For some reason I still can't get my computer to identify my big monitor. I have used it for the last year, then a couple of weeks ago, when all the problems started, it reverted back to the original monitor.
FRST log ~
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:02-08-2015 01
Ran by e (administrator) on STATESECMONITOR (04-08-2015 20:25:23)
Running from C:\Users\e\Desktop
Loaded Profiles: e (Available Profiles: e)
Platform: Windows 8.1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamresearch.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngtool.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngtool.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13263072 2012-12-12] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1260256 2013-01-04] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [764032 2012-08-10] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-08-10] (Qualcomm Atheros Commnucations)
HKLM\...\Run: [HotKeysCmds] => C:\windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\windows\system32\igfxpers.exe
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-07] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-12] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [97392 2012-08-15] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-08-04] (AVAST Software)
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: lsassvrtdbks.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.com <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.com <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: syskey.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\Appdata\Roaming\Microsoft\Windows\IEUpdate\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.scr <====== ATTENTION
HKLM Group Policy restriction on software: cipher.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.com <====== ATTENTION
HKLM Group Policy restriction on software: ** <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %programfiles%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: *:\$Recycle.Bin <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.gif*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wmv*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.txt*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %systemdrive%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %programfiles(x86)%\*\svchost.exe <====== ATTENTION
HKLM Group Policy restriction on software: %allusersprofile%\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: lsassw86s.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.com <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Local\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.7z*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.rtf*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wma*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xlsx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.com <====== ATTENTION
HKLM Group Policy restriction on software: scsvserv.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.docx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.wav*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.mp3*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.doc*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.ppt*.com <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %programdata%\Microsoft\Windows\Start Menu\Programs\Startup\*.com <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.zip*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.jpg*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.png*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.scr <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\LocalLow\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.divx*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.pdf*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.xls*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\AppData\Roaming\*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.rar*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.pif <====== ATTENTION
HKLM Group Policy restriction on software: *.pptx*.com <====== ATTENTION
HKLM Group Policy restriction on software: vssadmin.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.mp4*.pif <====== ATTENTION
HKLM Group Policy restriction on software: %userprofile%\*.pif <====== ATTENTION
HKLM Group Policy restriction on software: C:\Users\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.pub*.com <====== ATTENTION
HKLM Group Policy restriction on software: %appdata%\*\*.scr <====== ATTENTION
HKLM Group Policy restriction on software: *.jpeg*.exe <====== ATTENTION
HKLM Group Policy restriction on software: *.avi*.com <====== ATTENTION
HKLM Group Policy restriction on software: *.bmp*.scr <====== ATTENTION
HKU\S-1-5-21-1957965229-2164351736-1395244876-1001\...\Run: [Nike+ Connect] => "C:\Users\e\AppData\Local\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
HKU\S-1-5-21-1957965229-2164351736-1395244876-1001\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1957965229-2164351736-1395244876-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-1957965229-2164351736-1395244876-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-04] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1957965229-2164351736-1395244876-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
http://yahoo.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-10] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-04] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-04] (AVAST Software)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
Tcpip\Parameters: [DhcpNameServer] 68.105.28.11 68.105.29.11 68.105.28.12
Tcpip\..\Interfaces\{6A1D41FA-DC74-4930-BACA-22F167ADDC1F}: [DhcpNameServer] 68.105.28.11 68.105.29.11 68.105.28.12
FireFox:
========
FF ProfilePath: C:\Users\e\AppData\Roaming\Mozilla\Firefox\Profiles\fvsqiata.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-07-27] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1957965229-2164351736-1395244876-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\e\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-03-11] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-08-04]
FF Extension: No Name - C:\Users\e\AppData\Roaming\Mozilla\Firefox\Profiles\fvsqiata.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [not found]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]
Chrome:
=======
CHR Profile: C:\Users\e\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-26]
CHR Extension: (Google Docs) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-26]
CHR Extension: (Google Drive) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-26]
CHR Extension: (YouTube) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-26]
CHR Extension: (Google Search) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-26]
CHR Extension: (Google Sheets) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-26]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-26]
CHR Extension: (Gmail) - C:\Users\e\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-26]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-04]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-10] (Qualcomm Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-04] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-08-04] (Avast Software)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
S2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593976 2012-10-19] (Samsung Electronics CO., LTD.)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S2 RalinkRegistryWriter; C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry.exe [374112 2011-11-22] (Ralink Technology, Corp.)
S2 RalinkRegistryWriter64; C:\Program Files (x86)\Belkin\F9L1103\v1\Common\RaRegistry64.exe [451936 2011-11-22] (Ralink Technology, Corp.)
S2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2014-10-03] (CyberLink)
S2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)
S2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-10] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-04] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048856 2015-08-04] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-04] (AVAST Software)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-10] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-11-21] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-24] (CyberLink)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-08-04] (AVAST Software)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-08-04] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-04 20:25 - 2015-08-04 20:25 - 00000000 ____D C:\Users\e\Desktop\FRST-OlderVersion
2015-08-04 20:17 - 2015-08-04 20:17 - 00000000 ____D C:\Users\e\AppData\Roaming\AVAST Software
2015-08-04 20:16 - 2015-08-04 20:16 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2015-08-04 20:16 - 2015-08-04 20:16 - 00000000 ____D C:\WINDOWS\system32\vbox
2015-08-04 20:14 - 2015-08-04 20:14 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-08-04 20:14 - 2015-08-04 20:14 - 00001938 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-08-04 20:14 - 2015-08-04 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-08-04 20:13 - 2015-08-04 20:13 - 01048856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-08-04 20:13 - 2015-08-04 20:13 - 00447944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-08-04 20:13 - 2015-08-04 20:13 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-08-04 20:13 - 2015-08-04 20:13 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-08-04 20:13 - 2015-08-04 20:13 - 00150672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-08-04 20:13 - 2015-08-04 20:13 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-08-04 20:13 - 2015-08-04 20:13 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-08-04 20:13 - 2015-08-04 20:13 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-08-04 20:13 - 2015-08-04 20:13 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-08-04 20:13 - 2015-08-04 20:13 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-08-04 20:13 - 2015-08-04 20:12 - 00115152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\ngvss.sys
2015-08-04 20:10 - 2015-08-04 20:10 - 00447944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\vjbkihkd.sys
2015-08-04 20:09 - 2015-08-04 20:10 - 158417712 _____ (AVAST Software) C:\Users\e\Downloads\avast_free_antivirus_setup.exe
2015-08-04 07:46 - 2015-08-04 07:46 - 00852684 _____ C:\Users\e\Downloads\SecurityCheck.exe
2015-08-04 07:45 - 2015-08-04 07:45 - 00001030 _____ C:\Users\e\Desktop\MWB.txt
2015-08-04 06:46 - 2015-08-04 06:48 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-04 06:46 - 2015-08-04 06:46 - 00001118 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-04 06:46 - 2015-08-04 06:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-04 06:45 - 2015-08-04 06:46 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-04 06:45 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-04 06:45 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-04 06:45 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-04 06:42 - 2015-08-04 06:43 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\e\Downloads\mbam-setup-2.1.8.1057 (1).exe
2015-08-04 06:42 - 2015-08-04 06:42 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\e\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-03 21:12 - 2015-08-03 21:12 - 00001040 _____ C:\Users\e\Desktop\JRT.txt
2015-08-03 21:07 - 2015-08-03 21:07 - 01798176 _____ (Malwarebytes Corporation) C:\Users\e\Downloads\JRT.exe
2015-08-03 20:54 - 2015-08-03 20:54 - 00000000 ___RD C:\Users\e\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-08-03 20:45 - 2015-08-03 20:50 - 00000000 ____D C:\AdwCleaner
2015-08-03 20:44 - 2015-08-03 20:44 - 02248704 _____ C:\Users\e\Downloads\AdwCleaner.exe
2015-08-02 13:21 - 2015-08-02 13:22 - 00032154 _____ C:\Users\e\Desktop\Addition.txt
2015-08-02 13:20 - 2015-08-04 20:25 - 00028907 _____ C:\Users\e\Desktop\FRST.txt
2015-08-02 13:02 - 2015-08-02 13:02 - 00001131 _____ C:\Users\e\Desktop\FRST64.exe - Shortcut (2).lnk
2015-08-02 10:06 - 2015-08-02 10:06 - 00000000 ____D C:\Users\e\Downloads\FRST-OlderVersion
2015-07-28 13:25 - 2015-08-04 20:25 - 00000981 _____ C:\Users\e\Desktop\FRST64.exe - Shortcut.lnk
2015-07-28 13:24 - 2015-07-28 13:24 - 00000948 _____ C:\Users\e\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRST64.lnk
2015-07-28 13:23 - 2015-07-28 13:23 - 00001109 _____ C:\Users\e\Downloads\FRST64.exe - Shortcut.lnk
2015-07-28 13:14 - 2015-08-02 10:10 - 00039849 _____ C:\Users\e\Downloads\Addition.txt
2015-07-28 13:12 - 2015-08-04 20:25 - 00000000 ____D C:\FRST
2015-07-28 13:12 - 2015-08-02 10:10 - 00045136 _____ C:\Users\e\Downloads\FRST.txt
2015-07-28 13:11 - 2015-08-04 20:25 - 02169856 _____ (Farbar) C:\Users\e\Desktop\FRST64.exe
2015-07-25 23:18 - 2015-07-25 23:18 - 00931408 _____ (Google Inc.) C:\Users\e\Downloads\GoogleEarthSetup.exe
2015-07-24 14:27 - 2015-07-24 14:28 - 65612747 _____ C:\Users\e\Downloads\DWB RC WL.WMV
2015-07-24 14:27 - 2015-07-24 14:28 - 45533766 _____ C:\Users\e\Downloads\100_0042 - Short.mov
2015-07-24 14:27 - 2015-07-24 14:27 - 37544476 _____ C:\Users\e\Downloads\IMG_9499.MOV
2015-07-24 14:27 - 2015-07-24 14:27 - 27381695 _____ C:\Users\e\Downloads\FNC2.mp4
2015-07-24 14:27 - 2015-07-24 14:27 - 01703887 _____ C:\Users\e\Downloads\mmmm.mp4
2015-07-24 14:26 - 2015-07-24 14:27 - 02050454 _____ C:\Users\e\Downloads\Ride_011115.wmv.mp4
2015-07-24 14:26 - 2015-07-24 14:26 - 07327531 _____ C:\Users\e\Downloads\150208-29i.m4v
2015-07-24 14:24 - 2015-07-24 14:24 - 17419129 _____ C:\Users\e\Downloads\20 - Riding [bleep] Playing with [bleep] She Cums.mp4
2015-07-24 14:23 - 2015-07-24 14:24 - 08167180 _____ C:\Users\e\Downloads\07 - He [bleep] She Pushes His [bleep] In.mp4
2015-07-24 14:23 - 2015-07-24 14:24 - 07227241 _____ C:\Users\e\Downloads\04 - Rubbing His [bleep] on Pussy Squirt.mp4
2015-07-24 14:19 - 2015-07-24 14:19 - 90522384 _____ C:\Users\e\Downloads\comp 2.mp4
2015-07-24 14:19 - 2015-07-24 14:19 - 42932595 _____ C:\Users\e\Downloads\sofa pussy show.mp4
2015-07-24 01:09 - 2015-07-24 01:09 - 03030486 _____ C:\Users\e\Downloads\SanDiego.mp4
2015-07-24 01:09 - 2015-07-24 01:09 - 02168268 _____ C:\Users\e\Downloads\shower.mp4
2015-07-24 01:08 - 2015-07-24 01:08 - 03170188 _____ C:\Users\e\Downloads\Vegas.mp4
2015-07-24 01:06 - 2015-07-24 01:06 - 28594866 _____ C:\Users\e\Downloads\Cum on NFL.mp4
2015-07-24 01:06 - 2015-07-24 01:06 - 24866641 _____ C:\Users\e\Downloads\NFL Loves Doggystyle.mp4
2015-07-24 01:04 - 2015-07-24 01:07 - 24492097 _____ C:\Users\e\Downloads\NFL Pumped from Behind - pt.2 (1).mp4
2015-07-24 01:04 - 2015-07-24 01:04 - 45608066 _____ C:\Users\e\Downloads\Cum in NFL (1).mp4
2015-07-24 01:03 - 2015-07-24 01:03 - 15816076 _____ C:\Users\e\Downloads\NFL Cum In - Cum On (1).mp4
2015-07-24 01:00 - 2015-07-24 01:00 - 13387050 _____ C:\Users\e\Downloads\MVI_1482.AVI
2015-07-24 01:00 - 2015-07-24 01:00 - 103482955 _____ C:\Users\e\Downloads\Sucking (3).mp4
2015-07-24 00:59 - 2015-07-24 01:01 - 07370901 _____ C:\Users\e\Downloads\Creaming on her bbc.mp4
2015-07-24 00:59 - 2015-07-24 01:00 - 69543117 _____ C:\Users\e\Downloads\plus4.wmv
2015-07-24 00:59 - 2015-07-24 01:00 - 38719658 _____ C:\Users\e\Downloads\D(5).mp4
2015-07-24 00:59 - 2015-07-24 00:59 - 26025542 _____ C:\Users\e\Downloads\R 22.mp4
2015-07-24 00:59 - 2015-07-24 00:59 - 15950478 _____ C:\Users\e\Downloads\clips_suck black.mp4
2015-07-24 00:53 - 2015-07-24 00:53 - 66271137 _____ C:\Users\e\Downloads\Jamaica.wmv
2015-07-24 00:53 - 2015-07-24 00:53 - 17777688 _____ C:\Users\e\Downloads\clips_ca bbc doggy.mp4
2015-07-24 00:53 - 2015-07-24 00:53 - 12103527 _____ C:\Users\e\Downloads\bwl5.wmv
2015-07-24 00:52 - 2015-07-24 00:53 - 89888832 _____ C:\Users\e\Downloads\MVI_1151 (1).AVI
2015-07-24 00:52 - 2015-07-24 00:53 - 54006915 _____ C:\Users\e\Downloads\Slut3.wmv
2015-07-24 00:52 - 2015-07-24 00:53 - 38710743 _____ C:\Users\e\Downloads\Stiletto2 sample.wmv
2015-07-24 00:52 - 2015-07-24 00:53 - 07120378 _____ C:\Users\e\Downloads\3573571_sultry_the_gangbang (1).mp4
2015-07-24 00:52 - 2015-07-24 00:53 - 04213558 _____ C:\Users\e\Downloads\amandaofficerc.mp4
2015-07-24 00:52 - 2015-07-24 00:53 - 03219161 _____ C:\Users\e\Downloads\msuc.wmv
2015-07-24 00:52 - 2015-07-24 00:52 - 76971212 _____ C:\Users\e\Downloads\MVI_1163.AVI
2015-07-24 00:52 - 2015-07-24 00:52 - 00873136 _____ C:\Users\e\Downloads\20140927_14522[1].mp4
2015-07-24 00:49 - 2015-07-24 00:50 - 89888832 _____ C:\Users\e\Downloads\MVI_1151.AVI
2015-07-24 00:49 - 2015-07-24 00:50 - 64351061 _____ C:\Users\e\Downloads\Fukme1.wmv
2015-07-24 00:49 - 2015-07-24 00:49 - 02038192 _____ C:\Users\e\Downloads\she swallowed.wmv
2015-07-24 00:47 - 2015-07-24 00:47 - 13632403 _____ C:\Users\e\Downloads\Hooded Sub #2.MOV
2015-07-24 00:47 - 2015-07-24 00:47 - 09060845 _____ C:\Users\e\Downloads\Hooded Sub #1.MOV
2015-07-24 00:47 - 2015-07-24 00:47 - 08199273 _____ C:\Users\e\Downloads\Hooded Sub #3.MOV
2015-07-24 00:43 - 2015-07-24 00:45 - 21290961 _____ C:\Users\e\Downloads\[bleep]ing 3.mov
2015-07-24 00:43 - 2015-07-24 00:43 - 18821504 _____ C:\Users\e\Downloads\[bleep]ing 2.mov
2015-07-24 00:42 - 2015-07-24 00:43 - 29518302 _____ C:\Users\e\Downloads\[bleep]ing.mov
2015-07-21 03:21 - 2015-07-21 03:22 - 12064519 _____ C:\Users\e\Downloads\My Movie (1).mp4
2015-07-21 03:21 - 2015-07-21 03:22 - 08573863 _____ C:\Users\e\Downloads\tanning02 (1).wmv
2015-07-21 03:21 - 2015-07-21 03:21 - 16182507 _____ C:\Users\e\Downloads\horny hangover wank pt1.mp4
2015-07-21 03:21 - 2015-07-21 03:21 - 04837881 _____ C:\Users\e\Downloads\pcplay01.wmv
2015-07-21 03:20 - 2015-07-21 03:22 - 13302606 _____ C:\Users\e\Downloads\Hitachi1.mp4
2015-07-21 03:20 - 2015-07-21 03:21 - 14452878 _____ C:\Users\e\Downloads\5.9.15.IMG_5682.trimmed.mov
2015-07-21 03:20 - 2015-07-21 03:20 - 10313818 _____ C:\Users\e\Downloads\Marie 1.mp4
2015-07-21 03:17 - 2015-07-21 03:18 - 67360666 _____ C:\Users\e\Downloads\Toys (7).mp4
2015-07-21 03:17 - 2015-07-21 03:18 - 60352038 _____ C:\Users\e\Downloads\TargetDr RubOut.wmv
2015-07-21 03:17 - 2015-07-21 03:17 - 15473998 _____ C:\Users\e\Downloads\Toys (10).mp4
2015-07-21 03:17 - 2015-07-21 03:17 - 04344063 _____ C:\Users\e\Downloads\Toys 2 modified 3.m4v
2015-07-21 03:17 - 2015-07-21 03:17 - 03368491 _____ C:\Users\e\Downloads\Mast_2015_2.mp4
2015-07-21 03:11 - 2015-07-21 03:12 - 39013935 _____ C:\Users\e\Downloads\white wicked weasel 4.mp4
2015-07-21 03:11 - 2015-07-21 03:12 - 36281036 _____ C:\Users\e\Downloads\Im on a boat vid 1.mp4
2015-07-21 03:11 - 2015-07-21 03:11 - 48329176 _____ C:\Users\e\Downloads\white wicked weasel 31.mp4
2015-07-21 03:11 - 2015-07-21 03:11 - 40696981 _____ C:\Users\e\Downloads\white wicked weasel 5.mp4
2015-07-21 03:10 - 2015-07-21 03:12 - 79549788 _____ C:\Users\e\Downloads\pink panty rub 2.mp4
2015-07-21 03:10 - 2015-07-21 03:12 - 52472509 _____ C:\Users\e\Downloads\white wicked weasel 2.mp4
2015-07-21 03:10 - 2015-07-21 03:11 - 69423655 _____ C:\Users\e\Downloads\pink panty rub 1.mp4
2015-07-21 03:10 - 2015-07-21 03:11 - 54511733 _____ C:\Users\e\Downloads\white wicked weasel 1.mp4
2015-07-21 03:10 - 2015-07-21 03:10 - 18877370 _____ C:\Users\e\Downloads\s and m dance.mp4
2015-07-21 03:10 - 2015-07-21 03:10 - 16468555 _____ C:\Users\e\Downloads\loft pussy suck.mp4
2015-07-21 03:06 - 2015-07-21 03:07 - 72043969 _____ C:\Users\e\Downloads\cfm video 2.mp4
2015-07-21 03:06 - 2015-07-21 03:07 - 109390178 _____ C:\Users\e\Downloads\cfm video 1.mp4
2015-07-21 03:06 - 2015-07-21 03:07 - 08598450 _____ C:\Users\e\Downloads\yellow bikini 7.mp4
2015-07-21 03:06 - 2015-07-21 03:06 - 73766940 _____ C:\Users\e\Downloads\Annies bubble fun part 3.wmv
2015-07-21 03:06 - 2015-07-21 03:06 - 21461974 _____ C:\Users\e\Downloads\yellow bikini 6.wmv
2015-07-21 03:06 - 2015-07-21 03:06 - 11453824 _____ C:\Users\e\Downloads\yellow bikini 5.wmv
2015-07-21 03:06 - 2015-07-21 03:06 - 09044024 _____ C:\Users\e\Downloads\blue WW 1.mp4
2015-07-21 03:03 - 2015-07-21 03:04 - 41214340 _____ C:\Users\e\Downloads\yellow bikini 4.wmv
2015-07-21 03:01 - 2015-07-21 03:01 - 25172783 _____ C:\Users\e\Downloads\lena_dildo_plug.wmv
2015-07-21 03:01 - 2015-07-21 03:01 - 13624794 _____ C:\Users\e\Downloads\lena_action.avi
2015-07-21 02:59 - 2015-07-21 03:00 - 44482893 _____ C:\Users\e\Downloads\lena_dildo.wmv
2015-07-16 13:22 - 2015-07-16 13:22 - 00002998 _____ C:\WINDOWS\System32\Tasks\SUPatchForW10Up
2015-07-06 16:54 - 2015-07-06 16:55 - 15054256 _____ C:\Users\e\Downloads\elfreneticotwist.wmv
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-04 20:11 - 2013-02-20 19:21 - 00000000 ____D C:\ProgramData\AVAST Software
2015-08-04 20:08 - 2015-06-11 12:26 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-04 20:00 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-04 19:35 - 2015-02-22 22:17 - 01399076 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-04 17:16 - 2015-02-23 18:26 - 00003938 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{52D1E520-8463-4173-977F-6BA65D81C2E3}
2015-08-04 06:47 - 2013-02-17 23:30 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1957965229-2164351736-1395244876-1001
2015-08-03 22:08 - 2015-06-11 12:26 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-03 21:04 - 2014-05-27 00:47 - 00000000 ____D C:\Users\e\AppData\Roaming\Skype
2015-08-03 21:04 - 2014-05-27 00:47 - 00000000 ____D C:\ProgramData\Skype
2015-08-03 20:59 - 2012-11-18 19:33 - 00000000 ____D C:\ProgramData\WinClon
2015-08-03 20:57 - 2014-11-21 03:44 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-03 20:51 - 2013-08-22 09:46 - 00433629 _____ C:\WINDOWS\setupact.log
2015-08-03 20:51 - 2013-08-22 09:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-03 20:50 - 2013-08-22 08:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-02 13:09 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-02 13:07 - 2015-03-04 07:41 - 00009216 ___SH C:\Users\e\Desktop\Thumbs.db
2015-08-02 13:06 - 2015-02-22 21:49 - 00000000 ____D C:\Users\e
2015-08-02 13:06 - 2014-11-21 03:34 - 00012770 _____ C:\WINDOWS\PFRO.log
2015-08-01 12:37 - 2015-06-11 12:26 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-30 19:51 - 2015-02-23 19:11 - 11729408 ___SH C:\Users\e\Downloads\Thumbs.db
2015-07-16 22:28 - 2015-02-21 20:05 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-07-16 22:03 - 2015-06-11 12:26 - 00003910 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-16 22:03 - 2015-06-11 12:26 - 00003674 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-16 18:22 - 2014-05-09 11:28 - 00000000 ____D C:\Program Files (x86)\Steam
2015-07-16 18:20 - 2013-09-24 07:20 - 00000000 ____D C:\Program Files (x86)\WarThunder
2015-07-16 13:22 - 2012-11-18 19:36 - 00000000 ____D C:\ProgramData\Samsung
2015-07-16 08:49 - 2015-01-04 07:39 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-07-09 07:29 - 2015-02-22 21:42 - 00027062 _____ C:\WINDOWS\system32\lvcoinst.log
2015-07-07 14:49 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\servicing
2015-07-07 14:48 - 2015-06-11 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-07 14:48 - 2015-02-27 11:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foolish IT
2015-07-07 14:48 - 2015-02-27 11:09 - 00000000 ____D C:\Program Files (x86)\Foolish IT
2015-07-07 14:30 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\registration
2015-07-07 13:51 - 2015-02-27 11:09 - 00000000 ____D C:\ProgramData\Foolish IT
2015-07-06 22:39 - 2015-06-29 02:32 - 00000000 ____D C:\8c6a7bc7523ed5b34da6e55e16
==================== Files in the root of some directories =======
2013-04-27 10:35 - 2015-01-25 18:39 - 0000542 _____ () C:\Users\e\AppData\Roaming\ClipGet-FlvConverterDefaultSettings.xml
2013-04-27 08:02 - 2013-04-27 08:02 - 0000026 _____ () C:\Users\e\AppData\Roaming\ClipGet-UpdatePerformed.txt
2015-02-08 01:53 - 2015-02-08 01:53 - 0003584 _____ () C:\Users\e\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-02-19 03:04 - 2015-01-23 18:22 - 0007605 _____ () C:\Users\e\AppData\Local\resmon.resmoncfg
2014-08-01 08:02 - 2013-02-21 16:59 - 2063240 _____ (Samsung Electronics) C:\ProgramData\MakeMarkerFile.exe
2012-11-18 19:38 - 2013-01-12 23:51 - 0003004 _____ () C:\ProgramData\MakeMarkerFile.xml
Files to move or delete:
====================
C:\ProgramData\MakeMarkerFile.exe
Some files in TEMP:
====================
C:\Users\e\AppData\Local\Temp\Quarantine.exe
C:\Users\e\AppData\Local\Temp\SkypeSetup.exe
C:\Users\e\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-08-03 21:13
==================== End of log ============================