE-CE5AE20E7F60}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
 
 
 
 
 
 
*****************
 
 
========= type C:\WINDOWS\SysWOW64\PCProxyOff.ini =========
 
":Gsªp`GÛ®:eÓÆ
========= End of CMD: =========
 
hklm\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{14b4b94a-80d4-4e2c-ac85-04b87c24247d}\\DhcpNameServer => value removed successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ce5def0e-1cea-4be7-9213-11d79dd482e9}\\DhcpNameServer => value removed successfully
"HKCR\PROTOCOLS\Handler\WSWSVCUchrome" => key removed successfully
AdvancedSystemCareService10 => service not found.
Intel® Security Assist => service not found.
SDScannerService => service not found.
SDUpdateService => service not found.
SDWSCService => service not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{10BDE17A-A1AE-400E-A724-8A2FF60CEF0A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{10BDE17A-A1AE-400E-A724-8A2FF60CEF0A}" => key removed successfully
C:\WINDOWS\System32\Tasks\{E96CB895-FEAC-4941-B4CD-7471EC9E957E} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E96CB895-FEAC-4941-B4CD-7471EC9E957E}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11D33F35-5632-4C90-8961-9B692BF609EC} => key not found. 
C:\WINDOWS\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => key not found. 
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1250C84B-2D57-4EEB-9682-8E25A342CF6B} => key not found. 
C:\WINDOWS\System32\Tasks\Driver Easy Scheduled Scan => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Easy Scheduled Scan => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1C4E6419-1EA8-4299-AE60-36D1C5CE6380}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1C4E6419-1EA8-4299-AE60-36D1C5CE6380}" => key removed successfully
C:\WINDOWS\System32\Tasks\{2A9D0AA3-4125-4038-BC72-65E345300999} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2A9D0AA3-4125-4038-BC72-65E345300999}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65BAA42F-40AA-4359-9405-CB5CD09CD822}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65BAA42F-40AA-4359-9405-CB5CD09CD822}" => key removed successfully
C:\WINDOWS\System32\Tasks\{8001F1C3-F719-4E73-A007-B12D9364C783} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8001F1C3-F719-4E73-A007-B12D9364C783}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66FA6AA8-F2D2-429A-8A5A-F8C8DB887550} => key not found. 
C:\WINDOWS\System32\Tasks\Driver Booster Scheduler => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler => key not found. 
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6DDF4221-C35F-4D61-BC76-59D8D833DA09} => key not found. 
C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_tom-t => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_tom-t => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7A62AD34-957E-49F2-9EF5-4B8E178A4923}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A62AD34-957E-49F2-9EF5-4B8E178A4923}" => key removed successfully
C:\WINDOWS\System32\Tasks\{5D243367-A53C-4A35-9D04-21B28C49DB1D} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5D243367-A53C-4A35-9D04-21B28C49DB1D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7FB16993-3E00-40CA-AE44-70C4EFC62B73}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FB16993-3E00-40CA-AE44-70C4EFC62B73}" => key removed successfully
C:\WINDOWS\System32\Tasks\{F1DDA1AF-B206-4BCB-B01B-0CADB40C6524} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F1DDA1AF-B206-4BCB-B01B-0CADB40C6524}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89FE0BF9-EF8C-4CA1-ADC1-F5E3AA55FC0F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89FE0BF9-EF8C-4CA1-ADC1-F5E3AA55FC0F}" => key removed successfully
C:\WINDOWS\System32\Tasks\{BD849F9C-34A6-0044-9E0F-96AB87E23B69} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BD849F9C-34A6-0044-9E0F-96AB87E23B69}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C0B0C38-00F5-47B7-8267-7540E154D23C} => key not found. 
C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (tom-t) => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (tom-t)" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C79EB48-86E4-4D94-BE68-294AF1CC2BBC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C79EB48-86E4-4D94-BE68-294AF1CC2BBC}" => key removed successfully
C:\WINDOWS\System32\Tasks\{11BFE413-803D-48FC-8D04-3D1CD0838EE6} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{11BFE413-803D-48FC-8D04-3D1CD0838EE6}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9EBE59A5-EA21-4B72-B85D-3FA5EF9A5ACF} => key not found. 
C:\WINDOWS\System32\Tasks\ASC10_PerformanceMonitor => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC10_PerformanceMonitor => key not found. 
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4EA2ED9-EE57-4809-B71A-1501C2349DE6} => key not found. 
C:\WINDOWS\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Scan the system => key not found. 
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D4783E81-6532-420A-917A-D60F597EBF11} => key not found. 
C:\WINDOWS\System32\Tasks\ASC10_SkipUac_tom-t => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC10_SkipUac_tom-t => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA07A84A-C48D-4F7A-AF63-E6C96D979671}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA07A84A-C48D-4F7A-AF63-E6C96D979671}" => key removed successfully
C:\WINDOWS\System32\Tasks\{1DF76EAB-FCA3-4131-B058-A4D43109C2B9} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1DF76EAB-FCA3-4131-B058-A4D43109C2B9}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB7F3287-3B4C-46D3-9D62-485266FD6C96} => key not found. 
C:\WINDOWS\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Check for updates => key not found. 
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\Uninstaller_SkipUac_tom-t.job => not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7F3668F2-F9CE-4513-8866-62A5D47932A9} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CF8213A9-E253-4E78-BCC8-DA291DBCF7C2} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21AA5E63-755D-4ADD-8CB7-7FBA0B42DCD7} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F300F241-C265-4C48-A66A-2D2F437F2409} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8A97DF2D-60E7-4AB1-AF30-1A8260DADD38} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6EB2BE1F-F08B-4DAD-ABA3-0E3AED92EE20} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F5D71E21-B6E2-4DB7-9E89-FBD1E1BF9E08} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DC2F8292-9CB8-43CA-AAAE-CE5AE20E7F60} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe => value not found.
 
 
The system needed a reboot.
 
