After restoring my computer to an earlier point (about 11 days earlier), my computer became sluggishly slow. When I mean slow I mean slow to the point where I would have to wait half a minute between each click. The slow computer didn't begin until the day after the restore was made though
The reason I even did a restore was because non of the portable devices under portable devices in device manager were working (they all had an exclamation mark next to them). I was attempting to have my iPhone 4s appear under my computer because of an error code 31. It said something along the lines of, "Windows could not load the correct drivers for this device". I tried everything possible to fix this even manually installing the drivers from the apple folder but to no avail.
Anyway, now I need your help because it's almost impossible to use my Dell desktop unless it is in safe mode. Safe mode seems to run smoothly.
thanks for your help
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:21-02-2016 01
Ran by DELL (administrator) on AIBHEN (22-02-2016 13:43:08)
Running from C:\Users\DELL\Desktop
Loaded Profiles: DELL (Available Profiles: DELL & Disrael & Administrator)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Safe Mode (with Networking)
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [AllowLegacyWebView] 1
HKLM\...\Policies\Explorer: [AllowUnhashedWebView] 1
HKU\S-1-5-18\...\Run: [] => 0
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{3F23D73A-C538-469E-8D47-989C1CE6EF61}: [DhcpNameServer]
Internet Explorer:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {C4EEA20B-D0D0-4FCD-AE73-30150C084ED1} URL = hxxp://{searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {C4EEA20B-D0D0-4FCD-AE73-30150C084ED1} URL = hxxp://{searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {DE39C683-6B3E-4B48-B7E0-2B2285B7323D} URL = hxxp://{searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {DE39C683-6B3E-4B48-B7E0-2B2285B7323D} URL = hxxp://{searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-920652127-2596171020-774489322-1000 -> DefaultScope {B9A9E659-3619-4613-8393-025EBC06FB3A} URL = hxxps://{searchTerms}
SearchScopes: HKU\S-1-5-21-920652127-2596171020-774489322-1000 -> {B9A9E659-3619-4613-8393-025EBC06FB3A} URL = hxxps://{searchTerms}
SearchScopes: HKU\S-1-5-21-920652127-2596171020-774489322-1000 -> {C4EEA20B-D0D0-4FCD-AE73-30150C084ED1} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-31] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-31] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-920652127-2596171020-774489322-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\S-1-5-21-920652127-2596171020-774489322-1000 -> No Name - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FF ProfilePath: C:\Users\DELL\AppData\Roaming\Mozilla\Firefox\Profiles\vwiqbfzt.default
FF DefaultSearchEngine.US: Google
FF Homepage: hxxp://
FF Plugin: -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-02-02] ()
FF Plugin-x32: -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-02-02] ()
FF Plugin-x32: Update;version=3 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2016-01-31] (Google Inc.)
FF Plugin-x32: Update;version=9 -> C:\Program Files (x86)\Google\Update\\npGoogleUpdate3.dll [2016-01-31] (Google Inc.)
FF Extension: Geolocater - C:\Users\DELL\AppData\Roaming\Mozilla\Firefox\Profiles\vwiqbfzt.default\extensions\
[email protected] [2016-01-31]
FF Extension: Tails Download and Verify - C:\Users\DELL\AppData\Roaming\Mozilla\Firefox\Profiles\vwiqbfzt.default\Extensions\
[email protected] [2016-02-02]
FF Extension: Google Voice - C:\Users\DELL\AppData\Roaming\Mozilla\Firefox\Profiles\vwiqbfzt.default\Extensions\
[email protected] [2016-01-31]
FF Extension: New Tab Override (browser.newtab.url replacement) - C:\Users\DELL\AppData\Roaming\Mozilla\Firefox\Profiles\vwiqbfzt.default\Extensions\
[email protected] [2016-02-16]
FF Extension: The Addon Bar (restored) - C:\Users\DELL\AppData\Roaming\Mozilla\Firefox\Profiles\vwiqbfzt.default\Extensions\
[email protected] [2016-01-31]
CHR StartupUrls: Profile 9 -> "hxxp://,2361a91d-14bc-44e2-9af4-e058a40ff110,&vp=ch&prd=set_ch"
CHR Session Restore: Profile 9 -> is enabled.
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-21]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-10]
CHR Extension: (Google Docs) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-10]
CHR Extension: (Google Drive) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-10]
CHR Extension: (YouTube) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-10]
CHR Extension: (Google Search) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-10]
CHR Extension: (Gmail Offline) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2016-02-10]
CHR Extension: (Video Downloader professional) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2016-02-10]
CHR Extension: (Google Sheets) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-10]
CHR Extension: (iCloud Bookmarks) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkepacicchenbjecpbpbclokcabebhah [2016-02-10]
CHR Extension: (Chrome Remote Desktop) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2016-02-10]
CHR Extension: (Google Docs Offline) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-10]
CHR Extension: (Google Keep - notes and lists) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2016-02-10]
CHR Extension: (Kindle Cloud Reader) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2016-02-10]
CHR Extension: (iPiccy Photo Editor) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\imokeandodnlammaoenbgcnbhigjbpjh [2016-02-10]
CHR Extension: (Dropbox) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2016-02-10]
CHR Extension: (no most visited) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ipbodnfjeoebegmlpdfccmmpenaagdaa [2016-02-10]
CHR Extension: (Google Hangouts) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\knipolnnllmklapflnccelgolnpehhpl [2016-02-10]
CHR Extension: (The Fancy Pants Adventure: World 2) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\loamdenijebhollnjgehcfbnpeelfhlk [2016-02-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-10]
CHR Extension: (TypingClub) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\obdbgibnhfcjmmpfijkpcihjieedpfah [2016-02-10]
CHR Extension: (My Chrome Theme) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2016-02-10]
CHR Extension: (Sinuous) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\omlmnomieeknagejjojcpdomnbnbchdl [2016-02-10]
CHR Extension: (Gmail) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-10]
CHR Extension: (Canvas Rider) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\poknhlcknimnnbfcombaooklofipaibk [2016-02-10]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Docs) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-12]
CHR Extension: (Google Drive) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-12]
CHR Extension: (YouTube) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-12]
CHR Extension: (Google Search) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-12]
CHR Extension: (Google Sheets) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-12]
CHR Extension: (Google Docs Offline) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-12]
CHR Extension: (Gmail) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-12]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 3
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\knipolnnllmklapflnccelgolnpehhpl [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2016-02-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-21]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\plfbpnkceanpmmgpdahebjkenffkahfb [2016-02-21]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4
CHR Extension: (Google Slides) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-21]
CHR Extension: (Google Docs) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-21]
CHR Extension: (Google Drive) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-21]
CHR Extension: (YouTube) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-21]
CHR Extension: (Google Search) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-21]
CHR Extension: (Google Sheets) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-21]
CHR Extension: (Google Docs Offline) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-21]
CHR Extension: (Gmail) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-21]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\fkepacicchenbjecpbpbclokcabebhah [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\knipolnnllmklapflnccelgolnpehhpl [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\loamdenijebhollnjgehcfbnpeelfhlk [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\obdbgibnhfcjmmpfijkpcihjieedpfah [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2015-11-14]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 6
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-14]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\fjefgkhmchopegjeicnblodnidbammed [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\hniladkejehjfchadikcbjmgjaogciic [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\knipolnnllmklapflnccelgolnpehhpl [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nbkekaeindpfpcoldfckljplboolgkfm [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\plfbpnkceanpmmgpdahebjkenffkahfb [2015-11-14]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 8
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-11-14]
CHR Extension: (No Name) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-14]
CHR Profile: C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9
CHR Extension: (Flash Video Downloader) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2016-02-21]
CHR Extension: (Google Drive) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-14]
CHR Extension: (YouTube) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-14]
CHR Extension: (Flash Master) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\cacfnookefkldifaigjdedpophfjkjeh [2016-01-21]
CHR Extension: (Google Search) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-14]
CHR Extension: (All Downloader Professional) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\dcpkncimndkdodcgcogfdddimoglkpkp [2016-01-21]
CHR Extension: (Click to Tab) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ebicmkkcnhdiglneianohfjapmanjoek [2016-01-12]
CHR Extension: (Video Downloader professional) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-11-14]
CHR Extension: (MediaPlus) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\emaamodndfmmmcjepfigalbjjjemadom [2016-01-21]
CHR Extension: (FBDown Video Downloader) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2016-02-05]
CHR Extension: (Bookmark Manager) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2016-02-10]
CHR Extension: (Archiver on rollApp) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\hgjiaihghiehnmgoeapjkimbbahpinlp [2015-11-14]
CHR Extension: (Video Bookmarks) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\hkpgpmmooejhfhojndincjeonokodggj [2016-01-27]
CHR Extension: (vGet Extension (Video Downloader, DLNA)) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\hniladkejehjfchadikcbjmgjaogciic [2016-01-21]
CHR Extension: (no most visited) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ipbodnfjeoebegmlpdfccmmpenaagdaa [2015-12-29]
CHR Extension: (EagleGet Free Downloader) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\kaebhgioafceeldhgjmendlfhbfjefmo [2016-02-21]
CHR Extension: (Local SWF Player) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\kdmbckedabpbgjagmkgcejooabcdnone [2015-12-30]
CHR Extension: (Google Hangouts) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\knipolnnllmklapflnccelgolnpehhpl [2016-02-21]
CHR Extension: (Chrono Download Manager) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\mciiogijehkdemklbdcbfkefimifhecn [2016-01-21]
CHR Extension: (Flashcontrol) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\mfidmkgnfgnkihnjeklbekckimkipmoe [2016-02-04]
CHR Extension: (Screencastify (Screen Video Recorder)) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2016-01-23]
CHR Extension: (ZIP Extractor) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\mmfcakoljjhncfphlflcedhgogfhpbcd [2015-11-14]
CHR Extension: (GetThemAll Video Downloader) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nbkekaeindpfpcoldfckljplboolgkfm [2016-01-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-14]
CHR Extension: (Fast Video Downloader) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nocpfkkbaekckhcoekockfbidpcjgkbd [2016-01-21]
CHR Extension: (Neater Bookmarks) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ofgjggbjanlhbgaemjbkiegeebmccifi [2016-02-10]
CHR Extension: (Xodo PDF Viewer & Editor) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\okimpmfnmbjbaciaeaikdiecpobfomfh [2016-01-11]
CHR Extension: (Gmail) - C:\Users\DELL\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-14]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-02-17] (McAfee, Inc.)
S2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [372144 2015-04-06] (McAfee, Inc.)
S2 mfevtp; C:\Windows\system32\mfevtps.exe [250672 2015-02-17] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
S2 Samsvc; C:\Windows\sysnchrb\amsvc.exe [2504528 2015-07-28] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
S2 wltrysvc; C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe [3417088 2009-06-23] (Dell Inc.) [File not signed]
S2 HuaweiHiSuiteService64.exe; "C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
S2 Mobizen plugin; C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [68784 2015-02-17] (McAfee, Inc.)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [43456 2015-04-10] (hxxp://
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-28] (Visicom Media Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-02-22] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-28] (Visicom Media Inc.)
S3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [401736 2015-02-17] (McAfee, Inc.)
S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [337888 2015-02-17] (McAfee, Inc.)
R0 mfedisk; C:\Windows\System32\DRIVERS\mfedisk.sys [101872 2015-02-17] (McAfee, Inc.)
S3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [488000 2015-02-17] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [864072 2015-02-17] (McAfee, Inc.)
S3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [482600 2015-01-16] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [100720 2015-01-16] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [340448 2015-02-17] (McAfee, Inc.)
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
S1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [96800 2014-06-04] (Panda Security, S.L.)
S1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [162336 2014-06-18] (Panda Security, S.L.)
S1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [112160 2014-06-04] (Panda Security, S.L.)
S1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [115232 2014-06-04] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\System32\DRIVERS\NNSNAHSL.sys [46336 2014-01-16] (Panda Security, S.L.)
S1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [95776 2014-06-04] (Panda Security, S.L.)
S1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [70176 2014-06-04] (Panda Security, S.L.)
S1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [125984 2014-06-04] (Panda Security, S.L.)
S1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [306720 2014-06-04] (Panda Security, S.L.)
S1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [169504 2014-06-04] (Panda Security, S.L.)
S1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [115744 2014-06-04] (Panda Security, S.L.)
S1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [261152 2014-06-04] (Panda Security, S.L.)
S1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [109088 2014-06-04] (Panda Security, S.L.)
R3 NW1950; C:\Windows\System32\DRIVERS\NW1950.sys [24568 2009-08-27] ()
S2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [163088 2014-10-13] (Panda Security, S.L.)
S2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [121616 2014-10-13] (Panda Security, S.L.)
S1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [195616 2014-07-24] (Panda Security, S.L.)
S2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [122400 2014-07-24] (Panda Security, S.L.)
S2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [132128 2014-07-24] (Panda Security, S.L.)
S2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [107792 2014-10-13] (Panda Security, S.L.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [60400 2014-03-25] (Panda Security, S.L.)
S3 SAgentDriver; C:\Windows\sysnchrb\sagendrv-64.sys [43264 2015-07-28] (SoftActivity)
S3 TIEHDUSB; C:\Windows\System32\DRIVERS\tiehdusb.sys [128512 2009-09-03] (Texas Instruments) [File not signed]
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [117768 2016-01-19] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [194976 2016-01-19] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125008 2016-01-19] (Oracle Corporation)
R3 VIACRX64; C:\Windows\System32\DRIVERS\viacr64.sys [82544 2010-05-10] (VIA Technologies, Inc. )
S3 xb1usb; C:\Windows\System32\DRIVERS\xb1usb.sys [34016 2014-05-27] (Microsoft Corporation) [File not signed]
S3 Andbus; system32\DRIVERS\lgandbus64.sys [X]
S3 AndDiag; system32\DRIVERS\lganddiag64.sys [X]
S3 AndGps; system32\DRIVERS\lgandgps64.sys [X]
S3 ANDModem; system32\DRIVERS\lgandmodem64.sys [X]
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem64.sys [X]
S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]
S3 LgBttPort; system32\DRIVERS\lgbtpt64.sys [X]
S3 lgbusenum; system32\DRIVERS\lgbtbs64.sys [X]
S3 LGVMODEM; system32\DRIVERS\lgvmdm64.sys [X]
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0; \??\c:\program files\dell support center\pcdsrvc_x64.pkms [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-02-22 13:43 - 2016-02-22 13:43 - 00035741 _____ C:\Users\DELL\Desktop\FRST.txt
2016-02-22 13:32 - 2016-02-22 13:33 - 22908888 _____ (Malwarebytes ) C:\Users\DELL\Downloads\mbam-setup- (2).exe
2016-02-22 12:31 - 2016-02-22 12:31 - 00000000 ____D C:\Users\DELL\Desktop\FRST-OlderVersion
2016-02-22 11:46 - 2016-02-22 11:47 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-02-22 11:46 - 2016-02-22 11:46 - 00001064 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-22 11:46 - 2016-02-22 11:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-02-22 11:45 - 2016-02-22 11:46 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-02-22 11:45 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-02-22 11:45 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-02-22 11:45 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-02-22 11:43 - 2016-02-22 11:43 - 22908888 _____ (Malwarebytes ) C:\Users\DELL\Downloads\mbam-setup- (1).exe
2016-02-22 09:25 - 2016-02-22 09:25 - 10794790 _____ C:\Users\DELL\Desktop\tumblrpoint.mp4
2016-02-22 09:10 - 2016-02-22 09:11 - 16393204 _____ C:\Users\DELL\Desktop\tumblr_o1cc6qooVS1ualuk4mp4__.mp4
2016-02-21 11:16 - 2016-02-21 11:16 - 00033996 _____ C:\Users\DELL\Desktop\cabin-in-the-woods-jasper-robinson-tanner-sharp_421.jpeg
2016-02-21 02:36 - 2016-02-21 02:36 - 00000331 _____ C:\Users\DELL\Downloads\fixlist.txt
2016-02-20 22:47 - 2016-02-21 00:28 - 508411895 _____ (Google Inc.) C:\Users\DELL\Downloads\Unconfirmed 525265.crdownload
2016-02-20 22:43 - 2016-02-20 22:46 - 00000000 ____D C:\Program Files (x86)\PdaNet for Android
2016-02-20 22:02 - 2016-02-20 22:02 - 00000000 ____D C:\Users\DELL\AppData\Roaming\WinRAR
2016-02-20 21:58 - 2016-02-20 21:58 - 00277502 _____ C:\Users\DELL\Desktop\Russian_alphabet.avi
2016-02-20 21:53 - 2016-02-20 21:53 - 00332912 _____ C:\Users\DELL\Downloads\Russian_alphabet.ogg
2016-02-18 10:54 - 2016-02-18 10:56 - 00000095 _____ C:\Users\DELL\Documents\autohotkey1.ahk
2016-02-18 10:51 - 2016-02-21 09:48 - 00000000 ____D C:\Program Files\AutoHotkey
2016-02-18 10:45 - 2016-02-18 10:50 - 00000042 _____ C:\Users\DELL\AppData\Local\Autosofted License.txt
2016-02-16 22:29 - 2016-02-16 22:38 - 54361717 _____ C:\Users\DELL\Downloads\xvideos.com_9fcfa3e2a2dc7ec2ef5cbda90d89b38a.flv
2016-02-16 03:38 - 2016-02-10 07:30 - 00000021 _____ C:\gram problem .txt
2016-02-14 23:38 - 2016-02-14 23:38 - 00013421 _____ C:\Users\DELL\Downloads\[Treasure Island Media] Hard Cuts 2 - SD.mp4.torrent
2016-02-14 23:38 - 2016-02-14 23:38 - 00011673 _____ C:\Users\DELL\Downloads\[Treasure Island Media] Breeding Season 3 - HD.mp4.torrent
2016-02-14 23:38 - 2016-02-14 23:38 - 00011557 _____ C:\Users\DELL\Downloads\[Treasure Island Media] Flooded - HD.mp4.torrent
2016-02-14 23:26 - 2016-02-17 01:01 - 00000000 ____D C:\Users\DELL\Downloads\[Treasure Island Media] Cum [bleep]
2016-02-14 23:25 - 2016-02-14 23:25 - 00024546 _____ C:\Users\DELL\Downloads\[Treasure Island Media] Cum [bleep].torrent
2016-02-14 23:19 - 2016-02-14 23:19 - 00038052 _____ C:\Users\DELL\Downloads\[Treasure Island Media] Eric's Raw [bleep] Tapes 5 (2012).mp4.torrent
2016-02-14 15:55 - 2016-02-14 15:55 - 04076593 _____ C:\Users\DELL\Downloads\IMG_3615.MOV
2016-02-13 22:57 - 2016-02-21 09:43 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recuva
2016-02-13 18:29 - 2016-02-21 09:46 - 00000000 ____D C:\Users\Administrator\AppData\Local\NETGEARGenie
2016-02-13 10:18 - 2016-02-21 09:48 - 00000000 ____D C:\Program Files (x86)\NETGEAR Genie
2016-02-13 10:18 - 2016-02-13 10:18 - 00035344 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys
2016-02-12 23:55 - 2016-02-13 00:40 - 00000000 ____D C:\Users\DELL\Downloads\Star Wars Episode I The Phantom Menace (1999) [1080p]
2016-02-12 22:00 - 2016-02-12 22:00 - 01671417 _____ C:\Users\DELL\Downloads\550aeb17d7ae7cd4110002ce.flv
2016-02-12 03:52 - 2016-02-21 09:47 - 00000000 ___DC C:\ProgramData\{010DD54D-6F97-418D-BC47-2089F30A0075}
2016-02-12 03:51 - 2016-02-12 03:53 - 00000000 ____D C:\ProgramData\SupportAssistAgent
2016-02-12 03:51 - 2016-02-12 03:51 - 00000000 ____D C:\Program Files (x86)\Dell
2016-02-12 03:10 - 2016-02-21 09:43 - 00000000 ____D C:\Users\DELL\AppData\Roaming\PCDr
2016-02-12 03:10 - 2016-02-12 03:10 - 00000000 ____D C:\temp
2016-02-11 02:14 - 2016-02-11 02:14 - 00000000 ____D C:\Users\DELL\AppData\Local\SplitMediaLabs
2016-02-11 02:08 - 2016-02-11 02:08 - 00000000 ____D C:\ProgramData\SplitMediaLabs
2016-02-11 02:08 - 2016-02-11 02:08 - 00000000 ____D C:\Program Files (x86)\SplitmediaLabs
2016-02-11 02:05 - 2016-02-11 02:05 - 00000000 ____D C:\Users\DELL\AppData\Roaming\SplitmediaLabs
2016-02-11 01:58 - 2016-02-11 22:17 - 00000000 ____D C:\Program Files\OBS
2016-02-11 01:58 - 2016-02-11 22:17 - 00000000 ____D C:\Program Files (x86)\OBS
2016-02-10 23:44 - 2016-02-21 09:49 - 00000000 ____D C:\Program Files (x86)\Avidemux 2.6 - 32 bits
2016-02-10 21:34 - 2016-02-10 21:34 - 08400896 _____ C:\Users\DELL\Downloads\chromeremotedesktophost.msi
2016-02-10 03:03 - 2016-02-10 03:03 - 01083319 _____ C:\Users\DELL\Downloads\KingoRoot.apk
2016-02-08 15:27 - 2016-02-08 15:27 - 00002315 _____ C:\Users\DELL\Desktop\Person 1 - Chrome.lnk
2016-02-08 13:01 - 2016-02-08 13:02 - 04831744 _____ (Geza Kovacs) C:\Users\DELL\Downloads\unetbootin-windows-613.exe
2016-02-08 00:45 - 2016-02-12 23:55 - 1054867456 _____ C:\Users\DELL\Downloads\ubuntu-14.04.3-desktop-amd64.iso.!ut
2016-02-08 00:44 - 2016-02-08 00:44 - 00000000 ____D C:\Users\DELL\Downloads\tails-i386-2.0
2016-02-08 00:11 - 2016-02-10 00:16 - 00000000 ____D C:\Program Files (x86)\WIFI INSPECTOR
2016-02-08 00:07 - 2016-02-08 00:07 - 22224144 _____ (Xirrus) C:\Users\DELL\Downloads\WiFiInspector-Setup-1-2-1-4 (2).exe
2016-02-07 21:36 - 2016-02-21 09:52 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Acrylic Wi-Fi Home
2016-02-07 21:36 - 2016-02-16 15:38 - 00000000 ____D C:\Program Files\Acrylic Wi-Fi Home
2016-02-07 21:35 - 2016-02-07 21:35 - 04578672 _____ (Tarlogic Security S.L. ) C:\Users\DELL\Downloads\Acrylic_WiFi_Home_v3.1.5877.19629-Setup.exe
2016-02-07 00:48 - 2016-02-07 00:48 - 22224144 _____ (Xirrus) C:\Users\DELL\Downloads\WiFiInspector-Setup-1-2-1-4 (1).exe
2016-02-06 23:16 - 2016-02-06 23:16 - 22224144 _____ (Xirrus) C:\Users\DELL\Downloads\WiFiInspector-Setup-1-2-1-4.exe
2016-02-06 22:06 - 2016-02-06 22:06 - 03647404 _____ C:\Users\DELL\Downloads\org.csploit.android_6.apk
2016-02-06 18:38 - 2016-02-16 16:22 - 158133051 _____ C:\Users\DELL\Downloads\2015-04-13
2016-02-06 18:38 - 2016-02-06 18:42 - 32591807 _____ C:\Users\DELL\Downloads\2015-04-13
2016-02-06 18:33 - 2016-02-06 18:33 - 01501440 _____ C:\Users\DELL\Downloads\kryptanium_screenshot.raw
2016-02-06 18:12 - 2016-02-06 18:12 - 00000000 ____D C:\Users\DELL\AppData\Local\{A5FBD5BA-B1B2-4184-8A54-AC4EB506D798}
2016-02-05 22:58 - 2016-02-05 22:58 - 00000000 ___HD C:\$Windows.~WS
2016-02-05 22:56 - 2016-02-05 22:57 - 07635472 _____ (Microsoft Corporation) C:\Users\DELL\Downloads\GetWindows10-sds_____________.exe
2016-02-05 22:51 - 2016-02-05 22:51 - 18446672 _____ (Microsoft Corporation) C:\Users\DELL\Downloads\MediaCreationTool.exe
2016-02-04 15:22 - 2016-02-06 15:49 - 00000000 ____D C:\Users\DELL\VirtualBox VMs
2016-02-04 15:21 - 2016-02-21 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-02-04 15:21 - 2016-02-18 11:16 - 00000000 ____D C:\Users\DELL\.VirtualBox
2016-02-04 15:20 - 2016-01-19 17:40 - 00965440 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2016-02-04 15:20 - 2016-01-19 17:40 - 00138904 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2016-02-04 15:19 - 2016-02-16 14:38 - 00000000 ____D C:\Users\DELL\Desktop\ISO.FILES
2016-02-04 15:19 - 2016-02-04 15:19 - 00000000 ____D C:\Program Files\Oracle
2016-02-04 12:29 - 2016-02-04 12:29 - 00000000 ____D C:\Windows\Sun
2016-02-04 12:29 - 2016-02-04 12:29 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Sun
2016-02-04 08:23 - 2016-02-04 08:25 - 117185736 _____ (Oracle Corporation) C:\Users\DELL\Downloads\VirtualBox-5.0.14-105127-Win.exe
2016-02-04 02:16 - 2016-02-04 02:17 - 00000000 ____D C:\ProgramData\EPSON
2016-02-04 01:47 - 2016-01-21 23:19 - 14179840 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-02-04 01:47 - 2016-01-21 23:15 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-02-04 01:47 - 2016-01-21 23:12 - 01940992 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-02-04 01:47 - 2016-01-21 23:05 - 12877824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-02-04 01:47 - 2016-01-21 23:00 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-02-04 01:47 - 2016-01-21 22:59 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-02-04 01:47 - 2016-01-21 22:19 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-02-04 01:47 - 2016-01-21 22:12 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-02-02 17:38 - 2016-02-04 07:38 - 00000000 ____D C:\Users\DELL\AppData\Roaming\U3
2016-02-02 17:09 - 2016-02-21 09:56 - 00000000 ____D C:\Windows\System32\Tasks\AIBHEN
2016-02-02 16:19 - 2016-01-16 12:06 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-02 16:19 - 2016-01-16 11:54 - 01162240 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-02 16:19 - 2016-01-11 12:05 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-02-02 16:19 - 2016-01-11 12:05 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-02-02 16:19 - 2016-01-11 12:05 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-02-02 16:19 - 2016-01-11 11:52 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-02-02 16:19 - 2016-01-11 11:47 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-02-02 16:19 - 2016-01-11 11:26 - 02610176 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-02-02 16:19 - 2016-01-11 11:24 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-02-02 16:19 - 2016-01-11 11:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-02-02 16:19 - 2016-01-11 11:23 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-02-02 16:19 - 2016-01-11 11:23 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-02-02 16:19 - 2016-01-11 11:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-02-02 16:19 - 2016-01-11 11:23 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\
2016-02-02 16:19 - 2016-01-11 11:14 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-02-02 16:19 - 2016-01-11 11:14 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-02-02 16:19 - 2016-01-11 11:14 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-02-02 16:19 - 2016-01-11 11:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-02-02 16:19 - 2016-01-11 07:08 - 01362944 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-02 16:19 - 2016-01-11 07:08 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-02 16:19 - 2016-01-11 07:08 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-02 16:19 - 2016-01-11 07:08 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-02 16:19 - 2016-01-11 07:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-02 03:43 - 2016-02-02 03:43 - 01088958 _____ ( C:\Users\DELL\Downloads\Universal-USB-Installer.exe
2016-02-01 14:05 - 2016-02-01 14:05 - 00108530 _____ C:\Users\DELL\Downloads\Jose.submits.pdf
2016-02-01 13:22 - 2016-02-21 09:52 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Zoom
2016-02-01 12:25 - 2016-02-07 01:05 - 00000987 _____ C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2016-02-01 05:30 - 2016-02-01 05:30 - 00000376 _____ C:\Windows\ODBC.INI
2016-02-01 05:29 - 2016-02-21 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-02-01 05:29 - 2016-02-01 05:29 - 00000000 ____D C:\Windows\SHELLNEW
2016-02-01 05:29 - 2016-02-01 05:29 - 00000000 ____D C:\Program Files (x86)\Microsoft ActiveSync
2016-02-01 05:28 - 2016-02-02 16:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-02-01 05:28 - 2016-02-01 05:28 - 00000000 ____D C:\Windows\PCHEALTH
2016-02-01 05:25 - 2016-02-01 05:25 - 00000000 __RHD C:\MSOCache
2016-01-31 22:45 - 2016-01-31 22:45 - 00000000 ____D C:\Users\DELL\AppData\Local\Macromedia
2016-01-31 22:32 - 2016-01-31 22:38 - 00000000 ____D C:\Users\DELL\AppData\Local\Mozilla
2016-01-31 22:32 - 2016-01-31 22:32 - 00001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-31 22:32 - 2016-01-31 22:32 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Mozilla
2016-01-31 22:31 - 2016-02-21 09:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-31 19:09 - 2016-02-04 01:19 - 00002174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-31 19:09 - 2016-02-04 01:19 - 00002145 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-01-31 19:02 - 2016-01-31 19:02 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Macromedia
2016-01-31 19:00 - 2016-02-01 22:26 - 00000000 ____D C:\Windows\System32\Tasks\Event Viewer Tasks
2016-01-31 15:38 - 2016-01-31 15:38 - 00000000 ____D C:\ef6fde250ed9565671f9b06c0891c78a
2016-01-31 15:36 - 2016-01-31 15:36 - 00000000 ____D C:\Windows\CheckSur
2016-01-31 14:25 - 2016-01-31 14:25 - 00654336 _____ C:\Users\DELL\Downloads\MicrosoftFixit50405.msi
2016-01-31 14:17 - 2016-01-31 14:17 - 00002213 _____ C:\Users\Administrator\Desktop\Google Chrome.lnk
2016-01-31 14:17 - 2016-01-31 14:17 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2016-01-31 13:10 - 2016-02-21 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Mouse
2016-01-31 10:42 - 2016-01-31 10:46 - 00000000 ____D C:\Users\Administrator\.oracle_jre_usage
2016-01-31 10:42 - 2016-01-31 10:42 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Sun
2016-01-31 10:42 - 2016-01-31 10:42 - 00000000 ____D C:\Users\Administrator\AppData\LocalLow\Sun
2016-01-31 10:40 - 2016-01-31 10:40 - 00000000 ____D C:\Users\Administrator\AppData\LocalLow\Oracle
2016-01-31 10:33 - 2016-01-31 10:33 - 01193696 _____ (Adobe Systems Incorporated) C:\Users\DELL\Downloads\readerdc_en_ha_install.exe
2016-01-31 08:10 - 2016-01-31 08:10 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-01-31 08:09 - 2016-01-31 08:09 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-31 08:06 - 2016-01-31 08:07 - 00000000 ____D C:\Users\Administrator\AppData\Local\Adobe
2016-01-31 08:02 - 2016-02-02 17:48 - 00000000 ____D C:\Users\DELL\AppData\Roaming\IrfanView
2016-01-31 08:02 - 2016-01-31 08:02 - 00001848 _____ C:\Users\Administrator\Desktop\IrfanView Thumbnails.lnk
2016-01-31 08:02 - 2016-01-31 08:02 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2016-01-31 08:02 - 2016-01-31 08:02 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\IrfanView
2016-01-29 03:27 - 2016-01-29 03:27 - 00000000 ____D C:\Users\DELL\AppData\LocalLow\Temp
2016-01-29 00:40 - 2016-01-29 00:42 - 124741272 _____ C:\Users\DELL\Downloads\MANDO.avi
2016-01-28 21:07 - 2016-01-28 21:07 - 00002118 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2016-01-28 21:07 - 2016-01-28 21:07 - 00000000 ____D C:\Users\Administrator\AppData\LocalLow\Google
2016-01-28 21:06 - 2016-01-28 21:06 - 00927824 _____ (Google Inc.) C:\Users\Disrael\Downloads\GoogleEarthSetup.exe
2016-01-28 21:05 - 2016-01-28 21:06 - 00000000 ____D C:\Users\Disrael\AppData\Local\Google
2016-01-28 21:02 - 2016-02-21 09:57 - 00000000 ____D C:\Users\Disrael
2016-01-28 21:02 - 2016-01-28 21:02 - 00118432 _____ C:\Users\Disrael\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-28 21:02 - 2016-01-28 21:02 - 00001415 _____ C:\Users\Disrael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-01-28 21:02 - 2016-01-28 21:02 - 00001236 __RSH C:\Users\Disrael\ntuser.pol
2016-01-28 21:02 - 2016-01-28 21:02 - 00000020 ___SH C:\Users\Disrael\ntuser.ini
2016-01-28 21:02 - 2016-01-28 21:02 - 00000000 _SHDL C:\Users\Disrael\My Documents
2016-01-28 21:02 - 2016-01-28 21:02 - 00000000 _SHDL C:\Users\Disrael\Documents\My Videos
2016-01-28 21:02 - 2016-01-28 21:02 - 00000000 _SHDL C:\Users\Disrael\Documents\My Pictures
2016-01-28 21:02 - 2016-01-28 21:02 - 00000000 _SHDL C:\Users\Disrael\Documents\My Music
2016-01-28 21:02 - 2016-01-28 21:02 - 00000000 ____D C:\Users\Disrael\AppData\Roaming\Adobe
2016-01-28 21:02 - 2016-01-28 21:02 - 00000000 ____D C:\Users\Disrael\AppData\Local\VirtualStore
2016-01-28 21:02 - 2015-11-14 17:28 - 00000000 ____D C:\Users\Disrael\AppData\Local\SoftThinks
2016-01-28 21:02 - 2015-08-06 01:18 - 00000000 ____D C:\Users\Disrael\AppData\Roaming\Macromedia
2016-01-28 21:02 - 2012-02-02 11:23 - 00000000 ____D C:\Users\Disrael\AppData\Local\Microsoft Help
2016-01-28 06:54 - 2016-01-28 06:54 - 00000374 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
2016-01-28 06:34 - 2016-01-31 07:45 - 00000000 ____D C:\Program Files (x86)\DriverToolkit
2016-01-28 06:34 - 2016-01-28 06:34 - 00000000 ____D C:\Users\Administrator\AppData\Local\DriverToolkit
2016-01-28 06:20 - 2016-01-28 06:27 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\ImgBurn
2016-01-28 05:54 - 2016-02-21 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CSV to vCard
2016-01-28 05:54 - 2016-01-31 15:06 - 00000000 ____D C:\Program Files (x86)\CSV to vCard
2016-01-28 05:54 - 2016-01-28 05:54 - 00348664 _____ ( ) C:\Users\DELL\Downloads\csvtovcard_setup.exe
2016-01-28 05:24 - 2016-01-28 05:24 - 00000000 ____D C:\Users\Administrator\AppData\Local\ElevatedDiagnostics
2016-01-27 17:58 - 2015-11-13 16:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-27 17:58 - 2015-11-13 16:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-27 17:58 - 2015-11-13 16:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-27 17:58 - 2015-11-13 15:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-27 17:58 - 2015-11-13 15:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-27 17:58 - 2015-11-13 15:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-27 17:50 - 2015-12-08 14:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-27 17:50 - 2015-12-08 12:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-27 17:49 - 2015-12-08 14:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-27 17:49 - 2015-12-08 14:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-27 17:49 - 2015-12-08 14:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-27 17:49 - 2015-12-08 14:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\
2016-01-27 17:49 - 2015-12-08 14:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-27 17:49 - 2015-12-08 14:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-27 17:49 - 2015-12-08 14:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-27 17:49 - 2015-12-08 14:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-27 17:49 - 2015-12-08 14:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-27 17:49 - 2015-12-08 14:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 01393152 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-27 17:49 - 2015-12-08 12:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-27 17:49 - 2015-12-08 12:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-27 17:49 - 2015-12-08 12:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-27 17:49 - 2015-12-08 12:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\
2016-01-27 17:49 - 2015-12-08 12:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-27 17:49 - 2015-12-08 12:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-27 17:49 - 2015-12-08 11:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-27 17:49 - 2015-12-08 11:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-27 17:49 - 2015-12-08 11:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-27 17:48 - 2015-12-08 10:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-27 17:45 - 2015-12-23 15:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-27 17:45 - 2015-12-12 10:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-27 17:45 - 2015-12-12 10:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-27 17:45 - 2015-12-12 10:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-27 17:45 - 2015-12-12 10:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-27 17:45 - 2015-12-12 10:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-27 17:45 - 2015-12-12 10:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-27 17:45 - 2015-12-12 10:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-27 17:45 - 2015-12-12 10:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-27 17:45 - 2015-12-12 10:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-27 17:45 - 2015-12-12 10:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-27 17:45 - 2015-12-12 10:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-27 17:45 - 2015-12-12 10:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-27 17:45 - 2015-12-12 10:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-27 17:45 - 2015-12-12 09:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-27 17:45 - 2015-12-12 09:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-27 17:45 - 2015-12-12 09:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-27 17:44 - 2015-12-23 16:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-27 17:44 - 2015-12-12 11:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-27 17:44 - 2015-12-12 11:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-27 17:44 - 2015-12-12 11:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-27 17:44 - 2015-12-12 11:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-27 17:44 - 2015-12-12 11:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-27 17:44 - 2015-12-12 11:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-27 17:44 - 2015-12-12 11:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-27 17:44 - 2015-12-12 11:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-27 17:44 - 2015-12-12 11:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-27 17:44 - 2015-12-12 11:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-27 17:44 - 2015-12-12 11:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-27 17:44 - 2015-12-12 11:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-27 17:44 - 2015-12-12 11:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-27 17:44 - 2015-12-12 11:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-27 17:44 - 2015-12-12 11:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-27 17:44 - 2015-12-12 11:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-27 17:44 - 2015-12-12 11:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-27 17:44 - 2015-12-12 11:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-27 17:44 - 2015-12-12 10:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-27 17:44 - 2015-12-12 10:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-27 17:44 - 2015-12-12 10:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-27 17:44 - 2015-12-12 10:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-27 17:44 - 2015-12-12 10:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-27 17:44 - 2015-12-12 10:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-27 17:44 - 2015-12-12 10:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-27 17:44 - 2015-12-12 10:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-27 17:44 - 2015-12-12 10:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-27 17:44 - 2015-12-12 10:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-27 17:44 - 2015-12-12 10:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-27 17:44 - 2015-12-12 10:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-27 17:44 - 2015-12-12 10:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-27 17:44 - 2015-12-12 10:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-27 17:44 - 2015-12-12 10:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-27 17:44 - 2015-12-12 10:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-27 17:44 - 2015-12-12 10:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-27 17:44 - 2015-12-12 10:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-27 17:44 - 2015-12-12 10:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-27 17:44 - 2015-12-12 10:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-27 17:44 - 2015-12-12 10:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-27 17:44 - 2015-12-12 10:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-27 17:44 - 2015-12-12 10:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-27 17:44 - 2015-12-12 10:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-27 17:44 - 2015-12-12 09:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-27 17:43 - 2015-12-12 10:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-27 17:43 - 2015-12-12 10:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-27 17:43 - 2015-12-12 09:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-27 17:43 - 2015-12-08 14:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-27 17:43 - 2015-12-08 12:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-27 17:43 - 2015-11-16 13:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-27 17:42 - 2015-12-30 11:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-27 17:42 - 2015-12-30 11:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-27 17:42 - 2015-12-30 11:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-27 17:42 - 2015-12-30 11:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-27 17:42 - 2015-12-30 11:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-27 17:42 - 2015-12-30 11:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-27 17:42 - 2015-12-30 11:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-27 17:42 - 2015-12-30 11:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-27 17:42 - 2015-12-30 11:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-27 17:42 - 2015-12-30 11:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-27 17:42 - 2015-12-30 11:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-27 17:42 - 2015-12-30 11:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-27 17:42 - 2015-12-30 11:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-27 17:42 - 2015-12-30 11:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-27 17:42 - 2015-12-30 11:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-27 17:42 - 2015-12-30 11:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-27 17:42 - 2015-12-30 11:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-27 17:42 - 2015-12-30 11:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-27 17:42 - 2015-12-30 11:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 11:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 10:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-27 17:42 - 2015-12-30 10:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-27 17:42 - 2015-12-30 10:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-27 17:42 - 2015-12-30 10:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-27 17:42 - 2015-12-30 10:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-27 17:42 - 2015-12-30 10:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-27 17:42 - 2015-12-30 10:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 10:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 10:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-27 17:42 - 2015-12-30 10:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 12:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-27 17:41 - 2015-12-30 12:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-27 17:41 - 2015-12-30 12:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-27 17:41 - 2015-12-30 12:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-27 17:41 - 2015-12-30 12:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-27 17:41 - 2015-12-30 12:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-27 17:41 - 2015-12-30 12:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-27 17:41 - 2015-12-30 12:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-27 17:41 - 2015-12-30 12:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-27 17:41 - 2015-12-30 12:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-27 17:41 - 2015-12-30 12:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-27 17:41 - 2015-12-30 12:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-27 17:41 - 2015-12-30 12:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-27 17:41 - 2015-12-30 12:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-27 17:41 - 2015-12-30 12:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-27 17:41 - 2015-12-30 12:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-27 17:41 - 2015-12-30 12:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-27 17:41 - 2015-12-30 12:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-27 17:41 - 2015-12-30 11:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-27 17:41 - 2015-12-30 11:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-27 17:41 - 2015-12-30 11:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-27 17:41 - 2015-12-30 11:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-27 17:41 - 2015-12-30 11:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-27 17:41 - 2015-12-30 11:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-27 17:41 - 2015-12-30 11:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-27 17:41 - 2015-12-30 11:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-27 17:41 - 2015-12-30 11:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-27 17:41 - 2015-12-30 11:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-27 17:41 - 2015-12-30 11:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 11:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-27 17:41 - 2015-12-30 10:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-27 17:41 - 2015-12-30 10:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-27 17:41 - 2015-12-30 10:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-27 17:41 - 2015-12-30 10:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-27 17:41 - 2015-12-30 10:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-27 17:41 - 2015-12-30 10:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-27 17:41 - 2015-12-30 10:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-27 17:41 - 2015-12-30 10:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-27 17:40 - 2015-12-08 14:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-27 17:40 - 2015-12-08 12:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-27 17:05 - 2016-01-28 03:50 - 00007636 _____ C:\Users\Administrator\AppData\Local\Resmon.ResmonCfg
2016-01-27 16:34 - 2015-12-16 11:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2016-01-27 16:34 - 2015-12-16 11:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-01-27 16:34 - 2015-12-16 11:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-01-27 16:34 - 2015-12-16 11:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-01-27 16:34 - 2015-12-16 11:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-01-27 16:34 - 2015-12-16 11:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-01-27 16:34 - 2015-12-16 11:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-01-27 16:34 - 2015-12-16 11:47 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2016-01-27 06:16 - 2016-01-27 06:16 - 00045412 _____ C:\ProgramData\1453900502.bdinstall.bin
2016-01-27 06:15 - 2016-01-27 06:15 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\QuickScan
2016-01-27 06:14 - 2016-01-27 06:14 - 00001279 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-01-27 06:14 - 2016-01-27 06:14 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2016-01-27 05:29 - 2016-01-27 05:29 - 00036280 _____ C:\Users\DELL\Downloads\fixit_kb978591 (1).diagcab
2016-01-27 04:30 - 2016-02-12 21:06 - 00119264 _____ C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-27 04:29 - 2016-02-21 09:57 - 00000000 ____D C:\Users\Administrator
2016-01-27 04:29 - 2016-01-31 14:18 - 00000632 __RSH C:\Users\Administrator\ntuser.pol
2016-01-27 04:29 - 2016-01-27 04:29 - 00000020 ___SH C:\Users\Administrator\ntuser.ini
2016-01-27 04:29 - 2016-01-27 04:29 - 00000000 _SHDL C:\Users\Administrator\My Documents
2016-01-27 04:29 - 2016-01-27 04:29 - 00000000 _SHDL C:\Users\Administrator\Documents\My Videos
2016-01-27 04:29 - 2016-01-27 04:29 - 00000000 _SHDL C:\Users\Administrator\Documents\My Pictures
2016-01-27 04:29 - 2016-01-27 04:29 - 00000000 _SHDL C:\Users\Administrator\Documents\My Music
2016-01-27 04:29 - 2015-11-14 17:28 - 00000000 ____D C:\Users\Administrator\AppData\Local\SoftThinks
2016-01-27 04:29 - 2015-08-06 01:18 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Macromedia
2016-01-27 04:29 - 2012-02-02 11:23 - 00000000 ____D C:\Users\Administrator\AppData\Local\Microsoft Help
2016-01-26 22:40 - 2016-01-26 22:40 - 00737653 _____ C:\Users\DELL\Downloads\3rd Rock From The Sun Complete Downloader.rar
2016-01-25 21:00 - 2016-02-22 13:06 - 00000000 __SHD C:\ProgramData\SAM
2016-01-24 05:22 - 2016-01-27 03:29 - 00000000 ____D C:\Users\DELL\AppData\Roaming\ImgBurn
2016-01-24 05:15 - 2016-01-24 05:20 - 00000255 _____ C:\Users\DELL\Downloads\FSS.txt
2016-01-24 05:13 - 2016-02-21 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-01-24 05:13 - 2016-01-31 15:07 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2016-01-24 05:13 - 2016-01-24 05:13 - 00001839 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-01-24 04:23 - 2016-01-24 04:23 - 17337589 _____ C:\Users\DELL\Downloads\
2016-01-24 04:23 - 2016-01-24 04:23 - 17334297 _____ C:\Users\DELL\Downloads\
2016-01-24 04:08 - 2016-01-24 04:08 - 00899584 _____ (Farbar) C:\Users\DELL\Downloads\FSS.exe
2016-01-24 00:49 - 2016-01-24 00:49 - 00045409 _____ C:\ProgramData\1453621697.bdinstall.bin
2016-01-24 00:48 - 2016-01-24 00:48 - 10447328 _____ C:\Users\DELL\Downloads\Antivirus_Free_Edition_x64.exe
2016-01-24 00:47 - 2016-01-24 00:47 - 22908888 _____ (Malwarebytes ) C:\Users\DELL\Downloads\mbam-setup-
2016-01-24 00:43 - 2016-02-02 17:09 - 00001735 _____ C:\Windows\system32\Uninst_EAPModules.bat
2016-01-24 00:43 - 2016-01-24 00:45 - 00068402 _____ C:\Windows\bcmwl.log.1
2016-01-24 00:42 - 2009-08-18 13:44 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2016-01-23 23:56 - 2016-02-22 13:43 - 00000000 ____D C:\FRST
2016-01-23 23:56 - 2016-02-22 12:31 - 02371072 _____ (Farbar) C:\Users\DELL\Desktop\FRST64.exe
2016-01-23 22:07 - 2016-01-23 22:07 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2016-01-23 22:06 - 2016-02-21 08:25 - 00000000 ____D C:\Users\DELL\AppData\Local\Deployment
2016-01-23 12:44 - 2016-01-23 12:44 - 00006044 _____ C:\Users\DELL\Downloads\Default_CMD.reg
2016-01-23 12:44 - 2016-01-23 12:44 - 00005974 _____ C:\Users\DELL\Downloads\Default_BAT.reg
2016-01-23 12:43 - 2016-01-23 12:43 - 00004208 _____ C:\Users\DELL\Downloads\Default_MSP.reg
2016-01-23 12:43 - 2016-01-23 12:43 - 00003282 _____ C:\Users\DELL\Downloads\Default_INI.reg
2016-01-23 12:43 - 2016-01-23 12:43 - 00000484 _____ C:\Users\DELL\Downloads\Type.reg
2016-01-23 12:42 - 2016-01-23 12:42 - 00008622 _____ C:\Users\DELL\Downloads\Default_Directory.reg
2016-01-23 12:42 - 2016-01-23 12:42 - 00008506 _____ C:\Users\DELL\Downloads\Default_MSI.reg
2016-01-23 12:42 - 2016-01-23 12:42 - 00005672 _____ C:\Users\DELL\Downloads\Default_MSC.reg
2016-01-23 12:42 - 2016-01-23 12:42 - 00002976 _____ C:\Users\DELL\Downloads\Default_DLL.reg
2016-01-23 12:37 - 2016-01-23 12:37 - 00005828 _____ C:\Users\DELL\Downloads\Default_EXE.reg
2016-01-23 11:59 - 2016-01-23 11:59 - 00606532 _____ C:\Users\DELL\Downloads\
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-02-22 13:14 - 2015-12-04 23:41 - 01162770 _____ C:\Windows\ntbtlog.txt
2016-02-22 12:25 - 2015-11-14 17:29 - 00000000 ____D C:\Users\DELL\AppData\Local\ManyCam
2016-02-22 11:54 - 2015-11-14 15:33 - 00007602 _____ C:\Users\DELL\AppData\Local\resmon.resmoncfg
2016-02-22 11:36 - 2009-07-13 22:13 - 00819142 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-22 11:36 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\inf
2016-02-22 11:15 - 2009-07-13 21:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-22 11:15 - 2009-07-13 21:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-22 11:07 - 2015-11-25 19:53 - 00000433 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2016-02-22 11:07 - 2009-07-13 22:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-22 09:24 - 2015-05-08 23:35 - 00000000 ____D C:\Users\DELL\AppData\Roaming\vlc
2016-02-22 09:21 - 2016-01-01 05:18 - 00000000 ____D C:\Program Files (x86)\Avidemux 2.5
2016-02-21 10:03 - 2015-08-29 12:04 - 00000000 __SHD C:\Windows\sysnchrb
2016-02-21 10:03 - 2012-04-05 21:32 - 00000000 ____D C:\Program Files\Dell Support Center
2016-02-21 09:57 - 2015-11-18 03:23 - 00000000 ____D C:\Users\DefaultAppPool
2016-02-21 09:57 - 2015-04-19 12:42 - 00000000 ____D C:\Users\DAVIDRINO
2016-02-21 09:56 - 2015-11-22 11:19 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-02-21 09:56 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\TAPI
2016-02-21 09:56 - 2002-01-02 03:36 - 00000000 ____D C:\Users\DELL
2016-02-21 09:55 - 2015-04-04 20:38 - 00000000 ___SD C:\Windows\system32\GWX
2016-02-21 09:55 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\NDF
2016-02-21 09:55 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\lv-LV
2016-02-21 09:55 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\lt-LT
2016-02-21 09:55 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\ias
2016-02-21 09:55 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\et-EE
2016-02-21 09:54 - 2013-09-08 15:22 - 00000000 ____D C:\Windows\pss
2016-02-21 09:54 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\rescache
2016-02-21 09:54 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\Help
2016-02-21 09:52 - 2015-10-04 00:19 - 00000000 __RHD C:\Users\DELL\Desktop\ALL.UNSORTED
2016-02-21 09:52 - 2015-02-05 17:08 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-02-21 09:52 - 2012-01-13 18:24 - 00000000 ____D C:\Users\DELL\AppData\Roaming\uTorrent
2016-02-21 09:52 - 2012-01-08 00:35 - 00000000 ____D C:\Users\DELL\AppData\Roaming\Skype
2016-02-21 09:51 - 2015-12-30 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-02-21 09:51 - 2015-12-30 21:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-02-21 09:51 - 2015-12-30 21:34 - 00000000 ____D C:\Program Files\iTunes
2016-02-21 09:51 - 2015-12-10 03:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-02-21 09:51 - 2015-10-10 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeaZip
2016-02-21 09:51 - 2015-09-05 01:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam
2016-02-21 09:51 - 2015-08-20 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-02-21 09:51 - 2015-03-20 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot
2016-02-21 09:51 - 2015-03-20 14:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cox Cloud Drive
2016-02-21 09:51 - 2014-10-06 14:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-21 09:51 - 2013-08-23 03:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-21 09:51 - 2012-05-15 03:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-02-21 09:51 - 2012-04-17 15:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
2016-02-21 09:51 - 2010-01-09 19:14 - 00000000 ____D C:\ProgramData\PCDr
2016-02-21 09:51 - 2010-01-09 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
2016-02-21 09:51 - 2010-01-09 19:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Wireless
2016-02-21 09:50 - 2015-12-30 21:34 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-02-21 09:50 - 2015-09-24 06:55 - 00000000 ____D C:\Program Files\Bonjour
2016-02-21 09:50 - 2015-08-29 08:02 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-02-21 09:50 - 2015-03-20 14:41 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-02-21 09:50 - 2012-03-04 21:22 - 00000000 ____D C:\Program Files\DIFX
2016-02-21 09:50 - 2012-02-03 19:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-02-21 09:50 - 2010-01-09 19:02 - 00000000 ____D C:\Program Files\Dell Inc
2016-02-21 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-02-21 09:49 - 2015-11-22 11:19 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-02-21 09:49 - 2015-09-24 06:55 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-02-21 09:49 - 2013-01-30 16:34 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-21 09:36 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\registration
2016-02-21 09:25 - 2015-12-30 21:34 - 00000000 ____D C:\Program Files\iPod
2016-02-21 09:25 - 2014-10-06 14:01 - 00000000 ____D C:\ProgramData\Oracle
2016-02-21 09:25 - 2012-02-03 19:04 - 00000000 ____D C:\ProgramData\Apple
2016-02-21 09:25 - 2012-01-08 00:34 - 00000000 ____D C:\ProgramData\Skype
2016-02-21 09:24 - 2010-01-09 19:06 - 00000000 ____D C:\Program Files\Dell
2016-02-21 09:23 - 2010-01-09 19:05 - 00000000 ____D C:\Program Files (x86)\Java
2016-02-21 09:10 - 2015-11-14 17:28 - 00000000 ____D C:\Users\DELL\AppData\Local\SoftThinks
2016-02-19 09:10 - 2015-11-25 19:49 - 00000000 ____D C:\Users\DELL\AppData\Local\ElevatedDiagnostics
2016-02-15 06:53 - 2016-01-15 18:45 - 00000000 ____D C:\Users\DELL\.oracle_jre_usage
2016-02-12 21:51 - 2012-01-06 17:18 - 00000000 ____D C:\Users\DELL\AppData\Roaming\TeamViewer
2016-02-11 13:08 - 2015-12-31 03:53 - 00000000 ____D C:\Users\DELL\AppData\Roaming\avidemux
2016-02-11 12:10 - 2015-12-16 11:46 - 00000000 ____D C:\Users\DELL\Downloads\Best of Tumbler - 75 Bareback BBC Studs
2016-02-10 01:37 - 2015-11-17 12:19 - 00000000 ____D C:\Windows\system32\MRT
2016-02-07 00:18 - 2016-01-15 18:45 - 00000000 ____D C:\Users\DELL\AppData\Roaming\.minecraft
2016-02-06 00:45 - 2013-01-30 16:34 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-06 00:45 - 2013-01-30 16:34 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-05 22:58 - 2010-01-09 20:43 - 00000000 ____D C:\Windows\Panther
2016-02-05 21:50 - 2013-01-30 16:34 - 00003902 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-05 21:49 - 2013-01-30 16:34 - 00003650 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-02 19:12 - 2015-11-22 13:35 - 00000000 ____D C:\Users\DELL\AppData\Local\Windows Live
2016-02-02 17:11 - 2015-04-17 03:44 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-02 17:11 - 2014-04-30 03:01 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-02-02 17:09 - 2012-11-27 02:38 - 00000000 ____D C:\ProgramData\InstallShield
2016-02-02 16:45 - 2015-11-29 05:29 - 00000000 ____D C:\Users\DELL\AppData\Roaming\PeaZip
2016-02-02 04:33 - 2012-04-30 03:41 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-02-02 01:46 - 2016-01-12 16:43 - 00000000 ____D C:\Users\DELL\AppData\Local\Adobe
2016-02-02 01:46 - 2012-04-30 03:41 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-02 01:46 - 2012-04-30 03:41 - 00003770 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-02-02 01:46 - 2012-01-06 17:06 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-02-01 21:46 - 2016-01-04 05:29 - 00507640 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-01 05:55 - 2016-01-04 05:32 - 00119264 _____ C:\Users\DELL\AppData\Local\GDIPFONTCACHEV1.DAT
2016-02-01 05:25 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system
2016-01-31 20:27 - 2014-11-27 11:19 - 00000008 __RSH C:\Users\DELL\ntuser.pol
2016-01-31 20:25 - 2009-07-13 20:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-01-31 18:38 - 2012-11-23 21:50 - 00003116 _____ C:\Windows\System32\Tasks\{EECFCADA-3E3D-41AC-90C2-BD9F5C2DF664}
2016-01-31 15:09 - 2015-08-21 13:15 - 00000000 ____D C:\Program Files\WinRAR
2016-01-31 15:09 - 2015-03-26 04:57 - 00000000 ____D C:\Program Files\Heimdall
2016-01-31 15:09 - 2012-05-15 03:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-31 15:08 - 2016-01-16 07:58 - 00000000 ____D C:\Program Files (x86)\Remote Mouse
2016-01-31 15:08 - 2015-12-31 03:50 - 00000000 ____D C:\Program Files\Avidemux 2.6 - 64 bits
2016-01-31 15:08 - 2015-11-29 05:32 - 00000000 ____D C:\Program Files (x86)\PeaZip
2016-01-31 15:08 - 2015-05-30 16:45 - 00000000 ____D C:\Program Files (x86)\Motorola Mobility
2016-01-31 15:08 - 2015-05-30 08:08 - 00000000 ____D C:\Program Files (x86)\Minimal ADB and Fastboot
2016-01-31 15:08 - 2015-01-11 02:50 - 00000000 ____D C:\Program Files\CCleaner
2016-01-31 15:08 - 2013-08-26 09:58 - 00000000 ____D C:\Program Files (x86)\NCH Software
2016-01-31 15:08 - 2012-05-15 03:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-31 15:08 - 2010-01-09 19:16 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-01-31 15:08 - 2010-01-09 19:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-01-31 15:07 - 2015-11-17 08:57 - 00000000 ____D C:\Program Files (x86)\Intel
2016-01-31 15:07 - 2015-09-30 13:38 - 00000000 ____D C:\Program Files (x86)\Microsoft LifeCam
2016-01-31 15:07 - 2015-08-29 14:10 - 00000000 ____D C:\Program Files (x86)\ManyCam
2016-01-31 15:07 - 2015-06-18 11:40 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-01-31 15:07 - 2015-04-19 23:28 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-01-31 15:07 - 2015-03-26 05:10 - 00000000 ____D C:\Program Files (x86)\Heimdall
2016-01-31 15:07 - 2012-06-08 16:03 - 00000000 ____D C:\Program Files (x86)\GetFLV
2016-01-31 15:07 - 2012-02-24 15:04 - 00000000 ____D C:\Program Files (x86)\jZip
2016-01-31 15:07 - 2010-01-09 19:13 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2016-01-31 15:06 - 2015-03-20 14:18 - 00000000 ____D C:\Program Files (x86)\Cox Secure Online Backup for Windows
2016-01-31 15:00 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files\MSBuild
2016-01-31 14:59 - 2010-01-09 20:58 - 00000000 ____D C:\Program Files\CONEXANT
2016-01-31 14:58 - 2016-01-18 06:57 - 00000000 ____D C:\Program Files (x86)\Virus Secure Lab
2016-01-31 14:58 - 2012-04-02 03:26 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-01-31 14:58 - 2010-01-09 19:18 - 00000000 ____D C:\Program Files (x86)\Microsoft Sync Framework
2016-01-31 14:58 - 2010-01-09 19:17 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-01-31 14:58 - 2010-01-09 19:14 - 00000000 ____D C:\Program Files (x86)\Sensible Vision
2016-01-31 14:58 - 2010-01-09 19:02 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2016-01-31 14:58 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-01-31 14:57 - 2012-05-08 19:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2016-01-31 14:57 - 2010-01-09 19:13 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-31 14:56 - 2015-11-28 23:45 - 00000000 ____D C:\Program Files (x86)\Faasoft
2016-01-31 14:55 - 2012-01-18 02:41 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-01-31 14:55 - 2010-01-09 19:07 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-01-31 10:47 - 2010-01-09 19:06 - 00000000 ____D C:\Program Files\Java
2016-01-31 10:41 - 2015-12-01 20:51 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-01-28 21:01 - 2009-07-13 20:20 - 00000000 ___HD C:\Windows\system32\GroupPolicyUsers
2016-01-28 03:44 - 2012-01-16 21:50 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-27 16:52 - 2014-04-24 03:11 - 00811264 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-01-27 16:52 - 2012-04-17 15:40 - 00003490 _____ C:\Windows\System32\Tasks\PCDEventLauncher
2016-01-27 16:48 - 2012-11-23 21:50 - 00003116 _____ C:\Windows\System32\Tasks\{279E637B-F378-4BDA-843E-8B3A6982945E}
2016-01-27 06:18 - 2015-11-17 08:30 - 00002086 _____ C:\Windows\epplauncher.mif
2016-01-27 06:14 - 2009-07-13 21:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-01-24 02:10 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\L2Schemas
2016-01-24 02:09 - 2016-01-21 12:28 - 00000000 ____D C:\Users\DELL\AppData\LocalLow\Company
2016-01-23 22:22 - 2010-01-09 20:35 - 00000000 ____D C:\dell
2016-01-23 22:06 - 2012-01-06 16:26 - 00000000 ____D C:\Users\DELL\AppData\Local\Apps\2.0
2016-01-23 11:55 - 2009-07-13 20:20 - 00000000 __RSD C:\Windows\Media
==================== Files in the root of some directories =======
2016-02-18 10:45 - 2016-02-18 10:50 - 0000042 _____ () C:\Users\DELL\AppData\Local\Autosofted License.txt
2015-08-29 07:19 - 2015-08-29 07:19 - 0005120 _____ () C:\Users\DELL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-14 15:33 - 2016-02-22 11:54 - 0007602 _____ () C:\Users\DELL\AppData\Local\resmon.resmoncfg
2016-01-21 12:32 - 2016-01-21 12:32 - 0041472 _____ () C:\Users\DELL\AppData\Local\Vaiahigh.dat
2016-01-24 00:49 - 2016-01-24 00:49 - 0045409 _____ () C:\ProgramData\1453621697.bdinstall.bin
2016-01-27 06:16 - 2016-01-27 06:16 - 0045412 _____ () C:\ProgramData\1453900502.bdinstall.bin
2015-10-05 05:23 - 2015-10-05 05:23 - 0013345 _____ () C:\ProgramData\samimpl.dmp
2015-10-01 18:25 - 2015-10-01 18:25 - 0016135 _____ () C:\ProgramData\swsys.dmp
Some files in TEMP:
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-02-18 12:18
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version:21-02-2016 01
Ran by DELL (2016-02-22 13:43:33)
Running from C:\Users\DELL\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2002-01-02 10:36:43)
Boot Mode: Safe Mode (with Networking)
==================== Accounts: =============================
Administrator (S-1-5-21-920652127-2596171020-774489322-500 - Administrator - Enabled) => C:\Users\Administrator
DELL (S-1-5-21-920652127-2596171020-774489322-1000 - Administrator - Enabled) => C:\Users\DELL
Disrael (S-1-5-21-920652127-2596171020-774489322-1015 - Limited - Enabled) => C:\Users\Disrael
Guest (S-1-5-21-920652127-2596171020-774489322-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-920652127-2596171020-774489322-1000\...\uTorrent) (Version: - BitTorrent Inc.)
Activity Monitor Agent 10.1 (HKLM-x32\...\{89484EE0-8F8E-42C5-9D84-AF5CC5D28D41}_is1) (Version: - Deep Software Inc.)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: - Apple Inc.)
Avidemux 2.5 (HKLM-x32\...\Avidemux 2.5) (Version: - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cloud Drive (HKLM-x32\...\{F40EC703-6B64-4C2D-80BC-5ED2D8295C04}) (Version: - Cox Secure Online Backup for Windows)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: - Conexant)
CSV to vCard (HKLM-x32\...\{B9DCBBD4-20F5-424B-9C56-FFF62BE71CD7}_is1) (Version: -
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 2.31 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.48 - Dell)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.1.5907.39 - Dell Inc.)
Dell Support Center (Version: 3.1.5907.39 - PC-Doctor, Inc.) Hidden
Dell System Detect (HKU\S-1-5-21-920652127-2596171020-774489322-1000\...\58d94f3ce2c27db0) (Version: - Dell)
Dell Wireless WLAN Card Utility (HKLM\...\Dell Wireless WLAN Card Utility) (Version: - Dell Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Faasoft Video Converter (HKLM-x32\...\{C6FE6897-0A65-4474-8EF7-E7AF11F8F239}_is1) (Version: - Faasoft Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.103 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: - Google)
Google Update Helper (x32 Version: - Google Inc.) Hidden
Google Update Helper (x32 Version: - Google Inc.) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: - LIGHTNING UK!)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: - Apple Inc.)
Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
Java 6 Update 14 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416014FF}) (Version: 6.0.140 - Sun Microsystems, Inc.)
Java 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022F0}) (Version: 6.0.220 - Oracle)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Malwarebytes Anti-Malware version (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: - Malwarebytes)
ManyCam 4.1.2 (HKLM-x32\...\ManyCam) (Version: 4.1.2 - Visicom Media Inc.)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Standard Edition 2003 (HKLM-x32\...\{91120409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework 2.1 Core Components (x86) ENU (HKLM-x32\...\{7AC8EF88-D996-4D47-B40C-4DD93E307481}) (Version: 2.1.1648.0 - Microsoft Corporation)
Microsoft Sync Framework 2.1 Provider Services (x86) ENU (HKLM-x32\...\{77610794-D144-422E-82B2-77BBE9052FDA}) (Version: 2.1.1648.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Minimal ADB and Fastboot version 1.2 (HKLM-x32\...\{06C90FCC-4C95-4142-A0AF-D3A4C12882DE}_is1) (Version: 1.2 - Sam Rodberg)
Mozilla Firefox 44.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 44.0 (x86 en-US)) (Version: 44.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Oracle VM VirtualBox 5.0.14 (HKLM\...\{82022940-639B-48A3-86D9-B139864105F7}) (Version: 5.0.14 - Oracle Corporation)
PeaZip 5.8.0 (HKLM-x32\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: 5.8.0 - Giorgio Tani)
Remote Mouse version 2.702 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 2.702 - Remote Mouse)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.111 - Skype Technologies S.A.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0156F2B6-0FF5-4CB3-8648-4E4EB37E4621} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-920652127-2596171020-774489322-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {0F69107F-18CB-4197-9FDA-32F018C0A0E8} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe
Task: {16055DE2-46BA-495B-8117-B4A45D20AD91} - System32\Tasks\AIBHEN\DELL - Start WLAN Tray Applet => C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE [2009-06-23] (Dell Inc.)
Task: {1727ABA5-5BC3-48EA-BA7A-7B0B9CB6118D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-28] (Google Inc.)
Task: {2338AA1C-DE44-41FE-9974-7C1C271EEEA4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {25027B08-C0C5-4837-9D85-54E13DCBCF4A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {2CDAC92E-1280-437C-8765-08D05BA56C33} - System32\Tasks\{EECFCADA-3E3D-41AC-90C2-BD9F5C2DF664} => Chrome.exe hxxp://
Task: {356AA6E5-7A9E-42BF-BEF0-31071F90022C} - System32\Tasks\DFDQ6KK1\Administrator - Start WLAN Tray Applet => C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE [2009-06-23] (Dell Inc.)
Task: {407F530C-FA8D-488F-B323-E54A2EEAE97D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {477054B0-4FC5-48C7-8A7B-573F1C23D363} - System32\Tasks\RealDownloader Update Check => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
Task: {555052CD-DCEE-44CB-A14B-ED894A356CA4} - System32\Tasks\PCDEventLauncher => C:\Program Files\Dell Support Center\sessionchecker.exe [2012-04-12] (PC-Doctor, Inc.)
Task: {68B09292-4D82-4258-9524-37AAB7DDA334} - System32\Tasks\{EA5CECC3-4D4E-4F58-9325-BF1B0E9223F5} => pcalua.exe -a C:\Users\DELL\Downloads\Paint_Shop_Pro_X.exe -d C:\Users\DELL\Downloads
Task: {7275027A-A0F2-42A9-B770-87FF9799C883} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-28] (Google Inc.)
Task: {74ECB042-5893-4B71-9D27-93EFEA8ED09D} - System32\Tasks\{279E637B-F378-4BDA-843E-8B3A6982945E} => Chrome.exe hxxp://
Task: {8D0E82F4-674E-4F82-8864-F9243E1C75F0} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {B1904283-5CF8-4180-8795-F429DADDF719} - System32\Tasks\{91518371-E6B2-4920-B3F7-60DF93F284DE} => pcalua.exe -a "C:\Program Files (x86)\RSUPPORT\Mobizen\ADBDriverInstaller.exe"
Task: {B42E542C-1A59-4502-8A6D-02782ACC76D3} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {B4722F73-D000-4F11-86F7-199459C8FC55} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {B485D335-39A5-485A-8F2B-43FB983644F0} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-920652127-2596171020-774489322-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {C47DD608-3205-41D3-9AED-D3FAF0DFE453} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\Dell Support Center\uaclauncher.exe [2012-04-12] (PC-Doctor, Inc.)
Task: {C740A1B6-86DA-469F-93CA-867D79ABD1F2} - System32\Tasks\Microsoft_Hardware_Launch_IcePick_exe => C:\Program Files (x86)\Microsoft LifeCam\IcePick.exe
Task: {CF57BDE3-CC7E-4C97-A4D0-7DA344F6FF26} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell Support Center\uaclauncher.exe [2012-04-12] (PC-Doctor, Inc.)
Task: {EA1078A7-D923-47B8-9ECC-00476C82C54A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {F7E22FF7-3306-46C2-A1A9-39A1218687ED} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-02] (Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job => C:\Program Files\Dell Support Center\uaclauncher.exeo-backgroundmon scripts\defaultscan.xml
Task: C:\Windows\Tasks\SystemToolsDailyTest.job => C:\Program Files\Dell Support Center\uaclauncher.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-06-10 07:46 - 2014-02-10 12:44 - 04592128 _____ () C:\Users\DELL\AppData\Local\Google\Chrome\User Data\SwiftShader\\libglesv2.dll
2015-06-10 07:46 - 2014-02-10 12:44 - 00112128 _____ () C:\Users\DELL\AppData\Local\Google\Chrome\User Data\SwiftShader\\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-920652127-2596171020-774489322-1000\...\ -> hxxps://
IE trusted site: HKU\S-1-5-21-920652127-2596171020-774489322-1000\...\ ->
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-10-21 14:26 - 2013-01-25 00:22 - 00001590 ____A C:\Windows\system32\Drivers\etc\hosts localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-920652127-2596171020-774489322-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: HTCMonitorService => 2
MSCONFIG\Services: PandaAgent => 2
MSCONFIG\Services: PassThru Service => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: USBSafelyRemoveService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Cox Cloud Drive.lnk => C:\Windows\pss\Cox Cloud Drive.lnk.CommonStartup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BeginInteractiveOSUpgrade => C:\Windows\system32\wuauclt.exe /BeginInteractiveOSUpgrade
MSCONFIG\startupreg: Broadcom Wireless Manager UI => C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe
MSCONFIG\startupreg: BYRUA_AGENT => "C:\LGMobileUpgrade\LGMOBILEAX\BYR_Client\VZWUAAgent.exe" -start
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: FAStartup =>
MSCONFIG\startupreg: GoogleChromeAutoLaunch_4061A3059D27C63A84FB99ECD0D22755 => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: InstallerLauncher => "C:\Users\ADMINI~1\AppData\Local\Temp\GZ_INSTALL_0\setuplauncher.exe" /run:"C:\Users\ADMINI~1\AppData\Local\Temp\GZ_INSTALL_0\Installer.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Launcher => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
MSCONFIG\startupreg: ManyCam => "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent
MSCONFIG\startupreg: Messenger (Yahoo!) => "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Remote Mouse => C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Zoom =>
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out] => (Block) %systemroot%\system32\svchost.exe
FirewallRules: [Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In] => (Block) %systemroot%\system32\svchost.exe
FirewallRules: [Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out] => (Block) %systemroot%\system32\svchost.exe
FirewallRules: [Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In] => (Block) %systemroot%\system32\svchost.exe
FirewallRules: [TCP Query User{27D22583-827A-4B4B-990A-6C522329BE71}C:\users\dell\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dell\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{21456776-5110-476C-9955-6D4C0F2B48B2}C:\users\dell\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dell\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{409B2526-14EA-4028-BB05-8E3D014DB649}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1EC7CAB6-4277-4995-8686-E49F38C52B53}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{B64A8D7F-4F2E-4986-83DC-86E9B18DCEE8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{7DC6DF3F-6C8B-446C-8714-27B2B2E2BAB9}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [TCP Query User{C1BD7DB9-F3A7-4394-BCFC-AC5C3169FCBE}C:\users\dell\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dell\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{AA66BDD1-8367-4CA3-B9C8-9E7A064D7CDA}C:\users\dell\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dell\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{1E91C0F9-82F1-48C7-A5F3-95AE0901F341}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{0F423780-DDF6-413A-9A45-E5374E5ABE7D}] => (Block) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{A2B23E48-99D5-4435-9C1C-E7F73A868D18}] => (Block) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{EEA11590-68EC-4720-BDA6-DABBE39869DB}] => (Block) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{D295D561-E997-40E2-A341-A835037A4ABB}] => (Block) %ProgramFiles%\Windows Media Player\wmplayer.exe
FirewallRules: [{DA64A53B-434B-4DCA-B28F-30BDABABB018}] => (Block) %ProgramFiles%\Windows Media Player\wmplayer.exe
FirewallRules: [{7A064038-F58E-4F3C-9753-AEBFE0F13853}] => (Block) %ProgramFiles%\Windows Media Player\wmplayer.exe
FirewallRules: [TCP Query User{DFA38D0D-2DE5-4F37-B227-F4CDD38724C0}C:\windows\system32\mmc.exe] => (Allow) C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{27901774-3560-4337-AAB6-2C9C782F9312}C:\windows\system32\mmc.exe] => (Allow) C:\windows\system32\mmc.exe
FirewallRules: [{E0B8207C-F354-485C-997D-D8A49079DD15}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
FirewallRules: [{5BE796CC-E4C3-4997-A911-E1674FA92591}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
FirewallRules: [TCP Query User{91492F43-4C98-4354-9802-54FCDD6BC1C4}C:\program files (x86)\remote mouse\remotemouse.exe] => (Block) C:\program files (x86)\remote mouse\remotemouse.exe
FirewallRules: [UDP Query User{6AD6A457-1AC6-4560-B1B2-5ACA2B6F9027}C:\program files (x86)\remote mouse\remotemouse.exe] => (Block) C:\program files (x86)\remote mouse\remotemouse.exe
FirewallRules: [{2C7DC962-BD0C-493F-8043-6FCF548D7C83}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{777C0514-55A4-4EA5-8DBB-B2DEC7E33690}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{13676CEE-80C5-4FDC-B8B7-4DE154E55EA4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{17C35324-E0D9-451D-9239-077CA0F26AB5}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{8E7DDDC2-8AD0-46AE-9EA0-C2C874CC1127}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [TCP Query User{F3625C6D-4A02-410B-AAE1-A4A243735F77}C:\program files\oracle\virtualbox\virtualbox.exe] => (Allow) C:\program files\oracle\virtualbox\virtualbox.exe
FirewallRules: [UDP Query User{42E7950D-C7EC-46F4-BC4E-D6DB9CE48A18}C:\program files\oracle\virtualbox\virtualbox.exe] => (Allow) C:\program files\oracle\virtualbox\virtualbox.exe
==================== Restore Points =========================
10-02-2016 00:12:42 Removed Xirrus Wi-Fi Inspector
10-02-2016 00:50:20 Windows Update
10-02-2016 05:40:45 Windows Update
10-02-2016 21:35:05 Installed Chrome Remote Desktop Host
10-02-2016 23:09:36 Removed Chrome Remote Desktop Host
10-02-2016 23:30:54 Installed Chrome Remote Desktop Host
11-02-2016 02:06:57 Installed XSplit Broadcaster
12-02-2016 03:29:32 Removed Dell Support Center
14-02-2016 01:58:14 Windows Update
14-02-2016 06:21:36 Windows Update
16-02-2016 04:59:16 Removed Chrome Remote Desktop Host
16-02-2016 05:01:33 Removed XSplit Broadcaster
16-02-2016 15:40:10 Removed Google Earth
17-02-2016 08:16:19 Windows Update
19-02-2016 00:40:53 Removed iTunes
19-02-2016 00:44:51 Removed Apple Application Support (32-bit)
19-02-2016 00:45:28 Removed Apple Application Support (64-bit)
19-02-2016 00:47:52 Removed Bonjour
19-02-2016 00:49:14 Removed Apple Mobile Device Support
19-02-2016 00:50:29 Removed Apple Software Update
19-02-2016 02:38:11 Installed iTunes
19-02-2016 12:18:26 Restore Operation
20-02-2016 09:48:42 Windows Update
21-02-2016 04:56:21 Microsoft Antimalware Checkpoint
21-02-2016 09:12:15 Restore Operation
21-02-2016 10:41:49 Windows Update
==================== Faulty Device Manager Devices =============
Name: SanDisk U3 Cruzer Micro USB Device
Description: CD-ROM Drive
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: McAfee Inc. mfewfpk
Description: McAfee Inc. mfewfpk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Service: mfewfpk
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
Error: (02/22/2016 11:09:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GoogleUpdate.exe, version:, time stamp: 0x564f508c
Faulting module name: ntdll.dll, version: 6.1.7601.19110, time stamp: 0x5684255b
Exception code: 0xc0000374
Fault offset: 0x000ced0b
Faulting process id: 0x12f0
Faulting application start time: 0xGoogleUpdate.exe0
Faulting application path: GoogleUpdate.exe1
Faulting module path: GoogleUpdate.exe2
Report Id: GoogleUpdate.exe3
Error: (02/22/2016 11:09:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DropboxUpdate.exe, version:, time stamp: 0x55429384
Faulting module name: goopdate.dll, version:, time stamp: 0x55a6f9bf
Exception code: 0xc0000005
Fault offset: 0x0000acf5
Faulting process id: 0x12f8
Faulting application start time: 0xDropboxUpdate.exe0
Faulting application path: DropboxUpdate.exe1
Faulting module path: DropboxUpdate.exe2
Report Id: DropboxUpdate.exe3
Error: (02/22/2016 08:25:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GoogleUpdate.exe, version:, time stamp: 0x564f508c
Faulting module name: ntdll.dll, version: 6.1.7601.19110, time stamp: 0x5684255b
Exception code: 0xc0000374
Fault offset: 0x000ced0b
Faulting process id: 0x1278
Faulting application start time: 0xGoogleUpdate.exe0
Faulting application path: GoogleUpdate.exe1
Faulting module path: GoogleUpdate.exe2
Report Id: GoogleUpdate.exe3
Error: (02/22/2016 08:25:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DropboxUpdate.exe, version:, time stamp: 0x55429384
Faulting module name: unknown, version:, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x74c4e4e4
Faulting process id: 0x1280
Faulting application start time: 0xDropboxUpdate.exe0
Faulting application path: DropboxUpdate.exe1
Faulting module path: DropboxUpdate.exe2
Report Id: DropboxUpdate.exe3
Error: (02/22/2016 06:37:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GoogleUpdate.exe, version:, time stamp: 0x564f508c
Faulting module name: ntdll.dll, version: 6.1.7601.19110, time stamp: 0x5684255b
Exception code: 0xc0000374
Fault offset: 0x000ced0b
Faulting process id: 0x854
Faulting application start time: 0xGoogleUpdate.exe0
Faulting application path: GoogleUpdate.exe1
Faulting module path: GoogleUpdate.exe2
Report Id: GoogleUpdate.exe3
Error: (02/22/2016 06:37:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DropboxUpdate.exe, version:, time stamp: 0x55429384
Faulting module name: goopdate.dll, version:, time stamp: 0x55a6f9bf
Exception code: 0xc0000005
Fault offset: 0x0000acf5
Faulting process id: 0x85c
Faulting application start time: 0xDropboxUpdate.exe0
Faulting application path: DropboxUpdate.exe1
Faulting module path: DropboxUpdate.exe2
Report Id: DropboxUpdate.exe3
Error: (02/21/2016 10:10:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GoogleUpdate.exe, version:, time stamp: 0x564f508c
Faulting module name: ntdll.dll, version: 6.1.7601.19110, time stamp: 0x5684255b
Exception code: 0xc0000374
Fault offset: 0x000ced0b
Faulting process id: 0x1390
Faulting application start time: 0xGoogleUpdate.exe0
Faulting application path: GoogleUpdate.exe1
Faulting module path: GoogleUpdate.exe2
Report Id: GoogleUpdate.exe3
Error: (02/21/2016 10:10:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DropboxUpdate.exe, version:, time stamp: 0x55429384
Faulting module name: goopdate.dll, version:, time stamp: 0x55a6f9bf
Exception code: 0xc0000005
Fault offset: 0x0000acf5
Faulting process id: 0x1388
Faulting application start time: 0xDropboxUpdate.exe0
Faulting application path: DropboxUpdate.exe1
Faulting module path: DropboxUpdate.exe2
Report Id: DropboxUpdate.exe3
Error: (02/21/2016 09:12:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DropboxUpdate.exe, version:, time stamp: 0x55429384
Faulting module name: goopdate.dll, version:, time stamp: 0x55a6f9bf
Exception code: 0xc0000005
Fault offset: 0x0000acf5
Faulting process id: 0x850
Faulting application start time: 0xDropboxUpdate.exe0
Faulting application path: DropboxUpdate.exe1
Faulting module path: DropboxUpdate.exe2
Report Id: DropboxUpdate.exe3
Error: (02/21/2016 09:11:03 AM) (Source: System Restore) (EventID: 8210) (User: )
Description: An unspecified error occurred during System Restore: (Removed Xirrus Wi-Fi Inspector). Additional information: 0x8000ffff.
System errors:
Error: (02/22/2016 01:43:22 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:43:22 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:43:22 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:42:38 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:42:38 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:42:38 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:42:36 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:42:36 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:42:36 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Error: (02/22/2016 01:38:56 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
Date: 2015-11-04 19:32:07.467
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:32:07.358
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:32:07.217
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:20:36.080
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:20:35.955
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:20:35.846
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:20:00.434
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:20:00.309
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:20:00.169
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-11-04 19:20:00.028
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\SMCLpav\Pav2WSC.exe because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Pentium® Dual-Core CPU E5400 @ 2.70GHz
Percentage of memory in use: 28%
Total physical RAM: 4060.8 MB
Available physical RAM: 2893.38 MB
Total Virtual: 4059.01 MB
Available Virtual: 3001.73 MB
==================== Drives ================================
Drive a: (FLASH4GB) (Removable) (Total:3.81 GB) (Free:2 GB) FAT32
Drive c: (OS) (Fixed) (Total:427.84 GB) (Free:63.71 GB) NTFS
Drive i: (FLASH120GB) (Fixed) (Total:119.22 GB) (Free:8.06 GB) FAT32
Drive k: (FLASH1GB) (Removable) (Total:0.96 GB) (Free:0.01 GB) FAT
==================== MBR & Partition Table ==================
Disk: 0 (Size: 465.8 GB) (Disk ID: FCD81E54)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=427.8 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=19.6 GB) - (Type=OF Extended)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 3.8 GB) (Disk ID: 27153A6E)
Partition 1: (Not Active) - (Size=3.8 GB) - (Type=0B)
Disk: 2 (Size: 119.3 GB) (Disk ID: 6FEF87CA)
Partition 1: (Not Active) - (Size=119.2 GB) - (Type=0C)
Disk: 3 (Size: 983.4 MB) (Disk ID: 9F13E1D4)
Partition 1: (Not Active) - (Size=988 MB) - (Type=06)
==================== End of Addition.txt ============================
sorry for attaching. I forgot you guys wanted it copied and pasted. I tried editing it but could not find an option to remove the attachments.
Edited by bythehill, 22 February 2016 - 02:44 PM.