Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Laptop used to run small games at nice speeds, now they lag bad?

Started by ZuZim , Jan 31 2017 08:53 AM

Please log in to reply

#16
ZuZim

Posted 03 February 2017 - 10:44 AM

Member

Topic Starter
Member
18 posts

Took down all extensions. Went ahead and did one idle without youtube. Another where youtube had loaded and been sitting. One more where it had just loaded. It should be in order from what I described.

Attached Thumbnails

Edited by ZuZim, 03 February 2017 - 10:46 AM.

#17
RKinner

Posted 03 February 2017 - 12:03 PM

Malware Expert

Expert
24,442 posts

I tried it with my PC. Without Youtube but with Chrome, Interrupts is about .20 with Youtube but not video selected .5 with music video

.75 (peaks to about 1.) with more action and louder music:

Chrome bounces from 2 to 5.

Something wrong with your Chrome. Did you disable all of your extensions?

I'll have this thread moved this to malware then we can run FRST and see what is wrong with Chrome:

Download : ADWCleaner to your desktop. Make sure you get the correct Download button. Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @BleepingComputer

NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close all programs, pause your anti-virus and run AdwCleaner (Vista or Win 7 => right click and Run As Administrator).

Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder.

Junkware-Removal-Tool

Please download Junkware Removal Tool to your desktop. Make sure you get the correct Download button. Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @Author's site

Pause your anti-virus. Close all browsers.

Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".

The tool will open and start scanning your system.

Please be patient as this can take a while to complete depending on your system's specifications.

On completion, a log (JRT.txt) is saved to your desktop and will automatically open.

Post the contents of JRT.txt into your next message.

Get FRST from http://www.bleepingc...very-scan-tool/You need to download the appropriate tool for your PC. If you don't know if you have a 32 or 64 bit system get them both. Only one will work and that's the right one.

Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.

Check the Addition.txt box

Press Scan button.

It will produce a log called FRST.txt in the same directory the tool is run from.

Please copy and paste log back here.

It will generate another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

#18
ZuZim

Posted 03 February 2017 - 02:58 PM

Member

Topic Starter
Member
18 posts

There, I hope these are the right files

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-01-2017

Ran by Avery (administrator) on DESKTOP-MF8UBHK (03-02-2017 14:43:27)

Running from C:\Users\Avery\Downloads

Loaded Profiles: Avery (Available Profiles: defaultuser0 & Avery)

Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)

Internet Explorer Version 11 (Default browser: Edge)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Intel Corporation) C:\Windows\syswow64\esif_uf.exe

(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe

() C:\Program Files\CyberLink\Shared files\RichVideo64.exe

() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe

(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe

(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8911872 2016-10-15] (Realtek Semiconductor)

HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-06] (Microsoft Corporation)

HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [654088 2015-02-17] (Hewlett-Packard Development Company, L.P.)

HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2015-06-21] (CyberLink Corp.)

HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2016-07-11] ()

HKU\S-1-5-21-1265099400-3855610176-2687105521-1001\...\Run: [uTorrent] => C:\Users\Avery\AppData\Roaming\uTorrent\uTorrent.exe [2237120 2016-12-27] (BitTorrent Inc.)

HKU\S-1-5-21-1265099400-3855610176-2687105521-1001\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe [8652408 2017-01-18] (Sand Studio)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{775a829f-06eb-468b-a72d-0442a59d1f6e}: [DhcpNameServer] 192.168.1.1

Internet Explorer:

==================

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE

HKU\S-1-5-21-1265099400-3855610176-2687105521-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE

HKU\S-1-5-21-1265099400-3855610176-2687105521-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE

BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-05-06] (Hewlett-Packard)

FireFox:

========

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-05] (Adobe Systems, Inc.)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-28] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-28] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-06-25] ()

Chrome:

=======

CHR Profile: C:\Users\Avery\AppData\Local\Google\Chrome\User Data\Default [2017-02-03]

CHR Extension: (Google Docs) - C:\Users\Avery\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-27]

CHR Extension: (AdBlock) - C:\Users\Avery\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-30]

CHR Extension: (Chrome Web Store Payments) - C:\Users\Avery\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-24]

CHR Extension: (Chrome Media Router) - C:\Users\Avery\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-27]

CHR Extension: (YouTube Video and Mp3 Downloader) - C:\Users\Avery\Desktop\YouTube Video Downloader [2017-01-29]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1385640 2015-08-18] (Intel Corporation)

R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-06-25] (WildTangent)

R2 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)

R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [608520 2015-02-17] (Hewlett-Packard Development Company, L.P.)

R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373720 2017-01-13] (Intel Corporation)

S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [223008 2015-07-06] (Intel Corporation)

S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdatesvr.exe [133480 2015-11-05] (Zhuhai Kingsoft Office Software Co.,Ltd)

R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()

R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [326656 2016-10-15] (Realtek Semiconductor)

R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2016-12-27] ()

R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)

R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269400 2016-10-05] (Synaptics Incorporated)

R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)

R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)

R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2015-08-18] (Intel Corporation)

R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [50696 2015-08-18] (Intel Corporation)

R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2015-08-18] (Intel Corporation)

R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77416 2016-12-14] ()

S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-01-29] (Malwarebytes)

S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [250816 2017-01-29] (Malwarebytes)

S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [91584 2017-01-30] (Malwarebytes)

S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()

R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek )

S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [411712 2015-05-21] (Realsil Semiconductor Corporation)

R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [6294016 2017-02-01] (Realtek Semiconductor Corporation )

S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [67704 2015-12-09] (Synaptics Incorporated)

R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [79960 2016-10-05] (Synaptics Incorporated)

S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))

S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)

R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)

R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30384 2015-06-23] (HP Inc.)

R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation)

U3 aspnet_state; no ImagePath

S3 MBAMFarflt; \??\C:\WINDOWS\system32\drivers\farflt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-03 14:43 - 2017-02-03 14:45 - 00012515 _____ C:\Users\Avery\Downloads\FRST.txt

2017-02-03 14:42 - 2017-02-03 14:43 - 00000000 ____D C:\FRST

2017-02-03 14:41 - 2017-02-03 14:41 - 02420736 _____ (Farbar) C:\Users\Avery\Downloads\FRST64.exe

2017-02-03 13:13 - 2017-02-03 13:13 - 00001231 _____ C:\Users\Avery\Desktop\JRT.txt

2017-02-03 13:05 - 2017-02-03 13:06 - 01663040 _____ (Malwarebytes) C:\Users\Avery\Downloads\JRT.exe

2017-02-03 12:52 - 2017-02-03 12:52 - 04015056 _____ C:\Users\Avery\Downloads\adwcleaner_6.043.exe

2017-02-03 12:48 - 2017-02-03 14:40 - 00000000 ____D C:\AdwCleaner

2017-02-03 12:10 - 2017-02-03 12:11 - 96482197 _____ C:\Users\Avery\Downloads\ACCA--13-Territory-Inspection-Dept.-Episode-2.mp4

2017-02-03 12:08 - 2017-02-03 12:10 - 96159263 _____ C:\Users\Avery\Downloads\elDLIVE-Episode-1.mp4

2017-02-03 07:39 - 2017-02-03 07:39 - 18635018 _____ C:\Users\Avery\Downloads\SWRVN X Razz - Right Back.mp4

2017-02-03 07:22 - 2017-02-03 07:23 - 82256914 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-14.mp4

2017-02-03 07:22 - 2017-02-03 07:22 - 82316595 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-13.mp4

2017-02-03 07:21 - 2017-02-03 07:22 - 84118403 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-12.mp4

2017-02-03 07:21 - 2017-02-03 07:21 - 68783826 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-11.mp4

2017-02-03 07:17 - 2017-02-03 07:18 - 57444490 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-10.mp4

2017-02-03 07:17 - 2017-02-03 07:17 - 66537639 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-9.mp4

2017-02-03 07:16 - 2017-02-03 07:16 - 00000000 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-8.mp4

2017-02-03 07:14 - 2017-02-03 07:14 - 67042555 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-7.mp4

2017-02-03 07:13 - 2017-02-03 07:14 - 56072160 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-6.mp4

2017-02-03 07:13 - 2017-02-03 07:13 - 50123155 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-5.mp4

2017-02-03 07:12 - 2017-02-03 07:13 - 104795332 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-4.mp4

2017-02-03 07:12 - 2017-02-03 07:12 - 104888859 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-3.mp4

2017-02-03 07:11 - 2017-02-03 07:11 - 103834312 _____ C:\Users\Avery\Downloads\Dragon-Ball-Super-Episode-2.mp4

2017-02-03 07:07 - 2017-02-03 07:08 - 92664911 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-291.mp4

2017-02-03 07:07 - 2017-02-03 07:07 - 92619953 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-290.mp4

2017-02-03 07:06 - 2017-02-03 07:06 - 92123718 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-289.mp4

2017-02-03 07:05 - 2017-02-03 07:06 - 92363639 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-288.mp4

2017-02-03 07:05 - 2017-02-03 07:05 - 91796703 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-287.mp4

2017-02-03 07:04 - 2017-02-03 07:08 - 49324062 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-285.mp4

2017-02-03 07:04 - 2017-02-03 07:05 - 92550743 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-286.mp4

2017-02-03 07:03 - 2017-02-03 07:04 - 49021192 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-284.mp4

2017-02-03 07:00 - 2017-02-03 07:03 - 50299974 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-282.mp4

2017-02-03 07:00 - 2017-02-03 07:02 - 50582820 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-283.mp4

2017-02-03 06:59 - 2017-02-03 07:02 - 58237244 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-281.mp4

2017-02-03 06:59 - 2017-02-03 07:00 - 61863751 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-280.mp4

2017-02-03 06:58 - 2017-02-03 07:00 - 53273705 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-279.mp4

2017-02-03 06:57 - 2017-02-03 06:59 - 53215595 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-278.mp4

2017-02-03 06:56 - 2017-02-03 06:57 - 92424480 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-277.mp4

2017-02-03 06:56 - 2017-02-03 06:57 - 51549643 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-276.mp4

2017-02-03 06:55 - 2017-02-03 06:57 - 53461127 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-275.mp4

2017-02-03 06:55 - 2017-02-03 06:56 - 48010555 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-274.mp4

2017-02-03 06:54 - 2017-02-03 06:56 - 45316636 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-273.mp4

2017-02-03 06:53 - 2017-02-03 06:56 - 49227191 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-272.mp4

2017-02-03 06:53 - 2017-02-03 06:55 - 47833435 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-271.mp4

2017-02-03 06:44 - 2017-02-03 06:45 - 83698718 _____ C:\Users\Avery\Downloads\ERASED-Episode-1.mp4

2017-02-03 06:44 - 2017-02-03 06:44 - 85647138 _____ C:\Users\Avery\Downloads\ERASED-Episode-3.mp4

2017-02-03 06:44 - 2017-02-03 06:44 - 85135540 _____ C:\Users\Avery\Downloads\ERASED-Episode-2.mp4

2017-02-03 06:43 - 2017-02-03 06:43 - 85185032 _____ C:\Users\Avery\Downloads\ERASED-Episode-4.mp4

2017-02-03 06:42 - 2017-02-03 06:43 - 85113575 _____ C:\Users\Avery\Downloads\ERASED-Episode-5.mp4

2017-02-03 06:34 - 2017-02-03 06:35 - 85638878 _____ C:\Users\Avery\Downloads\ERASED-Episode-6.mp4

2017-02-03 06:23 - 2017-02-03 06:24 - 95563824 _____ C:\Users\Avery\Downloads\ERASED-Episode-7.mp4

2017-02-03 06:08 - 2017-02-03 06:09 - 95503858 _____ C:\Users\Avery\Downloads\ERASED-Episode-8.mp4

2017-02-03 06:08 - 2017-02-03 06:09 - 95492587 _____ C:\Users\Avery\Downloads\ERASED-Episode-9.mp4

2017-02-03 06:08 - 2017-02-03 06:08 - 92114847 _____ C:\Users\Avery\Downloads\ERASED-Episode-10.mp4

2017-02-03 05:59 - 2017-02-03 05:59 - 92111659 _____ C:\Users\Avery\Downloads\ERASED-Episode-11.mp4

2017-02-03 05:58 - 2017-02-03 05:58 - 91988337 _____ C:\Users\Avery\Downloads\ERASED-Episode-12.mp4

2017-02-03 03:48 - 2017-02-03 03:48 - 96346712 _____ C:\Users\Avery\Downloads\Interviews-with-Monster-Girls-Episode-2.mp4

2017-02-03 03:47 - 2017-02-03 03:48 - 100089925 _____ C:\Users\Avery\Downloads\Akibas-Trip--The-Animation-Episode-4.mp4

2017-02-03 03:46 - 2017-02-03 03:47 - 96384406 _____ C:\Users\Avery\Downloads\Fuuka-Episode-3.mp4

2017-02-03 03:45 - 2017-02-03 03:46 - 96436785 _____ C:\Users\Avery\Downloads\Miss-Kobayashis-Dragon-Maid-Episode-1.mp4

2017-02-03 03:35 - 2017-02-03 09:19 - 00021232 _____ (Thesycon GmbH) C:\WINDOWS\system32\Drivers\dpclat_driver.sys

2017-02-03 03:35 - 2017-02-03 03:35 - 00306928 _____ (Thesycon GmbH) C:\Users\Avery\Downloads\dpclat.exe

2017-02-02 10:47 - 2017-02-02 10:58 - 47355414 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-270.mp4

2017-02-02 10:02 - 2017-02-02 10:14 - 54811899 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-268.mp4

2017-02-02 10:02 - 2017-02-02 10:09 - 46826060 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-269.mp4

2017-02-02 08:22 - 2017-02-02 08:26 - 45580718 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-267.mp4

2017-02-02 08:21 - 2017-02-02 08:25 - 48805255 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-266.mp4

2017-02-02 08:21 - 2017-02-02 08:21 - 91855848 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-265.mp4

2017-02-02 08:20 - 2017-02-02 08:25 - 50366186 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-264.mp4

2017-02-02 08:19 - 2017-02-02 08:26 - 49196644 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-263.mp4

2017-02-02 08:16 - 2017-02-02 08:20 - 53527143 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-262.mp4

2017-02-02 08:14 - 2017-02-02 08:20 - 52994323 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-261.mp4

2017-02-02 08:14 - 2017-02-02 08:19 - 53949593 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-260.mp4

2017-02-02 08:13 - 2017-02-02 08:18 - 47411179 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-259.mp4

2017-02-02 08:12 - 2017-02-02 08:17 - 50260570 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-258.mp4

2017-02-02 08:06 - 2017-02-02 08:10 - 45268306 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-257.mp4

2017-02-02 08:01 - 2017-02-02 08:04 - 47705868 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-256.mp4

2017-02-02 07:57 - 2017-02-02 07:59 - 47355648 _____ C:\Users\Avery\Downloads\Dragon-Ball-Z-Episode-255.mp4

2017-02-01 11:29 - 2017-02-01 11:30 - 201385606 _____ C:\Users\Avery\Downloads\Chaos-Child-Episode-1.mp4

2017-02-01 11:14 - 2017-02-02 08:08 - 00104559 _____ C:\Users\Avery\Documents\DESKTOP-MF8UBHK.txt

2017-02-01 11:00 - 2017-02-03 08:11 - 00000000 ____D C:\WINDOWS\LastGood

2017-02-01 05:45 - 2017-02-01 05:45 - 00000844 _____ C:\Users\Public\Desktop\Speccy.lnk

2017-02-01 05:45 - 2017-02-01 05:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy

2017-02-01 05:44 - 2017-02-01 05:45 - 00000000 ____D C:\Program Files\Speccy

2017-02-01 05:43 - 2017-02-01 05:44 - 06293184 _____ (Piriform Ltd) C:\Users\Avery\Downloads\spsetup130.exe

2017-02-01 05:33 - 2017-02-01 05:33 - 02720928 _____ (Sysinternals - www.sysinternals.com) C:\Users\Avery\Downloads\procexp.exe

2017-02-01 05:33 - 2017-02-01 05:33 - 02720928 _____ (Sysinternals - www.sysinternals.com) C:\Users\Avery\Desktop\procexp.exe

2017-01-31 06:42 - 2017-01-31 06:42 - 00000000 ____D C:\Users\Avery\Documents\My Games

2017-01-31 06:41 - 2017-01-31 06:41 - 00001545 _____ C:\Users\Public\Desktop\Borderlands Game Of The Year Edition.lnk

2017-01-31 06:41 - 2017-01-31 06:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Borderlands Game Of The Year Edition

2017-01-31 04:13 - 2017-01-31 04:13 - 00000000 ____D C:\Program Files (x86)\Mr DJ

2017-01-31 04:12 - 2017-01-31 04:12 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2017-01-31 04:10 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll

2017-01-31 04:10 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll

2017-01-31 04:10 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll

2017-01-31 04:10 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll

2017-01-31 04:10 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll

2017-01-31 04:10 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll

2017-01-31 04:10 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll

2017-01-31 04:10 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll

2017-01-31 04:10 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll

2017-01-31 04:10 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll

2017-01-31 04:10 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll

2017-01-31 04:10 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll

2017-01-31 04:10 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll

2017-01-31 04:10 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll

2017-01-31 04:10 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll

2017-01-31 04:10 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll

2017-01-31 04:10 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll

2017-01-31 03:57 - 2017-01-31 04:02 - 00000000 ___HD C:\WINDOWS\msdownld.tmp

2017-01-31 03:56 - 2017-01-31 04:10 - 00000000 ____D C:\WINDOWS\SysWOW64\directx

2017-01-31 03:09 - 2017-01-31 07:04 - 00000000 ____D C:\Users\Avery\Desktop\Tv Shows- Movies

2017-01-31 03:07 - 2017-01-31 08:54 - 00000000 ____D C:\Users\Avery\Desktop\Youtube

2017-01-31 00:01 - 2017-01-31 00:01 - 00000000 ____D C:\Users\Avery\AppData\Roaming\Psiphon3

2017-01-31 00:00 - 2017-01-31 00:01 - 04993128 _____ C:\Users\Avery\Desktop\psiphon3.exe

2017-01-30 23:20 - 2017-01-30 23:20 - 00250816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\632D1A75.sys

2017-01-30 05:16 - 2017-01-30 05:22 - 00000000 ____D C:\Users\Public\Documents\AirDroid

2017-01-30 05:15 - 2017-01-30 23:34 - 00000000 ____D C:\Users\Avery\AppData\Roaming\AirDroid

2017-01-30 05:15 - 2017-01-30 23:33 - 00000000 ____D C:\Users\Avery\Documents\AirDroid

2017-01-30 05:15 - 2017-01-30 05:16 - 00002021 _____ C:\Users\Public\Desktop\AirDroid.lnk

2017-01-30 05:15 - 2017-01-30 05:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirDroid

2017-01-30 05:15 - 2017-01-30 05:15 - 00000000 ____D C:\ProgramData\AirDroid

2017-01-30 05:14 - 2017-01-30 06:06 - 00000000 ____D C:\Program Files (x86)\AirDroid

2017-01-29 22:11 - 2017-01-29 22:11 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin

2017-01-29 22:09 - 2017-01-29 22:13 - 00000000 ____D C:\WINDOWS\LastGood.Tmp

2017-01-29 09:09 - 2017-01-29 09:10 - 00000000 ____D C:\Users\Avery\Desktop\YouTube Video Downloader

2017-01-29 07:28 - 2017-01-29 07:28 - 00000000 ____D C:\Program Files\Samsung

2017-01-29 07:23 - 2017-01-29 07:23 - 00000000 ____D C:\ProgramData\Samsung

2017-01-29 05:16 - 2017-01-29 05:16 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log

2017-01-29 05:15 - 2017-01-29 05:15 - 00000000 ____D C:\Users\Avery\Documents\samsung

2017-01-29 05:15 - 2017-01-29 05:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung

2017-01-29 05:14 - 2017-01-29 05:16 - 00000000 ____D C:\Users\Avery\AppData\Roaming\Samsung

2017-01-29 05:14 - 2014-05-07 17:42 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\WINDOWS\SysWOW64\secman.dll

2017-01-29 04:49 - 2017-01-30 23:20 - 00091584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys

2017-01-29 04:48 - 2017-01-29 04:48 - 00250816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2017-01-29 04:48 - 2017-01-29 04:48 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys

2017-01-29 04:47 - 2017-01-29 04:47 - 00000000 ____D C:\ProgramData\Malwarebytes

2017-01-29 04:47 - 2017-01-29 04:47 - 00000000 ____D C:\Program Files\Malwarebytes

2017-01-29 04:47 - 2016-12-14 12:55 - 00077416 _____ C:\WINDOWS\system32\Drivers\mbae64.sys

2017-01-25 02:16 - 2017-02-03 03:51 - 00000000 ____D C:\Users\Avery\AppData\Local\Jagex

2017-01-25 02:16 - 2017-02-03 03:51 - 00000000 ____D C:\ProgramData\Jagex

2017-01-25 02:11 - 2017-01-25 02:11 - 00000177 _____ C:\Users\Public\Desktop\RuneScape Launcher.url

2017-01-25 02:11 - 2017-01-25 02:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jagex

2017-01-25 02:11 - 2017-01-25 02:11 - 00000000 ____D C:\Program Files\Jagex

2017-01-24 19:27 - 2016-12-21 01:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe

2017-01-24 19:27 - 2016-12-20 22:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe

2017-01-17 18:43 - 2017-01-17 18:43 - 00001258 _____ C:\Users\Avery\Desktop\StardewModdingAPI - Shortcut.lnk

2017-01-16 18:30 - 2017-01-16 18:40 - 00000000 ____D C:\Users\Avery\Documents\Lightshot

2017-01-16 18:30 - 2017-01-16 18:30 - 00000424 _____ C:\Users\Avery\AppData\Local\UserProducts.xml

2017-01-16 18:30 - 2017-01-16 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot

2017-01-16 18:29 - 2017-01-16 18:30 - 00000000 ____D C:\Program Files (x86)\Skillbrains

2017-01-16 17:32 - 2017-01-16 17:32 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA

2017-01-16 17:28 - 2017-01-16 17:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardew Valley [GOG.com]

2017-01-16 17:24 - 2017-01-22 17:54 - 00000000 ____D C:\Users\Avery\AppData\Roaming\StardewValley

2017-01-16 17:24 - 2017-01-16 17:24 - 00000000 ____D C:\Users\Avery\AppData\Local\StardewValley

2017-01-16 17:24 - 2017-01-16 17:24 - 00000000 ____D C:\GOG Games

2017-01-16 17:19 - 2017-01-16 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip

2017-01-16 17:18 - 2017-01-16 17:19 - 00000000 ____D C:\Program Files\7-Zip

2017-01-13 19:39 - 2017-01-13 19:39 - 00705024 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 01027032 _____ C:\WINDOWS\system32\igfxSDK.exe

2017-01-13 19:38 - 2017-01-13 19:38 - 00448472 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe

2017-01-13 19:38 - 2017-01-13 19:38 - 00416256 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00401880 _____ C:\WINDOWS\system32\igfxTray.exe

2017-01-13 19:38 - 2017-01-13 19:38 - 00390144 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00318464 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00301528 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe

2017-01-13 19:38 - 2017-01-13 19:38 - 00220160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4549.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00111616 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00103936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00100864 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00099840 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00022528 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll

2017-01-13 19:38 - 2017-01-13 19:38 - 00022528 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 05688832 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 04928000 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 04364288 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 03971584 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 01816736 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 01814080 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 01590784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 01178624 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00273408 _____ C:\WINDOWS\system32\igfxCPL.cpl

2017-01-13 19:37 - 2017-01-13 19:37 - 00266240 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00254976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00242176 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00237016 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe

2017-01-13 19:37 - 2017-01-13 19:37 - 00225280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00103424 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00095232 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00084480 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00052736 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00029184 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00029184 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00027648 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll

2017-01-13 19:37 - 2017-01-13 19:37 - 00027648 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 39863888 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 34825520 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 33479888 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 29101568 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 19861504 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 15488944 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 13654528 _____ (Intel Corporation) C:\WINDOWS\system32\ig8icd64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 13483216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 13056560 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 10329088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig8icd32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 05262848 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 05140488 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 04270696 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 04239720 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 02393184 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 01858656 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00968152 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe

2017-01-13 19:36 - 2017-01-13 19:36 - 00964568 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe

2017-01-13 19:36 - 2017-01-13 19:36 - 00466904 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe

2017-01-13 19:36 - 2017-01-13 19:36 - 00439296 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00388608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00312320 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00297184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00232408 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe

2017-01-13 19:36 - 2017-01-13 19:36 - 00231896 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe

2017-01-13 19:36 - 2017-01-13 19:36 - 00223264 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00205376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00193024 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00184000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00182976 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00181856 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00175064 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe

2017-01-13 19:36 - 2017-01-13 19:36 - 00173568 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00160288 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00160288 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll

2017-01-13 19:36 - 2017-01-13 19:36 - 00055264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll

2017-01-13 15:28 - 2017-01-13 15:28 - 05799386 _____ C:\WINDOWS\system32\igdclbif.bin

2017-01-13 15:28 - 2017-01-13 15:28 - 00831685 _____ C:\WINDOWS\system32\DisplayAudiox64.cab

2017-01-13 15:28 - 2017-01-13 15:28 - 00041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp

2017-01-13 15:28 - 2017-01-13 15:28 - 00040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp

2017-01-13 15:28 - 2017-01-13 15:28 - 00040343 _____ C:\WINDOWS\system32\iglhxo64.vp

2017-01-13 15:28 - 2017-01-13 15:28 - 00040316 _____ C:\WINDOWS\system32\iglhxc64.vp

2017-01-13 15:28 - 2017-01-13 15:28 - 00039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp

2017-01-13 15:28 - 2017-01-13 15:28 - 00039658 _____ C:\WINDOWS\system32\iglhxg64.vp

2017-01-13 15:28 - 2017-01-13 15:28 - 00004862 _____ C:\WINDOWS\system32\iglhxs64.vp

2017-01-13 15:28 - 2017-01-13 15:28 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp

2017-01-11 23:06 - 2017-01-11 23:06 - 00001056 _____ C:\Users\Avery\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\join.me.lnk

2017-01-11 23:06 - 2017-01-11 23:06 - 00001048 _____ C:\Users\Avery\Desktop\join.me.lnk

2017-01-11 22:15 - 2017-01-11 23:06 - 00000194 _____ C:\Users\Avery\BullseyeCoverageError.txt

2017-01-11 22:15 - 2017-01-11 23:06 - 00000000 ____D C:\Users\Avery\AppData\Local\join.me

2017-01-10 20:45 - 2016-12-21 01:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2017-01-10 20:45 - 2016-12-21 01:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll

2017-01-10 20:45 - 2016-12-21 01:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2017-01-10 20:45 - 2016-12-21 01:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2017-01-10 20:45 - 2016-12-21 00:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll

2017-01-10 20:45 - 2016-12-20 23:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll

2017-01-10 20:45 - 2016-12-20 22:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll

2017-01-10 20:45 - 2016-12-20 22:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe

2017-01-10 20:45 - 2016-12-20 22:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe

2017-01-10 20:45 - 2016-12-20 22:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll

2017-01-10 20:45 - 2016-12-13 22:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll

2017-01-10 20:45 - 2016-12-13 22:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2017-01-10 20:44 - 2016-12-21 02:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll

2017-01-10 20:44 - 2016-12-21 02:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll

2017-01-10 20:44 - 2016-12-21 01:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2017-01-10 20:44 - 2016-12-21 01:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll

2017-01-10 20:44 - 2016-12-21 01:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2017-01-10 20:44 - 2016-12-21 01:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2017-01-10 20:44 - 2016-12-21 01:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2017-01-10 20:44 - 2016-12-21 01:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll

2017-01-10 20:44 - 2016-12-21 01:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll

2017-01-10 20:44 - 2016-12-21 01:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll

2017-01-10 20:44 - 2016-12-21 00:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll

2017-01-10 20:44 - 2016-12-21 00:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll

2017-01-10 20:44 - 2016-12-21 00:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll

2017-01-10 20:44 - 2016-12-21 00:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2017-01-10 20:44 - 2016-12-21 00:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll

2017-01-10 20:44 - 2016-12-21 00:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2017-01-10 20:44 - 2016-12-21 00:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2017-01-10 20:44 - 2016-12-21 00:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll

2017-01-10 20:44 - 2016-12-20 23:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll

2017-01-10 20:44 - 2016-12-20 23:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2017-01-10 20:44 - 2016-12-20 22:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll

2017-01-10 20:44 - 2016-12-20 22:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll

2017-01-10 20:44 - 2016-12-20 22:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll

2017-01-10 20:44 - 2016-12-20 22:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll

2017-01-10 20:44 - 2016-12-20 22:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2017-01-10 20:44 - 2016-12-20 22:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2017-01-10 20:44 - 2016-12-20 22:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2017-01-10 20:44 - 2016-12-20 22:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll

2017-01-10 20:44 - 2016-12-20 22:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll

2017-01-10 20:44 - 2016-12-20 22:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll

2017-01-10 20:44 - 2016-12-20 22:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe

2017-01-10 20:44 - 2016-12-20 22:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2017-01-10 20:44 - 2016-12-13 23:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll

2017-01-10 20:44 - 2016-12-13 23:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll

2017-01-10 20:44 - 2016-12-13 23:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll

2017-01-10 20:44 - 2016-12-13 23:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll

2017-01-10 20:44 - 2016-12-13 23:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll

2017-01-10 20:44 - 2016-12-13 22:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll

2017-01-10 20:44 - 2016-12-13 22:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll

2017-01-10 20:44 - 2016-12-13 22:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll

2017-01-10 20:44 - 2016-12-13 22:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll

2017-01-10 20:44 - 2016-12-13 22:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll

2017-01-10 20:44 - 2016-12-13 22:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2017-01-10 20:44 - 2016-12-13 22:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll

2017-01-10 20:44 - 2016-12-13 22:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll

2017-01-10 20:44 - 2016-12-13 22:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll

2017-01-10 20:44 - 2016-12-13 22:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2017-01-10 20:44 - 2016-12-13 22:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll

2017-01-10 20:44 - 2016-12-13 22:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll

2017-01-10 20:44 - 2016-12-13 22:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2017-01-10 20:44 - 2016-12-13 22:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2017-01-10 20:44 - 2016-12-13 22:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll

2017-01-10 20:44 - 2016-12-13 22:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2017-01-10 20:44 - 2016-12-13 22:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll

2017-01-10 20:44 - 2016-12-13 22:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2017-01-10 20:44 - 2016-12-13 22:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2017-01-10 20:44 - 2016-12-13 22:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll

2017-01-10 20:44 - 2016-11-02 06:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2017-01-10 20:44 - 2016-11-02 04:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll

2017-01-10 20:44 - 2016-08-01 22:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll

2017-01-10 20:43 - 2016-12-21 02:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2017-01-10 20:43 - 2016-12-21 01:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll

2017-01-10 20:43 - 2016-12-21 01:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll

2017-01-10 20:43 - 2016-12-21 01:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe

2017-01-10 20:43 - 2016-12-21 01:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2017-01-10 20:43 - 2016-12-21 01:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2017-01-10 20:43 - 2016-12-21 01:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll

2017-01-10 20:43 - 2016-12-21 01:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll

2017-01-10 20:43 - 2016-12-21 01:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll

2017-01-10 20:43 - 2016-12-21 01:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll

2017-01-10 20:43 - 2016-12-21 01:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2017-01-10 20:43 - 2016-12-21 01:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2017-01-10 20:43 - 2016-12-21 01:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll

2017-01-10 20:43 - 2016-12-21 01:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe

2017-01-10 20:43 - 2016-12-21 01:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll

2017-01-10 20:43 - 2016-12-21 01:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll

2017-01-10 20:43 - 2016-12-21 01:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll

2017-01-10 20:43 - 2016-12-21 01:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2017-01-10 20:43 - 2016-12-21 01:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll

2017-01-10 20:43 - 2016-12-21 00:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2017-01-10 20:43 - 2016-12-21 00:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll

2017-01-10 20:43 - 2016-12-21 00:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll

2017-01-10 20:43 - 2016-12-21 00:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2017-01-10 20:43 - 2016-12-21 00:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll

2017-01-10 20:43 - 2016-12-21 00:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe

2017-01-10 20:43 - 2016-12-21 00:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll

2017-01-10 20:43 - 2016-12-21 00:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll

2017-01-10 20:43 - 2016-12-21 00:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll

2017-01-10 20:43 - 2016-12-20 23:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2017-01-10 20:43 - 2016-12-20 23:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2017-01-10 20:43 - 2016-12-20 23:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll

2017-01-10 20:43 - 2016-12-20 23:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2017-01-10 20:43 - 2016-12-20 23:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2017-01-10 20:43 - 2016-12-20 23:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll

2017-01-10 20:43 - 2016-12-20 22:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2017-01-10 20:43 - 2016-12-20 22:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll

2017-01-10 20:43 - 2016-12-20 22:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll

2017-01-10 20:43 - 2016-12-20 22:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll

2017-01-10 20:43 - 2016-12-20 22:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll

2017-01-10 20:43 - 2016-12-20 22:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2017-01-10 20:43 - 2016-12-20 22:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll

2017-01-10 20:43 - 2016-12-20 22:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2017-01-10 20:43 - 2016-12-13 23:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2017-01-10 20:43 - 2016-12-13 23:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll

2017-01-10 20:43 - 2016-12-13 23:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe

2017-01-10 20:43 - 2016-12-13 23:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe

2017-01-10 20:43 - 2016-12-13 23:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys

2017-01-10 20:43 - 2016-12-13 23:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys

2017-01-10 20:43 - 2016-12-13 23:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll

2017-01-10 20:43 - 2016-12-13 23:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll

2017-01-10 20:43 - 2016-12-13 23:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll

2017-01-10 20:43 - 2016-12-13 23:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll

2017-01-10 20:43 - 2016-12-13 23:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll

2017-01-10 20:43 - 2016-12-13 22:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2017-01-10 20:43 - 2016-12-13 22:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll

2017-01-10 20:43 - 2016-12-13 22:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll

2017-01-10 20:43 - 2016-12-13 22:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2017-01-10 20:43 - 2016-12-13 22:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll

2017-01-10 20:43 - 2016-12-13 22:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll

2017-01-10 20:43 - 2016-12-13 22:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll

2017-01-10 20:43 - 2016-12-13 22:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll

2017-01-10 20:43 - 2016-12-13 22:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll

2017-01-10 20:43 - 2016-12-13 22:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll

2017-01-10 20:43 - 2016-12-13 22:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll

2017-01-10 20:43 - 2016-12-13 22:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll

2017-01-10 20:43 - 2016-12-13 22:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2017-01-10 20:43 - 2016-12-13 22:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2017-01-10 20:43 - 2016-12-13 22:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll

2017-01-10 20:43 - 2016-12-13 22:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2017-01-10 20:43 - 2016-12-13 22:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll

2017-01-10 20:43 - 2016-12-13 22:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2017-01-10 20:43 - 2016-11-02 05:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2017-01-10 20:43 - 2016-11-02 04:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2017-01-10 20:43 - 2016-11-02 04:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2017-01-10 20:42 - 2016-12-21 01:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll

2017-01-10 20:42 - 2016-12-21 01:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2017-01-10 20:42 - 2016-12-21 01:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2017-01-10 20:42 - 2016-12-21 01:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2017-01-10 20:42 - 2016-12-21 01:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll

2017-01-10 20:42 - 2016-12-21 01:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2017-01-10 20:42 - 2016-12-21 00:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll

2017-01-10 20:42 - 2016-12-21 00:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2017-01-10 20:42 - 2016-12-20 22:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll

2017-01-10 20:42 - 2016-12-20 22:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll

2017-01-10 20:42 - 2016-12-20 22:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll

2017-01-10 20:42 - 2016-12-20 22:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2017-01-10 20:42 - 2016-12-13 23:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll

2017-01-10 20:42 - 2016-12-13 23:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe

2017-01-10 20:42 - 2016-12-13 22:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys

2017-01-10 20:42 - 2016-12-13 22:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll

2017-01-10 20:42 - 2016-12-13 22:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll

2017-01-10 20:42 - 2016-12-13 22:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll

2017-01-10 20:42 - 2016-12-13 22:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2017-01-10 20:42 - 2016-12-13 22:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-03 14:39 - 2016-12-27 20:35 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2017-02-03 13:04 - 2016-12-27 19:48 - 00000000 ____D C:\Users\Avery\Documents\YouCam

2017-02-03 13:00 - 2016-12-27 20:44 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2017-02-03 13:00 - 2016-12-27 20:37 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2017-02-03 13:00 - 2016-12-27 19:45 - 00000000 __SHD C:\Users\Avery\IntelGraphicsProfiles

2017-02-03 12:58 - 2016-12-27 13:52 - 00524288 _____ C:\WINDOWS\system32\config\BBI

2017-02-03 12:35 - 2016-12-27 20:43 - 00000000 ____D C:\Users\Avery\AppData\Roaming\vlc

2017-02-03 09:07 - 2016-12-27 14:26 - 00000000 ____D C:\WINDOWS\INF

2017-02-03 07:37 - 2016-12-27 14:32 - 00000000 ____D C:\WINDOWS\AppReadiness

2017-02-03 04:11 - 2016-12-27 14:32 - 00000000 ___HD C:\Program Files\WindowsApps

2017-02-03 03:59 - 2016-12-27 19:43 - 00000000 ____D C:\Users\Avery

2017-02-02 06:37 - 2016-12-27 14:32 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2017-02-01 05:08 - 2016-12-27 20:54 - 00000000 ____D C:\Users\Avery\AppData\Roaming\uTorrent

2017-02-01 00:38 - 2016-06-15 10:59 - 06294016 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlane.sys

2017-02-01 00:38 - 2016-06-15 10:59 - 01164800 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\Rtlihvs.dll

2017-01-31 11:31 - 2016-12-27 21:10 - 00002667 _____ C:\Users\Avery\Desktop\µTorrent.lnk

2017-01-31 07:03 - 2016-12-27 20:46 - 00000000 ____D C:\Users\Avery\Desktop\Anime

2017-01-30 06:05 - 2016-12-27 20:37 - 00000000 ____D C:\Users\Avery\Desktop\All Music

2017-01-29 22:11 - 2016-12-27 20:44 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat

2017-01-29 05:19 - 2016-12-27 19:57 - 00000000 ___RD C:\Users\Avery\OneDrive

2017-01-29 05:14 - 2015-11-05 10:17 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2017-01-25 20:45 - 2016-12-27 14:02 - 00000000 ____D C:\WINDOWS\CbsTemp

2017-01-25 02:10 - 2015-11-05 10:21 - 00000000 ____D C:\ProgramData\Package Cache

2017-01-20 15:23 - 2016-12-27 20:42 - 00000000 ____D C:\Users\Avery\Desktop\BlackMail

2017-01-16 18:40 - 2016-12-27 20:13 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2

2017-01-16 18:40 - 2016-12-27 19:57 - 00002374 _____ C:\Users\Avery\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2017-01-13 19:38 - 2016-12-27 20:44 - 00103936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

2017-01-13 19:38 - 2016-12-27 20:44 - 00099840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL

2017-01-13 19:37 - 2015-08-24 02:41 - 07969752 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys

2017-01-13 19:37 - 2015-08-24 02:41 - 02142208 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll

2017-01-13 19:37 - 2015-08-24 02:41 - 00756736 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll

2017-01-13 19:37 - 2015-08-24 02:41 - 00399360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll

2017-01-13 19:37 - 2015-08-24 02:41 - 00373720 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe

2017-01-13 19:37 - 2015-08-24 02:41 - 00354776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe

2017-01-13 19:37 - 2015-08-24 02:41 - 00268760 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe

2017-01-13 19:36 - 2015-08-24 02:41 - 38903920 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll

2017-01-13 19:36 - 2015-08-24 02:41 - 16446352 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll

2017-01-13 19:36 - 2015-08-24 02:41 - 06696840 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll

2017-01-12 21:09 - 2016-12-27 14:32 - 00000000 ____D C:\WINDOWS\rescache

2017-01-11 22:57 - 2016-12-27 20:09 - 00000000 ____D C:\Users\Avery\AppData\Roaming\Skype

2017-01-11 14:37 - 2015-07-16 00:05 - 00000000 __RHD C:\Users\Public\AccountPictures

2017-01-11 13:48 - 2016-12-27 20:35 - 00207216 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2017-01-11 02:56 - 2016-12-27 14:32 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2017-01-11 02:56 - 2016-12-27 14:32 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2017-01-11 02:56 - 2016-12-27 14:32 - 00000000 ____D C:\WINDOWS\system32\oobe

2017-01-11 02:56 - 2016-12-27 14:32 - 00000000 ____D C:\WINDOWS\ShellExperiences

2017-01-11 02:56 - 2016-12-27 14:32 - 00000000 ____D C:\WINDOWS\Provisioning

2017-01-11 00:55 - 2016-12-28 10:35 - 00000000 ____D C:\WINDOWS\system32\MRT

2017-01-11 00:47 - 2016-12-28 10:34 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2017-01-09 20:13 - 2016-12-28 08:29 - 00000000 ____D C:\Users\Avery\AppData\Roaming\discord

2017-01-09 17:32 - 2016-12-29 22:11 - 00000000 ____D C:\Users\Avery\AppData\Roaming\DropboxOEM

==================== Files in the root of some directories =======

2017-01-16 18:30 - 2017-01-16 18:30 - 0000003 _____ () C:\Users\Avery\AppData\Local\updater.log

2017-01-16 18:30 - 2017-01-16 18:30 - 0000424 _____ () C:\Users\Avery\AppData\Local\UserProducts.xml

Some files in TEMP:

====================

2017-01-09 17:38 - 2016-12-01 09:31 - 0050720 _____ (HP Inc.) C:\Users\Avery\AppData\Local\Temp\ACLMInstaller.exe

2017-01-11 22:15 - 2017-01-11 22:15 - 0008728 _____ () C:\Users\Avery\AppData\Local\Temp\BullseyeCoverage-2-x86.dll

2015-04-27 06:26 - 2015-04-27 06:26 - 0119312 _____ (McAfee, Inc.) C:\Users\Avery\AppData\Local\Temp\McCSPInstall.dll

2016-12-27 20:03 - 2015-04-27 06:26 - 0161520 _____ (McAfee Inc.) C:\Users\Avery\AppData\Local\Temp\mccspuninstall.exe

2017-01-31 00:01 - 2017-01-31 00:01 - 10873376 _____ () C:\Users\Avery\AppData\Local\Temp\psiphon-tunnel-core.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed

C:\WINDOWS\system32\wininit.exe => File is digitally signed

C:\WINDOWS\explorer.exe => File is digitally signed

C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed

C:\WINDOWS\system32\svchost.exe => File is digitally signed

C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed

C:\WINDOWS\system32\services.exe => File is digitally signed

C:\WINDOWS\system32\User32.dll => File is digitally signed

C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed

C:\WINDOWS\system32\userinit.exe => File is digitally signed

C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed

C:\WINDOWS\system32\rpcss.dll => File is digitally signed

C:\WINDOWS\system32\dnsapi.dll => File is digitally signed

C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed

C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-02-01 00:22

==================== End of FRST.txt ============================

Attached Files

Addition.txt 31.3KB 203 downloads
FRST.txt 62.65KB 155 downloads
JRT.txt 1.2KB 146 downloads
AdwCleanerS0.txt 1.28KB 153 downloads

#19
RKinner

Posted 03 February 2017 - 10:34 PM

Malware Expert

Expert
24,442 posts

Not seeing much. You do have some dead tasks that might slow down the boot a bit. Chrome seems to only have the youtube downloader as an extension.

We can clean up the deadwood with a fixlist.

Download the attached fixlist.txt to the same location as FRST

Run FRST and press Fix It will reboot.

A fix log will be generated please post that

You do have a lot of errors. Often running DISM will clear them:

Open an elevated command prompt:

http://www.howtogeek...-in-windows-10/

If you open an elevated command prompt it will by default open in c:\Windows\system32

Once you have an elevated command prompt:

Type(with an Enter after each line):

 DISM  /Online  /Cleanup-Image  /RestoreHealth

(I use two spaces so you can be sure to see where one space goes.)

This will take a while to complete. Once the prompt returns:

Reboot. Open an elevated Command Prompt again and type (with an Enter after the line):

sfc  /scannow

This will also take a few minutes.

When it finishes it will say one of the following:

Windows did not find any integrity violations (a good thing)

Windows Resource Protection found corrupt files and repaired them (a good thing)

Windows Resource Protection found corrupt files but was unable to fix some (or all) of them (not a good thing)

If you get the last result then type:

findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  \junk.txt

Hit Enter. Then type::

notepad  \junk.txt

Hit Enter.

Copy the text from notepad and paste it into a reply.

After you finish SFC, regardless of the result:

1. Please download the Event Viewer Tool by Vino Rosso

http://images.malwar...om/vino/VEW.exe

and save it to your Desktop:

2. Right-click VEW.exe and Run AS Administrator

3. Under 'Select log to query', select:

* System

4. Under 'Select type to list', select:

* Error

* Warning

Then use the 'Number of events' as follows:

1. Click the radio button for 'Number of events'

Type 20 in the 1 to 20 box

Then click the Run button.

Notepad will open with the output log.

Please post the Output log in your next reply then repeat but select Application. (Each time you run VEW it overwrites the log so copy the first one to a Reply or rename it before running it a second time.)

#20
ZuZim

Posted 04 February 2017 - 03:55 PM

Member

Topic Starter
Member
18 posts

Alright. What exactly are you looking for to determine how to fix my computer?

Attached Thumbnails

Attached Files

VEW1.txt 7.69KB 163 downloads
VEW.txt 464bytes 143 downloads

#21
RKinner

Posted 04 February 2017 - 09:49 PM

Malware Expert

Expert
24,442 posts

Log: 'System' Date/Time: 04/02/2017 7:11:14 PM

Type: Warning Category: 7

Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power

The speed of processor 3 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 25 seconds since the last report.

We are looking for things that aren't right. For example the above error can cause low FPS.

This has two possible causes that I know of.

1 Heat: The CPU slows down when it gets too hot in order to protect itself. You can monitor the temps in real tiem with Speedfan to rule out heat.

http://filehippo.com...speedfan/60186/

(Don't get the latest version as filehippo has a bad copy. Instead get version 4.51. Avoid the speedfan website's version as it is full of adware.)

Download, save and Install it (Win 7 or Vista right click and Run As Admin.) then run it (Win 7 or Vista right click and Run As Admin.).

It will tell you your temps in real time tho the default is to show the hard drive temp in the systray. You can change it: Hit Configure then click on the highest temp and check Show in tray

2.BIOS power saving: Some BIOS's will try to cut power use by slowing down the CPU when it's not very busy. In theory this is a good thing but I'm not sure it really can be trusted. Go in to your BIOS/CMOS setup and poke around and see if you have any energy saving or Eco options that you can turn off.

I suppose there could also be a problem in the BIOS so you could look for a BIOS update.

For this error

Log: 'System' Date/Time: 04/02/2017 7:10:02 PM

Type: Warning Category: 212

Event: 219 Source: Microsoft-Windows-Kernel-PnP

The driver \Driver\WUDFRd failed to load for the device ACPI\INT3400\2&daba3ff&0.

there is a simple fix. Search fro

servioces.msc

hit Enter

scroll down to

Windows Driver Foundation - User-mode Driver Framework

right click and Properties.

Change the Startup Type: to Automatic OK.

For this one:

Log: 'System' Date/Time: 04/02/2017 6:44:57 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The Kingsoft_WPS_UpdateService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

In the service window you opened above, find

Kingsoft_WPS_UpdateService

right click and Properties then change the Startup Type: to Disabled.

For this error:

Log: 'System' Date/Time: 04/02/2017 6:43:07 AM

Type: Error Category: 0

Event: 10003 Source: Microsoft-Windows-WLAN-AutoConfig

WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\WINDOWS\system32\Rtlihvs.dll

I would look for a new driver for the REALTEK Wireless LAN Driver

You have a lot of Tasks which aren't working. These can also slow you down so let's remove them with FRST

Download the attached fixlist.txt to the same location as FRST

Run FRST and press Fix

A fix log will be generated please post that

#22
ZuZim

Posted 05 February 2017 - 05:16 AM

Member

Topic Starter
Member
18 posts

Could not find the Kingsoft service to be disabled.

Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power <--- Could not find any option in BIOS for power saving/eco. Also don't know where to find a BIOS update.

I know it's not this hot but I'll post a picture of what speedfan says.

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-01-2017

Ran by Avery (05-02-2017 04:49:30) Run:2

Running from C:\Users\Avery\Downloads

Loaded Profiles: Avery (Available Profiles: defaultuser0 & Avery)

Boot Mode: Normal

==============================================

fixlist content:

*****************

Task: {14869988-B8F9-42C2-90FB-3149D77CD5CB} - \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater -> No File <==== ATTENTION

Task: {3771E12C-4A9B-404D-BADB-F045D94C9CDF} - \DropboxOEM -> No File <==== ATTENTION

Task: {40F2F8FA-6867-46CF-9458-86CF28206448} - \WpsNotifyTask_Administrator -> No File <==== ATTENTION

Task: {5845985F-B590-4C93-AD65-810C98B545ED} - \avast! SL Update -> No File <==== ATTENTION

Task: {59313051-D0D1-4D30-94C0-BC7C0F6AB49F} - \Hewlett-Packard\HP Support Assistant\First Boot -> No File <==== ATTENTION

Task: {9958D229-13FA-4777-B12C-B80D45D1CE67} - \YCMServiceAgent -> No File <==== ATTENTION

Task: {A89CFCA8-A87A-4D17-A65E-9D21B882A25B} - \WpsUpdateTask_Administrator -> No File <==== ATTENTION

Task: {C688AE1F-2EEC-498A-B6A2-5A245CBBE476} - \Avast SecureLine -> No File <==== ATTENTION

Task: {E1297181-F1BD-473D-AF8A-14A48DA12411} - \Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start -> No File <==== ATTENTION

Task: {E6010D43-6AE7-4B59-8E67-EC78FD8E8E96} - \Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler -> No File <==== ATTENTION

Task: C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsnotify.exe

Task: C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdate.exe

CMD: for /F "tokens=*" %1 in ('wevtutil.exe el') DO wevtutil.exe cl "%1"

*****************

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{14869988-B8F9-42C2-90FB-3149D77CD5CB} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14869988-B8F9-42C2-90FB-3149D77CD5CB} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3771E12C-4A9B-404D-BADB-F045D94C9CDF} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3771E12C-4A9B-404D-BADB-F045D94C9CDF} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DropboxOEM => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{40F2F8FA-6867-46CF-9458-86CF28206448} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{40F2F8FA-6867-46CF-9458-86CF28206448} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WpsNotifyTask_Administrator => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5845985F-B590-4C93-AD65-810C98B545ED} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5845985F-B590-4C93-AD65-810C98B545ED} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avast! SL Update => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{59313051-D0D1-4D30-94C0-BC7C0F6AB49F} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59313051-D0D1-4D30-94C0-BC7C0F6AB49F} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\First Boot => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9958D229-13FA-4777-B12C-B80D45D1CE67} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9958D229-13FA-4777-B12C-B80D45D1CE67} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\YCMServiceAgent => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A89CFCA8-A87A-4D17-A65E-9D21B882A25B} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A89CFCA8-A87A-4D17-A65E-9D21B882A25B} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WpsUpdateTask_Administrator => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C688AE1F-2EEC-498A-B6A2-5A245CBBE476} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C688AE1F-2EEC-498A-B6A2-5A245CBBE476} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast SecureLine => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E1297181-F1BD-473D-AF8A-14A48DA12411} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E1297181-F1BD-473D-AF8A-14A48DA12411} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{E6010D43-6AE7-4B59-8E67-EC78FD8E8E96} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6010D43-6AE7-4B59-8E67-EC78FD8E8E96} => key removed successfully

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler => key removed successfully

C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job => moved successfully

C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => moved successfully

========= for /F "tokens=*" %1 in ('wevtutil.exe el') DO wevtutil.exe cl "%1" =========

Failed to clear log Microsoft-Windows-LiveId/Analytic. Access is denied.

Failed to clear log Microsoft-Windows-LiveId/Operational. Access is denied.

Failed to clear log Microsoft-Windows-USBVideo/Analytic. The instance name passed was not recognized as valid by a WMI data provider.

========= End of CMD: =========

==== End of Fixlog 04:51:48 ====

Attached Thumbnails

#23
RKinner

Posted 05 February 2017 - 06:29 AM

Malware Expert

Expert
24,442 posts

Speedfan sometimes misinteprets sensors if they are not in use. I think we can ignore them. You can also try Core Temp:

http://www.alcpu.com/CoreTemp/

See if it can read your system more correctly.

Surprised you can't find the kingsoft update service

copy the next line

S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdatesvr.exe [133480 2015-11-05] (Zhuhai Kingsoft Office Software Co.,Ltd)

open notepad

Ctrl+v to paste it. Hit Enter

then File, Save As, to the same folder where FRST lives, fixlist, OK.

Then run FRST and hit Fix.

Reboot when done and run VEW again as before. Let's see how we did.

What make and model is your PC? (If you built it from parts, what is the make and model of the motherboard?)

#24
ZuZim

Posted 05 February 2017 - 11:00 AM

Member

Topic Starter
Member
18 posts

Found a page with all the possible drivers for my laptop. Updated BIOS.

My laptop is an hp notebook. Not really sure what the make of it is, I'll just post a screenshot of the info.

Attached Files

VEW.txt 464bytes 143 downloads

Edited by ZuZim, 05 February 2017 - 11:03 AM.

#25
ZuZim

Posted 05 February 2017 - 11:05 AM

Member

Topic Starter
Member
18 posts

Here

Attached Thumbnails

#26
RKinner

Posted 05 February 2017 - 12:32 PM

Malware Expert

Expert
24,442 posts

Can you do VEW for System? Application is not very useful since it's clean.

Is there no sticker on the bottom of the notebook?

#27
ZuZim

Posted 05 February 2017 - 03:03 PM

Member

Topic Starter
Member
18 posts

I could have sworn I did system a couple times, saving it as VEW.txt. Not sure what happened. Hopefully this time it is correct.

The sticker on the bottom is faded nearly completely, save for ineligible tidbits. However, this is the page I used to find the drivers I need. http://support.hp.co...rue&sku=N5Z06UA

It says my product is

HP Notebook - 15-ac143wm (ENERGY STAR) I assume that is the model number... I don't think it'll show you my stuff on there but is this what you needed? Maybe that's the model number and the make is hp?

Attached Files

VEW.txt 7.9KB 245 downloads

#28
RKinner

Posted 06 February 2017 - 07:57 AM

Malware Expert

Expert
24,442 posts

OK. 15-ac143wm is the model number. HP the maker.

I found the BIOS options or at least some of them on

http://support.hp.co...ument/c00034791

If you can get into the BIOS Setup look for the Power page then look under Power Savings and see if you can tell it not to save power.

Also look under Advanced and see if

CPU speed

has options you can change. It may just tell you what speed your CPU is.

Going to be offline more or less for the next three days. Taking the wife down to Ft. Lauderdale to see her father. Not sure how much online time I will have. Expect delays.

#29
ZuZim

Posted 08 February 2017 - 06:55 PM

Member

Topic Starter
Member
18 posts

It seems I found the problem... I was looking online about the "The speed of processor 1 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 25 seconds since the last report." and other such processors for the kernel thing because I was curious. I read somewhere about the charger being jank for someone and I kinda just unplugged my charger, went on to google to open a website and it loaded unexpectedly fast. I got excited so I went ahead and played a game and kapow! It worked just as normal. No drop in framerate or lag! It seems my charger is faulty. I don't know why it would make my laptop unbelievably slow, or why I never unplugged it to begin with. The charger is the default charger it came with when I bought it so... Well that seems to have cleared up my issue. I'd really like to be able to charge my laptop and play too. I'm not sure if it is a faulty charger or not though. Anyway, presto, my laptop is working back to normal

#30
RKinner

Posted 08 February 2017 - 09:32 PM

Malware Expert

Expert
24,442 posts

HP has a center pin on some of their power supply connectors that they use to tell if it's a valid HP charger or not. If it's not they slow down the processor. They claim it's to protect the PC but I think it's just to make you buy one of theirs. Sometimes the pin gets bent or breaks off and then even an HP power supply is not considered good enough.