==== End of Fixlog 12:55:32 ====
 
 
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
Ran by tom-t (administrator) on DESKTOP-FMLSAAF (10-12-2016 13:01:51)
Running from C:\Users\tom-t\Desktop\FRST PROG
Loaded Profiles: tom-t (Available Profiles: tom-t & familia)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Scarlet.Crush Productions) C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(LULU SOFTWARE LIMITED) C:\Program Files\Soda PDF 8\creator-ws.exe
(LULU Software Limited) C:\ProgramData\LULU Software\Soda PDF 8 Manager\Soda PDF 8\Soda Manager.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Apple Inc.) C:\Program Files (x86)\AirPrint\airprint.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\APRP\aprp.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
() C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7705.42037.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Lenovo) C:\Users\tom-t\AppData\Local\Apps\2.0\OVQDAX6M.AD2\TDZ6JLPJ.97P\lsb...tion_2d7b41b05b24775e_0001.0006_589ac911618caaca\LSB.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\launcher.exe
 
==================== Registry (Whitelisted) ====================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-10-28] (Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2131344 2016-06-20] (Wondershare)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1960248 2015-12-10] ()
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [135536 2010-12-13] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-25] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9355480 2016-11-21] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-11-25] (AVAST Software)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
Tcpip\..\Interfaces\{3addcba3-53ef-48eb-b30a-98108bb87e63}: [NameServer] 24.201.245.77
Tcpip\..\Interfaces\{3addcba3-53ef-48eb-b30a-98108bb87e63}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e5f59957-a183-452d-8bb5-a5b145dd44fd}: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-748703395-188434783-1144859813-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-30] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-30] (Microsoft Corporation)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2015-12-10] (Wondershare)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-25] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-25] (Oracle Corporation)
Toolbar: HKLM-x32 - Soda PDF 8 Toolbar - {A2689669-AD38-4AFD-B370-23E97E2B9D18} - C:\Program Files (x86)\Soda PDF 8\creator-ie-plugin.dll [2016-08-26] (LULU SOFTWARE LIMITED)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\tom-t\AppData\Roaming\Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 [2016-12-10]
FF NewTab: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF Homepage: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/?bcutc=sp-006
FF Keyword.URL: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchPlugin: C:\Users\tom-t\AppData\Roaming\Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357\searchplugins\google-avast.xml [2016-11-25]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Soda PDF 8\resources\sodapdf8firefoxextension
FF Extension: (Soda PDF 8 Creator) - C:\Program Files\Soda PDF 8\resources\sodapdf8firefoxextension [2016-10-09] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-11-25]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-11-25]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\Wondershare\Video Converter Ultimate\[email protected]
FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\[email protected] [2015-12-27] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-30] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
FF Plugin-x32: Soda PDF 8 -> C:\Program Files (x86)\Soda PDF 8\np-previewer.dll [2016-08-26] (LULU SOFTWARE LIMITED)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://google.ca/
CHR StartupUrls: Default -> "hxxps://www.facebook.com/"
CHR Profile: C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default [2016-12-10]
CHR Extension: (Google Drive) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-08]
CHR Extension: (YouTube) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-08]
CHR Extension: (Adblock Plus) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-08]
CHR Extension: (PDF Editor for Docs:Edit, Fill, Sign, Print) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjboohgkgchdnfnjiaggdbkdmpieoagi [2016-11-08]
CHR Extension: (Excel Viewer, Editor) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpdiahdjhpfaafoffpoaafcmjbcfmaj [2016-11-08]
CHR Extension: (Adblock for Youtube™) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-11-08]
CHR Extension: (Beach in the Maldives) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddicfadfciaeikknlkcldgockejldhek [2016-11-08]
CHR Extension: (AdBlock) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-12-10]
CHR Extension: (Avast Online Security) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-08]
CHR Extension: (Gmail) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AirPrint; C:\Program Files (x86)\AirPrint\airprint.exe [234784 2016-08-30] (Apple Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-11-25] (AVAST Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe [121560 2015-07-20] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3294912 2016-10-30] (Microsoft Corporation)
S3 cplspcon; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [622064 2016-11-28] (Intel Corporation)
R2 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-11-28] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-28] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [241408 2016-11-28] (Realtek Semiconductor Corp.)
S3 Soda PDF 8; C:\Program Files\Soda PDF 8\ws.exe [2263504 2016-08-26] (LULU SOFTWARE LIMITED)
S3 Soda PDF 8 CrashHandler; C:\Program Files\Soda PDF 8\crash-handler-ws.exe [920016 2016-08-26] (LULU SOFTWARE LIMITED)
R2 Soda PDF 8 Creator; C:\Program Files\Soda PDF 8\creator-ws.exe [733136 2016-08-26] (LULU SOFTWARE LIMITED)
R2 Soda PDF 8 Manager; C:\ProgramData\LULU Software\Soda PDF 8 Manager\Soda PDF 8\Soda Manager.exe [900120 2016-08-11] (LULU Software Limited)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-11-25] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-11-25] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-11-25] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-11-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-11-25] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-11-25] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-11-25] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-11-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-11-25] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [71232 2016-11-28] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66624 2016-11-28] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-11-28] (Intel Corporation)
R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2016-11-28] (REALiX™)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2015-12-17] (hxxp://libusb-win32.sourceforge.net)
R3 LifeCamTrueColor; C:\WINDOWS\system32\DRIVERS\LifeCamTrueColor.sys [37928 2016-07-27] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [935168 2016-11-28] (Realtek                                            )
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [207632 2016-06-29] (Realtek Semiconductor Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [736872 2016-11-28] (Realtek Semiconductor Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-11-28] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [5164288 2016-04-13] (Realtek Semiconductor Corporation                           )
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-10 12:53 - 2016-12-10 12:53 - 00000000 ____D C:\Users\tom-t\Desktop\mtb
2016-12-10 12:52 - 2016-12-10 12:55 - 00000000 ____D C:\Users\tom-t\Desktop\FRST PROG
2016-12-10 11:14 - 2016-12-10 11:15 - 00892416 _____ (Farbar) C:\Users\tom-t\Downloads\MiniToolBox.exe
2016-12-10 10:56 - 2016-12-10 10:56 - 00000085 _____ C:\WINDOWS\wininit.ini
2016-12-09 12:26 - 2016-12-09 12:29 - 43872728 _____ (Skype Technologies S.A.) C:\Users\tom-t\Downloads\SkypeSetupFull (2).exe
2016-12-08 22:26 - 2016-12-10 13:01 - 00000000 ____D C:\FRST
2016-12-08 20:36 - 2016-12-08 20:35 - 19299088 _____ C:\Users\tom-t\Desktop\WIN_20161208_202022.MP4
2016-12-05 22:49 - 2016-12-05 22:49 - 00000000 ____D C:\Users\tom-t\Downloads\Peter Paul Almond Joy & Mounds - _Feel Like A Nut_ (1980)
2016-12-05 21:52 - 2016-12-05 21:54 - 00000000 ____D C:\Users\tom-t\Downloads\Watch this hot bisexual orgy clip
2016-12-05 21:17 - 2016-12-05 21:22 - 00000000 ____D C:\Users\tom-t\Downloads\Bisex outdoor anal orgy
2016-12-05 20:57 - 2016-12-05 21:00 - 00000000 ____D C:\Users\tom-t\Downloads\3167916 Wild Bi Orgy 240p
2016-12-05 20:20 - 2016-12-05 20:22 - 00000000 ____D C:\Users\tom-t\Downloads\3334497 It's a BI ORGY at the [bleep] HOUSE 240p
2016-12-05 11:20 - 2016-12-05 11:20 - 11031965 _____ C:\Users\tom-t\Downloads\app-xmod-release_2.3.5_235.apk
2016-12-04 10:43 - 2016-12-01 10:06 - 00082936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2016-11-28 18:02 - 2016-11-28 18:02 - 09891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2016-11-28 18:02 - 2016-11-28 18:02 - 04332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2016-11-28 18:01 - 2016-11-28 18:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_esif_lf_01011.Wdf
2016-11-28 18:00 - 2016-11-28 18:00 - 01804688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-11-28 18:00 - 2016-11-28 18:00 - 00000000 ____D C:\WINDOWS\system32\Intel
2016-11-28 17:57 - 2016-11-28 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2016-11-28 17:57 - 2016-11-28 17:57 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-28 17:57 - 2016-02-15 18:27 - 00125720 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-11-28 17:57 - 2016-02-15 18:26 - 00126232 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-11-28 17:57 - 2016-02-15 18:25 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-11-28 17:57 - 2016-02-15 18:25 - 00042264 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-11-28 17:56 - 2016-11-28 17:56 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-11-28 17:53 - 2016-11-28 17:53 - 39834552 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 34771224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 29101592 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 19861528 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 14024128 _____ C:\WINDOWS\SysWOW64\VulkanRT-Installer.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 13601312 _____ (Intel Corporation) C:\WINDOWS\system32\ig9icd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 10298400 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig9icd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 06832016 _____ (Intel Corporation) C:\WINDOWS\system32\igvk64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 06599920 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05799386 _____ C:\WINDOWS\system32\igdclbif.bin
2016-11-28 17:53 - 2016-11-28 17:53 - 05685792 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05626664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igvk32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05262880 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05052560 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04872736 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04379168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04243912 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04215080 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 03970072 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01892200 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01816744 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01814088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01576992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01465032 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01167904 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01027056 _____ C:\WINDOWS\system32\igfxSDK.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00965104 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00961520 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00843068 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2016-11-28 17:53 - 2016-11-28 17:53 - 00632864 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00622064 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00536568 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00466928 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00439328 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00435112 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00433992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00416288 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00390176 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00388640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00381960 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00379816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00350208 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00318488 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00312328 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00301560 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00297184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00273440 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-28 17:53 - 2016-11-28 17:53 - 00266264 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00255520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00242184 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00237048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00232432 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00231920 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00225304 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00223272 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00207904 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4404.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00205384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00193048 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00181856 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00175088 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00173088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00111648 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00103968 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00103456 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00100896 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00099872 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00095264 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00084512 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00055272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00052768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00029208 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00029208 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00027680 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00027680 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00022560 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00022560 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00004834 _____ C:\WINDOWS\system32\iglhxs64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00000134 _____ C:\WINDOWS\SysWOW64\igvk32.json
2016-11-28 17:53 - 2016-11-28 17:53 - 00000134 _____ C:\WINDOWS\system32\igvk64.json
2016-11-28 17:48 - 2016-11-28 17:48 - 00812520 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\SETD751.tmp
2016-11-28 17:48 - 2016-11-28 17:48 - 00812520 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2016-11-28 17:48 - 2016-11-28 17:48 - 00241408 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtkBtManServ.exe
2016-11-28 17:48 - 2016-11-28 17:48 - 00073996 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00066368 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00064604 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00053548 _____ C:\WINDOWS\rtl8723d_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050752 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050712 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050700 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new_s1.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00045100 _____ C:\WINDOWS\rtl8822b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00038356 _____ C:\WINDOWS\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00016916 _____ C:\WINDOWS\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00000952 _____ C:\WINDOWS\PidVid_List.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 72520720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-11-28 17:45 - 2016-11-28 17:45 - 14057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 13122584 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 12988344 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 10534704 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 07101220 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-11-28 17:45 - 2016-11-28 17:45 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 06374320 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 06264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05793528 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05593624 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05341352 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03299832 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03291320 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03283248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03203592 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02895104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-11-28 17:45 - 2016-11-28 17:45 - 02825112 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02775352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02706864 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02439048 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02203752 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02110592 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02073096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02050184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01920820 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2016-11-28 17:45 - 2016-11-28 17:45 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01618032 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01529144 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01435152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01422936 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01360520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01337648 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01322656 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01213664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01186840 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01166168 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01115144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01041744 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01001800 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00999864 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00962136 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00923752 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00873464 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00864344 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00858200 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00854032 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00725944 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00678192 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00677680 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00601152 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00498648 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00472312 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00467160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00447184 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00445400 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00416512 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00372744 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00366128 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00362064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00360352 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00341160 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00341160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00258872 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00221968 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00209536 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00203848 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00190936 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00190936 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00179608 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00158704 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00154368 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00088320 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2016-11-28 17:41 - 2016-11-28 17:41 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2016-11-28 17:37 - 2016-12-10 10:50 - 00000000 ____D C:\ProgramData\ProductData
2016-11-28 17:37 - 2016-11-28 18:09 - 00000000 ____D C:\ProgramData\IObit
2016-11-28 17:37 - 2016-11-28 17:38 - 00000000 ____D C:\Users\tom-t\AppData\LocalLow\IObit
2016-11-28 17:37 - 2016-11-28 17:37 - 00027552 _____ (REALiX™) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2016-11-28 17:37 - 2016-11-28 17:37 - 00000000 ____D C:\WINDOWS\IObit
2016-11-28 17:36 - 2016-12-10 10:53 - 00000000 ____D C:\Program Files (x86)\IObit
2016-11-28 17:36 - 2016-11-28 17:40 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\IObit
2016-11-28 17:36 - 2016-11-28 17:36 - 17150504 _____ (IObit ) C:\Users\tom-t\Downloads\driver_booster_setup.exe
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\Users\tom-t\AppData\Local\Deployment
2016-11-28 17:32 - 2016-11-28 17:33 - 00611400 _____ () C:\Users\tom-t\Downloads\LSBsetup.exe
2016-11-26 14:22 - 2016-11-26 14:23 - 00414116 _____ C:\WINDOWS\Minidump\112616-31156-01.dmp
2016-11-26 14:22 - 2016-11-26 14:22 - 999367790 _____ C:\WINDOWS\MEMORY.DMP
2016-11-26 12:56 - 2016-12-10 10:57 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-11-26 12:56 - 2016-12-10 10:56 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-11-26 12:45 - 2016-11-26 12:56 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\tom-t\Downloads\spybot-2.4.exe
2016-11-26 12:42 - 2016-11-27 14:36 - 00001172 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-26 12:41 - 2016-11-27 14:36 - 22851472 _____ (Malwarebytes ) C:\Users\tom-t\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-26 12:41 - 2016-11-26 12:41 - 22851472 _____ (Malwarebytes ) C:\Users\tom-t\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-11-25 11:32 - 2016-12-10 12:51 - 00000000 ____D C:\Users\tom-t\AppData\LocalLow\Mozilla
2016-11-25 11:20 - 2016-11-25 11:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-25 11:20 - 2016-11-25 11:20 - 00000000 ____D C:\Program Files\iPod
2016-11-25 11:08 - 2016-11-25 11:08 - 00000000 ___HD C:\kleaner.tmp
2016-11-25 10:47 - 2016-11-25 11:44 - 00004020 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1480088856
2016-11-25 10:47 - 2016-11-25 11:44 - 00001089 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-11-25 10:47 - 2016-11-25 10:47 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-11-25 10:47 - 2016-11-25 10:47 - 00001089 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-11-25 10:45 - 2016-11-25 10:45 - 00001980 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-11-25 10:44 - 2016-11-25 10:44 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00293352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00004004 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-11-25 10:44 - 2016-11-25 10:43 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-11-25 10:44 - 2016-11-25 10:43 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-11-25 10:43 - 2016-11-25 10:43 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-11-25 10:42 - 2016-11-25 10:47 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-25 10:42 - 2016-11-25 10:47 - 00000000 ____D C:\Program Files\AVAST Software
2016-11-25 10:42 - 2016-11-25 10:42 - 06334848 _____ (AVAST Software) C:\Users\tom-t\Downloads\avast_free_antivirus_setup_online.exe
2016-11-24 23:20 - 2016-11-24 23:20 - 00250180 _____ C:\Users\tom-t\OneDrive\Documents\cc_20161124_232035.reg
2016-11-24 22:59 - 2016-11-24 23:00 - 00000000 ____D C:\Program Files\CCleaner
2016-11-24 22:59 - 2016-11-24 22:59 - 00002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-11-24 22:59 - 2016-11-24 22:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-24 19:45 - 2016-11-24 22:58 - 08995888 _____ (Piriform Ltd) C:\Users\tom-t\Downloads\ccsetup524_protrial.exe
2016-11-24 17:29 - 2016-11-24 17:29 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-24 17:29 - 2016-11-24 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-11-24 17:22 - 2016-11-24 17:25 - 43878872 _____ (Skype Technologies S.A.) C:\Users\tom-t\Downloads\SkypeSetupFull.exe
2016-11-21 14:19 - 2016-11-21 14:19 - 92485932 _____ C:\Users\tom-t\Downloads\PinOutV2.apk
2016-11-20 19:03 - 2016-11-20 19:03 - 02185824 _____ C:\Users\tom-t\Downloads\[PS3]SaveGame Resigner 1.4.zip
2016-11-20 18:52 - 2016-11-20 19:03 - 00000000 ____D C:\Users\tom-t\Desktop\1.4 save resigner
2016-11-20 18:39 - 2016-11-20 18:39 - 00000217 _____ C:\Users\tom-t\Downloads\save_resigner_ps3.html
2016-11-20 16:20 - 2016-11-20 16:20 - 00189073 _____ C:\Users\tom-t\Downloads\games (1).conf
2016-11-20 16:20 - 2016-11-20 16:20 - 00177248 _____ C:\Users\tom-t\Downloads\XX0001-ENSTONEXX_00-00000000000CCAPIv2.50.pkg
2016-11-20 16:19 - 2016-11-20 16:21 - 13866963 _____ (The Prince of Codes) C:\Users\tom-t\Downloads\[PS3] Save Resigner 2.0.6 Setup.exe
2016-11-20 16:13 - 2016-11-20 18:43 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2016-11-20 16:13 - 2016-11-20 16:13 - 00000000 ____D C:\ProgramData\Caphyon
2016-11-20 16:10 - 2016-11-20 16:13 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\The Prince of Codes
2016-11-20 16:00 - 2016-11-20 16:00 - 10290074 _____ C:\Users\tom-t\Downloads\PS3 Save Resigner 2.0.rar
2016-11-20 15:35 - 2016-11-20 15:35 - 00584229 _____ C:\Users\tom-t\Downloads\MSVBVM50.DLL.RAR
2016-11-20 15:22 - 2016-11-20 15:22 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (4).exe
2016-11-20 15:19 - 2016-11-20 15:23 - 04427826 _____ C:\Users\tom-t\Downloads\Bruteforce_Save_Data_v4.4.2.rar
2016-11-20 15:10 - 2016-11-20 15:10 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (3).exe
2016-11-20 14:05 - 2016-11-20 13:19 - 01355776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVBVM50.DLL
2016-11-20 13:19 - 2016-11-20 13:19 - 01355776 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\MSVBVM50.DLL
2016-11-20 13:15 - 2016-11-20 13:15 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (2).exe
2016-11-20 13:00 - 2016-11-20 13:00 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (1).exe
2016-11-20 12:56 - 2016-11-20 12:56 - 00239017 _____ C:\Users\tom-t\Downloads\games.conf
2016-11-20 12:56 - 2016-11-20 12:56 - 00016769 _____ C:\Users\tom-t\Downloads\CheatsDB_BSD_Version file 20th feb 2014.rar
2016-11-20 12:55 - 2016-11-20 12:56 - 07672938 _____ C:\Users\tom-t\Downloads\BruteforceSaveData4.7.rar
2016-11-20 12:48 - 2016-11-20 12:48 - 07201032 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64.exe
2016-11-20 12:34 - 2016-11-20 12:34 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\WildTangent
2016-11-20 12:33 - 2016-11-20 12:35 - 04935893 _____ C:\Users\tom-t\Downloads\BruteforceSaveData 4.6.rar
2016-11-20 12:15 - 2016-11-20 12:15 - 00047369 _____ C:\Users\tom-t\Downloads\All ps3 games regions.rar
2016-11-20 11:29 - 2016-11-20 17:11 - 00000000 ____D C:\Users\tom-t\Desktop\seiya modded
2016-11-20 11:23 - 2016-11-20 11:23 - 00098164 _____ C:\Users\tom-t\Downloads\BLES02291-SAVEDATA0.zip
2016-11-20 10:46 - 2016-11-20 10:47 - 00000000 ____D C:\Users\tom-t\Desktop\backyp saint seiya
2016-11-19 21:23 - 2016-11-19 21:35 - 00000000 ____D C:\Users\tom-t\Desktop\HADES
2016-11-17 15:23 - 2015-10-06 02:37 - 00000000 ____D C:\Users\tom-t\Desktop\BLUS31559-[Saint Seiya Soldiers Soul]
2016-11-17 09:55 - 2016-11-25 11:37 - 00000016 _____ C:\WINDOWS\SysWOW64\PCProxyOff.ini
2016-11-17 09:55 - 2016-11-17 09:55 - 00073728 _____ C:\WINDOWS\SysWOW64\VistaInfo32.dll
2016-11-17 09:55 - 2016-11-17 09:55 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpOrder.dll
2016-11-17 09:21 - 2016-11-17 09:21 - 00000000 ____D C:\Users\tom-t\Downloads\Saint Seiya - AndreloPS
2016-11-17 09:18 - 2016-11-17 09:18 - 06907464 _____ (Tonec Inc.) C:\Users\tom-t\Downloads\idman626build10.exe
2016-11-16 16:40 - 2016-11-16 16:44 - 1073741824 _____ C:\Users\tom-t\Downloads\541N7.531Y4.H4D35.00.15.part01.rar
2016-11-16 15:36 - 2016-11-16 15:43 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\ImgBurn
2016-11-16 15:25 - 2016-11-16 15:25 - 00001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-11-16 15:25 - 2016-11-16 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-11-16 15:25 - 2016-11-16 15:25 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2016-11-16 15:10 - 2016-11-16 15:10 - 00000000 ____D C:\Users\tom-t\OneDrive\Documents\default
2016-11-16 15:09 - 2016-11-17 09:23 - 00000000 ____D C:\Users\tom-t\Downloads\j0q9k6340qdljok
2016-11-16 09:26 - 2016-11-16 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karmian
2016-11-16 09:26 - 2016-11-16 09:26 - 00000000 ____D C:\Program Files (x86)\Karmian
2016-11-16 08:51 - 2014-12-17 15:45 - 00000000 ____D C:\Users\tom-t\Desktop\Shining_Reso-nance_JPN_PS3-HR alberto pumper
2016-11-15 20:54 - 2016-11-15 20:54 - 11487168 _____ C:\Users\tom-t\Downloads\Dark Souls cheat Unlimited Souls TB.pkg
2016-11-15 20:53 - 2016-11-15 20:53 - 11487168 _____ C:\Users\tom-t\Downloads\Dark Souls BLES01402 Unlimited Souls.pkg
2016-11-15 20:33 - 2016-11-15 20:33 - 09200802 _____ C:\Users\tom-t\Downloads\TOWERBLOCKMODSPS3.rar
2016-11-14 18:12 - 2016-11-14 18:12 - 00728865 _____ C:\Users\tom-t\Downloads\Shin_Ohtake_Max_Workouts_Pdf.zip
2016-11-14 09:45 - 2016-11-14 09:45 - 51477528 _____ C:\Users\tom-t\Downloads\1.5.0_EasyFarmMode.apk
2016-11-12 10:09 - 2016-11-12 10:09 - 00003182 _____ C:\WINDOWS\System32\Tasks\{56948C08-F0EE-4CA9-835B-CACBD3D6724B}
2016-11-10 11:25 - 2016-11-10 11:25 - 51477505 _____ C:\Users\tom-t\Downloads\1.5.0_OnlyEnergy.apk
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-12-10 13:04 - 2015-12-01 20:37 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Skype
2016-12-10 13:00 - 2015-12-01 15:01 - 00000165 _____ C:\Users\tom-t\AppData\Roaming\sp_data.sys
2016-12-10 12:57 - 2016-10-31 13:21 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-12-10 12:57 - 2015-12-01 15:01 - 00000000 __SHD C:\Users\tom-t\IntelGraphicsProfiles
2016-12-10 12:56 - 2016-10-31 14:17 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-10 12:56 - 2016-10-31 13:28 - 00000000 ____D C:\Users\tom-t
2016-12-10 12:56 - 2016-07-16 01:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-12-10 12:56 - 2015-12-17 12:34 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-12-10 12:55 - 2015-07-10 06:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-12-10 12:46 - 2016-10-31 13:17 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-10 12:38 - 2016-07-16 06:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-10 12:00 - 2016-10-31 14:17 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-12-10 12:00 - 2016-10-31 14:17 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-12-10 10:56 - 2016-07-16 06:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-10 10:56 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-10 10:56 - 2015-12-01 15:01 - 00000000 ____D C:\Users\tom-t\AppData\Local\Packages
2016-12-10 10:55 - 2016-02-28 03:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-10 10:55 - 2016-02-28 03:03 - 00000000 ____D C:\Program Files (x86)\Java
2016-12-10 10:53 - 2016-10-31 13:19 - 00000000 ____D C:\Program Files (x86)\Intel
2016-12-10 09:59 - 2015-12-14 12:18 - 00000000 ____D C:\Users\tom-t\AppData\Local\Adobe
2016-12-09 18:04 - 2015-08-18 03:36 - 01246550 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-08 20:44 - 2015-12-14 16:49 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\vlc
2016-12-08 19:59 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-07 22:35 - 2016-11-02 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-07 22:35 - 2015-12-14 12:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-05 22:00 - 2016-01-07 12:18 - 00000000 ____D C:\Users\tom-t\AppData\Local\JDownloader v2.0
2016-11-28 21:33 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-28 18:02 - 2016-10-31 13:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-28 18:02 - 2016-07-16 06:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-28 18:02 - 2015-12-02 12:15 - 00418784 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2016-11-28 18:02 - 2015-12-02 12:15 - 00084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2016-11-28 18:01 - 2015-07-28 22:37 - 00186424 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2016-11-28 18:00 - 2016-10-07 21:52 - 00098128 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-11-28 18:00 - 2016-10-07 21:49 - 00648512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-11-28 18:00 - 2015-10-27 16:01 - 00350272 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\esif_lf.sys
2016-11-28 18:00 - 2015-10-27 16:01 - 00071232 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_acpi.sys
2016-11-28 18:00 - 2015-10-27 16:01 - 00066624 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_cpu.sys
2016-11-28 17:59 - 2015-09-27 20:14 - 00795640 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2016-11-28 17:57 - 2015-10-27 15:50 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-28 17:56 - 2016-10-31 13:21 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-11-28 17:53 - 2016-10-31 13:21 - 00103968 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-28 17:53 - 2016-10-31 13:21 - 00099872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-28 17:53 - 2015-09-27 20:15 - 38876112 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 33439704 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 15472792 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 14560984 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 13471672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 11844056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 07917040 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-11-28 17:53 - 2015-09-27 20:15 - 02062880 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00753688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00402928 _____ C:\WINDOWS\system32\igfxTray.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00394264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00373744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00354800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00269296 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-11-28 17:48 - 2015-12-12 10:40 - 00736872 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtkBtfilter.sys
2016-11-28 17:47 - 2016-10-31 14:17 - 00003260 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2016-11-28 17:47 - 2016-10-31 14:17 - 00003194 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2016-11-28 17:46 - 2016-10-31 13:21 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-28 17:46 - 2016-10-31 13:21 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-11-28 17:45 - 2015-10-27 15:59 - 05322248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-11-28 17:45 - 2015-10-27 15:59 - 03133848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-11-28 17:45 - 2015-10-27 15:59 - 00192984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-11-28 17:45 - 2015-10-27 15:59 - 00023696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-11-28 17:41 - 2015-10-27 15:58 - 00935168 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2016-11-27 14:37 - 2016-02-22 08:22 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-27 14:36 - 2016-02-22 08:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-26 14:22 - 2016-11-06 09:34 - 00000000 ____D C:\WINDOWS\Minidump
2016-11-25 12:04 - 2015-12-14 12:05 - 00001205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-25 12:03 - 2016-01-02 14:26 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-11-25 12:02 - 2016-07-16 01:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-25 12:02 - 2016-04-29 17:10 - 00000000 ____D C:\Users\Mr Anguiano
2016-11-25 12:02 - 2015-10-30 01:28 - 00000000 ____D C:\Users\Default.migrated
2016-11-25 11:33 - 2015-12-03 15:04 - 00000000 ____D C:\Program Files\WinRAR
2016-11-25 11:20 - 2015-12-17 09:05 - 00000000 ____D C:\Program Files\iTunes
2016-11-25 11:20 - 2015-12-02 13:38 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-11-25 11:13 - 2015-12-03 15:04 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-25 11:13 - 2015-12-03 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-25 11:09 - 2016-02-28 03:04 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-11-25 10:45 - 2016-03-04 14:33 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\AVAST Software
2016-11-24 23:15 - 2015-12-03 10:03 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\BitTorrent
2016-11-24 23:11 - 2016-10-31 17:15 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-24 23:11 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-11-24 23:10 - 2016-10-31 13:22 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-11-24 23:10 - 2015-08-18 03:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-11-24 23:07 - 2015-12-10 18:38 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bruteforce Save Data
2016-11-24 23:07 - 2015-12-10 18:37 - 00000000 ____D C:\Program Files (x86)\Bruteforce Save Data
2016-11-24 17:29 - 2015-12-01 20:37 - 00000000 ____D C:\ProgramData\Skype
2016-11-23 09:32 - 2016-02-23 12:44 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2016-11-20 15:11 - 2016-07-16 06:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-20 15:06 - 2016-02-23 12:44 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2016-11-20 12:34 - 2015-08-18 03:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-20 12:34 - 2015-08-18 03:37 - 00000000 ____D C:\ProgramData\WildTangent
2016-11-20 09:53 - 2016-07-16 06:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-20 09:51 - 2015-10-27 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-16 16:27 - 2015-12-24 14:58 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\dvdcss
2016-11-16 14:33 - 2016-10-09 13:21 - 00000000 ____D C:\Users\tom-t\Desktop\4 bigmuscle
2016-11-16 10:09 - 2016-08-31 08:04 - 00000000 ____D C:\Users\tom-t\Desktop\fotos videos 31 agosto
2016-11-16 10:05 - 2016-02-09 23:25 - 00000000 ____D C:\Users\tom-t\Desktop\queu
2016-11-14 20:29 - 2016-11-08 10:23 - 00002273 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-14 19:23 - 2016-10-31 14:17 - 00003816 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-11-14 19:23 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-14 19:23 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-14 19:13 - 2015-12-01 15:03 - 00000000 ____D C:\Users\tom-t\AppData\Local\Comms
2016-11-13 15:32 - 2016-01-20 21:24 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-13 14:02 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-11 01:27 - 2015-08-23 11:37 - 00065640 _____ C:\WINDOWS\system32\ASGCoInstaller_x64.dll
2016-11-10 22:06 - 2016-10-31 13:22 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-11-10 00:04 - 2015-10-27 15:47 - 00000000 __RHD C:\Users\Public\AccountPictures
 
==================== Files in the root of some directories =======
 
2015-12-01 15:01 - 2016-12-10 13:00 - 0000165 _____ () C:\Users\tom-t\AppData\Roaming\sp_data.sys
2016-01-07 13:19 - 2016-01-07 13:19 - 0000047 _____ () C:\Users\tom-t\AppData\Roaming\WB.CFG
2016-02-04 07:04 - 2016-02-09 13:02 - 0003584 _____ () C:\Users\tom-t\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-31 13:21 - 2016-10-31 13:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
Some files in TEMP:
====================
C:\Users\tom-t\AppData\Local\Temp\proxy_vole5150257694916234934.dll
C:\Users\tom-t\AppData\Local\Temp\proxy_vole6076959345425680180.dll
C:\Users\tom-t\AppData\Local\Temp\proxy_vole7499190792889508807.dll
 
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2016-12-05 17:46
 
==================== End of FRST.txt ============================
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by tom-t (10-12-2016 13:05:32)
Running from C:\Users\tom-t\Desktop\FRST PROG
Windows 10 Home Version 1607 (X64) (2016-10-31 19:36:30)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-748703395-188434783-1144859813-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-748703395-188434783-1144859813-503 - Limited - Disabled)
familia (S-1-5-21-748703395-188434783-1144859813-1004 - Limited - Enabled) => C:\Users\familia
Guest (S-1-5-21-748703395-188434783-1144859813-501 - Limited - Disabled)
tom-t (S-1-5-21-748703395-188434783-1144859813-1001 - Administrator - Enabled) => C:\Users\tom-t
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Ashampoo Burning Studio 11 v.11.0.2 (HKLM-x32\...\Ashampoo Burning Studio 11_is1) (Version: 11.0.2 - Ashampoo GmbH & Co. KG)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0040 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version:  - Online Media Technologies Ltd.)
AVS Video Editor 4 4.2.1.166 (HKLM-x32\...\AVS Video Editor 4_is1) (Version:  - Online Media Technologies Ltd.)
AVS Video Editor 7.2.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.2.1.269 - Online Media Technologies Ltd.)
AVS Video Recorder 2.4 (Service Version) (HKLM-x32\...\AVS Video Recorder_is1) (Version:  - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.3 (HKLM-x32\...\AVS4YOU Software Navigator_is1) (Version:  - Online Media Technologies Ltd.)
BitTorrent (HKLM-x32\...\BitTorrent) (Version:  - BitTorrent, Inc)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.)
CyberLink PhotoDirector 5 (Version: 5.0.5.6515 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel® Chipset Device Software (x32 Version: 10.1.1.11 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4404 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
IsoBuster 3.5 (HKLM-x32\...\IsoBuster_is1) (Version: 3.5 - Smart Projects)
iTunes (HKLM\...\{2C49F336-2E86-4407-83E2-16AC65598EF4}) (Version: 12.5.3.16 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\dda9ca0b023f4c56) (Version: 1.6.4.0 - Lenovo)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manager (x32 Version: 8.1.4.29179 - LULU Software Limited) Hidden
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 50.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 en-US)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7426.1015 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\PhotoFiltre 7) (Version:  - )
PNotes 9.3.0 (HKLM-x32\...\{949D34E5-F53F-4830-9A50-1E2C39109043}_is1) (Version: 9.3.0 - Andrey Gruber)
PS3Splitter version 1.1.5.2 (HKLM-x32\...\PS3Splitter_is1) (Version: 1.1.5.2 - Karmian.org)
REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.3.875.080715 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7936 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0273 - REALTEK Semiconductor Corp.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SixaxisPairTool 0.3.0 (HKLM-x32\...\SixaxisPairTool_is1) (Version: 0.3.0 - Dancing Pixel Studios)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Soda PDF 8 (HKLM-x32\...\Soda8) (Version: 8.1.13.29991 - LULU Software Limited)
Soda PDF 8 Asian Fonts Pack (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Convert Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Create Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Edit Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Forms Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Insert Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 OCR Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Review Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Secure Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 View Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VoiceOver Kit (HKLM\...\{703D47B8-2869-4A50-B988-BDE18772A474}) (Version: 1.43.128.3 - Apple Inc.)
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Windows Driver Package - ASUS (AsusSGDrv) Mouse  (06/18/2015 8.0.0.16) (HKLM\...\545B999BD5E2E239335F95C2AF9BED5D511CEC95) (Version: 06/18/2015 8.0.0.16 - ASUS)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.0 - Wondershare)
Wondershare Video Converter Ultimate(Build 8.5.5.6) (HKLM-x32\...\Wondershare Video Converter Ultimate_is1) (Version: 8.5.5.6 - Wondershare Software)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {05E52BD7-5CB9-443A-A5AA-6C6648A9D849} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-11-28] (Realtek Semiconductor)
Task: {086E2EE1-B0ED-48E6-918B-A9CDC659A0F4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {0C9CE5FE-7E05-4A8D-8297-6F7FDBA31A65} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-14] (Adobe Systems Incorporated)
Task: {231067CF-4780-44FC-AA64-4894054EDC12} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-11-28] (Realtek Semiconductor)
Task: {2A207307-F22F-43AE-90FA-C6EA23B9ACE4} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {335FC303-9F32-458B-A1F1-CA4544828ABA} - System32\Tasks\{525319CB-1B2E-4610-A6E5-394B7EBFE227} => pcalua.exe -a "C:\Program Files (x86)\Windows Live\Installer\wlarp.exe"
Task: {3708050F-C8E4-4CB9-AB8C-7B733A74EDF2} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {3A920A31-0B93-4D51-8723-E1106D2E9B7A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {420EED58-5A6D-43E0-B077-C7BE39785443} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-11-25] (AVAST Software)
Task: {4CCB133A-748B-42DE-A0BD-4109DA49F375} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {61E0065D-FA03-4D3E-9226-83261165EABD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-21] (Piriform Ltd)
Task: {674DE2B8-3DF6-40FC-A861-233598B0BF9B} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {719891B2-2730-46F4-826A-73E7F0DE1184} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-748703395-188434783-1144859813-1001 => Rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {73D1391C-3638-4EE3-B930-C326EFDD9788} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {856D70C1-87CF-4955-A55C-39BFA5D463BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-08] (Google Inc.)
Task: {8999CD15-C904-49BC-8CF6-BAF91E511586} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {95E37B3B-5D8F-4457-862E-337EA182B684} - \Driver Booster SkipUAC (tom-t) -> No File <==== ATTENTION
Task: {A99571E6-1679-4BDC-966F-529EF2FBB3D3} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {AE18C857-1DF9-413F-B6B1-97E309394816} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {AE51C43C-68DA-42B0-8E60-6ECA1E79C4F5} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
Task: {B8366AA3-916F-41BD-AE77-4CBA33AF1FD3} - System32\Tasks\SafeZone scheduled Autoupdate 1480088856 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {C818DFD4-50B5-4D1A-8F9D-63DD18A20DBA} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {D4531958-6938-49C5-BE3E-7C6E9ABA2F0C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-11-09] (Microsoft Corporation)
Task: {D75DBA80-AA77-4773-99B5-EB60935907E2} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {E3743588-7A16-4C43-8C71-1C01151FD07B} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {EFA6E86B-C3F4-45F8-AEEF-4DF3F71012FF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {F3B48B2D-9DE3-4312-808C-D5C34B8A623F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {FC85335F-C8C8-48C9-A2F7-2A763E9AA957} - System32\Tasks\{56948C08-F0EE-4CA9-835B-CACBD3D6724B} => launchwinapp.exe hxxps://ui.skype.com/ui/0/7.29.80.102/en/go/help.faq.installer?LastError=1618
Task: {FDB53FA5-D36F-4EE8-95FA-6514EC7569B2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-08] (Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2016-07-16 06:42 - 2016-07-16 06:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-31 17:09 - 2016-10-31 17:09 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-10-27 16:01 - 2015-07-20 21:19 - 00121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
2015-10-27 16:29 - 2014-04-14 20:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2016-10-31 17:09 - 2016-10-31 17:09 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-31 14:53 - 2016-10-31 14:53 - 01864384 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-09-08 12:47 - 2016-10-30 11:12 - 08924864 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2015-09-27 20:15 - 2016-11-28 17:53 - 00402928 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-10-31 17:09 - 2016-10-31 17:09 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-09 00:01 - 2016-11-02 05:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 00:01 - 2016-11-02 05:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 00:01 - 2016-11-02 05:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-05-29 18:10 - 2015-05-29 18:10 - 00505200 _____ () C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
2016-11-14 20:29 - 2016-11-08 16:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-14 20:29 - 2016-11-08 16:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-01-06 11:41 - 2016-01-06 11:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2016-11-17 08:36 - 2016-11-17 08:44 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 08:36 - 2016-11-17 08:44 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 08:36 - 2016-11-17 08:44 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-10-31 17:10 - 2016-10-31 17:10 - 03388256 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2016-10-31 17:10 - 2016-10-31 17:10 - 02263904 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll
2016-11-09 00:01 - 2016-11-02 05:13 - 00114176 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Dss.BackgroundTask.dll
2016-11-09 00:02 - 2016-11-02 05:13 - 00115712 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\DeviceSideServicesActionUriHandler.dll
2016-11-09 00:01 - 2016-11-02 05:13 - 00522752 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-12-09 11:44 - 2016-12-09 11:44 - 03067904 _____ () C:\Program Files\AVAST Software\Avast\defs\16120901\algo.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-08-25 11:40 - 2015-08-25 11:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 11:40 - 2015-08-25 11:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-10-31 14:52 - 2016-10-31 14:53 - 01383616 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-10-31 14:54 - 2016-10-31 14:54 - 00118976 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2015-12-27 19:36 - 2016-06-20 13:48 - 01506304 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-12-27 19:36 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-08-07 03:09 - 2015-08-07 03:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-07-10 06:04 - 2016-01-07 13:59 - 00000877 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-748703395-188434783-1144859813-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img2.jpg
HKU\S-1-5-21-748703395-188434783-1144859813-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img2.jpg
HKU\S-1-5-21-748703395-188434783-1144859813-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 24.200.241.37 - 24.202.72.13
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{466728A7-64B6-4ED9-AE48-9C3C116365E4}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{1B633016-B1E8-4757-ABA8-282D58B462B3}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{B853BBFD-F492-4020-871D-9317E245BE23}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{9ACEC412-F406-4B10-9598-7EFEAE049657}] => LPort=1900
FirewallRules: [{C07EA71A-12E2-45E7-A962-50EC31E70AA6}] => LPort=2869
FirewallRules: [{D57B4DAB-3D33-49BC-9959-37D46602F9A1}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{61D12C1D-700E-4FB3-8D6B-9F50BF82D47E}] => C:\Program Files (x86)\AirPrint\airprint.exe
FirewallRules: [{3CD164B3-423D-4B0D-8F4E-29F9B152F9A3}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{FF20ECF2-229B-4554-BBA1-ECFFDC41FE48}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{E3B7307A-30F7-409E-967B-5269964ADFCF}] => C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{3597AF66-1924-4B1E-9FF8-5699B1F620B7}] => C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{E4F986A6-9753-41D3-B0E4-6008743E9534}] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{BCA23BDC-8CD6-4355-9271-A335EF7EC2C9}] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{9C4AEBD9-C40E-4942-972B-B514397B47D3}] => C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{28F0077B-743F-457A-BE0B-948437C45BB2}] => C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{12C2DB9B-9B07-4110-A0F8-E77D69C48881}] => C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{CD9B02E2-65B3-453D-99D5-88A4CD137A6B}] => C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{16185E2C-2D46-44C7-A49B-7019C36A0555}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3B60FE9A-CF9F-4442-BB49-4B78C07FDD30}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BAF05B71-54A5-4EB8-801E-99DB9C02C6BB}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F00F7F01-4E5D-42F7-852C-B33DBEE933E1}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{ADE941E1-832D-4584-A3AD-37BAAB8747CE}C:\program files (x86)\bittorrent\bittorrent.exe] => C:\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [TCP Query User{2E469D58-3F9C-459E-BF92-048D0E0892F8}C:\program files (x86)\bittorrent\bittorrent.exe] => C:\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [{4F1E71D7-A7BC-49C8-A13B-1B0FB1D9EF41}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AE60A58-41A3-4987-A46F-C419160239C3}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4D2EADBB-6E01-4D24-8F9A-9C4784EA507A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{068117FD-67F1-4565-9624-91FBA84D52CD}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A757C137-60CC-4484-B2ED-6C7475F91429}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{17C03B90-4DA1-46EA-8693-4B748FF8BE62}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{4FD28958-76F3-4EEA-A71E-3400D7C6199D}] => C:\Program Files\iTunes\iTunes.exe
 
==================== Restore Points =========================
 
24-11-2016 17:20:03 Removed Skype™ 7.26
28-11-2016 17:38:45 Driver Booster : Realtek PCIe GBE Family Controller
06-12-2016 16:15:49 Scheduled Checkpoint
09-12-2016 16:29:31 Windows Update
10-12-2016 10:51:45 Removed Intel® Security Assist
10-12-2016 10:53:56 Removed Java 8 Update 73
 
==================== Faulty Device Manager Devices =============
 
Name: USB2.0 VGA UVC WebCam
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Microsoft® Keyboard with Fingerprint Reader
Description: Microsoft® Keyboard with Fingerprint Reader
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (12/10/2016 12:57:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-FMLSAAF)
Description: Activation of app Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (12/10/2016 12:57:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: DESKTOP-FMLSAAF)
Description: App Microsoft.MicrosoftStickyNotes_1.2.14.0_x64__8wekyb3d8bbwe+App did not launch within its allotted time.
 
Error: (12/10/2016 12:51:39 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: DESKTOP-FMLSAAF)
Description: 7.488: EFS service failed to provision a user for EDP. Error code: 0x80070005.
 
Error: (12/10/2016 12:40:31 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
 
Error: (12/10/2016 10:53:57 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (12/10/2016 10:52:34 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (12/10/2016 10:49:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Explorer.EXE, version: 10.0.14393.447, time stamp: 0x5819bde0
Faulting module name: SHCORE.dll, version: 10.0.14393.0, time stamp: 0x57899893
Exception code: 0xc0000005
Fault offset: 0x0000000000035147
Faulting process id: 0xc14
Faulting application start time: 0x01d2526f53e5f73e
Faulting application path: C:\WINDOWS\Explorer.EXE
Faulting module path: C:\WINDOWS\System32\SHCORE.dll
Report Id: edc691f6-f05e-4c3c-9b2c-4bb611d71434
Faulting package full name: 
Faulting package-relative application ID:
 
Error: (12/10/2016 09:55:05 AM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (10512) WebCacheLocal: Error -1032 (0xfffffbf8) occurred while opening logfile C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.log.
 
Error: (12/10/2016 09:55:05 AM) (Source: ESENT) (EventID: 489) (User: )
Description: DllHost (10512) WebCacheLocal: An attempt to open the file "C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.log" for read only access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ".  The open file operation will fail with error -1032 (0xfffffbf8).
 
Error: (12/09/2016 10:17:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5250
 
 
System errors:
=============
Error: (12/10/2016 12:58:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FMLSAAF)
Description: The server {21F282D1-A881-49E1-9A3A-26E44E39B86C} did not register with DCOM within the required timeout.
 
Error: (12/10/2016 12:57:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FMLSAAF)
Description: The server App did not register with DCOM within the required timeout.
 
Error: (12/10/2016 12:56:56 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/10/2016 12:56:56 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/10/2016 12:56:55 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/10/2016 12:56:55 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/10/2016 12:56:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (12/10/2016 12:55:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FMLSAAF)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
 
Error: (12/10/2016 12:55:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FMLSAAF)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
 
Error: (12/10/2016 12:55:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FMLSAAF)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-6500U CPU @ 2.50GHz
Percentage of memory in use: 45%
Total physical RAM: 8091.49 MB
Available physical RAM: 4446.02 MB
Total Virtual: 10651.49 MB
Available Virtual: 6875.66 MB
 
==================== Drives ================================
 
Drive c: © (Fixed) (Total:371.85 GB) (Free:87.76 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:328.47 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 396E593D)
 
Partition: GPT.
 
==================== End of Addition.txt ============================
 
 
 
 
 
12/10/2016 13:26
Scan of C:
 
Scan of *STARTUP
 
File C:\Users\tom-t\Downloads\Shin_Ohtake_Max_Workouts_Pdf.zip|>Shin_Ohtake_Max_Workouts_Pdf.zip|>Shin_Ohtake_Max_Workouts_Pdf.exe Error 42125 {ZIP archive is corrupted.}
File C:\Users\tom-t\Downloads\Shin_Ohtake_Max_Workouts_Pdf.zip|>Shin_Ohtake_Max_Workouts_Pdf.zip Error 42125 {ZIP archive is corrupted.}
Number of searched folders: 48156
Number of tested files: 983195
Number of infected files: 0

  • 0

#4
joshuamz

joshuamz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts

ok, update

the problem is back just after the last windows update on my computer that was made today at 5 pm  (sunday)

 

i was so happy it wasnt cutting the conection anymore :S


Edited by joshuamz, 11 December 2016 - 04:58 PM.

  • 0






Similar Topics


Also tagged with one or more of these keywords: internet, wireless, deconexion

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP