Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Windows 10 won't let me use File Explorer [Solved]


  • This topic is locked This topic is locked

#1
mister leigh

mister leigh

    Member

  • Member
  • PipPip
  • 62 posts

Hi, 

 

So I had an issue where my laptop seemed to be freezing intermittently. Virus scans (AVG and Malware Malbytes) were showing nothing so I decided to format (keeping my personal files). The internet problem seems to have gone away, but I can't actually go to any files. My desktop is timed out, if I click on a file explorer icon, it says system call failed multiple times. Any help?

 

EDIT: AVG Picked up a file called MCINST.EXE and quarantined it. It seems like this was the problem? Everything is working fine. Thank you!

 

Here is the FRST scan: 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.02.2018 01
Ran by Leticia (administrator) on LAPTOP-C4KKR1A2 (10-02-2018 06:40:58)
Running from C:\Users\Leticia\Desktop\Files\etc
Loaded Profiles: Leticia (Available Profiles: Leticia)
Platform: Windows 10 Home Version 1709 16299.192 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Windows ® Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Amazon Inc.) C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe
(Dashlane SAS) C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
() C:\Windows\System32\igfxTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
() C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerButton_NB.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\FIRSTRUN.EXE
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\UPDMGR\4.0.131.2\mcupdatemgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McU708F.tmp
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(Brave Software) C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\Brave.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Martin Prikryl) C:\Program Files (x86)\WinSCP\WinSCP.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Tim Kosse) C:\Users\Leticia\Downloads\FileZilla_3.30.0_win64-setup_bundled.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Tim Kosse) C:\Users\Leticia\Downloads\FileZilla_3.30.0_win64-setup_bundled.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-07] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-03] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [295512 2018-02-09] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-741452133-3670782763-4255049870-1001\...\RunOnce: [Uninstall 17.3.6816.0313\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Leticia\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\amd64"
HKU\S-1-5-21-741452133-3670782763-4255049870-1001\...\RunOnce: [Uninstall 17.3.6816.0313] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Leticia\AppData\Local\Microsoft\OneDrive\17.3.6816.0313"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5eb56bae-de2e-48e1-a049-6ed80b119df8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8648de50-2be3-45ae-b245-7ecf8248208c}: [DhcpNameServer] 40.31.1.66
 
Internet Explorer:
==================
HKU\S-1-5-21-741452133-3670782763-4255049870-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer15.msn.com/?pc=ACTE
HKU\S-1-5-21-741452133-3670782763-4255049870-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-09-23] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-09-23] (McAfee, Inc.)
 
FireFox:
========
FF DefaultProfile: 3iqrexe5.default
FF ProfilePath: C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default [2018-02-09]
FF Extension: (Amazon 1Button App for Firefox) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (العربية Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (български Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Dansk (da) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Greek (GR) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (English (US) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Español (España) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Estonian Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Finnish Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Français Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Hebrew (IL) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Magyar (HU) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Italiano (IT) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Japanese Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Korean (KR) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Lietuvių Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Polski Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Português Brasileiro Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Português Portugal Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Russian (RU) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Slovak (SK) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Slovenski jezik Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (српски (sr) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Svenska (SE) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Thai Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Türkçe (TR) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Ukrainian (UA) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\Leticia\AppData\Roaming\Mozilla\Firefox\Profiles\3iqrexe5.default\Extensions\[email protected] [2018-02-09] [Legacy] [not signed]
FF Extension: (Amazon 1Button App for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (العربية Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (български Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Czech (CZ) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Dansk (da) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Deutsch (DE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Greek (GR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (English (US) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Español (España) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Estonian Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Finnish Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Hebrew (IL) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Magyar (HU) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Italiano (IT) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Japanese Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Korean (KR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Lietuvių Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Nederlands (NL) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Polski Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Português Brasileiro Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Português Portugal Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Russian (RU) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Slovak (SK) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Slovenski jezik Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (српски (sr) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Svenska (SE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Thai Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Türkçe (TR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Ukrainian (UA) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\[email protected] [2018-02-08] [Legacy] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2018-02-09] [Legacy] [not signed]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-09-23] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-09-23] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-02-09] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-02-09] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-14] ()
 
