Hi guys, I ve tried to fix this problem, it all started with the last windows 10 update on my laptop,
i know it s not the modem or anything else cause on my ipad and on my romate s computer it never disconects, so i m asking u to see if you could possibly help me.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
Ran by tom-t (administrator) on DESKTOP-FMLSAAF (08-12-2016 22:27:02)
Running from C:\Users\tom-t\Downloads
Loaded Profiles: tom-t (Available Profiles: tom-t & familia)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Scarlet.Crush Productions) C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(LULU SOFTWARE LIMITED) C:\Program Files\Soda PDF 8\creator-ws.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
(LULU Software Limited) C:\ProgramData\LULU Software\Soda PDF 8 Manager\Soda PDF 8\Soda Manager.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(Apple Inc.) C:\Program Files (x86)\AirPrint\airprint.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
(Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.StickyNotes.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Lenovo) C:\Users\tom-t\AppData\Local\Apps\2.0\OVQDAX6M.AD2\TDZ6JLPJ.97P\lsb...tion_2d7b41b05b24775e_0001.0006_589ac911618caaca\LSB.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\LockAppHost.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-10-28] (Apple Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2131344 2016-06-20] (Wondershare)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1960248 2015-12-10] ()
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [135536 2010-12-13] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-25] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9355480 2016-11-21] (Piriform Ltd)
HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\Run: [Advanced SystemCare 10] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3076896 2016-10-31] (IObit)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-11-25] (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
Tcpip\..\Interfaces\{14b4b94a-80d4-4e2c-ac85-04b87c24247d}: [DhcpNameServer] 82.163.143.171
Tcpip\..\Interfaces\{3addcba3-53ef-48eb-b30a-98108bb87e63}: [NameServer] 24.201.245.77
Tcpip\..\Interfaces\{3addcba3-53ef-48eb-b30a-98108bb87e63}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ce5def0e-1cea-4be7-9213-11d79dd482e9}: [DhcpNameServer] 82.163.143.171
Tcpip\..\Interfaces\{e5f59957-a183-452d-8bb5-a5b145dd44fd}: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-748703395-188434783-1144859813-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-30] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-30] (Microsoft Corporation)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2015-12-10] (Wondershare)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-25] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-25] (Oracle Corporation)
Toolbar: HKLM-x32 - Soda PDF 8 Toolbar - {A2689669-AD38-4AFD-B370-23E97E2B9D18} - C:\Program Files (x86)\Soda PDF 8\creator-ie-plugin.dll [2016-08-26] (LULU SOFTWARE LIMITED)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-30] (Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - No File
FireFox:
========
FF ProfilePath: C:\Users\tom-t\AppData\Roaming\Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 [2016-12-08]
FF NewTab: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> Google
FF Homepage: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/?bcutc=sp-006
FF Keyword.URL: Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357 -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchPlugin: C:\Users\tom-t\AppData\Roaming\Mozilla\Firefox\Profiles\le75ahdf.default-1459265284357\searchplugins\google-avast.xml [2016-11-25]
FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Soda PDF 8\resources\sodapdf8firefoxextension
FF Extension: (Soda PDF 8 Creator) - C:\Program Files\Soda PDF 8\resources\sodapdf8firefoxextension [2016-10-09] [not signed]
FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-11-25]
FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-11-25]
FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\
[email protected] [2015-12-27] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-30] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
FF Plugin-x32: Soda PDF 8 -> C:\Program Files (x86)\Soda PDF 8\np-previewer.dll [2016-08-26] (LULU SOFTWARE LIMITED)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.ca/
CHR StartupUrls: Default -> "hxxps://www.facebook.com/"
CHR Profile: C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default [2016-12-08]
CHR Extension: (Google Drive) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-08]
CHR Extension: (YouTube) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-08]
CHR Extension: (Adblock Plus) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-08]
CHR Extension: (PDF Editor for Docs:Edit, Fill, Sign, Print) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjboohgkgchdnfnjiaggdbkdmpieoagi [2016-11-08]
CHR Extension: (Excel Viewer, Editor) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpdiahdjhpfaafoffpoaafcmjbcfmaj [2016-11-08]
CHR Extension: (Adblock for Youtube™) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-11-08]
CHR Extension: (Beach in the Maldives) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddicfadfciaeikknlkcldgockejldhek [2016-11-08]
CHR Extension: (AdBlock) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-23]
CHR Extension: (Avast Online Security) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-08]
CHR Extension: (Gmail) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\tom-t\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [462624 2016-10-14] (IObit)
R2 AirPrint; C:\Program Files (x86)\AirPrint\airprint.exe [234784 2016-08-30] (Apple Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-11-25] (AVAST Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe [121560 2015-07-20] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3294912 2016-10-30] (Microsoft Corporation)
S3 cplspcon; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [622064 2016-11-28] (Intel Corporation)
R2 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-11-28] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-28] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [241408 2016-11-28] (Realtek Semiconductor Corp.)
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 Soda PDF 8; C:\Program Files\Soda PDF 8\ws.exe [2263504 2016-08-26] (LULU SOFTWARE LIMITED)
S3 Soda PDF 8 CrashHandler; C:\Program Files\Soda PDF 8\crash-handler-ws.exe [920016 2016-08-26] (LULU SOFTWARE LIMITED)
R2 Soda PDF 8 Creator; C:\Program Files\Soda PDF 8\creator-ws.exe [733136 2016-08-26] (LULU SOFTWARE LIMITED)
R2 Soda PDF 8 Manager; C:\ProgramData\LULU Software\Soda PDF 8 Manager\Soda PDF 8\Soda Manager.exe [900120 2016-08-11] (LULU Software Limited)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-11-25] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-11-25] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-11-25] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-11-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-11-25] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-11-25] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-11-25] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-11-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-11-25] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [71232 2016-11-28] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66624 2016-11-28] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-11-28] (Intel Corporation)
R1 HWiNFO32; C:\WINDOWS\SysWoW64\drivers\HWiNFO64A.SYS [27552 2016-11-28] (REALiX)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2015-12-17] (hxxp://libusb-win32.sourceforge.net)
R3 LifeCamTrueColor; C:\WINDOWS\system32\DRIVERS\LifeCamTrueColor.sys [37928 2016-07-27] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [935168 2016-11-28] (Realtek )
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [207632 2016-06-29] (Realtek Semiconductor Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [736872 2016-11-28] (Realtek Semiconductor Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-11-28] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [5164288 2016-04-13] (Realtek Semiconductor Corporation )
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-08 22:27 - 2016-12-08 22:27 - 00024704 _____ C:\Users\tom-t\Downloads\FRST.txt
2016-12-08 22:26 - 2016-12-08 22:27 - 00000000 ____D C:\FRST
2016-12-08 22:26 - 2016-12-08 22:26 - 02420224 _____ (Farbar) C:\Users\tom-t\Downloads\FRST64.exe
2016-12-08 20:36 - 2016-12-08 20:35 - 19299088 _____ C:\Users\tom-t\Desktop\WIN_20161208_202022.MP4
2016-12-05 22:49 - 2016-12-05 22:49 - 00000000 ____D C:\Users\tom-t\Downloads\Peter Paul Almond Joy & Mounds - _Feel Like A Nut_ (1980)
2016-12-05 21:52 - 2016-12-05 21:54 - 00000000 ____D C:\Users\tom-t\Downloads\Watch this hot bisexual orgy clip
2016-12-05 21:17 - 2016-12-05 21:22 - 00000000 ____D C:\Users\tom-t\Downloads\Bisex outdoor anal orgy
2016-12-05 20:57 - 2016-12-05 21:00 - 00000000 ____D C:\Users\tom-t\Downloads\3167916 Wild Bi Orgy 240p
2016-12-05 20:20 - 2016-12-05 20:22 - 00000000 ____D C:\Users\tom-t\Downloads\3334497 It's a BI ORGY at the [bleep] HOUSE 240p
2016-12-05 11:20 - 2016-12-05 11:20 - 11031965 _____ C:\Users\tom-t\Downloads\app-xmod-release_2.3.5_235.apk
2016-12-04 10:43 - 2016-12-01 10:06 - 00082936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2016-11-28 18:02 - 2016-11-28 18:02 - 09891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2016-11-28 18:02 - 2016-11-28 18:02 - 04332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2016-11-28 18:01 - 2016-11-28 18:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_esif_lf_01011.Wdf
2016-11-28 18:00 - 2016-11-28 18:00 - 01804688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-11-28 18:00 - 2016-11-28 18:00 - 00000000 ____D C:\WINDOWS\system32\Intel
2016-11-28 17:57 - 2016-11-28 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2016-11-28 17:57 - 2016-11-28 17:57 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-28 17:57 - 2016-02-15 18:27 - 00125720 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-11-28 17:57 - 2016-02-15 18:26 - 00126232 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-11-28 17:57 - 2016-02-15 18:25 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-11-28 17:57 - 2016-02-15 18:25 - 00042264 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-11-28 17:56 - 2016-11-28 17:56 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-11-28 17:53 - 2016-11-28 17:53 - 39834552 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 34771224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 29101592 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 19861528 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 14024128 _____ C:\WINDOWS\SysWOW64\VulkanRT-Installer.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 13601312 _____ (Intel Corporation) C:\WINDOWS\system32\ig9icd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 10298400 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig9icd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 06832016 _____ (Intel Corporation) C:\WINDOWS\system32\igvk64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 06599920 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05799386 _____ C:\WINDOWS\system32\igdclbif.bin
2016-11-28 17:53 - 2016-11-28 17:53 - 05685792 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05626664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igvk32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05262880 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 05052560 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04872736 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04379168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04243912 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 04215080 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 03970072 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01892200 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01816744 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01814088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01576992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01465032 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01167904 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 01027056 _____ C:\WINDOWS\system32\igfxSDK.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00965104 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00961520 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00843068 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2016-11-28 17:53 - 2016-11-28 17:53 - 00632864 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00622064 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00536568 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00466928 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00439328 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00435112 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00433992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00416288 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00390176 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00388640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00381960 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00379816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00350208 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00318488 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00312328 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00301560 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00297184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00273440 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-28 17:53 - 2016-11-28 17:53 - 00266264 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00255520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00242184 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00237048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00232432 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00231920 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00225304 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00223272 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00207904 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4404.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00205384 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00193048 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00181856 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00175088 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-11-28 17:53 - 2016-11-28 17:53 - 00173088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00111648 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00103968 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00103456 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00100896 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00099872 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00095264 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00084512 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00055272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00052768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00029208 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00029208 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00027680 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00027680 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00022560 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00022560 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-11-28 17:53 - 2016-11-28 17:53 - 00004834 _____ C:\WINDOWS\system32\iglhxs64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2016-11-28 17:53 - 2016-11-28 17:53 - 00000134 _____ C:\WINDOWS\SysWOW64\igvk32.json
2016-11-28 17:53 - 2016-11-28 17:53 - 00000134 _____ C:\WINDOWS\system32\igvk64.json
2016-11-28 17:48 - 2016-11-28 17:48 - 00812520 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\SETD751.tmp
2016-11-28 17:48 - 2016-11-28 17:48 - 00812520 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2016-11-28 17:48 - 2016-11-28 17:48 - 00241408 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtkBtManServ.exe
2016-11-28 17:48 - 2016-11-28 17:48 - 00073996 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00066368 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00064604 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00053548 _____ C:\WINDOWS\rtl8723d_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050752 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050712 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00050700 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new_s1.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00045100 _____ C:\WINDOWS\rtl8822b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00038356 _____ C:\WINDOWS\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00016916 _____ C:\WINDOWS\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-11-28 17:48 - 2016-11-28 17:48 - 00000952 _____ C:\WINDOWS\PidVid_List.dll
2016-11-28 17:46 - 2016-11-28 18:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-11-28 17:45 - 2016-11-28 17:45 - 72520720 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-11-28 17:45 - 2016-11-28 17:45 - 14057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 13122584 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 12988344 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 10534704 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 07101220 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-11-28 17:45 - 2016-11-28 17:45 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 06374320 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 06264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05793528 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05593624 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 05341352 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03299832 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03291320 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03283248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 03203592 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02895104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-11-28 17:45 - 2016-11-28 17:45 - 02825112 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02775352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02706864 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02439048 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02203752 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02110592 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02073096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 02050184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01920820 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2016-11-28 17:45 - 2016-11-28 17:45 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01618032 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01529144 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01435152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01422936 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01360520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01337648 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01322656 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01213664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01186840 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01166168 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01115144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01041744 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 01001800 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00999864 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00962136 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00923752 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00873464 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00864344 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00858200 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00854032 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00725944 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00678192 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00677680 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00601152 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00498648 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00472312 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00467160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00447184 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00445400 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00416512 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00372744 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00366128 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00362064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00360352 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00341160 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00341160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00258872 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00221968 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00209536 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00203848 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00190936 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00190936 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00179608 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00158704 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00154368 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00088320 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2016-11-28 17:45 - 2016-11-28 17:45 - 00075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2016-11-28 17:41 - 2016-11-28 17:41 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-11-28 17:38 - 2016-11-28 17:38 - 00003114 _____ C:\WINDOWS\System32\Tasks\ASC10_PerformanceMonitor
2016-11-28 17:38 - 2016-11-28 17:38 - 00002908 _____ C:\WINDOWS\System32\Tasks\ASC10_SkipUac_tom-t
2016-11-28 17:38 - 2016-11-28 17:38 - 00002496 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_tom-t
2016-11-28 17:38 - 2016-11-28 17:38 - 00002239 _____ C:\Users\Public\Desktop\Advanced SystemCare 10.lnk
2016-11-28 17:38 - 2016-11-28 17:38 - 00001428 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2016-11-28 17:38 - 2016-11-28 17:38 - 00000310 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_tom-t.job
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2016-11-28 17:38 - 2016-11-28 17:38 - 00000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2016-11-28 17:37 - 2016-12-08 20:03 - 00003038 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (tom-t)
2016-11-28 17:37 - 2016-12-06 14:43 - 00000000 ____D C:\ProgramData\ProductData
2016-11-28 17:37 - 2016-11-28 18:09 - 00000000 ____D C:\ProgramData\IObit
2016-11-28 17:37 - 2016-11-28 17:38 - 00000000 ____D C:\Users\tom-t\AppData\LocalLow\IObit
2016-11-28 17:37 - 2016-11-28 17:37 - 00027552 _____ (REALiX) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2016-11-28 17:37 - 2016-11-28 17:37 - 00003394 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2016-11-28 17:37 - 2016-11-28 17:37 - 00000000 ____D C:\WINDOWS\IObit
2016-11-28 17:36 - 2016-11-28 18:03 - 00002352 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2016-11-28 17:36 - 2016-11-28 17:40 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\IObit
2016-11-28 17:36 - 2016-11-28 17:38 - 00000000 ____D C:\Program Files (x86)\IObit
2016-11-28 17:36 - 2016-11-28 17:36 - 17150504 _____ (IObit ) C:\Users\tom-t\Downloads\driver_booster_setup.exe
2016-11-28 17:36 - 2016-11-28 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-11-28 17:33 - 2016-11-28 17:33 - 00000000 ____D C:\Users\tom-t\AppData\Local\Deployment
2016-11-28 17:32 - 2016-11-28 17:33 - 00611400 _____ () C:\Users\tom-t\Downloads\LSBsetup.exe
2016-11-26 14:22 - 2016-11-26 14:23 - 00414116 _____ C:\WINDOWS\Minidump\112616-31156-01.dmp
2016-11-26 14:22 - 2016-11-26 14:22 - 999367790 _____ C:\WINDOWS\MEMORY.DMP
2016-11-26 12:56 - 2016-11-26 12:56 - 00001461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-11-26 12:56 - 2016-11-26 12:56 - 00001449 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-11-26 12:56 - 2016-11-26 12:56 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-11-26 12:56 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-11-26 12:45 - 2016-11-26 12:56 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\tom-t\Downloads\spybot-2.4.exe
2016-11-26 12:42 - 2016-11-27 14:36 - 00001172 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-26 12:41 - 2016-11-27 14:36 - 22851472 _____ (Malwarebytes ) C:\Users\tom-t\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-26 12:41 - 2016-11-26 12:41 - 22851472 _____ (Malwarebytes ) C:\Users\tom-t\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-11-25 11:32 - 2016-12-07 11:00 - 00000000 ____D C:\Users\tom-t\AppData\LocalLow\Mozilla
2016-11-25 11:20 - 2016-11-25 11:20 - 00001823 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-25 11:20 - 2016-11-25 11:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-25 11:20 - 2016-11-25 11:20 - 00000000 ____D C:\Program Files\iPod
2016-11-25 11:13 - 2016-11-25 11:13 - 00001140 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-11-25 11:08 - 2016-11-25 11:08 - 00000000 ___HD C:\kleaner.tmp
2016-11-25 10:47 - 2016-11-25 11:44 - 00004020 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1480088856
2016-11-25 10:47 - 2016-11-25 11:44 - 00001089 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-11-25 10:47 - 2016-11-25 10:47 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-11-25 10:47 - 2016-11-25 10:47 - 00001089 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-11-25 10:45 - 2016-11-25 10:45 - 00001980 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-11-25 10:45 - 2016-11-25 10:45 - 00001968 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-11-25 10:44 - 2016-11-25 10:44 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00293352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-11-25 10:44 - 2016-11-25 10:44 - 00004004 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-11-25 10:44 - 2016-11-25 10:43 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-11-25 10:44 - 2016-11-25 10:43 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-11-25 10:44 - 2016-11-25 10:43 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-11-25 10:43 - 2016-11-25 10:43 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-11-25 10:42 - 2016-11-25 10:47 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-25 10:42 - 2016-11-25 10:47 - 00000000 ____D C:\Program Files\AVAST Software
2016-11-25 10:42 - 2016-11-25 10:42 - 06334848 _____ (AVAST Software) C:\Users\tom-t\Downloads\avast_free_antivirus_setup_online.exe
2016-11-24 23:20 - 2016-11-24 23:20 - 00250180 _____ C:\Users\tom-t\OneDrive\Documents\cc_20161124_232035.reg
2016-11-24 22:59 - 2016-11-24 23:00 - 00000000 ____D C:\Program Files\CCleaner
2016-11-24 22:59 - 2016-11-24 22:59 - 00002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-11-24 22:59 - 2016-11-24 22:59 - 00000864 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-24 22:59 - 2016-11-24 22:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-24 19:45 - 2016-11-24 22:58 - 08995888 _____ (Piriform Ltd) C:\Users\tom-t\Downloads\ccsetup524_protrial.exe
2016-11-24 17:29 - 2016-11-24 17:29 - 00002640 _____ C:\Users\Public\Desktop\Skype.lnk
2016-11-24 17:29 - 2016-11-24 17:29 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-24 17:29 - 2016-11-24 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-11-24 17:25 - 2016-11-24 17:25 - 00003274 _____ C:\WINDOWS\System32\Tasks\{F1DDA1AF-B206-4BCB-B01B-0CADB40C6524}
2016-11-24 17:22 - 2016-11-24 17:25 - 43878872 _____ (Skype Technologies S.A.) C:\Users\tom-t\Downloads\SkypeSetupFull.exe
2016-11-21 14:19 - 2016-11-21 14:19 - 92485932 _____ C:\Users\tom-t\Downloads\PinOutV2.apk
2016-11-20 19:03 - 2016-11-20 19:03 - 02185824 _____ C:\Users\tom-t\Downloads\[PS3]SaveGame Resigner 1.4.zip
2016-11-20 18:52 - 2016-11-20 19:03 - 00000000 ____D C:\Users\tom-t\Desktop\1.4 save resigner
2016-11-20 18:39 - 2016-11-20 18:39 - 00000217 _____ C:\Users\tom-t\Downloads\save_resigner_ps3.html
2016-11-20 16:20 - 2016-11-20 16:20 - 00189073 _____ C:\Users\tom-t\Downloads\games (1).conf
2016-11-20 16:20 - 2016-11-20 16:20 - 00177248 _____ C:\Users\tom-t\Downloads\XX0001-ENSTONEXX_00-00000000000CCAPIv2.50.pkg
2016-11-20 16:19 - 2016-11-20 16:21 - 13866963 _____ (The Prince of Codes) C:\Users\tom-t\Downloads\[PS3] Save Resigner 2.0.6 Setup.exe
2016-11-20 16:13 - 2016-11-20 18:43 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2016-11-20 16:13 - 2016-11-20 16:13 - 00000000 ____D C:\ProgramData\Caphyon
2016-11-20 16:10 - 2016-11-20 16:13 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\The Prince of Codes
2016-11-20 16:00 - 2016-11-20 16:00 - 10290074 _____ C:\Users\tom-t\Downloads\PS3 Save Resigner 2.0.rar
2016-11-20 15:35 - 2016-11-20 15:35 - 00584229 _____ C:\Users\tom-t\Downloads\MSVBVM50.DLL.RAR
2016-11-20 15:22 - 2016-11-20 15:22 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (4).exe
2016-11-20 15:19 - 2016-11-20 15:23 - 04427826 _____ C:\Users\tom-t\Downloads\Bruteforce_Save_Data_v4.4.2.rar
2016-11-20 15:10 - 2016-11-20 15:10 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (3).exe
2016-11-20 14:05 - 2016-11-20 13:19 - 01355776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVBVM50.DLL
2016-11-20 13:19 - 2016-11-20 13:19 - 01355776 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\MSVBVM50.DLL
2016-11-20 13:15 - 2016-11-20 13:15 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (2).exe
2016-11-20 13:00 - 2016-11-20 13:00 - 05718872 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64 (1).exe
2016-11-20 12:56 - 2016-11-20 12:56 - 00239017 _____ C:\Users\tom-t\Downloads\games.conf
2016-11-20 12:56 - 2016-11-20 12:56 - 00016769 _____ C:\Users\tom-t\Downloads\CheatsDB_BSD_Version file 20th feb 2014.rar
2016-11-20 12:55 - 2016-11-20 12:56 - 07672938 _____ C:\Users\tom-t\Downloads\BruteforceSaveData4.7.rar
2016-11-20 12:48 - 2016-11-20 12:48 - 07201032 _____ (Microsoft Corporation) C:\Users\tom-t\Downloads\vcredist_x64.exe
2016-11-20 12:34 - 2016-11-20 12:34 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\WildTangent
2016-11-20 12:33 - 2016-11-20 12:35 - 04935893 _____ C:\Users\tom-t\Downloads\BruteforceSaveData 4.6.rar
2016-11-20 12:15 - 2016-11-20 12:15 - 00047369 _____ C:\Users\tom-t\Downloads\All ps3 games regions.rar
2016-11-20 11:29 - 2016-11-20 17:11 - 00000000 ____D C:\Users\tom-t\Desktop\seiya modded
2016-11-20 11:23 - 2016-11-20 11:23 - 00098164 _____ C:\Users\tom-t\Downloads\BLES02291-SAVEDATA0.zip
2016-11-20 10:46 - 2016-11-20 10:47 - 00000000 ____D C:\Users\tom-t\Desktop\backyp saint seiya
2016-11-19 21:23 - 2016-11-19 21:35 - 00000000 ____D C:\Users\tom-t\Desktop\HADES
2016-11-17 15:23 - 2015-10-06 02:37 - 00000000 ____D C:\Users\tom-t\Desktop\BLUS31559-[Saint Seiya Soldiers Soul]
2016-11-17 09:55 - 2016-11-25 11:37 - 00000016 _____ C:\WINDOWS\SysWOW64\PCProxyOff.ini
2016-11-17 09:55 - 2016-11-17 09:55 - 00073728 _____ C:\WINDOWS\SysWOW64\VistaInfo32.dll
2016-11-17 09:55 - 2016-11-17 09:55 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpOrder.dll
2016-11-17 09:21 - 2016-11-17 09:21 - 00000000 ____D C:\Users\tom-t\Downloads\Saint Seiya - AndreloPS
2016-11-17 09:18 - 2016-11-17 09:18 - 06907464 _____ (Tonec Inc.) C:\Users\tom-t\Downloads\idman626build10.exe
2016-11-16 16:40 - 2016-11-16 16:44 - 1073741824 _____ C:\Users\tom-t\Downloads\541N7.531Y4.H4D35.00.15.part01.rar
2016-11-16 15:36 - 2016-11-16 15:43 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\ImgBurn
2016-11-16 15:25 - 2016-11-16 15:25 - 00001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2016-11-16 15:25 - 2016-11-16 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2016-11-16 15:25 - 2016-11-16 15:25 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2016-11-16 15:10 - 2016-11-16 15:10 - 00000000 ____D C:\Users\tom-t\OneDrive\Documents\default
2016-11-16 15:09 - 2016-11-17 09:23 - 00000000 ____D C:\Users\tom-t\Downloads\j0q9k6340qdljok
2016-11-16 09:26 - 2016-11-16 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karmian
2016-11-16 09:26 - 2016-11-16 09:26 - 00000000 ____D C:\Program Files (x86)\Karmian
2016-11-16 08:51 - 2014-12-17 15:45 - 00000000 ____D C:\Users\tom-t\Desktop\Shining_Reso-nance_JPN_PS3-HR alberto pumper
2016-11-15 20:54 - 2016-11-15 20:54 - 11487168 _____ C:\Users\tom-t\Downloads\Dark Souls cheat Unlimited Souls TB.pkg
2016-11-15 20:53 - 2016-11-15 20:53 - 11487168 _____ C:\Users\tom-t\Downloads\Dark Souls BLES01402 Unlimited Souls.pkg
2016-11-15 20:33 - 2016-11-15 20:33 - 09200802 _____ C:\Users\tom-t\Downloads\TOWERBLOCKMODSPS3.rar
2016-11-14 18:12 - 2016-11-14 18:12 - 00728865 _____ C:\Users\tom-t\Downloads\Shin_Ohtake_Max_Workouts_Pdf.zip
2016-11-14 09:45 - 2016-11-14 09:45 - 51477528 _____ C:\Users\tom-t\Downloads\1.5.0_EasyFarmMode.apk
2016-11-12 10:09 - 2016-11-12 10:09 - 00003182 _____ C:\WINDOWS\System32\Tasks\{56948C08-F0EE-4CA9-835B-CACBD3D6724B}
2016-11-10 11:25 - 2016-11-10 11:25 - 51477505 _____ C:\Users\tom-t\Downloads\1.5.0_OnlyEnergy.apk
2016-11-09 00:02 - 2016-11-02 07:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-09 00:02 - 2016-11-02 07:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-09 00:02 - 2016-11-02 06:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-09 00:02 - 2016-11-02 06:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-09 00:02 - 2016-11-02 06:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-09 00:02 - 2016-11-02 06:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-09 00:02 - 2016-11-02 06:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-09 00:02 - 2016-11-02 06:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-09 00:02 - 2016-11-02 06:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-09 00:02 - 2016-11-02 06:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-09 00:02 - 2016-11-02 06:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-09 00:02 - 2016-11-02 06:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-09 00:02 - 2016-11-02 06:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-09 00:02 - 2016-11-02 06:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-09 00:02 - 2016-11-02 06:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-09 00:02 - 2016-11-02 06:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-09 00:02 - 2016-11-02 06:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-09 00:02 - 2016-11-02 06:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-09 00:02 - 2016-11-02 06:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-09 00:02 - 2016-11-02 06:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-09 00:02 - 2016-11-02 06:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-09 00:02 - 2016-11-02 06:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-09 00:02 - 2016-11-02 06:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-09 00:02 - 2016-11-02 06:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-09 00:02 - 2016-11-02 05:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-09 00:02 - 2016-11-02 05:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-09 00:02 - 2016-11-02 05:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-09 00:02 - 2016-11-02 05:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-09 00:02 - 2016-11-02 05:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-09 00:02 - 2016-11-02 05:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-09 00:02 - 2016-11-02 05:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-09 00:02 - 2016-11-02 05:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-09 00:02 - 2016-11-02 05:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-09 00:02 - 2016-11-02 05:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-09 00:02 - 2016-11-02 05:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-09 00:02 - 2016-11-02 05:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-09 00:02 - 2016-11-02 05:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-09 00:02 - 2016-11-02 05:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-09 00:02 - 2016-11-02 05:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-09 00:02 - 2016-11-02 05:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-09 00:02 - 2016-11-02 05:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-09 00:02 - 2016-11-02 05:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-09 00:02 - 2016-11-02 05:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-09 00:02 - 2016-11-02 05:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-09 00:02 - 2016-11-02 05:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-09 00:02 - 2016-11-02 05:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-09 00:02 - 2016-11-02 05:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-09 00:02 - 2016-11-02 05:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-09 00:02 - 2016-11-02 05:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-09 00:02 - 2016-11-02 05:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-09 00:02 - 2016-11-02 05:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-09 00:02 - 2016-11-02 05:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-09 00:02 - 2016-11-02 05:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-09 00:02 - 2016-11-02 05:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-09 00:02 - 2016-11-02 05:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-09 00:02 - 2016-11-02 05:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-09 00:02 - 2016-11-02 05:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-09 00:02 - 2016-11-02 05:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-09 00:02 - 2016-11-02 05:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-09 00:02 - 2016-11-02 05:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-09 00:02 - 2016-11-02 05:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-09 00:02 - 2016-11-02 05:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-09 00:02 - 2016-11-02 05:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-09 00:02 - 2016-11-02 05:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-09 00:02 - 2016-11-02 05:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-09 00:02 - 2016-11-02 05:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-09 00:02 - 2016-11-02 05:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-09 00:02 - 2016-11-02 05:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-09 00:02 - 2016-11-02 05:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-09 00:02 - 2016-11-02 05:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-09 00:02 - 2016-11-02 05:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-09 00:02 - 2016-11-02 05:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-09 00:02 - 2016-11-02 05:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-09 00:02 - 2016-11-02 05:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-09 00:02 - 2016-11-02 05:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-09 00:02 - 2016-11-02 05:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-09 00:02 - 2016-11-02 05:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-09 00:02 - 2016-11-02 05:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-09 00:02 - 2016-11-02 05:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-09 00:02 - 2016-11-02 05:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-09 00:02 - 2016-11-02 05:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-09 00:02 - 2016-11-02 05:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-09 00:02 - 2016-11-02 05:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-09 00:02 - 2016-11-02 05:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-09 00:02 - 2016-11-02 03:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-09 00:01 - 2016-11-02 06:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-09 00:01 - 2016-11-02 06:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-09 00:01 - 2016-11-02 06:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-09 00:01 - 2016-11-02 06:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-09 00:01 - 2016-11-02 06:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-09 00:01 - 2016-11-02 06:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-09 00:01 - 2016-11-02 06:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-09 00:01 - 2016-11-02 06:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-09 00:01 - 2016-11-02 06:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-09 00:01 - 2016-11-02 06:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-09 00:01 - 2016-11-02 06:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-09 00:01 - 2016-11-02 06:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-09 00:01 - 2016-11-02 06:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-09 00:01 - 2016-11-02 06:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-09 00:01 - 2016-11-02 06:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-09 00:01 - 2016-11-02 06:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-09 00:01 - 2016-11-02 06:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-09 00:01 - 2016-11-02 06:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-09 00:01 - 2016-11-02 06:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-09 00:01 - 2016-11-02 06:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-09 00:01 - 2016-11-02 06:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-09 00:01 - 2016-11-02 06:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-09 00:01 - 2016-11-02 05:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-09 00:01 - 2016-11-02 05:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-09 00:01 - 2016-11-02 05:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-09 00:01 - 2016-11-02 05:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-09 00:01 - 2016-11-02 05:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-09 00:01 - 2016-11-02 05:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-09 00:01 - 2016-11-02 05:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-09 00:01 - 2016-11-02 05:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-09 00:01 - 2016-11-02 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-09 00:01 - 2016-11-02 05:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-09 00:01 - 2016-11-02 05:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-09 00:01 - 2016-11-02 05:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-09 00:01 - 2016-11-02 05:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-09 00:01 - 2016-11-02 05:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-09 00:01 - 2016-11-02 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-09 00:01 - 2016-11-02 05:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-09 00:01 - 2016-11-02 05:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-09 00:01 - 2016-11-02 05:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-09 00:01 - 2016-11-02 05:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-09 00:01 - 2016-11-02 05:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-09 00:01 - 2016-11-02 05:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-09 00:01 - 2016-11-02 05:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-09 00:01 - 2016-11-02 05:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-09 00:01 - 2016-11-02 05:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 00:01 - 2016-11-02 05:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-09 00:01 - 2016-11-02 05:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-09 00:01 - 2016-11-02 05:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-09 00:01 - 2016-11-02 05:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-09 00:01 - 2016-11-02 05:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-09 00:01 - 2016-11-02 05:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-09 00:01 - 2016-11-02 05:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-09 00:01 - 2016-11-02 05:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-09 00:01 - 2016-11-02 05:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-09 00:01 - 2016-11-02 05:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 00:01 - 2016-11-02 05:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-09 00:01 - 2016-11-02 05:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-09 00:01 - 2016-11-02 05:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-09 00:01 - 2016-11-02 05:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-09 00:01 - 2016-11-02 05:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-09 00:01 - 2016-11-02 05:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 00:01 - 2016-11-02 05:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-09 00:01 - 2016-11-02 05:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-09 00:01 - 2016-11-02 05:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-09 00:01 - 2016-11-02 05:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-09 00:01 - 2016-11-02 05:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-09 00:01 - 2016-11-02 05:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 00:01 - 2016-11-02 05:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-09 00:01 - 2016-11-02 05:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-09 00:01 - 2016-11-02 05:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-09 00:01 - 2016-11-02 05:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-09 00:01 - 2016-11-02 05:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-09 00:01 - 2016-11-02 05:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-09 00:01 - 2016-11-02 05:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-09 00:01 - 2016-11-02 05:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-09 00:01 - 2016-11-02 05:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-09 00:01 - 2016-11-02 05:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-09 00:01 - 2016-11-02 05:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-09 00:01 - 2016-11-02 05:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-09 00:01 - 2016-11-02 05:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-09 00:01 - 2016-11-02 05:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-09 00:01 - 2016-11-02 05:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-09 00:01 - 2016-11-02 05:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-09 00:01 - 2016-11-02 05:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-09 00:01 - 2016-11-02 05:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-09 00:01 - 2016-11-02 05:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-09 00:01 - 2016-11-02 05:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-09 00:01 - 2016-11-02 05:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-09 00:01 - 2016-11-02 05:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-09 00:01 - 2016-11-02 05:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-09 00:01 - 2016-11-02 05:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 00:01 - 2016-11-02 05:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-09 00:01 - 2016-11-02 05:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-09 00:01 - 2016-11-02 04:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-09 00:01 - 2016-11-02 04:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-09 00:01 - 2016-08-01 23:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-08 23:37 - 2016-11-08 23:37 - 51477514 _____ C:\Users\tom-t\Downloads\1.5.0_TrialRaidMode.apk
2016-11-08 23:36 - 2016-11-08 23:36 - 51477505 _____ C:\Users\tom-t\Downloads\.5.0_OnlyEnergy.apk
2016-11-08 23:36 - 2016-11-08 23:36 - 51477498 _____ C:\Users\tom-t\Downloads\1.5.0_GodMode.apk
2016-11-08 23:35 - 2016-11-08 23:36 - 51477507 _____ C:\Users\tom-t\Downloads\1.5.0_FarmMode.apk
2016-11-08 23:32 - 2016-11-08 23:32 - 51477514 _____ C:\Users\tom-t\Downloads\1.5.0_FHMode.apk
2016-11-08 23:32 - 2016-11-08 23:32 - 51477497 _____ C:\Users\tom-t\Downloads\1.5.0_FarmParadeMode.apk
2016-11-08 10:23 - 2016-11-14 20:29 - 00002273 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-08 10:23 - 2016-11-09 19:34 - 00000928 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-08 10:23 - 2016-11-09 19:34 - 00000924 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-08 10:23 - 2016-11-08 10:23 - 01065376 _____ (Google Inc.) C:\Users\tom-t\Downloads\ChromeSetup.exe
2016-11-08 10:23 - 2016-11-08 10:23 - 00003986 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-08 10:23 - 2016-11-08 10:23 - 00003754 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-08 08:16 - 2016-11-08 08:18 - 49758096 _____ C:\Users\tom-t\Downloads\original 1.5.0_apkpure.com.apk
2016-11-08 03:46 - 2016-11-08 03:46 - 53238966 _____ C:\Users\tom-t\Downloads\BFJP166.apk
2016-11-08 03:45 - 2016-11-08 03:45 - 04206303 _____ C:\Users\tom-t\Downloads\ZarroModTool_BFJP_166.7z
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-08 22:24 - 2015-12-01 20:37 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Skype
2016-12-08 21:39 - 2016-10-31 13:17 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-08 21:39 - 2015-12-01 15:01 - 00000165 _____ C:\Users\tom-t\AppData\Roaming\sp_data.sys
2016-12-08 20:44 - 2015-12-14 16:49 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\vlc
2016-12-08 20:03 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-08 19:59 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-08 19:58 - 2016-10-31 13:28 - 00000000 ____D C:\Users\tom-t
2016-12-08 19:58 - 2016-10-31 13:21 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-12-08 19:58 - 2015-12-01 15:01 - 00000000 __SHD C:\Users\tom-t\IntelGraphicsProfiles
2016-12-08 16:14 - 2016-07-16 06:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-08 16:10 - 2015-08-18 03:36 - 01235458 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-08 16:03 - 2016-10-31 14:17 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-08 10:05 - 2015-12-14 12:18 - 00000000 ____D C:\Users\tom-t\AppData\Local\Adobe
2016-12-07 22:35 - 2016-11-02 09:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-07 22:35 - 2015-12-14 12:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-07 12:00 - 2016-10-31 14:17 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-12-07 12:00 - 2016-10-31 14:17 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-12-05 22:00 - 2016-01-07 12:18 - 00000000 ____D C:\Users\tom-t\AppData\Local\JDownloader v2.0
2016-11-28 21:33 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-28 18:05 - 2016-07-16 01:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-11-28 18:02 - 2016-10-31 13:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-11-28 18:02 - 2016-07-16 06:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-28 18:02 - 2015-12-02 12:15 - 00418784 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2016-11-28 18:02 - 2015-12-02 12:15 - 00084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2016-11-28 18:01 - 2015-07-28 22:37 - 00186424 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2016-11-28 18:00 - 2016-10-07 21:52 - 00098128 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2016-11-28 18:00 - 2016-10-07 21:49 - 00648512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2016-11-28 18:00 - 2015-10-27 16:01 - 00350272 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\esif_lf.sys
2016-11-28 18:00 - 2015-10-27 16:01 - 00071232 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_acpi.sys
2016-11-28 18:00 - 2015-10-27 16:01 - 00066624 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_cpu.sys
2016-11-28 17:59 - 2015-09-27 20:14 - 00795640 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2016-11-28 17:57 - 2015-10-27 15:50 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-28 17:56 - 2016-10-31 13:21 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-11-28 17:53 - 2016-10-31 13:21 - 00103968 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-28 17:53 - 2016-10-31 13:21 - 00099872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-28 17:53 - 2015-09-27 20:15 - 38876112 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 33439704 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 15472792 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 14560984 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 13471672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 11844056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 07917040 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-11-28 17:53 - 2015-09-27 20:15 - 02062880 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00753688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00402928 _____ C:\WINDOWS\system32\igfxTray.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00394264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-11-28 17:53 - 2015-09-27 20:15 - 00373744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00354800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-11-28 17:53 - 2015-09-27 20:15 - 00269296 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-11-28 17:48 - 2015-12-12 10:40 - 00736872 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtkBtfilter.sys
2016-11-28 17:47 - 2016-10-31 14:17 - 00003260 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2016-11-28 17:47 - 2016-10-31 14:17 - 00003194 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2016-11-28 17:46 - 2016-10-31 13:21 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-28 17:46 - 2016-10-31 13:21 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-11-28 17:45 - 2015-10-27 15:59 - 05322248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-11-28 17:45 - 2015-10-27 15:59 - 03133848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-11-28 17:45 - 2015-10-27 15:59 - 00192984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-11-28 17:45 - 2015-10-27 15:59 - 00023696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-11-28 17:41 - 2015-10-27 15:58 - 00935168 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2016-11-28 10:19 - 2015-12-01 15:01 - 00000000 ____D C:\Users\tom-t\AppData\Local\Packages
2016-11-27 14:37 - 2016-02-22 08:22 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-27 14:36 - 2016-02-22 08:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-26 14:22 - 2016-11-06 09:34 - 00000000 ____D C:\WINDOWS\Minidump
2016-11-25 12:04 - 2015-12-14 12:05 - 00001205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-25 12:03 - 2016-01-02 14:26 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-11-25 12:02 - 2016-07-16 01:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-25 12:02 - 2016-04-29 17:10 - 00000000 ____D C:\Users\Mr Anguiano
2016-11-25 12:02 - 2015-10-30 01:28 - 00000000 ____D C:\Users\Default.migrated
2016-11-25 11:33 - 2015-12-03 15:04 - 00000000 ____D C:\Program Files\WinRAR
2016-11-25 11:20 - 2015-12-17 09:05 - 00000000 ____D C:\Program Files\iTunes
2016-11-25 11:20 - 2015-12-02 13:38 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-11-25 11:13 - 2015-12-03 15:04 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-25 11:13 - 2015-12-03 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-11-25 11:10 - 2016-02-28 03:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-25 11:09 - 2016-02-28 03:04 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-11-25 11:09 - 2016-02-28 03:03 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-25 10:45 - 2016-03-04 14:33 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\AVAST Software
2016-11-24 23:15 - 2015-12-03 10:03 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\BitTorrent
2016-11-24 23:11 - 2016-10-31 17:15 - 00000000 ___DC C:\WINDOWS\Panther
2016-11-24 23:11 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-11-24 23:10 - 2016-10-31 13:22 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-11-24 23:10 - 2015-08-18 03:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-11-24 23:07 - 2015-12-10 18:38 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bruteforce Save Data
2016-11-24 23:07 - 2015-12-10 18:37 - 00000000 ____D C:\Program Files (x86)\Bruteforce Save Data
2016-11-24 17:29 - 2015-12-01 20:37 - 00000000 ____D C:\ProgramData\Skype
2016-11-23 09:32 - 2016-02-23 12:44 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2016-11-20 15:11 - 2016-07-16 06:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-11-20 15:06 - 2016-02-23 12:44 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2016-11-20 12:34 - 2015-08-18 03:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-20 12:34 - 2015-08-18 03:37 - 00000000 ____D C:\ProgramData\WildTangent
2016-11-20 09:53 - 2016-07-16 06:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-20 09:51 - 2015-10-27 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-16 16:27 - 2015-12-24 14:58 - 00000000 ____D C:\Users\tom-t\AppData\Roaming\dvdcss
2016-11-16 14:33 - 2016-10-09 13:21 - 00000000 ____D C:\Users\tom-t\Desktop\4 bigmuscle
2016-11-16 14:05 - 2015-12-14 12:25 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-16 10:09 - 2016-08-31 08:04 - 00000000 ____D C:\Users\tom-t\Desktop\fotos videos 31 agosto
2016-11-16 10:05 - 2016-02-09 23:25 - 00000000 ____D C:\Users\tom-t\Desktop\queu
2016-11-14 19:23 - 2016-10-31 14:17 - 00003816 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-11-14 19:23 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-14 19:23 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-14 19:13 - 2015-12-01 15:03 - 00000000 ____D C:\Users\tom-t\AppData\Local\Comms
2016-11-13 15:32 - 2016-01-20 21:24 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-11-13 14:02 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-11 01:27 - 2015-08-23 11:37 - 00065640 _____ C:\WINDOWS\system32\ASGCoInstaller_x64.dll
2016-11-10 22:06 - 2016-10-31 13:22 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-11-10 00:04 - 2015-10-27 15:47 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-09 19:34 - 2016-10-31 13:17 - 04963168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-09 19:21 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-09 09:25 - 2016-07-16 06:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 09:19 - 2015-12-02 15:18 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 09:14 - 2015-12-02 15:18 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-08 10:23 - 2015-12-01 20:17 - 00000000 ____D C:\Users\tom-t\AppData\Local\Google
2016-11-08 10:23 - 2015-12-01 20:17 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-08 03:44 - 2016-10-31 14:17 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
==================== Files in the root of some directories =======
2015-12-01 15:01 - 2016-12-08 21:39 - 0000165 _____ () C:\Users\tom-t\AppData\Roaming\sp_data.sys
2016-01-07 13:19 - 2016-01-07 13:19 - 0000047 _____ () C:\Users\tom-t\AppData\Roaming\WB.CFG
2016-02-04 07:04 - 2016-02-09 13:02 - 0003584 _____ () C:\Users\tom-t\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-31 13:21 - 2016-10-31 13:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\tom-t\AppData\Local\Temp\proxy_vole5150257694916234934.dll
C:\Users\tom-t\AppData\Local\Temp\proxy_vole6076959345425680180.dll
C:\Users\tom-t\AppData\Local\Temp\proxy_vole7499190792889508807.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-12-05 17:46
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by tom-t (08-12-2016 22:28:13)
Running from C:\Users\tom-t\Downloads
Windows 10 Home Version 1607 (X64) (2016-10-31 19:36:30)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-748703395-188434783-1144859813-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-748703395-188434783-1144859813-503 - Limited - Disabled)
familia (S-1-5-21-748703395-188434783-1144859813-1004 - Limited - Enabled) => C:\Users\familia
Guest (S-1-5-21-748703395-188434783-1144859813-501 - Limited - Disabled)
tom-t (S-1-5-21-748703395-188434783-1144859813-1001 - Administrator - Enabled) => C:\Users\tom-t
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Advanced SystemCare 10 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 10.0.3 - IObit)
Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Ashampoo Burning Studio 11 v.11.0.2 (HKLM-x32\...\Ashampoo Burning Studio 11_is1) (Version: 11.0.2 - Ashampoo GmbH & Co. KG)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0040 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.)
AVS Video Editor 4 4.2.1.166 (HKLM-x32\...\AVS Video Editor 4_is1) (Version: - Online Media Technologies Ltd.)
AVS Video Editor 7.2.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.2.1.269 - Online Media Technologies Ltd.)
AVS Video Recorder 2.4 (Service Version) (HKLM-x32\...\AVS Video Recorder_is1) (Version: - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.3 (HKLM-x32\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.)
BitTorrent (HKLM-x32\...\BitTorrent) (Version: - BitTorrent, Inc)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.)
CyberLink PhotoDirector 5 (Version: 5.0.5.6515 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
DRAGON QUEST HEROES Slime Edition (HKLM\...\ZHJhZ29ucXVlc3RoZXJvZXNzbGltZWVkaXRpb24_is1) (Version: 1 - )
Driver Booster 4.1 (HKLM-x32\...\Driver Booster_is1) (Version: 4.1.0 - IObit)
Driver Easy 5.0.6 (HKLM\...\DriverEasy_is1) (Version: 5.0.6 - Easeware)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel® Chipset Device Software (x32 Version: 10.1.1.11 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4404 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.1.0.418 - IObit)
IsoBuster 3.5 (HKLM-x32\...\IsoBuster_is1) (Version: 3.5 - Smart Projects)
iTunes (HKLM\...\{2C49F336-2E86-4407-83E2-16AC65598EF4}) (Version: 12.5.3.16 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\dda9ca0b023f4c56) (Version: 1.6.4.0 - Lenovo)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manager (x32 Version: 8.1.4.29179 - LULU Software Limited) Hidden
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.7466.2038 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 50.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 en-US)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7426.1015 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7466.2038 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-748703395-188434783-1144859813-1001\...\PhotoFiltre 7) (Version: - )
PNotes 9.3.0 (HKLM-x32\...\{949D34E5-F53F-4830-9A50-1E2C39109043}_is1) (Version: 9.3.0 - Andrey Gruber)
PS3Splitter version 1.1.5.2 (HKLM-x32\...\PS3Splitter_is1) (Version: 1.1.5.2 - Karmian.org)
REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.3.875.080715 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7936 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0273 - REALTEK Semiconductor Corp.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SixaxisPairTool 0.3.0 (HKLM-x32\...\SixaxisPairTool_is1) (Version: 0.3.0 - Dancing Pixel Studios)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Soda PDF 8 (HKLM-x32\...\Soda8) (Version: 8.1.13.29991 - LULU Software Limited)
Soda PDF 8 Asian Fonts Pack (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Convert Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Create Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Edit Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Forms Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Insert Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 OCR Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Review Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 Secure Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Soda PDF 8 View Module (Version: 8.1.12.29405 - LULU Software Limited) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VoiceOver Kit (HKLM\...\{703D47B8-2869-4A50-B988-BDE18772A474}) (Version: 1.43.128.3 - Apple Inc.)
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Windows Driver Package - ASUS (AsusSGDrv) Mouse (06/18/2015 8.0.0.16) (HKLM\...\545B999BD5E2E239335F95C2AF9BED5D511CEC95) (Version: 06/18/2015 8.0.0.16 - ASUS)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.0 - Wondershare)
Wondershare Video Converter Ultimate(Build 8.5.5.6) (HKLM-x32\...\Wondershare Video Converter Ultimate_is1) (Version: 8.5.5.6 - Wondershare Software)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05E52BD7-5CB9-443A-A5AA-6C6648A9D849} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-11-28] (Realtek Semiconductor)
Task: {086E2EE1-B0ED-48E6-918B-A9CDC659A0F4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {0C9CE5FE-7E05-4A8D-8297-6F7FDBA31A65} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-14] (Adobe Systems Incorporated)
Task: {0F817E3E-E8BF-4BD1-8536-1CB5FC97A712} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {10BDE17A-A1AE-400E-A724-8A2FF60CEF0A} - System32\Tasks\{E96CB895-FEAC-4941-B4CD-7471EC9E957E} => pcalua.exe -a E:\autorun.exe -d E:\
Task: {11D33F35-5632-4C90-8961-9B692BF609EC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {1250C84B-2D57-4EEB-9682-8E25A342CF6B} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2016-06-11] (Easeware)
Task: {1C4E6419-1EA8-4299-AE60-36D1C5CE6380} - System32\Tasks\{2A9D0AA3-4125-4038-BC72-65E345300999} => pcalua.exe -a "C:\Users\tom-t\OneDrive\Documents\ILLUSION - GHOST KILLER.exe" -d C:\Users\tom-t\OneDrive\Documents
Task: {231067CF-4780-44FC-AA64-4894054EDC12} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-11-28] (Realtek Semiconductor)
Task: {2A207307-F22F-43AE-90FA-C6EA23B9ACE4} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-30] (Microsoft Corporation)
Task: {335FC303-9F32-458B-A1F1-CA4544828ABA} - System32\Tasks\{525319CB-1B2E-4610-A6E5-394B7EBFE227} => pcalua.exe -a "C:\Program Files (x86)\Windows Live\Installer\wlarp.exe"
Task: {3708050F-C8E4-4CB9-AB8C-7B733A74EDF2} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {3A920A31-0B93-4D51-8723-E1106D2E9B7A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {420EED58-5A6D-43E0-B077-C7BE39785443} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-11-25] (AVAST Software)
Task: {4CCB133A-748B-42DE-A0BD-4109DA49F375} - System32\Tasks\
[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {5F5F0E5D-B903-48C5-8E64-EDFB7227398A} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {61E0065D-FA03-4D3E-9226-83261165EABD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-21] (Piriform Ltd)
Task: {65BAA42F-40AA-4359-9405-CB5CD09CD822} - System32\Tasks\{8001F1C3-F719-4E73-A007-B12D9364C783} => pcalua.exe -a E:\autorun.exe -d E:\
Task: {66FA6AA8-F2D2-429A-8A5A-F8C8DB887550} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe [2016-11-08] (IObit)
Task: {674DE2B8-3DF6-40FC-A861-233598B0BF9B} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] ()
Task: {6DDF4221-C35F-4D61-BC76-59D8D833DA09} - System32\Tasks\Uninstaller_SkipUac_tom-t => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-11-04] (IObit)
Task: {719891B2-2730-46F4-826A-73E7F0DE1184} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-748703395-188434783-1144859813-1001 => Rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\tom-t\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {7A62AD34-957E-49F2-9EF5-4B8E178A4923} - System32\Tasks\{5D243367-A53C-4A35-9D04-21B28C49DB1D} => pcalua.exe -a C:\Users\tom-t\AppData\Local\{16F120AD-3259-4C15-5FC1-69FD7BA99565}\uninstall.exe -c /Uninstall /s /noun
Task: {7FB16993-3E00-40CA-AE44-70C4EFC62B73} - System32\Tasks\{F1DDA1AF-B206-4BCB-B01B-0CADB40C6524} => pcalua.exe -a "C:\Program Files (x86)\Ultimate IP Changer\unins000.exe"
Task: {856D70C1-87CF-4955-A55C-39BFA5D463BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-08] (Google Inc.)
Task: {8999CD15-C904-49BC-8CF6-BAF91E511586} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {89FE0BF9-EF8C-4CA1-ADC1-F5E3AA55FC0F} - System32\Tasks\{BD849F9C-34A6-0044-9E0F-96AB87E23B69} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\fb4bcde7\b49bd8ca.dll" <==== ATTENTION
Task: {8C0B0C38-00F5-47B7-8267-7540E154D23C} - System32\Tasks\Driver Booster SkipUAC (tom-t) => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe [2016-11-14] (IObit)
Task: {8C79EB48-86E4-4D94-BE68-294AF1CC2BBC} - System32\Tasks\{11BFE413-803D-48FC-8D04-3D1CD0838EE6} => pcalua.exe -a "C:\Program Files (x86)\AVS4YOU\AVSVideoConverter6\unins000.exe"
Task: {9EBE59A5-EA21-4B72-B85D-3FA5EF9A5ACF} - System32\Tasks\ASC10_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-11-10] (IObit)
Task: {AE18C857-1DF9-413F-B6B1-97E309394816} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {AE51C43C-68DA-42B0-8E60-6ECA1E79C4F5} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
Task: {B4EA2ED9-EE57-4809-B71A-1501C2349DE6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {B8366AA3-916F-41BD-AE77-4CBA33AF1FD3} - System32\Tasks\SafeZone scheduled Autoupdate 1480088856 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {C818DFD4-50B5-4D1A-8F9D-63DD18A20DBA} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {D4531958-6938-49C5-BE3E-7C6E9ABA2F0C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-11-09] (Microsoft Corporation)
Task: {D4783E81-6532-420A-917A-D60F597EBF11} - System32\Tasks\ASC10_SkipUac_tom-t => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-11-11] (IObit)
Task: {D75DBA80-AA77-4773-99B5-EB60935907E2} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {E3743588-7A16-4C43-8C71-1C01151FD07B} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {EFA6E86B-C3F4-45F8-AEEF-4DF3F71012FF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {F3B48B2D-9DE3-4312-808C-D5C34B8A623F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {FA07A84A-C48D-4F7A-AF63-E6C96D979671} - System32\Tasks\{1DF76EAB-FCA3-4131-B058-A4D43109C2B9} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Wrye Bash\uninstall.exe"
Task: {FB7F3287-3B4C-46D3-9D62-485266FD6C96} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {FC85335F-C8C8-48C9-A2F7-2A763E9AA957} - System32\Tasks\{56948C08-F0EE-4CA9-835B-CACBD3D6724B} => launchwinapp.exe hxxps://ui.skype.com/ui/0/7.29.80.102/en/go/help.faq.installer?LastError=1618
Task: {FDB53FA5-D36F-4EE8-95FA-6514EC7569B2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-08] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_tom-t.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-10-27 16:29 - 2014-04-14 20:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-10-27 16:01 - 2015-07-20 21:19 - 00121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
2016-07-16 06:42 - 2016-07-16 06:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-31 17:09 - 2016-10-31 17:09 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-31 17:09 - 2016-10-31 17:09 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-31 14:53 - 2016-10-31 14:53 - 01864384 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-09-08 12:47 - 2016-10-30 11:12 - 08924864 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2016-10-31 17:09 - 2016-10-31 17:09 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-09 00:02 - 2016-11-02 05:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-31 23:30 - 2016-10-31 23:31 - 01573584 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2016-10-31 23:30 - 2016-10-31 23:31 - 00366080 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll
2016-11-09 00:01 - 2016-11-02 05:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 00:01 - 2016-11-02 05:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 00:01 - 2016-11-02 05:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-09 00:01 - 2016-11-02 05:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 00:01 - 2016-11-02 05:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-17 08:36 - 2016-11-17 08:44 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 08:36 - 2016-11-17 08:44 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 08:36 - 2016-11-17 08:44 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2015-09-27 20:15 - 2016-11-28 17:53 - 00402928 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-01-06 11:41 - 2016-01-06 11:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2016-11-14 20:29 - 2016-11-08 16:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-14 20:29 - 2016-11-08 16:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-12-08 15:39 - 2016-12-08 15:39 - 03066880 _____ () C:\Program Files\AVAST Software\Avast\defs\16120803\algo.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-11-26 12:56 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-11-26 12:56 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-11-26 12:56 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-11-28 17:38 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2016-11-28 17:38 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2016-11-28 17:38 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-08-07 03:09 - 2015-08-07 03:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2016-11-28 17:38 - 2016-08-18 18:43 - 00442144 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl
2016-11-28 17:38 - 2016-08-18 18:43 - 00210720 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madBasic_.bpl
2016-11-28 17:38 - 2016-08-18 18:43 - 00059680 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madDisAsm_.bpl
2016-11-28 17:38 - 2016-11-01 10:11 - 00078624 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\GetProcessDLL.dll
2015-08-25 11:40 - 2015-08-25 11:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 11:40 - 2015-08-25 11:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-10-31 14:52 - 2016-10-31 14:53 - 01383616 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-10-31 14:54 - 2016-10-31 14:54 - 00118976 _____ () C:\Users\tom-t\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2015-12-27 19:36 - 2016-06-20 13:48 - 01506304 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-12-27 19:36 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-11-25 10:43 - 2016-11-25 10:43 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-11-28 17:38 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\webres.dll
2016-11-28 17:38 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll
2016-11-28 17:38 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll
2016-11-28 17:38 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-10 06:04 - 2016-01-07 13:59 - 00000877 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-748703395-188434783-1144859813-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img2.jpg
DNS Servers: 24.200.241.37 - 24.202.72.13
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{466728A7-64B6-4ED9-AE48-9C3C116365E4}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{1B633016-B1E8-4757-ABA8-282D58B462B3}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{B853BBFD-F492-4020-871D-9317E245BE23}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{9ACEC412-F406-4B10-9598-7EFEAE049657}] => LPort=1900
FirewallRules: [{C07EA71A-12E2-45E7-A962-50EC31E70AA6}] => LPort=2869
FirewallRules: [{D57B4DAB-3D33-49BC-9959-37D46602F9A1}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{61D12C1D-700E-4FB3-8D6B-9F50BF82D47E}] => C:\Program Files (x86)\AirPrint\airprint.exe
FirewallRules: [{3CD164B3-423D-4B0D-8F4E-29F9B152F9A3}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{FF20ECF2-229B-4554-BBA1-ECFFDC41FE48}] => C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{E3B7307A-30F7-409E-967B-5269964ADFCF}] => C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{3597AF66-1924-4B1E-9FF8-5699B1F620B7}] => C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{E4F986A6-9753-41D3-B0E4-6008743E9534}] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{BCA23BDC-8CD6-4355-9271-A335EF7EC2C9}] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{9C4AEBD9-C40E-4942-972B-B514397B47D3}] => C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{28F0077B-743F-457A-BE0B-948437C45BB2}] => C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{12C2DB9B-9B07-4110-A0F8-E77D69C48881}] => C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{CD9B02E2-65B3-453D-99D5-88A4CD137A6B}] => C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{16185E2C-2D46-44C7-A49B-7019C36A0555}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3B60FE9A-CF9F-4442-BB49-4B78C07FDD30}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BAF05B71-54A5-4EB8-801E-99DB9C02C6BB}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F00F7F01-4E5D-42F7-852C-B33DBEE933E1}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{ADE941E1-832D-4584-A3AD-37BAAB8747CE}C:\program files (x86)\bittorrent\bittorrent.exe] => C:\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [TCP Query User{2E469D58-3F9C-459E-BF92-048D0E0892F8}C:\program files (x86)\bittorrent\bittorrent.exe] => C:\program files (x86)\bittorrent\bittorrent.exe
FirewallRules: [{4F1E71D7-A7BC-49C8-A13B-1B0FB1D9EF41}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AE60A58-41A3-4987-A46F-C419160239C3}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4D2EADBB-6E01-4D24-8F9A-9C4784EA507A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{068117FD-67F1-4565-9624-91FBA84D52CD}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A757C137-60CC-4484-B2ED-6C7475F91429}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{17C03B90-4DA1-46EA-8693-4B748FF8BE62}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{4FD28958-76F3-4EEA-A71E-3400D7C6199D}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{7F3668F2-F9CE-4513-8866-62A5D47932A9}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe
FirewallRules: [{CF8213A9-E253-4E78-BCC8-DA291DBCF7C2}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe
FirewallRules: [{21AA5E63-755D-4ADD-8CB7-7FBA0B42DCD7}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe
FirewallRules: [{F300F241-C265-4C48-A66A-2D2F437F2409}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe
FirewallRules: [{8A97DF2D-60E7-4AB1-AF30-1A8260DADD38}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe
FirewallRules: [{6EB2BE1F-F08B-4DAD-ABA3-0E3AED92EE20}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe
FirewallRules: [{F5D71E21-B6E2-4DB7-9E89-FBD1E1BF9E08}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{DC2F8292-9CB8-43CA-AAAE-CE5AE20E7F60}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Restore Points =========================
24-11-2016 17:20:03 Removed Skype™ 7.26
28-11-2016 17:38:45 Driver Booster : Realtek PCIe GBE Family Controller
06-12-2016 16:15:49 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
Name: USB2.0 VGA UVC WebCam
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Microsoft® Keyboard with Fingerprint Reader
Description: Microsoft® Keyboard with Fingerprint Reader
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/08/2016 08:52:15 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-FMLSAAF)
Description: Activation of app Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen failed with error: -2147023170 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (12/08/2016 08:31:41 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/08/2016 07:58:27 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: DESKTOP-FMLSAAF)
Description: 7.488: EFS service failed to provision a user for EDP. Error code: 0x80070005.
Error: (12/08/2016 07:52:09 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: DESKTOP-FMLSAAF)
Description: 7.488: EFS service failed to provision a user for EDP. Error code: 0x80070005.
Error: (12/08/2016 04:17:08 PM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhostw (744) WebCacheLocal: Database recovery/restore failed with unexpected error -1032.
Error: (12/08/2016 04:17:08 PM) (Source: ESENT) (EventID: 439) (User: )
Description: taskhostw (744) WebCacheLocal: Unable to write a shadowed header for file C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk. Error -1032.
Error: (12/08/2016 04:17:08 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (744) WebCacheLocal: An attempt to open the file "C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).
Error: (12/08/2016 04:16:58 PM) (Source: ESENT) (EventID: 439) (User: )
Description: taskhostw (744) WebCacheLocal: Unable to write a shadowed header for file C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk. Error -1032.
Error: (12/08/2016 04:16:58 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (744) WebCacheLocal: An attempt to open the file "C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).
Error: (12/08/2016 04:16:48 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (744) WebCacheLocal: An attempt to open the file "C:\Users\tom-t\AppData\Local\Microsoft\Windows\WebCache\V01.chk" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).
System errors:
=============
Error: (12/08/2016 08:52:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/08/2016 08:03:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: Microsoft Sticky Notes.
Error: (12/08/2016 07:58:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/08/2016 07:58:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/08/2016 07:58:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/08/2016 04:14:04 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-FMLSAAF)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
and APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
to the user DESKTOP-FMLSAAF\tom-t SID (S-1-5-21-748703395-188434783-1144859813-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
Error: (12/08/2016 04:13:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: Microsoft Sticky Notes.
Error: (12/08/2016 04:11:28 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for [::]:50123. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (12/08/2016 04:05:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/08/2016 04:05:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
==================== Memory info ===========================
Processor: Intel® Core i7-6500U CPU @ 2.50GHz
Percentage of memory in use: 49%
Total physical RAM: 8091.49 MB
Available physical RAM: 4097.05 MB
Total Virtual: 10523.49 MB
Available Virtual: 5885.91 MB
==================== Drives ================================
Drive c: © (Fixed) (Total:371.85 GB) (Free:70.26 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:328.47 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 396E593D)
Partition: GPT.
==================== End of Addition.txt ============================
Edited by joshuamz, 08 December 2016 - 09:47 PM.