Chrome: 
=======
CHR HomePage: Default -> hxxps://www.pinterest.com/
CHR StartupUrls: Default -> "hxxps://web.groupme.com/chats","hxxps://blockheadslife.slack.com/","hxxp://pinterest.com/","hxxp://reddit.com/r/malefashionadvice"
CHR Profile: C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default [2018-02-10]
CHR Extension: (Slides) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-09]
CHR Extension: (Settings Button) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\adakfpemmbngeohfigfpldjimamijoek [2018-02-09]
CHR Extension: (Docs) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-09]
CHR Extension: (Google Drive) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-02-09]
CHR Extension: (YouTube) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-09]
CHR Extension: (Tampermonkey) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-02-09]
CHR Extension: (Google Calendar) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2018-02-09]
CHR Extension: (Sheets) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-09]
CHR Extension: (Google Docs Offline) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-02-09]
CHR Extension: (Mailto:) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppbppehiogfokmpligejhaepeopajdf [2018-02-09]
CHR Extension: (Auto Refresh) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifooldnmmcmlbdennkpdnlnbgbmfalko [2018-02-09]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2018-02-09]
CHR Extension: (Google Keep Chrome Extension) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2018-02-09]
CHR Extension: (BetterTweetDeck) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\micblkellenpbfapmcpcfhcoeohhnpob [2018-02-09]
CHR Extension: (Foxish live RSS) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbhdikhnaigcdlamenbgkmllgmfnngoi [2018-02-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-02-09]
CHR Extension: (Mute Tab Shortcuts) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\opcjanmpjbdbdpnjfjbboacibokblbhl [2018-02-09]
CHR Extension: (Blank New Tab) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfdloiaebhgmjpaclbbodcmlmppkakjh [2018-02-09]
CHR Extension: (Gmail) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-09]
CHR Extension: (Chrome Media Router) - C:\Users\Leticia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-09]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 0245861518146093mcinstcleanup; C:\WINDOWS\TEMP\024586~1.EXE [961888 2016-05-16] (McAfee, Inc.)
R2 Amazon 1Button App Service; c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe [460472 2016-12-12] (Amazon Inc.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [301720 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7589200 2018-02-09] (AVG Technologies CZ, s.r.o.)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-25] (Acer Incorporated)
R2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [75056 2015-06-24] (Dashlane SAS)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-03] (NVIDIA Corporation)
S2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373712 2017-09-25] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
R3 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-09-23] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [338208 2015-03-19] (McAfee, Inc.)
S2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.)
S2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-08-02] (McAfee, Inc.)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-09-13] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-06-03] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-03] (NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [398176 2015-07-09] (Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400 2015-07-09] (Acer Incorporated)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [445240 2015-04-29] ()
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-26] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
S2 WinREWatchDog; C:\OEM\Preload\DPOP\WinRECustomize\WatchDog.exe [20320 2015-07-15] ()
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [177536 2018-02-09] (AVG Technologies CZ, s.r.o.)
R3 avgbdisk; C:\WINDOWS\System32\drivers\avgbdiska.sys [166624 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdrivera.sys [315152 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsha.sys [193096 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgblog; C:\WINDOWS\System32\drivers\avgbloga.sys [337408 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniva.sys [51336 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [39424 2018-02-09] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [139112 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [102792 2018-02-09] (AVG Technologies CZ, s.r.o.)
S0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [76832 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1017624 2018-02-09] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [450360 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [196904 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [351128 2018-02-09] (AVG Technologies CZ, s.r.o.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-08-02] (McAfee, Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131712 2017-01-16] (Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-03-21] (Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-03-22] (Disc Soft Ltd)
R3 ETDI2C; C:\WINDOWS\System32\drivers\ETDI2C.sys [175152 2015-06-09] (ELAN Microelectronic Corp.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [216704 2016-08-02] (McAfee, Inc.)
S3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [35832 2014-06-02] (Intel Corporation)
S3 iaLPSS_I2C; C:\WINDOWS\System32\drivers\iaLPSS_I2C.sys [132360 2015-06-15] (Intel Corporation)
S3 iaLPSS_SPI; C:\WINDOWS\System32\drivers\iaLPSS_SPI.sys [100856 2014-06-02] (Intel Corporation)
S3 iaLPSS_UART2; C:\WINDOWS\System32\drivers\iaLPSS_UART2.sys [143864 2014-06-02] (Intel Corporation)
S3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21344 2015-07-09] (Acer Incorporated)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419624 2016-08-02] (McAfee, Inc.)
U3 mfeaack01; no ImagePath
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-08-02] (McAfee, Inc.)
U3 mfeavfk01; no ImagePath
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-08-02] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-08-02] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-08-02] (McAfee, Inc.)
U3 mfehidk01; no ImagePath
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [519456 2016-08-01] (McAfee, Inc.)
U3 mfencbdc01; no ImagePath
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [100136 2016-08-01] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243496 2016-08-02] (McAfee, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvacwu.inf_amd64_9d2734742a07f3cf\nvlddmkm.sys [14456920 2017-05-18] (NVIDIA Corporation)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [19616 2014-09-08] (Windows ® Win 7 DDK provider)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46768 2015-05-18] (NVIDIA Corporation)
S3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14688 2015-07-09] (Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-09-29] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [416472 2016-08-22] (Realsil Semiconductor Corporation)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2017-01-16] (QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-16] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
R4 mfedisk; system32\DRIVERS\mfedisk.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-02-10 06:40 - 2018-02-10 06:40 - 000000000 ____D C:\FRST
2018-02-10 06:33 - 2018-02-10 06:33 - 001737872 _____ (Pushbullet Inc ) C:\Users\Leticia\Downloads\pushbullet_installer.exe
2018-02-09 23:00 - 2018-02-09 23:00 - 000000000 ____D C:\Users\Leticia\AppData\Local\ElevatedDiagnostics
2018-02-09 22:51 - 2018-02-09 22:52 - 008874120 _____ (Tim Kosse) C:\Users\Leticia\Downloads\FileZilla_3.30.0_win64-setup_bundled.exe
2018-02-09 22:49 - 2018-02-09 22:49 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Google
2018-02-09 22:48 - 2018-02-09 22:48 - 000005423 _____ C:\Users\Leticia\Downloads\Arrow.S06E13.iNTERNAL.720p.HEVC.x265-MeGusta.torrent
2018-02-09 22:47 - 2018-02-09 22:47 - 000005810 _____ C:\Users\Leticia\Downloads\The.Flash.2014.S04E13.iNTERNAL.720p.HEVC.x265-MeGusta.torrent
2018-02-09 22:43 - 2018-02-09 22:43 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2018-02-09 22:43 - 2018-02-09 22:43 - 000001134 _____ C:\Users\Public\Desktop\WinSCP.lnk
2018-02-09 22:43 - 2018-02-09 22:43 - 000000000 ____D C:\Program Files (x86)\WinSCP
2018-02-09 22:42 - 2018-02-09 22:42 - 009453888 _____ (Martin Prikryl ) C:\Users\Leticia\Downloads\WinSCP-5.11.3-Setup.exe
2018-02-09 22:39 - 2018-02-09 22:54 - 000000000 ____D C:\Users\Leticia\AppData\Local\Transmission Remote GUI
2018-02-09 22:39 - 2018-02-09 22:39 - 000001185 _____ C:\Users\Leticia\Desktop\Transmission Remote GUI.lnk
2018-02-09 22:39 - 2018-02-09 22:39 - 000000000 ____D C:\Program Files (x86)\Transmission Remote GUI
2018-02-09 22:37 - 2018-02-09 22:37 - 001783216 _____ (Yury Sidorov ) C:\Users\Leticia\Downloads\transgui-5.0.1-setup.exe
2018-02-09 22:29 - 2018-02-09 22:29 - 000002129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus FREE.lnk
2018-02-09 22:29 - 2018-02-09 22:29 - 000002117 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2018-02-09 22:29 - 2018-02-09 22:29 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVG
2018-02-09 22:29 - 2018-02-09 22:29 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\AVG
2018-02-09 22:29 - 2018-02-09 22:29 - 000000000 ____D C:\Program Files\Common Files\AVG
2018-02-09 22:28 - 2018-02-09 22:29 - 000450360 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2018-02-09 22:28 - 2018-02-09 22:29 - 000139112 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2018-02-09 22:28 - 2018-02-09 22:28 - 000004008 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2018-02-09 22:28 - 2018-02-09 22:27 - 001017624 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000449848 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys.151823334818704
2018-02-09 22:28 - 2018-02-09 22:27 - 000351128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000337408 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbloga.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000315152 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdrivera.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000196904 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000193096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsha.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000177536 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000166624 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdiska.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000139112 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys.151823334818704
2018-02-09 22:28 - 2018-02-09 22:27 - 000102792 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000076832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000051336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniva.sys
2018-02-09 22:28 - 2018-02-09 22:27 - 000039424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys
2018-02-09 22:27 - 2018-02-09 22:27 - 000366800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2018-02-09 22:25 - 2018-02-09 22:25 - 000003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2018-02-09 22:25 - 2018-02-09 22:25 - 000000000 ____D C:\Program Files (x86)\AVG
2018-02-09 22:24 - 2018-02-09 22:27 - 000000000 ____D C:\ProgramData\Avg
2018-02-09 22:24 - 2018-02-09 22:24 - 000006233 _____ C:\Users\Leticia\Downloads\Black.Lightning.S01E04.iNTERNAL.720p.HEVC.x265-MeGusta.torrent
2018-02-09 22:24 - 2018-02-09 22:24 - 000000000 ____D C:\Users\Leticia\AppData\Local\CEF
2018-02-09 22:23 - 2018-02-10 06:40 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\brave
2018-02-09 22:23 - 2018-02-09 22:29 - 000000000 ____D C:\Users\Leticia\AppData\Local\Avg
2018-02-09 22:23 - 2018-02-09 22:25 - 000000000 ____D C:\Users\Leticia\AppData\Local\AvgSetupLog
2018-02-09 22:23 - 2018-02-09 22:23 - 000002253 _____ C:\Users\Leticia\Desktop\Brave.lnk
2018-02-09 22:22 - 2018-02-09 22:24 - 000000000 ____D C:\Users\Leticia\AppData\Local\SquirrelTemp
2018-02-09 22:22 - 2018-02-09 22:23 - 000000000 ____D C:\Users\Leticia\AppData\Local\Brave
2018-02-09 22:22 - 2018-02-09 22:22 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\vlc
2018-02-09 22:21 - 2018-02-09 22:21 - 003449304 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Leticia\Downloads\AVG_Protection_Free_1606.exe
2018-02-09 22:19 - 2018-02-09 22:20 - 149464384 _____ (Brave Software) C:\Users\Leticia\Downloads\BraveSetup-x64.exe
2018-02-09 22:19 - 2018-02-09 22:19 - 000003126 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
2018-02-09 22:19 - 2018-02-09 22:19 - 000001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-02-09 22:19 - 2018-02-09 22:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2018-02-09 22:19 - 2018-02-09 22:19 - 000000000 ____D C:\ProgramData\Intel Security
2018-02-09 22:19 - 2018-02-09 22:19 - 000000000 ____D C:\Program Files (x86)\VideoLAN
2018-02-09 22:18 - 2018-02-09 22:18 - 000000000 ____D C:\Program Files\Common Files\Intel Security
2018-02-09 22:17 - 2018-02-09 22:18 - 038911168 _____ C:\Users\Leticia\Downloads\vlc-3.0.0-win32.exe
2018-02-09 22:13 - 2018-02-09 22:14 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-02-09 22:13 - 2018-02-09 22:14 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-02-09 22:13 - 2018-02-09 22:13 - 000000000 ____D C:\Program Files\Common Files\AV
2018-02-09 22:12 - 2018-02-09 22:12 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-02-09 22:12 - 2018-02-09 22:12 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-02-09 22:12 - 2018-02-09 22:12 - 000000000 ____D C:\Program Files (x86)\Google
2018-02-09 22:11 - 2018-02-09 22:22 - 000000000 ____D C:\Users\Leticia\AppData\Local\Google
2018-02-09 22:11 - 2018-02-09 22:11 - 001129816 _____ (Google Inc.) C:\Users\Leticia\Downloads\ChromeSetup.exe
2018-02-09 22:08 - 2018-02-09 22:10 - 000000000 ____D C:\Users\Leticia\AppData\Local\Mozilla
2018-02-09 22:08 - 2018-02-09 22:08 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Mozilla
2018-02-09 22:07 - 2018-02-09 22:07 - 000000000 ____D C:\Users\Leticia\AppData\Local\NVIDIA Corporation
2018-02-09 05:06 - 2018-02-09 05:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2018-02-09 00:20 - 2018-02-09 00:21 - 000000000 ____D C:\WINDOWS\InfusedApps
2018-02-09 00:20 - 2018-02-09 00:20 - 000000000 ____D C:\Windows.old
2018-02-09 00:20 - 2018-02-08 22:01 - 000000000 ____D C:\WINDOWS\Panther
2018-02-09 00:18 - 2018-02-09 00:19 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-02-09 00:16 - 2018-02-09 00:16 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-02-09 00:15 - 2018-02-09 00:15 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2018-02-09 00:14 - 2018-02-09 00:14 - 000000000 ____D C:\Program Files\Elantech
2018-02-09 00:12 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\Setup
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\si-LK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\am-ET
2018-02-09 00:09 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\OCR
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\Program Files\MSBuild
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-02-09 00:09 - 2018-02-09 00:09 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\winrm
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\WCN
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\slmgr
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\0409
2018-02-09 00:07 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\DigitalLocker
2018-02-09 00:04 - 2017-12-22 08:45 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-02-09 00:04 - 2017-12-22 08:45 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-02-09 00:02 - 2018-02-08 23:58 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2018-02-09 00:02 - 2018-02-08 23:58 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2018-02-09 00:02 - 2018-02-08 23:58 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2018-02-09 00:01 - 2018-02-10 06:32 - 000000000 ___RD C:\Program Files (x86)
2018-02-09 00:01 - 2018-02-09 22:21 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-02-09 00:01 - 2018-02-09 22:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-02-09 00:01 - 2018-02-09 05:01 - 000000000 ____D C:\WINDOWS\appcompat
2018-02-09 00:01 - 2018-02-09 00:21 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-02-09 00:01 - 2018-02-09 00:20 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-02-09 00:01 - 2018-02-09 00:20 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\TextInput
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\WINDOWS\Provisioning
2018-02-09 00:01 - 2018-02-09 00:12 - 000000000 ____D C:\Program Files\Windows Defender
2018-02-09 00:01 - 2018-02-09 00:09 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ___SD C:\WINDOWS\system32\dsc
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\SysWOW64\com
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\setup
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\system32\com
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\IME
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\Program Files\Common Files\system
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-02-09 00:01 - 2018-02-09 00:07 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-02-09 00:01 - 2018-02-09 00:02 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2018-02-09 00:01 - 2018-02-09 00:02 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2018-02-09 00:01 - 2018-02-09 00:02 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2018-02-09 00:01 - 2018-02-09 00:02 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2018-02-09 00:01 - 2018-02-09 00:02 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2018-02-09 00:01 - 2018-02-09 00:02 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 __SHD C:\Program Files\Windows Sidebar
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 __RSD C:\WINDOWS\media
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ___SD C:\WINDOWS\system32\UNP
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ___SD C:\WINDOWS\system32\Nui
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\Web
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\Vss
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\tracing
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\TAPI
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SystemResources
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SystemApps
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\winevt
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\ras
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\IME
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\icsxml
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\ias
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\hydrogen
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\downlevel
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\DDFs
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\System
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SKB
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\security
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\schemas
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\SchCache
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\Resources
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\rescache
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\PLA
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\Performance
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\ModemLogs
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\L2Schemas
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\InputMethod
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\Globalization
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\Cursors
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\Branding
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\addins
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\Program Files\Windows Security
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\Program Files\Windows Portable Devices
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\Program Files\windows nt
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\Program Files\Common Files\Services
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\Program Files (x86)\windows nt
2018-02-09 00:01 - 2018-02-09 00:01 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2018-02-09 00:01 - 2018-02-08 23:58 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2018-02-09 00:01 - 2018-02-08 23:58 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2018-02-09 00:01 - 2018-02-08 23:58 - 000017572 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2018-02-09 00:01 - 2018-02-08 23:58 - 000004096 _____ C:\WINDOWS\system32\config\VSMIDK
2018-02-09 00:01 - 2018-02-08 23:58 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2018-02-09 00:01 - 2018-02-08 23:58 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2018-02-09 00:01 - 2018-02-08 23:58 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2018-02-09 00:01 - 2018-02-08 22:34 - 000000000 ___HD C:\Program Files\WindowsApps
2018-02-09 00:01 - 2018-02-08 22:34 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-02-09 00:01 - 2018-02-08 21:56 - 000000000 ____D C:\WINDOWS\Registration
2018-02-09 00:01 - 2018-02-08 21:55 - 000000000 __RHD C:\Users\Public\Libraries
2018-02-09 00:01 - 2018-02-08 21:53 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2018-02-09 00:01 - 2018-02-08 21:47 - 000000000 ____D C:\WINDOWS\system32\spool
2018-02-09 00:01 - 2018-02-08 21:47 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-02-09 00:01 - 2018-02-08 21:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-02-09 00:01 - 2018-02-08 21:42 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-02-09 00:01 - 2018-02-08 21:36 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-02-09 00:01 - 2018-02-08 21:34 - 000000000 ____D C:\ProgramData\USOPrivate
2018-02-09 00:01 - 2018-02-08 21:31 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-02-09 00:01 - 2018-02-08 21:31 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-02-09 00:01 - 2018-02-08 21:29 - 000000000 ____D C:\WINDOWS\Help
2018-02-08 23:59 - 2018-02-09 22:20 - 000000000 ____D C:\WINDOWS\INF
2018-02-08 23:50 - 2018-02-09 23:29 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-02-08 23:42 - 2018-02-09 00:20 - 000028672 _____ C:\WINDOWS\system32\config\SAM
2018-02-08 23:42 - 2018-02-09 00:07 - 000000000 ____D C:\WINDOWS\servicing
2018-02-08 23:42 - 2018-02-09 00:01 - 000000000 ____D C:\WINDOWS\system32\SMI
2018-02-08 23:42 - 2018-02-08 22:16 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-02-08 23:42 - 2018-02-08 21:50 - 077332480 _____ C:\WINDOWS\system32\config\SOFTWARE
2018-02-08 23:42 - 2018-02-08 21:50 - 014417920 _____ C:\WINDOWS\system32\config\SYSTEM
2018-02-08 23:42 - 2018-02-08 21:50 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-02-08 23:42 - 2018-02-08 21:50 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2018-02-08 23:42 - 2018-02-08 21:50 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY
2018-02-08 23:41 - 2018-02-09 00:22 - 000000000 ___HD C:\$SysReset
2018-02-08 22:26 - 2018-02-09 22:25 - 000000000 ____D C:\Users\Leticia\AppData\Local\CrashDumps
2018-02-08 22:25 - 2018-02-08 22:25 - 000000000 ____D C:\Users\Leticia\AppData\Local\DBG
2018-02-08 22:18 - 2018-02-08 22:18 - 000000000 ____D C:\ProgramData\Synaptics
2018-02-08 22:16 - 2018-02-08 22:16 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Macromedia
2018-02-08 22:12 - 2018-02-08 22:12 - 000000000 ____D C:\ProgramData\Apple
2018-02-08 22:12 - 2018-02-08 22:12 - 000000000 ____D C:\Program Files\Bonjour
2018-02-08 22:12 - 2018-02-08 22:12 - 000000000 ____D C:\Program Files (x86)\Bonjour
2018-02-08 22:10 - 2018-02-08 22:10 - 000003404 _____ C:\WINDOWS\System32\Tasks\abDocsDllLoader
2018-02-08 22:10 - 2018-02-08 22:10 - 000002026 _____ C:\Users\Public\Desktop\abDocs.lnk
2018-02-08 22:09 - 2018-02-08 22:09 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-741452133-3670782763-4255049870-1001
2018-02-08 22:08 - 2018-02-08 22:09 - 000003508 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent
2018-02-08 22:08 - 2018-02-08 22:09 - 000002373 _____ C:\Users\Leticia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-02-08 22:07 - 2018-02-08 22:07 - 000000000 ____D C:\Users\Leticia\AppData\Local\Comms
2018-02-08 22:06 - 2018-02-08 22:20 - 000000000 ____D C:\Users\Leticia\AppData\Local\CareCenter
2018-02-08 22:06 - 2018-02-08 22:13 - 000000000 ____D C:\Users\Leticia\AppData\Local\clear.fi
2018-02-08 22:04 - 2018-02-08 22:04 - 000000000 ____D C:\Users\Leticia\AppData\Local\Publishers
2018-02-08 22:04 - 2018-02-08 22:04 - 000000000 ____D C:\Users\Leticia\AppData\Local\MicrosoftEdge
2018-02-08 22:04 - 2018-02-08 22:04 - 000000000 ____D C:\Users\Leticia\AppData\Local\AOP SDK
2018-02-08 22:03 - 2018-02-08 22:03 - 000002170 _____ C:\Users\Leticia\Desktop\Dashlane Password Manager.lnk
2018-02-08 22:03 - 2018-02-08 22:03 - 000000000 ____D C:\WINDOWS\oem
2018-02-08 22:03 - 2018-02-08 22:03 - 000000000 ____D C:\Users\Leticia\AppData\Local\VirtualStore
2018-02-08 22:02 - 2018-02-08 22:33 - 000000000 ____D C:\Users\Leticia\AppData\Local\Packages
2018-02-08 22:02 - 2018-02-08 22:02 - 000000020 ___SH C:\Users\Leticia\ntuser.ini
2018-02-08 22:02 - 2018-02-08 22:02 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Adobe
2018-02-08 22:02 - 2018-02-08 22:02 - 000000000 ____D C:\Users\Leticia\AppData\Local\ConnectedDevicesPlatform
2018-02-08 22:02 - 2018-02-08 22:02 - 000000000 ____D C:\ProgramData\Dashlane
2018-02-08 22:00 - 2018-02-08 22:00 - 000000000 _SHDL C:\Users\Default User
2018-02-08 22:00 - 2018-02-08 22:00 - 000000000 _SHDL C:\Users\All Users
2018-02-08 21:58 - 2018-02-08 22:15 - 000003388 _____ C:\WINDOWS\System32\Tasks\AcerCloud
2018-02-08 21:58 - 2018-02-08 21:59 - 000004302 _____ C:\WINDOWS\System32\Tasks\Software Update Application
2018-02-08 21:58 - 2018-02-08 21:59 - 000003852 _____ C:\WINDOWS\System32\Tasks\ACCAgent
2018-02-08 21:58 - 2018-02-08 21:59 - 000002926 _____ C:\WINDOWS\System32\Tasks\avast! SL Update
2018-02-08 21:58 - 2018-02-08 21:59 - 000002888 _____ C:\WINDOWS\System32\Tasks\ACC
2018-02-08 21:58 - 2018-02-08 21:59 - 000002706 _____ C:\WINDOWS\System32\Tasks\UbtFrameworkService
2018-02-08 21:58 - 2018-02-08 21:59 - 000002654 _____ C:\WINDOWS\System32\Tasks\Avast SecureLine
2018-02-08 21:58 - 2018-02-08 21:59 - 000002328 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication
2018-02-08 21:58 - 2018-02-08 21:59 - 000002222 _____ C:\WINDOWS\System32\Tasks\Power Management
2018-02-08 21:58 - 2018-02-08 21:59 - 000002180 _____ C:\WINDOWS\System32\Tasks\Quick Access
2018-02-08 21:58 - 2018-02-08 21:59 - 000002074 _____ C:\WINDOWS\System32\Tasks\FUBTrackingByPLD
2018-02-08 21:58 - 2018-02-08 21:58 - 000002284 _____ C:\WINDOWS\System32\Tasks\FUB
2018-02-08 21:58 - 2018-02-08 21:58 - 000002264 _____ C:\WINDOWS\System32\Tasks\Power Button
2018-02-08 21:58 - 2018-02-08 21:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-02-08 21:57 - 2018-02-08 21:57 - 000031908 _____ C:\Users\Leticia\Desktop\Removed Apps.html
2018-02-08 21:56 - 2018-02-08 21:56 - 000022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-02-08 21:49 - 2018-02-08 22:03 - 000000000 ____D C:\Users\Leticia
2018-02-08 21:49 - 2018-02-08 21:47 - 000000000 ____D C:\Users\Leticia\AppData\Local\Host App Service
2018-02-08 21:49 - 2015-03-20 19:28 - 000003236 _____ C:\Users\Leticia\Desktop\App Explorer.lnk
2018-02-08 21:48 - 2018-02-08 21:48 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-02-08 21:41 - 2018-02-08 21:41 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-02-08 21:34 - 2018-02-08 21:34 - 000000000 ____D C:\ProgramData\USOShared
2018-02-08 21:29 - 2018-02-08 21:51 - 000000000 ____D C:\ProgramData\NVIDIA
2018-02-08 21:29 - 2018-02-08 21:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-02-08 21:29 - 2018-02-08 21:29 - 032931716 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2018-02-08 21:29 - 2018-02-08 21:29 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2018-02-08 21:29 - 2018-02-08 21:29 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-02-08 21:29 - 2018-02-08 21:29 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-02-08 21:29 - 2018-02-08 21:29 - 000000000 ____D C:\Program Files\Realtek
2018-02-08 21:29 - 2017-05-01 15:52 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-02-08 21:29 - 2017-05-01 15:51 - 006437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-02-08 21:29 - 2017-05-01 15:51 - 002479552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-02-08 21:29 - 2017-05-01 15:51 - 001762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-02-08 21:29 - 2017-05-01 15:51 - 000548800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-02-08 21:29 - 2017-05-01 15:51 - 000392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-02-08 21:29 - 2017-05-01 15:51 - 000081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-02-08 21:29 - 2017-05-01 15:51 - 000069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-02-08 21:29 - 2017-04-25 16:11 - 007944687 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-02-08 21:28 - 2018-02-08 22:02 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-02-08 21:28 - 2018-02-08 21:46 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-02-08 21:28 - 2018-02-08 21:42 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-02-08 21:28 - 2018-02-08 21:28 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2018-02-08 21:28 - 2018-02-08 21:28 - 000000000 ____D C:\Program Files\Common Files\Atheros
2018-02-08 21:28 - 2018-02-08 21:28 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2018-02-08 21:28 - 2017-09-25 00:03 - 000103912 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2018-02-08 21:28 - 2017-09-25 00:03 - 000099816 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2018-02-08 21:27 - 2018-02-08 21:42 - 000000000 ____D C:\Program Files\Intel
2018-02-08 21:26 - 2017-09-29 08:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-02-08 21:23 - 2018-02-10 06:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-02-08 21:23 - 2018-02-08 21:51 - 000222608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-04 14:57 - 2018-02-04 17:07 - 000000000 ____D C:\Users\Leticia\AppData\LocalLow\uTorrent
2018-01-28 13:10 - 2018-01-28 13:10 - 000000489 _____ C:\Users\Leticia\Downloads\UTC--2018-01-28T18-10-38.583Z--c1f189fea8b314792728c6b3b28535bbf946c32f
2018-01-28 09:10 - 2018-01-28 09:10 - 000000489 _____ C:\Users\Leticia\Downloads\UTC--2018-01-28T14-10-27.828Z--c388f0e519d80cbecd948caca80c72e90088a224
2018-01-28 08:48 - 2018-02-09 22:23 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brave Software
2018-01-27 15:36 - 2018-01-27 15:36 - 001156426 _____ C:\Users\Leticia\Documents\cc_20180127_153620.reg
2018-01-24 22:22 - 2018-01-24 22:33 - 000000000 ____D C:\Users\Leticia\Documents\Calibre Library
2018-01-24 22:21 - 2018-02-09 00:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2018-01-14 14:04 - 2018-01-14 14:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2018-01-12 20:55 - 2018-01-14 13:54 - 007906720 _____ (Tim Kosse) C:\Users\Leticia\Downloads\FileZilla_3.30.0_win64-setup.exe
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-02-09 22:39 - 2016-03-03 00:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transmission Remote GUI
2018-02-09 22:24 - 2015-07-15 22:47 - 000000000 ____D C:\ProgramData\McAfee
2018-02-09 22:23 - 2015-07-15 22:47 - 000000000 ____D C:\Program Files\Common Files\McAfee
2018-02-09 22:19 - 2016-03-02 23:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2018-02-09 00:20 - 2017-11-20 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
2018-02-09 00:20 - 2017-09-26 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-02-09 00:20 - 2016-12-19 18:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-02-09 00:20 - 2016-12-19 18:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth
2018-02-09 00:20 - 2016-11-05 01:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2018-02-09 00:20 - 2016-09-24 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameMaker Player
2018-02-09 00:20 - 2016-07-22 14:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2018-02-09 00:20 - 2016-07-19 12:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardew Valley [GOG.com]
2018-02-09 00:20 - 2016-05-03 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
2018-02-09 00:20 - 2016-04-04 21:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
2018-02-09 00:20 - 2016-03-22 09:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-02-09 00:20 - 2016-03-04 10:59 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Средства Microsoft Office 2016
2018-02-09 00:20 - 2016-03-04 10:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2018-02-09 00:19 - 2017-07-15 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy
2018-02-09 00:19 - 2017-04-29 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2018-02-09 00:19 - 2016-05-17 12:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2018-02-08 23:55 - 2017-09-29 08:40 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2018-02-08 22:19 - 2015-07-15 22:44 - 000000000 ____D C:\ProgramData\Acer
2018-02-08 22:15 - 2015-07-15 22:44 - 000000000 ____D C:\ProgramData\OEM
2018-02-08 22:15 - 2015-07-15 22:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2018-02-08 22:14 - 2015-07-15 22:47 - 000000000 ____D C:\Program Files (x86)\McAfee
2018-02-08 22:10 - 2015-07-15 22:43 - 000000000 ____D C:\Program Files (x86)\Acer
2018-02-08 22:09 - 2016-03-01 23:13 - 000000000 ___RD C:\Users\Leticia\OneDrive
2018-02-08 22:08 - 2015-07-15 23:26 - 000000000 ___HD C:\OEM
2018-02-08 22:03 - 2017-10-12 06:36 - 000000000 ___RD C:\Users\Leticia\3D Objects
2018-02-08 22:03 - 2016-03-01 23:07 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2018-02-08 22:03 - 2015-07-15 22:41 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-02-08 22:02 - 2016-03-01 23:07 - 000000000 __SHD C:\Users\Leticia\IntelGraphicsProfiles
2018-02-08 21:57 - 2017-10-25 09:42 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2018-02-08 21:57 - 2017-09-26 22:15 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-02-08 21:57 - 2016-05-22 21:24 - 000000000 ____D C:\Users\Leticia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
2018-02-08 21:57 - 2015-07-15 22:43 - 000886066 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-08 21:55 - 2015-07-10 06:04 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-02-08 21:47 - 2015-08-19 19:06 - 000000000 ____D C:\Users\Public\Foxit Software
2018-02-08 21:47 - 2015-08-19 18:54 - 000000000 __HDC C:\ProgramData\{2B89F58C-32F7-46EC-A448-AECDF1F22B7B}
2018-02-08 21:47 - 2015-08-19 18:50 - 000000000 ____D C:\WINDOWS\NAPP_Dism_Log
2018-02-08 21:47 - 2015-08-19 18:32 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2018-02-08 21:47 - 2015-07-15 22:44 - 000000000 ____D C:\Users\Default\AppData\Local\Host App Service
2018-02-08 21:47 - 2015-07-15 22:44 - 000000000 ____D C:\Users\Default User\AppData\Local\Host App Service
2018-02-08 21:47 - 2015-07-15 22:44 - 000000000 ____D C:\ProgramData\WildTangent
2018-02-08 21:47 - 2015-07-10 06:04 - 000000000 ___RD C:\WINDOWS\PurchaseDialog
2018-02-08 21:47 - 2015-07-10 06:04 - 000000000 ___RD C:\WINDOWS\DesktopTileResources
2018-02-08 21:46 - 2015-08-19 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2018-02-08 21:46 - 2015-08-19 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-02-08 21:46 - 2015-08-19 18:27 - 000000000 ____D C:\ProgramData\Package Cache
2018-02-08 21:46 - 2015-07-15 22:46 - 000000000 ____D C:\ProgramData\Mozilla
2018-02-08 21:46 - 2015-07-15 22:44 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2018-02-08 21:46 - 2015-07-15 22:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-02-08 21:46 - 2015-07-15 22:43 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-02-08 21:45 - 2015-08-19 18:43 - 000000000 ____D C:\ProgramData\boost_interprocess
2018-02-08 21:45 - 2015-08-19 18:36 - 000000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2018-02-08 21:45 - 2015-08-19 18:34 - 000000000 ____D C:\Program Files (x86)\Realtek
2018-02-08 21:45 - 2015-08-19 18:27 - 000000000 ____D C:\ProgramData\DriverSetupUtility
2018-02-08 21:45 - 2015-08-19 18:26 - 000000000 ____D C:\ProgramData\Intel
2018-02-08 21:45 - 2015-07-15 22:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-02-08 21:45 - 2015-07-15 22:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-02-08 21:45 - 2015-07-15 22:45 - 000000000 ____D C:\Program Files (x86)\WildGames
2018-02-08 21:45 - 2015-07-15 22:44 - 000000000 ____D C:\ProgramData\AVAST Software
2018-02-08 21:45 - 2015-07-15 22:44 - 000000000 ____D C:\Program Files (x86)\WildTangent Games
2018-02-08 21:44 - 2015-08-19 19:06 - 000000000 ____D C:\Program Files (x86)\Foxit PhantomPDF
2018-02-08 21:44 - 2015-08-19 18:54 - 000000000 ____D C:\Program Files (x86)\Dashlane
2018-02-08 21:44 - 2015-08-19 18:54 - 000000000 ____D C:\Program Files (x86)\Amazon
2018-02-08 21:44 - 2015-08-19 18:34 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-02-08 21:44 - 2015-08-19 18:28 - 000000000 ____D C:\Program Files (x86)\Intel
2018-02-08 21:44 - 2015-08-19 18:20 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-02-08 21:44 - 2015-07-15 22:47 - 000000000 ____D C:\Program Files (x86)\mcafee.com
2018-02-08 21:42 - 2015-08-19 18:54 - 000000000 ____D C:\Program Files\Booking.COM
2018-02-08 21:42 - 2015-08-19 18:36 - 000000000 ____D C:\Program Files\Common Files\QCA_Bluetooth
2018-02-08 21:42 - 2015-08-19 18:27 - 000000000 ____D C:\Program Files\DriverSetupUtility
2018-02-08 21:42 - 2015-07-15 22:47 - 000000000 ____D C:\Program Files\mcafee.com
2018-02-08 21:42 - 2015-07-15 22:47 - 000000000 ____D C:\Program Files\mcafee
2018-02-08 21:42 - 2015-07-10 08:14 - 000000000 ____D C:\Program Files\Windows Journal
2018-02-08 21:41 - 2015-07-15 22:46 - 000000000 ____D C:\Program Files\Acer
2018-02-08 21:41 - 2015-07-15 22:44 - 000000000 ____D C:\Program Files\AVAST Software
2018-02-08 20:38 - 2016-03-03 21:59 - 000000000 ___RD C:\Users\Leticia\Google Drive
2018-02-04 23:22 - 2017-06-07 17:22 - 000000000 ____D C:\Users\Leticia\Desktop\screenshots
2018-02-04 13:32 - 2016-05-22 21:31 - 000000000 ___HD C:\_acestream_cache_
2018-01-17 19:24 - 2016-03-02 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2018-02-08 21:23
 
==================== End of FRST.txt ============================
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10.02.2018 01
Ran by Leticia (10-02-2018 06:43:16)
Running from C:\Users\Leticia\Desktop\Files\etc
Windows 10 Home Version 1709 16299.192 (X64) (2018-02-09 03:01:54)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-741452133-3670782763-4255049870-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-741452133-3670782763-4255049870-503 - Limited - Disabled)
Guest (S-1-5-21-741452133-3670782763-4255049870-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-741452133-3670782763-4255049870-1003 - Limited - Enabled)
Leticia (S-1-5-21-741452133-3670782763-4255049870-1001 - Administrator - Enabled) => C:\Users\Leticia
WDAGUtilityAccount (S-1-5-21-741452133-3670782763-4255049870-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
12 Labours of Hercules III: Girl Power (HKLM-x32\...\WTA-44b15a0c-012a-42cf-98f1-165fff52d3de) (Version: 3.0.2.118 - WildTangent) Hidden
abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.10.2002 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2001 - Acer Incorporated)
abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.03.2003 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3005 - Acer Incorporated)
Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3001 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8109 - Acer Incorporated)
Acer Quick Access (HKLM\...\{E3678E72-78E3-4F91-A9FB-913876FF6DA2}) (Version: 2.00.3005 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 2.01.3002 - Acer Incorporated)
Amazon 1Button App (HKLM-x32\...\{FA378CD1-F32D-4610-9884-3902DF8AF826}) (Version: 2.3.8 - Amazon) <==== ATTENTION
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.4 - AVAST Software)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 17.9.3040 - AVG Technologies)
Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
Brave (HKU\S-1-5-21-741452133-3670782763-4255049870-1001\...\Brave) (Version: 0.20.30 - Brave Software)
Dashlane Upgrade Service (HKLM-x32\...\Dashlane Upgrade Service) (Version: 1.0.13.0 - Dashlane SAS)
Dino Storm (HKLM-x32\...\WildTangentGDF-acer-dinostorm) (Version: 13.0.0.6 - WildTangent) Hidden
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3011 - Acer Incorporated)
ELAN HIDI2C Filter Driver X64 13.6.3.1_WHQL (HKLM\...\Elantech) (Version: 13.6.3.1 - ELAN Microelectronic Corp.)
Foxit PhantomPDF (HKLM-x32\...\{A4023BDF-82D5-412D-9D58-8C2819EBFE2E}) (Version: 7.0.410.326 - Foxit Software Inc.)
Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 13.0.0.6 - WildTangent, Inc.)
Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 13.0.0.6 - WildTangent, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.140 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Home Makeover (HKLM-x32\...\WTA-3cf95c4f-180b-4280-8f16-c53e066361fb) (Version: 3.0.2.59 - WildTangent) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4248 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.253.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Jewel Match 3 (HKLM-x32\...\WTA-1230f393-e73b-4a65-b2df-1ad3a6b6744f) (Version: 2.2.0.97 - WildTangent) Hidden
Jewel Match Snowscapes (HKLM-x32\...\WTA-d63130dc-efc8-4c06-a15e-a2edcf5b04f3) (Version: 3.0.2.118 - WildTangent) Hidden
Magic Academy (HKLM-x32\...\WTA-c89a8073-438e-4611-9c1c-a1121411ab40) (Version: 2.2.0.97 - WildTangent) Hidden
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 15.0.179 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-741452133-3670782763-4255049870-1001\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 38.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 en-US)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
NVIDIA GeForce Experience 2.4.5.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.44 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.24 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Polar Bowler 1st Frame (HKLM-x32\...\WTA-134665ac-2bca-44cd-a74e-fb5c2e88e579) (Version: 3.0.2.59 - WildTangent) Hidden
Qualcomm Atheros QCA9377 Wireless LAN & Bluetooth Installer (HKLM-x32\...\{3241744A-BA36-41F0-B4AA-EF3946D00632}) (Version: 11.0.0.043 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Rory's Restaurant (HKLM-x32\...\WTA-7aae79e6-c8f9-4751-bb78-5f3a73b0dc29) (Version: 3.0.2.126 - WildTangent) Hidden
Runefall (HKLM-x32\...\WTA-8f50145d-d9dd-494c-aee5-8647a1ff13c9) (Version: 3.0.2.126 - WildTangent) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.5.44 - NVIDIA Corporation) Hidden
Transmission Remote GUI 5.0.1 (HKLM-x32\...\transgui_is1) (Version:  - Yury Sidorov)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version:  - WildTangent) Hidden
Vegas World (HKLM-x32\...\WildTangentGDF-acer-vegasworld) (Version: 13.0.0.6 - WildTangent) Hidden
Villagers and Heroes (HKLM-x32\...\WildTangentGDF-acer-villagersandheroes) (Version: 13.0.0.6 - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.0 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.11.16 - WildTangent) Hidden
WinSCP 5.11.3 (HKLM-x32\...\winscp3_is1) (Version: 5.11.3 - Martin Prikryl)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2018-02-09] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-01-27] (Foxit Software Inc.)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2016-09-23] (McAfee, Inc.)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-09-25] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2018-02-09] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2016-09-23] (McAfee, Inc.)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {00B945B6-1EE5-460F-92E6-010BAF3F9031} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {084B3761-68CD-4EE9-8BC6-E92B2F494A51} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Power Management\ePowerButton_NB.exe [2015-05-14] (Acer Incorporated)
Task: {08BEC313-77B6-4426-9D22-609D701A07E9} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\platform\McUICnt.exe [2016-09-20] (McAfee, Inc.)
Task: {13C891AC-B49C-44AB-9547-DDFD1DBA6D84} - System32\Tasks\FUB => C:\Program Files\DriverSetupUtility\FUB\FUB.bat [2012-05-31] () <==== ATTENTION
Task: {20BEFF97-83FB-4855-B026-0404CFF43E1C} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2017-10-02] (Acer)
Task: {23552D88-0999-4CA9-B578-FCAD8D3BBEE0} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [2015-05-14] ()
Task: {34C2AF5D-01C9-4E59-8F93-803828B2A13F} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [2015-05-14] (Acer Incorporated)
Task: {3DF849C2-CC87-41F6-80F2-EAE16DBF4250} - System32\Tasks\Avast SecureLine => C:\Program Files\AVAST Software\SecureLine\SecureLine.exe [2015-04-29] (AVAST Software)
Task: {4E90EA1C-71D0-436E-AC84-D97327959AC0} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2015-07-09] (Acer Incorporated)
Task: {818B801B-EF92-4D74-9977-D4BF6A59A9A1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-09] (Google Inc.)
Task: {873DC160-5E70-4A92-BC94-9FB6BFAFF9A4} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2015-04-29] (AVAST Software)
Task: {8831D1F8-E6D0-4D0B-BCDA-19BAF52A02EB} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2015-07-10] ()
Task: {8CA7B7B3-3F6A-46B2-BD1A-9AFDDF32DD12} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [2015-07-10] ()
Task: {8E24316E-D5CA-4A73-ADED-45B1E406D788} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {A2A04E3F-DD2B-4C05-B257-EA113A3E6DE4} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2015-07-09] (Acer Incorporated)
Task: {C2824150-7469-43A9-A0F6-8C8AF48E2A9F} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2015-07-10] ()
Task: {CDED0FE7-B8C0-45E5-9548-B9CA73096181} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-03-12] (TODO: <Company name>)
Task: {DCB0E76B-8166-47AF-ADE1-43D468EA3B19} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2017-09-26] (Acer Incorporated)
Task: {DE106C51-444F-48AF-9854-F1EE7889ABDF} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe [2015-03-14] (Microsoft Corporation)
Task: {E6E23809-FF7E-423B-AB21-75BD4C250EFB} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {E6EFDA30-5641-4972-BF37-4459DEA99E5D} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2018-02-09] (AVG Technologies CZ, s.r.o.)
Task: {F49C7448-61D5-432A-BA94-014F40FBC42C} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [2017-09-28] ()
Task: {F8DA64E9-6CC0-456C-94D8-7718E96B5B33} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2018-02-09] (AVG Technologies CZ, s.r.o.)
Task: {F9577D0F-4006-41A1-9656-45C602D8F07F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-09] (Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive для бизнеса.lnk -> C:\Windows\Installer\{90160000-0011-0000-1000-0000000FF1CE}\grv_icons.exe (No File) <==== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype для бизнеса 2016.lnk -> C:\Windows\Installer\{90160000-0011-0000-1000-0000000FF1CE}\lyncicon.exe (No File) <==== Cyrillic
 
ShortcutWithArgument: C:\Users\Leticia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Public\Desktop\Booking.com.lnk -> C:\Program Files\Booking.COM\StartURL.exe () -> hxxp://www.booking.com/index.html?aid=379334
 
==================== Loaded Modules (Whitelisted) ==============
 
2017-09-29 08:41 - 2017-09-29 08:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2015-07-15 22:44 - 2015-04-29 19:04 - 000445240 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
2015-07-15 22:54 - 2015-05-08 12:41 - 000111872 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2017-09-25 00:01 - 2017-09-25 00:01 - 000400984 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-12-18 07:16 - 2017-12-18 07:16 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-12-18 07:16 - 2017-12-18 07:16 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-07-10 05:38 - 2015-07-10 05:38 - 004580704 _____ () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
2017-09-28 17:21 - 2017-09-28 17:21 - 001769312 _____ () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
2018-02-08 22:21 - 2018-02-08 22:21 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-02-08 22:21 - 2018-02-08 22:21 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-02-08 22:21 - 2018-02-08 22:21 - 025135104 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-02-08 22:21 - 2018-02-08 22:21 - 002542592 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\skypert.dll
2015-08-19 18:34 - 2015-02-08 22:18 - 000124440 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2018-02-09 22:13 - 2018-02-01 01:13 - 004433752 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.140\libglesv2.dll
2018-02-09 22:13 - 2018-02-01 01:13 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.140\libegl.dll
2018-02-09 22:18 - 2016-10-25 00:31 - 000508368 _____ () C:\Program Files\Common Files\McAfee\Sustainability\GenericPlugin.dll
2018-02-09 22:23 - 2018-02-09 22:23 - 000529408 _____ () \\?\C:\Users\Leticia\AppData\Local\Temp\4819e07f-f68c-4412-8edd-4331340eb27a.tmp.node
2018-02-09 22:24 - 2018-02-09 22:24 - 000235520 _____ () \\?\C:\Users\Leticia\AppData\Local\Temp\1654a025-492e-40b2-bcc1-d577ed04ad18.tmp.node
2018-02-09 22:24 - 2018-02-09 22:24 - 000235008 _____ () \\?\C:\Users\Leticia\AppData\Local\Temp\04c51d51-66a5-4c05-9950-39f6ec284de2.tmp.node
2018-02-09 22:24 - 2018-02-09 22:24 - 000151552 _____ () \\?\C:\Users\Leticia\AppData\Local\Temp\7edc269d-ffc1-4ca1-93f7-66cef5a3d436.tmp.node
2018-02-09 22:22 - 2018-02-09 22:22 - 004430144 _____ () C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\libglesv2.dll
2018-02-09 22:22 - 2018-02-09 22:22 - 000096064 _____ () C:\Users\Leticia\AppData\Local\Brave\app-0.20.30\libegl.dll
2015-08-19 18:45 - 2015-06-03 16:06 - 000011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-06-24 03:07 - 2015-06-24 03:07 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2015-07-15 22:44 - 2015-04-29 19:04 - 038561984 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2017-09-22 15:14 - 2017-09-22 15:14 - 000202528 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll
2017-09-22 15:17 - 2017-09-22 15:17 - 000654072 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll
2017-09-22 15:17 - 2017-09-22 15:17 - 000641312 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll
2017-09-22 15:16 - 2017-09-22 15:16 - 000119072 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll
2018-02-08 22:08 - 2018-02-08 22:08 - 000015136 _____ () C:\WINDOWS\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll
2017-09-26 12:35 - 2017-09-26 12:35 - 000013088 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll
2017-09-26 12:34 - 2017-09-26 12:34 - 000277856 _____ () C:\Program Files (x86)\Acer\AOP Framework\libcurl.dll
2017-10-02 14:56 - 2017-10-02 14:56 - 000202456 _____ () C:\Program Files (x86)\Acer\Acer Portal\curllib.dll
2017-10-02 14:56 - 2017-10-02 14:56 - 000119000 _____ () C:\Program Files (x86)\Acer\Acer Portal\OpenLDAP.dll
2018-02-09 22:27 - 2018-02-09 22:27 - 000207272 _____ () C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll
2018-02-09 22:27 - 2018-02-09 22:27 - 000059136 _____ () C:\Program Files (x86)\AVG\Antivirus\module_lifetime.dll
2018-02-09 22:27 - 2018-02-09 22:27 - 000058624 _____ () C:\Program Files (x86)\AVG\Antivirus\dll_loader.dll
2018-02-09 22:27 - 2018-02-09 22:27 - 067109376 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll
2018-02-09 22:27 - 2018-02-09 22:27 - 000290392 _____ () C:\Program Files (x86)\AVG\Antivirus\tasks_core.dll
2018-02-10 06:31 - 2018-02-10 06:31 - 000011776 _____ () C:\Users\Leticia\AppData\Local\Temp\nskB04C.tmp\System.dll
2018-02-10 06:31 - 2018-02-10 06:31 - 000014848 _____ () C:\Users\Leticia\AppData\Local\Temp\nskB04C.tmp\UAC.dll
2018-02-10 06:32 - 2018-02-10 06:32 - 000011776 _____ () C:\Users\Leticia\AppData\Local\Temp\nskB008.tmp\System.dll
2018-02-10 06:32 - 2018-02-10 06:32 - 000014848 _____ () C:\Users\Leticia\AppData\Local\Temp\nskB008.tmp\UAC.dll
2018-02-10 06:32 - 2018-02-10 06:32 - 000009728 _____ () C:\Users\Leticia\AppData\Local\Temp\nskB008.tmp\nsDialogs.dll
2018-02-05 15:27 - 2018-02-05 15:27 - 001011200 _____ () C:\Users\Leticia\AppData\Local\Temp\nskB008.tmp\Fusion.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\.DEFAULT\...\amazon.com -> hxxps://amazon.com
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-07-10 06:04 - 2015-07-10 06:02 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-741452133-3670782763-4255049870-1001\Control Panel\Desktop\\Wallpaper -> c:\users\leticia\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{c44340c4-526b-457d-af0f-b05ddb864575}.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{6948BFC8-C11E-4091-9971-5D9732F29779}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0BDDEFD0-7809-4A3C-A7DA-32324316A70F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0E020968-1321-423E-BC81-0949E4AE6BA1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F9D1EAED-DAC2-4D14-A1C0-59CC594229BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{1DA34145-33D8-47C4-B077-671B38050023}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{AA2269FD-2D5B-42CF-9F27-C4D89353FBD3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0BA0C669-46FB-4B17-9E32-97F780D14178}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{17FCFDCD-31F7-4B6C-A4EE-66C2DC308EEE}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{78E0BC95-8376-4CA1-BC3C-EA02052CAE85}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{8422A92D-A3BC-4FCC-917C-7111B3B4421F}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{C0A52E9B-F9FF-4379-9110-831C67376EB2}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{249B7941-DD6B-4802-A656-1C3DDB436ED9}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{6D9B2179-E880-4073-8CE4-3F08348AF48F}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{022F2404-D815-4F4F-A522-F0772A601AFD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F3BB3140-F82D-4A59-B999-C9BB903092F3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{962DC971-0CD0-4C74-AE46-5880A5BD4021}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3E9FC4A5-0625-4A1B-B07D-078BF607C22D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FC3D7F02-EE4C-4E4A-81A2-E17C9F192B87}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Restore Points =========================
 
ATTENTION: System Restore is disabled
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (02/09/2018 11:48:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4609
 
Error: (02/09/2018 11:48:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4609
 
Error: (02/09/2018 11:48:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (02/09/2018 11:48:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3484
 
Error: (02/09/2018 11:48:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3484
 
Error: (02/09/2018 11:48:52 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (02/09/2018 11:48:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2375
 
Error: (02/09/2018 11:48:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2375
 
Error: (02/09/2018 11:48:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (02/09/2018 11:48:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1281
 
 
System errors:
=============
Error: (02/10/2018 06:33:42 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/10/2018 06:30:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Anti-Spam Service service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
 
Error: (02/10/2018 06:30:45 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Anti-Spam Service service to connect.
 
Error: (02/09/2018 10:31:22 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The avgbIDSAgent service terminated with the following service-specific error: 
%%3758213661
 
Error: (02/09/2018 10:25:25 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-C4KKR1A2)
Description: DCOM got error "1053" attempting to start the service mcpltsvc with arguments "Unavailable" in order to run the server:
{20966775-18A4-4299-B8E3-772C336B52A7}
 
Error: (02/09/2018 10:25:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Platform Services service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
 
Error: (02/09/2018 10:25:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Platform Services service to connect.
 
Error: (02/09/2018 10:25:25 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-C4KKR1A2)
Description: DCOM got error "1053" attempting to start the service mcpltsvc with arguments "Unavailable" in order to run the server:
{20966775-18A4-4299-B8E3-772C336B52A7}
 
Error: (02/09/2018 10:25:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The McAfee Platform Services service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
 
Error: (02/09/2018 10:25:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Platform Services service to connect.
 
 
CodeIntegrity:
===================================
  Date: 2018-02-10 06:33:50.717
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-10 06:33:50.714
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-10 06:33:42.634
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-10 06:33:42.631
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-10 06:30:44.330
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-10 06:30:44.316
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-10 06:30:44.133
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-10 06:30:44.113
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-09 23:43:09.944
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2018-02-09 23:43:09.942
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 72%
Total physical RAM: 8106.45 MB
Available physical RAM: 2265.53 MB
Total Virtual: 10026.45 MB
Available Virtual: 3542.68 MB
 
==================== Drives ================================
 
Drive c: (Acer) (Fixed) (Total:930.91 GB) (Free:467.64 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 96A5DBCD)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

Edited by mister leigh, 10 February 2018 - 06:20 AM.

  • 0

Advertisements


#2
DonnaB

DonnaB

    Miss Congeniality

  • GeekU Moderator
  • 8,166 posts
Hi there mister leigh,

McInst.exe is an EXE file associated with McAfee Anitivirus. You have both McAfee and AVG installed:

The real-time protection of two or more antivirus programs may conflict with each other and cause the following:
  • False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
  • Conflicts: Your system may lock up due to both products attempting to access the same file at the same time.
  • Performance: More that one antivirus will cause your PC to become slow and it may even crash or blue screen.
  • Less protection: Two antivirus trying to scan the same file may interfere with the process and allow a malicious file onto the computer without notice to you.
Please uninstall McAfee through the Control Panel. To ensure all residual McAfee files are removed I would also like to suggest that you download and run the McAfee Consumer Products Removal tool.

Your computer should behave much better once you reboot the computer after removal of McAfee.

Let me know if you run into any problems.

Donna :)
  • 1

#3
DonnaB

DonnaB

    Miss Congeniality

  • GeekU Moderator
  • 8,166 posts

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP