Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. 
Join 
This topic is locked
Hi
I have a computer with fairly good specs running Windows 7. Over the last few months or so it's been getting slower and slower, and now it's starting to annoy me. I'm thinking of formatting it and starting afresh with Windows 10... but I really can't be bothered with the fuss. Hopefully someone here can help me completely declutter my harddrives.
I have a 85GB SSD (C:\) with Windows and Steam on. I have a 2.75TB internal HDD (D:\) with everything on, such as My Documents, music, videos, and games and stuff. And an external 1TB USB drive (F:\) which also has a 4GB partition on (G:\) that I used to use for my Xbox 360 but now doesn't serve any purpose.
I'm pretty tech-savvy, and I try to run CCleaner every so often so clear things up a bit. I've downloaded aswMBR and FRST and scanned my system. Here are the reports:
aswMBR.txt
aswMBR version 1.0.1.2252 Copyright© 2014 AVAST Software
Run date: 2015-10-18 13:29:34
-----------------------------
13:29:34.981 OS Version: Windows x64 6.1.7601 Service Pack 1
13:29:34.981 Number of processors: 12 586 0x2C02
13:29:34.982 ComputerName: MINAJ UserName: Baz
13:29:35.348 Initialize success
13:29:35.363 VM: initialized successfully
13:29:35.364 VM: Intel CPU supported
13:29:47.474 VM: disk I/O atapi.sys
13:32:04.023 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
13:32:04.029 Disk 0 Vendor: Corsair_CSSD-F90GB2 2.0 Size: 85857MB BusType: 3
13:32:04.034 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000007b
13:32:04.038 Disk 1 Vendor: WDC_WD30 80.0 Size: 2861588MB BusType: 11
13:32:04.043 Disk 0 MBR read successfully
13:32:04.045 Disk 0 MBR scan
13:32:04.048 Disk 0 Windows 7 default MBR code
13:32:04.050 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
13:32:04.053 Disk 0 Boot: NTFS code=1
13:32:04.056 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 85755 MB offset 206848
13:32:04.060 Disk 0 scanning C:\Windows\system32\drivers
13:32:05.990 Service scanning
13:32:09.075 Modules scanning
13:32:09.082 Disk 0 trace - called modules:
13:32:09.090 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa800a55a2c0]<<sptd.sys ataport.SYS intelide.sys PCIIDEX.SYS hal.dll atapi.sys
13:32:09.095 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800fa0e790]
13:32:09.100 3 CLASSPNP.SYS[fffff8800165143f] -> nt!IofCallDriver -> [0xfffffa800be44520]
13:32:09.105 5 ACPI.sys[fffff88000f337a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0xfffffa800be3f060]
13:32:09.110 \Driver\atapi[0xfffffa800be1ce40] -> IRP_MJ_CREATE -> 0xfffffa800a55a2c0
13:32:09.115 Disk 0 statistics 118202/0/0 @ 42.01 MB/s
13:32:09.118 Scan finished successfully
13:32:25.069 Disk 0 MBR has been saved successfully to "D:\Users\Baz\Desktop\MBR.dat"
13:32:25.077 The log file has been saved successfully to "D:\Users\Baz\Desktop\aswMBR.txt"
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-10-2015
Ran by Baz (administrator) on MINAJ (18-10-2015 13:33:08)
Running from D:\Users\Baz\Desktop
Loaded Profiles: Baz (Available Profiles: Baz & Mcx1-MINAJ)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) D:\program files (x86)\Avira\AntiVir Desktop\sched.exe
(NVIDIA Corporation) D:\program files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) D:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) D:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) D:\program files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) D:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) D:\program files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(NVIDIA Corporation) D:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) D:\program files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) D:\program files\iTunes\iTunesHelper.exe
(NVIDIA Corporation) D:\program files\NVIDIA Corporation\Display\nvtray.exe
() D:\program files (x86)\ClipUpload3.12\ClipUpload3.exe
() D:\program files (x86)\qBittorrent\qbittorrent.exe
(Spotify Ltd) D:\Users\Baz\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
() D:\program files\Serviio\bin\ServiioConsole.exe
() D:\program files (x86)\Razer\DeathAdder\razerhid.exe
(Adobe Systems Inc.) D:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Avira Operations GmbH & Co. KG) D:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Razer Inc.) D:\program files (x86)\Razer\DeathAdder\razerofa.exe
() D:\program files (x86)\Razer\DeathAdder\vdDaemon.exe
(NVIDIA Corporation) D:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) D:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() D:\program files (x86)\Photodex\ProShow Producer\scsiaccess.exe
() D:\program files\Serviio\bin\ServiioService.exe
() D:\program files\Serviio\bin\ServiioService.exe
(Microsoft Corporation) D:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) D:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) D:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() D:\program files (x86)\Edimax\Edimax Wireless LAN\WPSService20.exe
(NVIDIA Corporation) D:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) D:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Avira Operations GmbH & Co. KG) D:\program files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Valve Corporation) D:\program files (x86)\Steam\Steam.exe
(Apple Inc.) D:\program files\iPod\bin\iPodService.exe
(Microsoft Corporation) D:\program files\Windows Media Player\wmpnetwk.exe
(Valve Corporation) D:\program files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\program files (x86)\Steam\bin\steamwebhelper.exe
(Adobe Systems Incorporated) D:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc.) D:\program files\iTunes\iTunes.exe
(Apple Inc.) D:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) D:\program files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) D:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) D:\program files (x86)\Common Files\Apple\Mobile Device Support\ATH.exe
(Apple Inc.) D:\program files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(Mozilla Corporation) D:\program files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) D:\program files (x86)\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => D:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] => D:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-01-20] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => D:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-15] (Apple Inc.)
HKLM-x32\...\Run: [DeathAdder] => D:\program files (x86)\Razer\DeathAdder\razerhid.exe [248320 2011-03-21] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => D:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-09-15] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-06-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-06-26] (Adobe Systems Inc.)
HKLM-x32\...\Run: [avgnt] => D:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782520 2015-09-22] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [QuickTime Task] => D:\program files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM Group Policy restriction on software: D:\program files (x86)\Avira\AntiVir Desktop\ipmgiu.exe <====== ATTENTION
HKLM Group Policy restriction on software: D:\program files (x86)\Avira\AntiVir Desktop\avnotify.exe <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\Run: [Steam] => D:\program files (x86)\Steam\steam.exe [2901584 2015-10-14] (Valve Corporation)
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\Run: [ClipUpload3] => D:\program files (x86)\ClipUpload3.12\ClipUpload3.exe [656384 2012-07-11] ()
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\Run: [qBittorrent] => D:\program files (x86)\qBittorrent\qbittorrent.exe [14824960 2015-10-10] ()
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\Run: [Spotify Web Helper] => D:\Users\Baz\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-31] (Spotify Ltd)
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\MountPoints2: H - H:\Autorun.exe
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\MountPoints2: {d2d25e13-f96d-11e3-862b-00252269295a} - H:\DriverPackSolution.exe
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\MountPoints2: {e9f492f3-2200-11e2-a030-ff70a391e73f} - E:\Autorun.exe
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => D:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-03-20] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => D:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-03-20] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => D:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-03-20] ()
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => D:\program files (x86)\Microsoft Office 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => D:\program files (x86)\Microsoft Office 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => D:\program files (x86)\Microsoft Office 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => D:\program files (x86)\Microsoft Office 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => D:\program files (x86)\Microsoft Office 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
Startup: D:\Users\Baz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Serviio.lnk [2012-12-30]
ShortcutTarget: Serviio.lnk -> D:\program files\Serviio\bin\ServiioConsole.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{121029EA-D4D0-467C-A420-9858BC77D68F}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{82482DA9-4BA1-495C-A542-E5CEE9CD12C0}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A7C7F56E-6ADB-4854-8C20-CDF8E2739D75}: [DhcpNameServer] 82.132.254.2 82.132.254.3
Internet Explorer:
==================
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://uk.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKU\S-1-5-21-1670462240-4050314197-262765230-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\program files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\program files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\program files (x86)\Microsoft Office 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-30] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> D:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> D:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-06-26] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\program files (x86)\Microsoft Office 2010\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-30] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> D:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-06-26] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-06-26] (Adobe Systems Incorporated)
IE Session Restore: HKU\S-1-5-21-1670462240-4050314197-262765230-1000 -> is enabled.
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\program files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
StartMenuInternet: IEXPLORE.EXE - D:\Program Files\Internet Explorer\iexplore.exe
FireFox:
========
FF ProfilePath: D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default
FF DefaultSearchEngine: Google (UK)
FF Session Restore: -> is enabled.
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-18] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> D:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2013-09-17] (DivX, LLC.)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2012-11-28] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> d:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> D:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2012-06-28] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> D:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> D:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-03-21] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-18] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> D:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2013-09-17] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> D:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-04-18] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> D:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> D:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2012-11-28] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> d:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\PROGRA~2\MIC30F~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\PROGRA~2\MIC30F~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> D:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> D:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> D:\Program Files (x86)\Winamp Detect\npwachk.dll [2013-11-20] (Nullsoft, Inc.)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> D:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2015-03-07] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> D:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> D:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-06-26] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> D:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> D:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-03-21] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-08-27] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-08-27] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-08-27] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-08-27] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-08-27] (Apple Inc.)
FF Extension: CuteMenus Classic Mod - D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default\Extensions\cmcmd@cmcd.tid [2015-08-07]
FF Extension: MEGA - D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default\Extensions\firefox@mega.co.nz.xpi [2015-10-03] [not signed]
FF Extension: IPFlood - D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default\Extensions\ipfuck@p4ul.info.xpi [2015-04-26]
FF Extension: Gmail Notifier (restartless) - D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2015-04-30]
FF Extension: Quidco Cashback Reminder - D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default\Extensions\quidcotoolbar@quidco.com.xpi [2015-05-10]
FF Extension: SwitchHosts - D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default\Extensions\SwitchHosts@mozdev.org.xpi [2015-06-18]
FF Extension: Adblock Plus - D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-01]
FF Extension: Greasemonkey - D:\Users\Baz\AppData\Roaming\Mozilla\Firefox\Profiles\4a9xyzie.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-05-30]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-12-25] [not signed]
StartMenuInternet: FIREFOX.EXE - D:\program files (x86)\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll => No File
CHR Plugin: (DivX VOD Helper Plug-in) - D:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - D:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => No File
CHR Plugin: (Google Update) - D:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => No File
CHR Plugin: (NVIDIA 3D Vision) - D:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll => No File
CHR Plugin: (NVIDIA 3D VISION) - D:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll => No File
CHR Plugin: (Photodex Presenter Plugin) - D:\Program Files (x86)\Photodex Presenter\npPxPlay.dll ( )
CHR Plugin: (Windows Live™ Photo Gallery) - D:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Silverlight Plug-In) - d:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll => No File
CHR Profile: D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-11-26]
CHR Extension: (MEGA) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-10-03]
CHR Extension: (YouTube) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-11-26]
CHR Extension: (Adblock Plus) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2012-11-26]
CHR Extension: (Google Search) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-11-26]
CHR Extension: (Tampermonkey) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-06-10]
CHR Extension: (imgur Extension by Metronomik) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehoopddfhgaehhmphfcooacjdpmbjlao [2012-11-26]
CHR Extension: (Quidco Cashback Reminder) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\elfdpdgmnodokhbiabbcjabmhpdajcog [2012-11-26]
CHR Extension: (Minus) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\emgdobmndjcmnciellikkhigcbpgpklk [2012-11-26]
CHR Extension: (Google Docs Offline) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (TinEye Reverse Image Search) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2012-11-26]
CHR Extension: (Minus) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgphklnbopgbelmcambccnaecijlnhno [2012-11-26]
CHR Extension: (Google Mail Checker) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2012-11-26]
CHR Extension: (Chrome Web Store Payments) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-02]
CHR Extension: (Better Pop Up Blocker) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmpeeekfhbmikbdhlpjbfmnpgcbeggic [2012-11-26]
CHR Extension: (Gmail) - D:\Users\Baz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-11-26]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - D:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128 2015-09-14] (Adobe Systems Incorporated)
S4 AntiVirMailService; D:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [932912 2015-09-22] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; D:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-09-22] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; D:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-09-22] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; D:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1147720 2015-10-14] (Avira Operations GmbH & Co. KG)
S3 Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDevice.exe [55336 2015-07-06] ()
R2 Apple Mobile Device Service; D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
R2 GfExperienceService; D:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)
S2 gupdate; D:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc.)
S3 gupdatem; D:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc.)
R3 iPod Service; D:\Program Files\iPod\bin\iPodService.exe [644880 2015-09-15] (Apple Inc.)
R2 MDM; D:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [322120 2003-06-20] (Microsoft Corporation)
S3 Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office 2010\Office14\GROOVE.EXE [30814400 2013-12-19] (Microsoft Corporation)
S3 MozillaMaintenance; D:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [147624 2015-10-15] (Mozilla Foundation)
S2 MSSQL$SQLEXPRESS; d:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [69964448 2015-04-03] (Microsoft Corporation)
S4 MSSQLServerADHelper100; d:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [61976 2009-07-22] (Microsoft Corporation)
R2 NvNetworkService; D:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; D:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-08-09] (Electronic Arts)
S3 ose; D:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [149352 2010-01-09] (Microsoft Corporation)
S3 osppsvc; D:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [4925184 2010-01-09] (Microsoft Corporation)
R2 ScsiAccess; D:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760 2015-03-07] ()
R2 Serviio; D:\Program Files\Serviio\bin\ServiioService.exe [327680 2015-03-21] () [File not signed]
S2 SkypeUpdate; D:\Program Files (x86)\Skype\Updater\Updater.exe [315488 2015-02-18] (Skype Technologies)
S4 SQLAgent$SQLEXPRESS; d:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [441512 2015-04-03] (Microsoft Corporation)
S4 SQLBrowser; d:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [255336 2011-09-22] (Microsoft Corporation)
R2 SQLWriter; d:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [154984 2011-09-22] (Microsoft Corporation)
S3 Steam Client Service; D:\Program Files (x86)\Common Files\Steam\SteamService.exe [543656 2013-06-06] (Valve Corporation)
S3 Visual Studio Analyzer RPC bridge; D:\Program Files (x86)\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe [34036 1998-06-06] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-07-09] (Microsoft Corporation)
R2 wlidsvc; D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096 2011-03-28] (Microsoft Corp.)
R2 WPSService20; D:\program files (x86)\Edimax\Edimax Wireless LAN\WPSService20.exe [96768 2013-05-15] () [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
S3 Arctosa; C:\Windows\System32\drivers\Arctosa.sys [19840 2009-08-19] (Razer USA Ltd.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [163544 2015-09-22] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-07-25] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-02-04] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [74952 2015-09-22] (Avira Operations GmbH & Co. KG)
S3 CYUSB; C:\Windows\System32\Drivers\CYUSB.sys [47104 2009-08-10] (Cypress Semiconductor)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2012-03-26] (Apple Inc.) [File not signed]
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2012-11-29] (CACE Technologies, Inc.)
R3 NvStreamKms; D:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1525904 2012-12-26] (Realtek Semiconductor Corporation )
R3 rzdaendpt; C:\Windows\System32\DRIVERS\rzdaendpt.sys [33448 2014-05-19] (Razer Inc)
R3 rzp1endpt; C:\Windows\System32\DRIVERS\rzp1endpt.sys [39080 2014-05-19] (Razer Inc)
R3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [31400 2014-05-19] (Razer Inc)
R3 rzvmouse; C:\Windows\System32\DRIVERS\rzvmouse.sys [31400 2014-05-19] (Razer Inc)
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Windows ® Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Nuvoton Technology Corp.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-10-28] (Duplex Secure Ltd.)
R2 VBoxDrv; D:\Program Files (x86)\YouWave Android\vb\VBoxDrv.sys [202592 2011-11-20] (Oracle Corporation)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
U3 aswMBR; \??\D:\Users\Baz\AppData\Local\Temp\aswMBR.sys [X]
U3 aswVmm; \??\D:\Users\Baz\AppData\Local\Temp\aswVmm.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-10-18 13:33 - 2015-10-18 13:33 - 00031787 _____ D:\Users\Baz\Desktop\FRST.txt
2015-10-18 13:32 - 2015-10-18 13:33 - 00000000 ____D C:\FRST
2015-10-18 13:32 - 2015-10-18 13:32 - 00002136 _____ D:\Users\Baz\Desktop\aswMBR.txt
2015-10-18 13:32 - 2015-10-18 13:32 - 00000512 _____ D:\Users\Baz\Desktop\MBR.dat
2015-10-18 11:40 - 2015-10-18 11:40 - 00000000 _____ D:\Users\Baz\Desktop\WTT.txt
2015-10-18 11:38 - 2015-10-18 11:38 - 02196992 _____ (Farbar) D:\Users\Baz\Desktop\FRST64.exe
2015-10-18 11:37 - 2015-10-18 11:37 - 05198336 _____ (AVAST Software) D:\Users\Baz\Desktop\aswMBR.exe
2015-10-15 19:03 - 2015-10-15 21:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-15 18:52 - 2015-09-18 20:22 - 00025432 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-15 18:52 - 2015-09-18 20:19 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-15 18:52 - 2015-09-18 20:19 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-15 18:52 - 2015-09-18 20:19 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-15 18:52 - 2015-09-18 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-15 18:52 - 2015-09-18 20:19 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-15 18:52 - 2015-09-18 20:09 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-13 22:11 - 2015-10-13 22:11 - 00000000 ____D D:\Users\Default\AppData\Local\Microsoft Help
2015-10-13 22:11 - 2015-10-13 22:11 - 00000000 ____D D:\Users\Default User\AppData\Local\Microsoft Help
2015-10-13 22:11 - 2015-10-13 22:11 - 00000000 ____D C:\Windows\PCHEALTH
2015-10-13 20:31 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-13 20:31 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-13 20:31 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-10-13 20:31 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-10-13 20:29 - 2015-09-25 19:07 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-10-13 20:29 - 2015-09-25 19:07 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-13 20:29 - 2015-09-25 19:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-10-13 20:29 - 2015-09-25 19:07 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-10-13 20:29 - 2015-09-25 19:07 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-10-13 20:29 - 2015-09-25 19:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-13 20:29 - 2015-09-25 19:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-13 20:29 - 2015-09-25 19:06 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-10-13 20:29 - 2015-09-25 19:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-13 20:29 - 2015-09-25 19:06 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-10-13 20:29 - 2015-09-25 19:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-10-13 20:29 - 2015-09-25 18:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-10-13 20:29 - 2015-09-25 18:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-10-13 20:29 - 2015-09-25 18:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-10-13 20:29 - 2015-09-25 18:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-10-13 20:29 - 2015-09-25 18:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-10-13 20:28 - 2015-09-29 04:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-13 20:28 - 2015-09-29 04:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-13 20:28 - 2015-09-29 04:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-13 20:28 - 2015-09-29 04:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-10-13 20:28 - 2015-09-29 04:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-10-13 20:28 - 2015-09-29 04:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-10-13 20:28 - 2015-09-29 04:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-13 20:28 - 2015-09-29 04:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-13 20:28 - 2015-09-29 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-13 20:28 - 2015-09-29 04:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-13 20:28 - 2015-09-29 04:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-10-13 20:28 - 2015-09-29 04:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-13 20:28 - 2015-09-29 04:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-10-13 20:28 - 2015-09-29 04:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-10-13 20:28 - 2015-09-29 04:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-13 20:28 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-10-13 20:28 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-10-13 20:28 - 2015-09-29 04:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-10-13 20:28 - 2015-09-29 04:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-10-13 20:28 - 2015-09-29 04:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-10-13 20:28 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-10-13 20:28 - 2015-09-29 03:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-10-13 20:28 - 2015-09-29 03:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-10-13 20:28 - 2015-09-29 03:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-10-13 20:28 - 2015-09-29 03:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-10-13 20:28 - 2015-09-29 03:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-10-13 20:28 - 2015-09-29 03:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-10-13 20:28 - 2015-09-29 03:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-10-13 20:28 - 2015-09-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-10-13 20:28 - 2015-09-29 03:57 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-10-13 20:28 - 2015-09-29 03:57 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-10-13 20:28 - 2015-09-29 03:57 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-10-13 20:28 - 2015-09-29 03:57 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-10-13 20:28 - 2015-09-29 03:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-10-13 20:28 - 2015-09-29 03:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 02:50 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-10-13 20:28 - 2015-09-29 02:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-13 20:28 - 2015-09-29 02:49 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-10-13 20:28 - 2015-09-29 02:43 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-10-13 20:28 - 2015-09-29 02:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-10-13 20:28 - 2015-09-29 02:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 02:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 02:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-10-13 20:28 - 2015-09-29 02:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-10-13 20:28 - 2015-09-15 19:17 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-10-13 20:28 - 2015-09-15 19:17 - 00097112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-13 20:28 - 2015-09-15 19:11 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-10-13 20:28 - 2015-09-15 19:11 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-10-13 20:28 - 2015-09-15 19:11 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-10-13 20:28 - 2015-09-15 19:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-13 20:28 - 2015-09-15 19:11 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-13 20:28 - 2015-09-15 19:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-13 20:28 - 2015-09-15 19:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-13 20:28 - 2015-09-15 18:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-10-13 20:28 - 2015-09-15 18:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-10-13 20:28 - 2015-09-15 18:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-10-13 20:28 - 2015-09-15 18:35 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-10-13 20:27 - 2015-10-01 19:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-10-13 20:27 - 2015-10-01 19:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-10-13 20:27 - 2015-10-01 19:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-13 20:27 - 2015-10-01 19:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-13 20:27 - 2015-10-01 19:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-13 20:27 - 2015-10-01 19:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-13 20:27 - 2015-10-01 19:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-13 20:27 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-10-13 20:27 - 2015-10-01 18:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-12 20:28 - 2015-10-12 20:28 - 00000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2015-10-12 20:28 - 2015-10-12 20:27 - 13607278 _____ (The qBittorrent project) D:\Users\Baz\Downloads\qbittorrent_3.2.4_setup.exe
2015-10-07 15:31 - 2015-10-07 15:31 - 00000000 ____D D:\Users\Baz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-10-01 20:51 - 2015-10-01 20:51 - 03307866 _____ D:\Users\Baz\Downloads\DLNAPlayer_0.9.46_apk-dl.com.apk
2015-10-01 17:52 - 2015-10-01 17:52 - 19540587 _____ D:\Users\Baz\Downloads\gs.zip
2015-09-30 16:12 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2015-09-30 16:12 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-09-30 16:12 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-09-30 16:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-09-26 17:54 - 2015-10-04 21:13 - 00000000 ____D D:\Users\Baz\Desktop\Kodi
2015-09-26 08:42 - 2015-07-22 17:29 - 00000056 _____ D:\Users\Baz\Documents\LEGIT WINDOWS KEY.txt
2015-09-26 08:42 - 2015-07-22 17:29 - 00000056 _____ C:\LEGIT WINDOWS KEY.txt
2015-09-25 22:02 - 2015-09-25 22:02 - 00605295 _____ D:\Users\Baz\Downloads\girlshare.ro_Instagram Photo & Video Gallery WordPress.zip
2015-09-25 22:02 - 2015-09-25 22:02 - 00000000 ____D D:\Users\Baz\Downloads\girlshare.ro_Instagram Photo & Video Gallery WordPress
2015-09-22 18:46 - 2015-09-22 19:20 - 00000000 ____D D:\Users\Baz\Downloads\ipb skins
2015-09-22 18:08 - 2015-09-22 18:08 - 00000000 ___HD C:\$Windows.~BT
2015-09-22 17:35 - 2015-09-22 17:35 - 00000000 ____D D:\Users\Baz\Downloads\metro_vbulletin
2015-09-22 17:30 - 2015-09-22 17:33 - 00000000 ____D D:\Users\Baz\Downloads\vbulletin skins
2015-09-22 17:30 - 2015-09-22 17:30 - 00000000 ____D D:\Users\Baz\Downloads\ideal_4.1.11
2015-09-22 17:28 - 2015-09-22 17:28 - 00000000 ____D D:\Users\Baz\Downloads\electron_vbulletin_forum_skin
2015-09-22 17:20 - 2015-09-22 17:22 - 07923393 _____ D:\Users\Baz\Downloads\ideal_4.1.11.zip
2015-09-22 17:17 - 2015-09-22 17:17 - 00795837 _____ D:\Users\Baz\Downloads\electron_vbulletin_forum_skin.rar
2015-09-22 17:15 - 2015-09-22 17:18 - 03104116 _____ D:\Users\Baz\Downloads\metro_vbulletin.zip
2015-09-22 16:15 - 2015-09-22 16:15 - 00787616 _____ D:\Users\Baz\Downloads\Electron – Themeforest vBulletin Forum Skin.rar
2015-09-22 16:12 - 2015-09-22 16:12 - 00200498 _____ D:\Users\Baz\Downloads\F0RUM_AUT0_P0STER.rar
2015-09-21 20:33 - 2015-09-21 20:33 - 00001632 _____ D:\Users\Public\Desktop\iTunes.lnk
2015-09-21 20:33 - 2015-09-21 20:33 - 00000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-09-21 20:32 - 2015-09-21 20:33 - 00000000 ____D C:\Program Files\iTunes
2015-09-21 20:32 - 2015-09-21 20:32 - 00000000 ____D C:\Program Files\iPod
2015-09-21 20:31 - 2015-09-21 20:31 - 00000000 ____D C:\Program Files\Bonjour
2015-09-21 20:31 - 2015-09-21 20:31 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-09-21 20:26 - 2015-09-21 20:28 - 167601944 _____ (Apple Inc.) D:\Users\Baz\Downloads\itunes6464setup.exe
2015-09-21 19:58 - 2015-09-21 19:58 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2015-09-21 19:58 - 2015-09-21 19:58 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-10-18 13:32 - 2012-11-26 21:09 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-18 13:28 - 2012-10-26 22:02 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-18 13:16 - 2009-07-14 05:45 - 00016352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-18 13:16 - 2009-07-14 05:45 - 00016352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-18 13:15 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2015-10-18 12:34 - 2012-10-26 21:48 - 01189528 _____ C:\Windows\WindowsUpdate.log
2015-10-18 12:28 - 2012-10-26 22:02 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-10-18 12:28 - 2012-10-26 22:02 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-18 12:28 - 2012-10-26 22:02 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-10-18 11:58 - 2015-03-15 14:14 - 00000000 ____D D:\Users\Baz\AppData\Roaming\qBittorrent
2015-10-18 11:54 - 2012-11-26 20:47 - 00000000 ____D D:\ProgramData\Spybot - Search & Destroy
2015-10-18 11:45 - 2012-10-28 22:40 - 00000000 ____D D:\Users\Baz\AppData\Roaming\CoreFTP
2015-10-18 11:33 - 2014-09-20 09:26 - 00002269 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-18 11:30 - 2014-12-23 16:53 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-18 11:29 - 2012-10-26 22:01 - 00000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-18 11:29 - 2012-10-26 22:01 - 00000000 ____D C:\Program Files\CCleaner
2015-10-18 11:23 - 2014-02-19 21:58 - 00490192 _____ C:\Windows\system32\perfh011.dat
2015-10-18 11:23 - 2014-02-19 21:58 - 00152412 _____ C:\Windows\system32\perfc011.dat
2015-10-18 11:23 - 2014-02-19 21:50 - 00582828 _____ C:\Windows\system32\perfh006.dat
2015-10-18 11:23 - 2014-02-19 21:50 - 00128970 _____ C:\Windows\system32\perfc006.dat
2015-10-18 11:23 - 2014-02-19 21:27 - 00474436 _____ C:\Windows\system32\prfh0404.dat
2015-10-18 11:23 - 2014-02-19 21:27 - 00145402 _____ C:\Windows\system32\prfc0404.dat
2015-10-18 11:23 - 2014-02-19 21:15 - 00787294 _____ C:\Windows\system32\prfh0416.dat
2015-10-18 11:23 - 2014-02-19 21:15 - 00177968 _____ C:\Windows\system32\prfc0416.dat
2015-10-18 11:23 - 2014-02-19 21:08 - 00802432 _____ C:\Windows\system32\prfh0816.dat
2015-10-18 11:23 - 2014-02-19 21:08 - 00183218 _____ C:\Windows\system32\prfc0816.dat
2015-10-18 11:23 - 2014-02-19 21:02 - 00813772 _____ C:\Windows\system32\perfh015.dat
2015-10-18 11:23 - 2014-02-19 21:02 - 00186184 _____ C:\Windows\system32\perfc015.dat
2015-10-18 11:23 - 2014-02-19 20:55 - 00730096 _____ C:\Windows\system32\perfh01F.dat
2015-10-18 11:23 - 2014-02-19 20:55 - 00170312 _____ C:\Windows\system32\perfc01F.dat
2015-10-18 11:23 - 2014-02-19 20:42 - 00457364 _____ C:\Windows\system32\prfh0804.dat
2015-10-18 11:23 - 2014-02-19 20:42 - 00149904 _____ C:\Windows\system32\prfc0804.dat
2015-10-18 11:23 - 2014-02-19 20:23 - 00798014 _____ C:\Windows\system32\perfh019.dat
2015-10-18 11:23 - 2014-02-19 20:23 - 00181154 _____ C:\Windows\system32\perfc019.dat
2015-10-18 11:23 - 2014-02-19 20:17 - 00567928 _____ C:\Windows\system32\perfh014.dat
2015-10-18 11:23 - 2014-02-19 20:17 - 00125716 _____ C:\Windows\system32\perfc014.dat
2015-10-18 11:23 - 2014-02-19 20:11 - 00680402 _____ C:\Windows\system32\perfh008.dat
2015-10-18 11:23 - 2014-02-19 20:11 - 00141440 _____ C:\Windows\system32\perfc008.dat
2015-10-18 11:23 - 2014-02-19 20:04 - 00737134 _____ C:\Windows\system32\perfh01D.dat
2015-10-18 11:23 - 2014-02-19 20:04 - 00172786 _____ C:\Windows\system32\perfc01D.dat
2015-10-18 11:23 - 2014-02-19 19:56 - 00501838 _____ C:\Windows\system32\perfh012.dat
2015-10-18 11:23 - 2014-02-19 19:56 - 00150696 _____ C:\Windows\system32\perfc012.dat
2015-10-18 11:23 - 2014-02-19 19:52 - 00742254 _____ C:\Windows\system32\perfh005.dat
2015-10-18 11:23 - 2014-02-19 19:52 - 00171738 _____ C:\Windows\system32\perfc005.dat
2015-10-18 11:23 - 2014-02-19 19:38 - 00816912 _____ C:\Windows\system32\perfh013.dat
2015-10-18 11:23 - 2014-02-19 19:38 - 00183414 _____ C:\Windows\system32\perfc013.dat
2015-10-18 11:23 - 2014-02-19 19:31 - 00554916 _____ C:\Windows\system32\perfh00B.dat
2015-10-18 11:23 - 2014-02-19 19:31 - 00131832 _____ C:\Windows\system32\perfc00B.dat
2015-10-18 11:23 - 2014-02-19 19:27 - 00757168 _____ C:\Windows\system32\perfh00E.dat
2015-10-18 11:23 - 2014-02-19 19:27 - 00201586 _____ C:\Windows\system32\perfc00E.dat
2015-10-18 11:23 - 2014-02-18 20:47 - 00818870 _____ C:\Windows\system32\perfh00A.dat
2015-10-18 11:23 - 2014-02-18 20:47 - 00188786 _____ C:\Windows\system32\perfc00A.dat
2015-10-18 11:23 - 2014-02-18 20:39 - 00465758 _____ C:\Windows\system32\perfh00D.dat
2015-10-18 11:23 - 2014-02-18 20:39 - 00115070 _____ C:\Windows\system32\perfc00D.dat
2015-10-18 11:23 - 2014-02-16 23:44 - 00813460 _____ C:\Windows\system32\perfh010.dat
2015-10-18 11:23 - 2014-02-16 23:44 - 00177158 _____ C:\Windows\system32\perfc010.dat
2015-10-18 11:23 - 2014-02-16 23:40 - 00819130 _____ C:\Windows\system32\perfh00C.dat
2015-10-18 11:23 - 2014-02-16 23:40 - 00552428 _____ C:\Windows\system32\perfh001.dat
2015-10-18 11:23 - 2014-02-16 23:40 - 00179892 _____ C:\Windows\system32\perfc00C.dat
2015-10-18 11:23 - 2014-02-16 23:40 - 00125084 _____ C:\Windows\system32\perfc001.dat
2015-10-18 11:23 - 2014-02-16 23:31 - 00770622 _____ C:\Windows\system32\perfh007.dat
2015-10-18 11:23 - 2014-02-16 23:31 - 00179428 _____ C:\Windows\system32\perfc007.dat
2015-10-18 11:23 - 2009-07-14 06:13 - 19780214 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-18 11:17 - 2012-10-28 22:24 - 00000000 ____D C:\Program Files (x86)\Steam
2015-10-18 11:16 - 2012-11-26 21:09 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-18 11:15 - 2014-03-08 11:24 - 00000292 _____ C:\Windows\Tasks\AutoKMS.job
2015-10-18 11:15 - 2013-02-06 20:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-18 11:15 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-15 21:54 - 2015-04-19 11:00 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-15 21:54 - 2014-05-06 21:49 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\uk-UA
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\th-TH
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sr-Latn-CS
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sl-SI
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ro-RO
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\lv-LV
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\lt-LT
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\hr-HR
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\he-IL
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\et-EE
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\bg-BG
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ar-SA
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\zh-HK
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\uk-UA
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\tr-TR
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\th-TH
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sl-SI
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ro-RO
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\lv-LV
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\lt-LT
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\hr-HR
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\he-IL
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\et-EE
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\bg-BG
2015-10-14 16:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ar-SA
2015-10-13 22:29 - 2013-11-18 13:48 - 00000000 ____D D:\ProgramData\Microsoft Help
2015-10-13 22:25 - 2013-08-13 22:02 - 00000000 ____D C:\Windows\system32\MRT
2015-10-13 22:16 - 2010-02-10 07:16 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-13 21:58 - 2009-07-14 03:34 - 00000499 _____ C:\Windows\win.ini
2015-10-13 19:59 - 2012-11-26 20:55 - 00001558 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2015-10-12 20:28 - 2015-03-15 14:12 - 00000000 ____D C:\Program Files (x86)\qBittorrent
2015-10-10 11:48 - 2012-12-10 16:28 - 00000000 ____D D:\Users\Baz\AppData\Roaming\vlc
2015-10-10 11:05 - 2015-04-04 14:18 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-09 21:36 - 2015-04-04 14:18 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-10-07 15:31 - 2013-12-18 22:41 - 00000784 _____ D:\Users\Mcx1-MINAJ\Desktop\Handbrake.lnk
2015-10-07 15:31 - 2013-12-18 22:41 - 00000000 ____D C:\Program Files\Handbrake
2015-10-07 15:30 - 2013-12-18 22:41 - 00000000 ____D D:\Users\Baz\AppData\Roaming\HandBrake
2015-10-07 15:25 - 2012-10-29 21:37 - 00000000 ____D D:\Users\Baz\AppData\Roaming\Sony
2015-10-07 15:24 - 2012-10-29 21:38 - 00000000 ____D D:\Users\Baz\AppData\Local\Sony
2015-10-04 21:07 - 2014-01-28 17:34 - 00000000 ____D D:\Users\Baz\Documents\Specsavers Healthcall
2015-09-30 15:41 - 2010-02-10 07:02 - 00000000 ____D C:\Windows\Panther
2015-09-23 17:26 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2015-09-22 19:37 - 2015-02-27 20:04 - 00163544 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-09-22 19:37 - 2015-02-27 20:04 - 00074952 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-09-21 21:39 - 2012-11-26 21:09 - 00000000 ____D D:\Users\Baz\AppData\Local\Google
2015-09-21 20:32 - 2012-10-26 22:09 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-09-21 20:32 - 2012-10-26 22:05 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-09-21 19:58 - 2012-10-26 22:09 - 00002321 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
==================== Files in the root of some directories =======
2012-05-04 08:04 - 2012-05-04 08:04 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2015-07-19 17:21 - 2015-07-19 17:21 - 1361920 _____ () D:\Users\Baz\AppData\Roaming\34986.exe
2015-07-19 17:15 - 2014-04-12 00:08 - 2459280 _____ (Microsoft Corporation) D:\Users\Baz\AppData\Roaming\59809.exe
2013-02-27 15:44 - 2015-07-27 11:29 - 0000600 _____ () D:\Users\Baz\AppData\Roaming\winscp.rnd
2013-04-01 21:42 - 2013-04-01 21:42 - 0001456 _____ () D:\Users\Baz\AppData\Local\Adobe Save for Web 13.0 Prefs
2013-03-28 20:59 - 2013-03-28 20:59 - 0007605 _____ () D:\Users\Baz\AppData\Local\Resmon.ResmonCfg
2014-01-05 15:26 - 2014-01-05 15:26 - 1977432 _____ () D:\Users\Baz\AppData\Local\Tempwinrarx64.exe
2012-11-26 18:51 - 2012-11-26 18:51 - 0000003 _____ () D:\Users\Baz\AppData\Local\user_data.ini
2014-03-24 17:58 - 2014-03-24 17:58 - 0000114 _____ () D:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
Some files in TEMP:
====================
D:\Users\Baz\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-10-11 10:59
==================== End of FRST.txt ============================
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version:17-10-2015
Ran by Baz (2015-10-18 13:33:34)
Running from D:\Users\Baz\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2012-10-26 20:32:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1670462240-4050314197-262765230-500 - Administrator - Disabled)
Baz (S-1-5-21-1670462240-4050314197-262765230-1000 - Administrator - Enabled) => D:\Users\Baz
Guest (S-1-5-21-1670462240-4050314197-262765230-501 - Limited - Disabled)
Mcx1-MINAJ (S-1-5-21-1670462240-4050314197-262765230-1005 - Limited - Enabled) => D:\Users\Mcx1-MINAJ
VUSR_MINAJ (S-1-5-21-1670462240-4050314197-262765230-1006 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.15 - Adobe Systems)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Photoshop CC 14.2.1 (HKLM-x32\...\Adobe Photoshop CC 14.2.1) (Version: - )
Adobe Reader XI (11.0.13) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{3540ADD5-822B-47FB-B1C2-CD7B2C8E9FEC}) (Version: 4.0.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{C9C0FE2C-602E-49D7-8C42-5B9E8FF04798}) (Version: 4.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Artisteer 3 (HKLM-x32\...\Artisteer 3) (Version: 3.0 - Extensoft)
Artisteer 4 (HKLM-x32\...\Artisteer 4) (Version: 4.1 - Extensoft)
Avira (HKLM-x32\...\{9480d4af-12b9-4e56-8034-4031ef6ab39d}) (Version: 1.1.25.25607 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.25.25607 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.210 - Avira Operations GmbH & Co. KG)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bigasoft Total Video Converter 5.0.6.5658 (HKLM-x32\...\{A72CE741-1F32-4D79-BFFB-A714375C6750}_is1) (Version: - Bigasoft Corporation)
Bitcoin (HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\Bitcoin) (Version: 0.8.6 - Bitcoin project)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broken Sword 1 - Shadow of the Templars: Director's Cut (HKLM-x32\...\Steam App 57640) (Version: - Revolution Software Ltd)
Bulk Rename Utility 2.7.1.3 (HKLM\...\Bulk Rename Utility_is1) (Version: - TGRMN Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
Championship Manager 01-02 (HKLM-x32\...\Championship Manager 01-02) (Version: - )
ClassicPro© v2.01 (HKLM-x32\...\ClassicPro) (Version: 2.01 - Skin Consortium)
Combined Community Codec Pack 2011-11-11 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2011.11.11.0 - CCCP Project)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CopyFilenames 3.1 (HKLM\...\CopyFilenames_is1) (Version: 3.1 - ExtraBit Software)
Core FTP Pro (x64) (HKLM-x32\...\CoreFTP(x64)) (Version: - )
CoreAVC Professional Edition (remove only) (HKLM-x32\...\CoreAVC Professional Edition) (Version: - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
dBpoweramp [Arrange Audio] Codec (HKLM-x32\...\dBpoweramp [Arrange Audio] Codec) (Version: Release 3 - Illustrate)
dBpoweramp [Audio Info] Codec (HKLM-x32\...\dBpoweramp [Audio Info] Codec) (Version: Release 1 - Illustrate)
dBpoweramp [Calculate Audio CRC] Codec (HKLM-x32\...\dBpoweramp [Calculate Audio CRC] Codec) (Version: - )
dBpoweramp [Channel Split] Codec (HKLM-x32\...\dBpoweramp [Channel Split] Codec) (Version: - )
dBpoweramp [ID Tag Update] Codec (HKLM-x32\...\dBpoweramp [ID Tag Update] Codec) (Version: Release 2.1 - Illustrate)
dBpoweramp [Length Split] Codec (HKLM-x32\...\dBpoweramp [Length Split] Codec) (Version: - )
dBpoweramp [Multi Encoder] Codec (HKLM-x32\...\dBpoweramp [Multi Encoder] Codec) (Version: Release 3 - Illustrate)
dBpoweramp [ReplayGain] Codec (HKLM-x32\...\dBpoweramp [ReplayGain] Codec) (Version: Release 2 - Illustrate)
dBpoweramp [Tag From Filename] Codec (HKLM-x32\...\dBpoweramp [Tag From Filename] Codec) (Version: Release 1 - Illustrate)
dBpoweramp CD Writer (HKLM-x32\...\dBpoweramp CD Writer) (Version: Release 3.1 - Illustrate)
dBpoweramp Dalet Codec (HKLM-x32\...\dBpoweramp Dalet Codec) (Version: - )
dBpoweramp DSP Effects (HKLM-x32\...\dBpoweramp DSP Effects) (Version: Release 6 - Illustrate)
dBpoweramp FLAC Codec (HKLM-x32\...\dBpoweramp FLAC Codec) (Version: Release 12 (FLAC 1.2.1) - Illustrate)
dBpoweramp Monkeys Audio Codec (HKLM-x32\...\dBpoweramp Monkeys Audio Codec) (Version: - )
dBpoweramp Mp2 and BwfMp2 codec (HKLM-x32\...\dBpoweramp Mp2 and BwfMp2 codec) (Version: - )
dBpoweramp mp3 (Fraunhofer IIS) Codec (HKLM-x32\...\dBpoweramp mp3 (Fraunhofer IIS) Codec) (Version: Release 2a (v4.0.3) - Illustrate)
dBpoweramp Music Converter (HKLM-x32\...\dBpoweramp Music Converter) (Version: Release 14 - Illustrate)
dBpoweramp Ogg Vorbis Codec (HKLM-x32\...\dBpoweramp Ogg Vorbis Codec) (Version: Release 19 (Vorbis v1.2.0) - Illustrate)
dBpoweramp Real Audio (Helix) Encoder (HKLM-x32\...\dBpoweramp Real Audio (Helix) Encoder) (Version: - )
dBPoweramp tooLame MP2 codec (HKLM-x32\...\dBPoweramp tooLame MP2 codec) (Version: - )
dBpoweramp Wave64 Codec (HKLM-x32\...\dBpoweramp Wave64 Codec) (Version: - )
dBpoweramp WavPack Codec (HKLM-x32\...\dBpoweramp WavPack Codec) (Version: - )
dBpoweramp Windows Media Audio 10 Codec (HKLM-x32\...\dBpoweramp Windows Media Audio 10 Codec) (Version: Release 7 - Illustrate)
Dead Space™ (HKLM-x32\...\{6E6F22D7-8AD6-4A87-9A47-733E6E996F50}) (Version: 1.0.0.222 - Electronic Arts)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.22 - DivX, LLC)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - )
DriveSpacio 0.1.0 (HKLM-x32\...\DriveSpacio_is1) (Version: - Agitaf)
Easy Macro Recorder 4.9 (HKLM-x32\...\Easy Macro Recorder_is1) (Version: - GoldSolution Software, Inc.)
Edimax Wireless LAN (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0205.2 - Edimax Technology Co.)
FMRTE 14.2.0.22 (HKLM\...\{067E314C-0505-406F-ABF5-AC601646E8B4}_is1) (Version: 14.2.0.22 - Raul Bravo)
Football Manager 2012 Editor (HKLM-x32\...\Steam App 71400) (Version: - )
Football Manager 2013 Editor (HKLM-x32\...\Steam App 220600) (Version: - Sports Interactive)
Football Manager 2014 Editor (HKLM-x32\...\Steam App 242460) (Version: - )
Football Manager 2015 (HKLM-x32\...\Steam App 295270) (Version: - Sports Interactive)
Football Manager 2015 Editor (HKLM-x32\...\Steam App 295350) (Version: - )
Fotosizer 1.36 (HKLM-x32\...\Fotosizer) (Version: 1.36 - Fotosizer.com)
Free Video Joiner (HKLM-x32\...\{14FA6DD9-92ED-493D-A937-81A78870E08A}_is1) (Version: - FreeVideoJoiner.com)
GDR 5520 for SQL Server 2008 (KB2977321) (64-bit) (HKLM\...\KB2977321) (Version: 10.3.5520.0 - Microsoft Corporation)
GDR 5538 for SQL Server 2008 (KB3045305) (64-bit) (HKLM\...\KB3045305) (Version: 10.3.5538.0 - Microsoft Corporation)
GIF Viewer (HKLM-x32\...\GIF Viewer) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hide IP Easy (HKLM-x32\...\HideIPEasy) (Version: 5.2.2.2 - )
ImTOO DVD Creator (HKLM-x32\...\ImTOO DVD Creator) (Version: 7.1.3.20130709 - ImTOO)
ImTOO HD Video Converter (HKLM-x32\...\ImTOO HD Video Converter) (Version: 7.7.3.20131014 - ImTOO)
iTunes (HKLM\...\{88509E20-3936-4D88-A1C0-B274C7BB5151}) (Version: 12.3.0.44 - Apple Inc.)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
K-Lite Codec Pack 9.3.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.3.0 - )
Last.fm Scrobbler 2.1.37 (HKLM-x32\...\LastFM_is1) (Version: - Last.fm)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
MediaInfo 0.7.61 (HKLM\...\MediaInfo) (Version: 0.7.61 - MediaArea.net)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (dansk) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1030) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Italiano) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Português) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2070) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (suomi) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1035) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (svenska) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1053) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Ελληνικά) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1032) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.5.51209 - Корпорация Майкрософт)
Microsoft .NET Framework 4.5.2 (עברית) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1037) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (العربية) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1025) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (日本語) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (简体中文) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 2052) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2(한국어) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1042) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2, norsk språkpakke (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1044) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET-keretrendszer 4.5.2 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office FrontPage 2003 (HKLM-x32\...\{90170409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office OneNote 2003 (HKLM-x32\...\{90A10409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Project Professional 2003 (HKLM-x32\...\{903B0409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Visio Professional 2003 (HKLM-x32\...\{90510409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{2738C4AA-420E-4E13-ADEF-B5AB250E3EF1}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{F43ADE73-2880-4A95-B995-4FE386ECF667}) (Version: 10.3.5538.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 6.0 Enterprise Edition (HKLM-x32\...\Visual Studio 6.0 Enterprise Edition) (Version: - )
Microsoft Web Publishing Wizard 1.53 (HKLM-x32\...\WebPost) (Version: - )
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MKVToolNix 8.2.0 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 8.2.0 - Moritz Bunkus)
Mozilla Firefox 40.0.2 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 en-GB)) (Version: 40.0.2 - Mozilla)
Mozilla Firefox 41.0.2 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 en-GB)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
MPC-HC 1.6.4.6052 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.6.4.6052 - MPC-HC Team)
New Star Soccer 5 v1.12 (HKLM-x32\...\{4A49BF17-D3D0-49F1-B17E-ACAE15F94CE2}}_is1) (Version: - New Star Games Ltd)
Noise Reduction Plug-In 2.0 (HKLM-x32\...\{847C6940-D852-11E2-81D2-F04DA23A5C58}) (Version: 2.0.596 - Sony)
Noise Reduction Plug-in 2.0i (HKLM-x32\...\{520A8627-E1B7-4808-8F04-03A013CBBD10}) (Version: 2.0.455 - Sony)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.5 - Notepad++ Team)
Now Playing: A Winamp Plugin (HKLM-x32\...\{C15D9E3E-8AE4-4973-AF72-0F75A63AB8E0}) (Version: 3.9.3.0 - Brandon Fuller)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.62 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Paint Shop Pro 7 (HKLM-x32\...\{D6DE02C7-1F47-11D4-9515-00105AE4B89A}) (Version: 7.0.0.0000 - Jasc Software Inc)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Photodex Presenter (HKLM-x32\...\Photodex Presenter) (Version: - Photodex Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.8 - PowerISO Computing, Inc.)
ProShow MediaSource - Wedding Essentials (HKLM-x32\...\ProShow MediaSource - Wedding Essentials) (Version: - )
ProShow Producer (HKLM-x32\...\ProShow Producer) (Version: - Photodex Corporation)
Proxy Finder Enterprise Edition (HKLM-x32\...\Proxy Finder Enterprise Edition) (Version: - )
qBittorrent 3.2.4 (HKLM-x32\...\qBittorrent) (Version: 3.2.4 - The qBittorrent project)
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Razer DeathAdder™ Mouse (HKLM-x32\...\{EB1B8449-CD8F-485B-ADB6-02FBCFE180D3}) (Version: 3.03 - Razer USA Ltd.)
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.15.20888 - Razer Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7179 - Realtek Semiconductor Corp.)
Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
Screen Recording Suite V3.0.3 (HKLM-x32\...\{EB9F3F92-4857-4121-AA6F-1C424AC6C266}_is1) (Version: 3.0.3 - Apowersoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) (HKLM\...\KB2546951) (Version: 10.3.5500.0 - Microsoft Corporation)
Serviio (HKLM\...\Serviio) (Version: - )
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SolveigMM Video Splitter Home Edition (HKLM-x32\...\SolveigMM Video Splitter Home Edition 4.0.1412.10) (Version: 4.0.1412.10 - Solveig Multimedia)
SopCast 3.9.6 (HKLM-x32\...\SopCast) (Version: 3.9.6 - www.sopcast.com)
Sound Forge Pro 10.0 (HKLM-x32\...\{B8A817D7-AE0F-42BA-AEB9-B5F1F3EFB7AF}) (Version: 10.0.425 - Sony)
Sound Forge Pro 11.0 (HKLM-x32\...\{A376BDE2-EE3D-11E2-AA13-F04DA23A5C58}) (Version: 11.0.234 - Sony)
Sp5 (x32 Version: 5.1.4324.0 - Microsoft) Hidden
Sp5Intl (x32 Version: 5.1.4324.0 - Microsoft) Hidden
Sp5TTInt (x32 Version: 5.1.4324.0 - Microsoft) Hidden
SpCommon (x32 Version: 5.1.4324.0 - Microsoft) Hidden
Spotify (HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
SpPhones (x32 Version: 6.0.3122.0 - Microsoft) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Sql Server Customer Experience Improvement Program (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{E5F05232-96B6-4552-A480-785A60A94B21}) (Version: 5.0.6.0 - Husdawg, LLC)
Tag&Rename 3.8.7 (HKLM-x32\...\Tag&Rename_is1) (Version: 3.8.7 - Softpointer Inc)
The Image Collector version 1.09 (HKLM-x32\...\{2BEB601D-6FE0-412D-9CCA-724AA67E160D}_is1) (Version: 1.09 - Joseph Cox)
The Movies™ (x32 Version: 1.0 - Activision) Hidden
The Movies™ Stunts & Effects (HKLM-x32\...\InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1}) (Version: 1.2 - Activision)
The Movies™ Stunts & Effects (x32 Version: 1.0 - Activision) Hidden
The Sims 4 - Get to Work (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - )
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.)
The Walking Dead © 3 version 1 (HKLM-x32\...\The Walking Dead © 3_is1) (Version: 1 - )
The Walking Dead Episode 3 © TellTale Games version 1 (HKLM-x32\...\The Walking Dead Episode 3 © TellTale Games_is1) (Version: 1 - )
The Walking Dead Episode 4 © Telltale Games version 1 (HKLM-x32\...\The Walking Dead Episode 4 © Telltale Games_is1) (Version: 1 - )
The Walking Dead Episode 5 © Telltales version 1 (HKLM-x32\...\The Walking Dead Episode 5 © Telltales_is1) (Version: 1 - )
The Walking Dead Season 2 (HKLM-x32\...\The Walking Dead Season 2_is1) (Version: - )
The Walking Dead Season 2 EP 2 (HKLM-x32\...\The Walking Dead Season 2 EP 2_is1) (Version: - )
The Walking Dead: Season 2 Episode 3 (HKLM-x32\...\VGhlV2Fsa2luZ0RlYWRTZWFzb24y_is1) (Version: 1 - )
The Wolf Among Us (HKLM-x32\...\VGhlV29sZkFtb25nVXM=_is1) (Version: 1 - )
The Wolf Among Us Episode 2 (HKLM-x32\...\The Wolf Among Us Episode 2_is1) (Version: - CODEX)
The.Walking.Dead (HKLM-x32\...\The.Walking.Dead_is1) (Version: - )
TSR Watermark Image software version 2.3.2.5 (HKLM-x32\...\TSR Watermark Image_is1) (Version: - )
Vegas Pro 12.0 (64-bit) (HKLM\...\{64A98EF1-2680-11E3-A909-F04DA23A5C58}) (Version: 12.0.726 - Sony)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
VobSub v2.23 (Remove Only) (HKLM-x32\...\VobSub) (Version: - )
Winamp (HKLM-x32\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Winamp Essentials Pack (HKLM-x32\...\Winamp Essentials Pack) (Version: v5.63a - Christoph Grether)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinHTTrack Website Copier 3.47-27 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.47.27 - HTTrack)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinSCP 5.1 (HKLM-x32\...\winscp3_is1) (Version: 5.1 - Martin Prikryl)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
XBMC (HKU\S-1-5-21-1670462240-4050314197-262765230-1000\...\XBMC) (Version: - Team XBMC)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
YouWave for Android (HKLM-x32\...\YouWave) (Version: - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
18-10-2015 13:13:00 Scheduled Checkpoint
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2015-09-13 11:07 - 00451254 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 65.52.240.48
127.0.0.1 69.167.144.18
127.0.0.1 oscount.techsmith.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 support.apowersoft.com
127.0.0.1 www.apowersoft.com
127.0.0.1 apowersoft.com
127.0.0.1 http://www.piriform.com
127.0.0.1 license.piriform.com
184.22.254.48 sopcast.com
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
There are 15481 more lines.
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {020D9736-6898-4E00-8486-3B87E4C4EBC4} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {186FB6D6-3785-400D-BAC9-740523C0A543} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd)
Task: {208EA946-2C67-4528-A423-B8BC4E337A4E} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2015-09-18] (Microsoft Corporation)
Task: {2415D2A9-E77F-4AE5-8178-50B4417B2976} - System32\Tasks\Apple\AppleSoftwareUpdate => D:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {4A47B93F-53A4-437E-A1B7-15B04309CAB8} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-MINAJ => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation)
Task: {5270E191-0642-469E-94A9-3374F1923D98} - \VisualBee-updater -> No File <==== ATTENTION
Task: {5C90DA27-3894-48A8-99FA-BCACFFAEF572} - System32\Tasks\GoogleUpdateTaskMachineUA => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {6C95F0E3-135F-496D-9EB7-443F7BF23454} - \VisualBee-enabler -> No File <==== ATTENTION
Task: {89A71073-C035-402F-800E-268BEA7E982C} - System32\Tasks\Adobe Acrobat Update Task => D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {8B324517-947C-499C-9E94-3485157CF5D8} - System32\Tasks\GoogleUpdateTaskMachineCore => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {BB66BA1B-9C76-40C6-9076-D5E771A88864} - System32\Tasks\{01EDA6C4-755C-42C5-945B-741BAD1CA253} => pcalua.exe -a F:\PRENTON69\64bit_Vista_Win7_Win8_R270.exe -d F:\PRENTON69
Task: {E403A489-3985-4C66-9FDA-682A9448BF64} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-18] (Adobe Systems Incorporated)
Task: {E53F3D1B-0FBE-40E3-AD78-8FB28AD9B7CF} - \VisualBee-codedownloader -> No File <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => D:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2012-10-26 21:55 - 2015-07-23 02:31 - 00116368 _____ () D:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-03-20 12:24 - 2014-03-20 12:24 - 00667808 _____ () D:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () D:\program files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 16:23 - 2010-10-20 16:23 - 08801632 _____ () D:\program files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2014-05-12 10:49 - 2014-05-12 10:49 - 00222720 _____ () D:\Program Files (x86)\Notepad++\NppShell_06.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-02-13 19:12 - 2012-07-11 23:18 - 00656384 _____ () D:\program files (x86)\ClipUpload3.12\ClipUpload3.exe
2015-10-10 13:15 - 2015-10-10 13:15 - 14824960 _____ () D:\program files (x86)\qBittorrent\qbittorrent.exe
2015-03-21 09:54 - 2015-03-21 09:54 - 00368640 _____ () D:\program files\Serviio\bin\ServiioConsole.exe
2012-10-26 21:58 - 2011-03-21 11:06 - 00248320 _____ () D:\program files (x86)\Razer\DeathAdder\razerhid.exe
2012-10-26 21:58 - 2011-04-14 11:48 - 01758208 _____ () D:\program files (x86)\Razer\DeathAdder\vdDaemon.exe
2015-03-07 17:56 - 2015-03-07 17:56 - 00186760 _____ () D:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe
2015-03-21 09:54 - 2015-03-21 09:54 - 00327680 _____ () D:\Program Files\Serviio\bin\ServiioService.exe
2015-01-30 16:36 - 2013-05-15 16:27 - 00096768 _____ () D:\program files (x86)\Edimax\Edimax Wireless LAN\WPSService20.exe
2015-09-15 14:25 - 2015-09-15 14:25 - 00306960 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxslt.dll
2015-04-12 15:34 - 2015-07-24 05:22 - 00011920 _____ () D:\program files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () D:\program files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 16:45 - 2010-10-20 16:45 - 08801120 _____ () D:\program files (x86)\Microsoft Office 2010\Office14\1033\GrooveIntlResource.dll
2013-03-12 18:10 - 2015-10-05 17:18 - 00778752 _____ () D:\program files (x86)\Steam\SDL2.dll
2015-01-23 13:09 - 2015-07-03 17:12 - 04962816 _____ () D:\program files (x86)\Steam\v8.dll
2015-01-23 13:09 - 2015-07-03 17:12 - 01556992 _____ () D:\program files (x86)\Steam\icui18n.dll
2015-01-23 13:09 - 2015-07-03 17:12 - 01187840 _____ () D:\program files (x86)\Steam\icuuc.dll
2014-05-22 17:45 - 2015-10-14 21:56 - 02423376 _____ () D:\program files (x86)\Steam\video.dll
2014-08-30 09:36 - 2015-09-24 01:33 - 02549248 _____ () D:\program files (x86)\Steam\libavcodec-56.dll
2014-08-30 09:36 - 2015-09-24 01:33 - 00442880 _____ () D:\program files (x86)\Steam\libavutil-54.dll
2014-08-30 09:36 - 2015-09-24 01:33 - 00491008 _____ () D:\program files (x86)\Steam\libavformat-56.dll
2014-08-30 09:36 - 2015-09-24 01:33 - 00332800 _____ () D:\program files (x86)\Steam\libavresample-2.dll
2014-08-30 09:36 - 2015-09-24 01:33 - 00485888 _____ () D:\program files (x86)\Steam\libswscale-3.dll
2012-11-26 18:59 - 2015-10-14 21:56 - 00705104 _____ () D:\program files (x86)\Steam\bin\chromehtml.DLL
2015-07-22 16:42 - 2015-10-09 19:13 - 00193024 _____ () D:\program files (x86)\Steam\bin\openvr_api.dll
2012-11-26 18:59 - 2015-10-08 23:20 - 45010208 _____ () D:\program files (x86)\Steam\bin\libcef.dll
2015-01-23 13:09 - 2015-09-25 00:56 - 00119208 _____ () D:\program files (x86)\Steam\winh264.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 01040144 _____ () D:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-02-02 06:40 - 2014-10-11 06:06 - 00073544 _____ () D:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-18 12:28 - 2015-10-18 12:28 - 17599688 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: D:\Users\All Users:$SS_DESCRIPTOR_SBXNV9VVGV1BFSBG6F1742VJWJLWYRJ905PV3TFFSPF7VBCVP4GV
AlternateDataStreams: D:\ProgramData\Application Data:$SS_DESCRIPTOR_SBXNV9VVGV1BFSBG6F1742VJWJLWYRJ905PV3TFFSPF7VBCVP4GV
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 15753 more restricted sites.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1670462240-4050314197-262765230-1000\Control Panel\Desktop\\Wallpaper -> D:\Users\Baz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: D:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office OneNote 2003 Quick Launch.lnk => C:\Windows\pss\Microsoft Office OneNote 2003 Quick Launch.lnk.CommonStartup
MSCONFIG\startupfolder: D:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Packer.exe.lnk => C:\Windows\pss\Packer.exe.lnk.CommonStartup
MSCONFIG\startupfolder: D:^Users^Baz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Bitcoin.lnk => C:\Windows\pss\Bitcoin.lnk.Startup
MSCONFIG\startupfolder: D:^Users^Baz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office OneNote 2003 Quick Launch.lnk => C:\Windows\pss\Microsoft Office OneNote 2003 Quick Launch.lnk.Startup
MSCONFIG\startupreg: 1 => D:\Users\Baz\AppData\Local\Temp\gifter.exe
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: Adobe ARM => "D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "D:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "D:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: APSDaemon => "D:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Avira Systray => D:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
MSCONFIG\startupreg: BCSSync => "D:\Program Files (x86)\Microsoft Office 2010\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BlueStacks Agent => D:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: Browser Infrastructure Helper => D:\Users\Baz\AppData\Local\Smartbar\Application\Smartbar.exe startup
MSCONFIG\startupreg: BrowserPlugInHelper => D:\Program Files (x86)\Wondershare\AllMyTube\BrowserPlugInHelper.exe
MSCONFIG\startupreg: Bubble Dock => "D:\Users\Baz\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup
MSCONFIG\startupreg: CardGifter.exe => D:\Users\Baz\Desktop\STEALER\CardGifter.exe
MSCONFIG\startupreg: DAEMON Tools Pro Agent => "D:\program files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
MSCONFIG\startupreg: DivXUpdate => "D:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: EA Core => "D:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MSCONFIG\startupreg: EV_Autowatcher_Download-Carbon0x => D:\Users\Baz\Downloads\Enhanceviews Autowatcher v2.44.exe
MSCONFIG\startupreg: gift.exe => D:\Users\Baz\Desktop\STEALER\fopje files\hcstealer\Output\gift.exe
MSCONFIG\startupreg: iTunesHelper => "D:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: IVONA ControlCenter => "D:\program files (x86)\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe" --action=run-silent
MSCONFIG\startupreg: IVONA Reader => "D:\Program Files (x86)\IVONA\IVONA Reader\IVONA Reader.exe.exe" -t -nosplash
MSCONFIG\startupreg: msnmsgr => "D:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: QuickTime Task => "D:\program files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Razer Synapse => "D:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
MSCONFIG\startupreg: SearchProtection => "D:\Users\Baz\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
MSCONFIG\startupreg: Selection Tools => "D:\Users\Baz\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe" /winstartup
MSCONFIG\startupreg: Share YouTube Videos => D:\Program Files (x86)\Share YouTube Videos\Share YouTube Videos.exe
MSCONFIG\startupreg: Sidebar => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
MSCONFIG\startupreg: Spotify Web Helper => "D:\Users\Baz\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "D:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: WerFault => D:\Users\Baz\AppData\Roaming\34986.exe
MSCONFIG\startupreg: WindApp => "D:\Users\Baz\AppData\Roaming\Store\WindApp\WindApp.exe" /winstartup
MSCONFIG\startupreg: Wondershare Helper Compact.exe => D:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
MSCONFIG\startupreg: Xvid => D:\program files (x86)\Xvid\CheckUpdate.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B04CD6AB-C9E4-444A-AF9C-39AFD5DC37E4}] => (Allow) D:\program files\Bonjour\mDNSResponder.exe
FirewallRules: [{2C166E07-FF96-4EEB-B01B-02083D293A1B}] => (Allow) D:\program files\Bonjour\mDNSResponder.exe
FirewallRules: [{8A386300-DA9B-420A-B99F-AAEDF9B68B26}] => (Allow) D:\program files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{03236A8B-611E-4922-9274-5AD5626BB8CE}] => (Allow) D:\program files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{69D6E743-4461-420F-A87D-CA87249DAC5A}] => (Allow) D:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{5E174FF2-08DB-4D14-97D2-AA8B3AB35796}] => (Allow) D:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{0A3BD24D-F69B-4006-A6CF-746DA8CC9BF5}] => (Allow) D:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{8DB0DFFB-9EF3-438B-BFA1-91653D8A383A}] => (Allow) D:\program files (x86)\Steam\Steam.exe
FirewallRules: [{E882ABA0-4111-49F2-B0D8-77AF2722F89C}] => (Allow) D:\program files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{5DF6D5E6-B7B6-40F7-A4A2-7D91BD404C84}D:\program files (x86)\winamp\winamp.exe] => (Allow) D:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{49AFB159-A609-4977-BDD1-8DC03C745E58}D:\program files (x86)\winamp\winamp.exe] => (Allow) D:\program files (x86)\winamp\winamp.exe
FirewallRules: [{9EBC888A-BA92-4863-A3AB-BA35258620B9}] => (Allow) D:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1AC2E800-4355-4716-A215-921330EDEC7A}] => (Allow) LPort=2869
FirewallRules: [{23209152-58D7-4B00-BAD5-5E7291E87755}] => (Allow) LPort=1900
FirewallRules: [{5D6F41ED-D886-45AA-9EE3-0038E439CEFF}] => (Allow) D:\Games\Diablo III\Diablo III.exe
FirewallRules: [{152203F1-1B2B-42F8-B20D-332E1E260B24}] => (Allow) D:\Games\Diablo III\Diablo III.exe
FirewallRules: [{D50FB469-CCEB-4531-BD91-ADE08F36D301}] => (Allow) D:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{FB4E3650-5C9C-4663-B87E-75583D4F5C0E}] => (Allow) D:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{990B833C-292C-44C4-B728-DB4BA13986E3}] => (Allow) D:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{8E48E5EF-34DE-4F68-80DC-8339E26C5E39}] => (Allow) D:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{5A7572B2-5CEE-4AF5-B6E5-486D474763C8}] => (Allow) D:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{1370301F-BF88-403C-BF45-CFA9246F40EC}] => (Allow) D:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{FC28378B-F4FD-4405-8EEC-96BD8DFF4F94}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2013 Editor\editor.exe
FirewallRules: [{937E47A0-DC0B-42D5-8388-9685E20D86EF}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2013 Editor\editor.exe
FirewallRules: [{2C42BB2A-CB54-414E-B851-145D4DD50F21}] => (Allow) D:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{E4902914-C71A-4F15-91E2-EACB7FCAC159}D:\program files (x86)\youwave android\vb\vboxsdl.exe] => (Allow) D:\program files (x86)\youwave android\vb\vboxsdl.exe
FirewallRules: [UDP Query User{D6EA58ED-325A-49D4-90E2-29C2E0E0D659}D:\program files (x86)\youwave android\vb\vboxsdl.exe] => (Allow) D:\program files (x86)\youwave android\vb\vboxsdl.exe
FirewallRules: [TCP Query User{03234CCE-5A2D-438E-891D-BB1FCC0D42C6}D:\program files (x86)\youwave android 2\vb\vboxsdl.exe] => (Allow) D:\program files (x86)\youwave android 2\vb\vboxsdl.exe
FirewallRules: [UDP Query User{7B69DDBA-2528-4A71-B628-9F7302708EC9}D:\program files (x86)\youwave android 2\vb\vboxsdl.exe] => (Allow) D:\program files (x86)\youwave android 2\vb\vboxsdl.exe
FirewallRules: [{E42181DE-9595-4AEE-9F52-44BDFA68F8E3}] => (Allow) D:\Users\Baz\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{68E2A6CB-8B73-407D-857D-96ADDB2A9EB8}] => (Allow) D:\Users\Baz\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{08F2293E-4F69-4F19-89AA-8E28B549B78A}] => (Allow) D:\Users\Baz\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{81748405-36C5-44F3-BD86-6179F83AA0B9}] => (Allow) D:\Users\Baz\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [TCP Query User{02765270-6EFB-4684-8047-DF119177DA46}D:\program files (x86)\microsoft visual studio\common\tools\vs-ent98\vanalyzr\varpc.exe] => (Allow) D:\program files (x86)\microsoft visual studio\common\tools\vs-ent98\vanalyzr\varpc.exe
FirewallRules: [UDP Query User{21BCCDDA-4FC0-48CD-80AD-BF6BF7BE0C4B}D:\program files (x86)\microsoft visual studio\common\tools\vs-ent98\vanalyzr\varpc.exe] => (Allow) D:\program files (x86)\microsoft visual studio\common\tools\vs-ent98\vanalyzr\varpc.exe
FirewallRules: [TCP Query User{40E96EA9-720F-4679-A79D-78E2AA30D993}D:\program files (x86)\clipupload3.12\clipupload3.exe] => (Allow) D:\program files (x86)\clipupload3.12\clipupload3.exe
FirewallRules: [UDP Query User{F5DFAD1E-68D5-42FB-A28F-D637D778D61C}D:\program files (x86)\clipupload3.12\clipupload3.exe] => (Allow) D:\program files (x86)\clipupload3.12\clipupload3.exe
FirewallRules: [{B8F1C690-366A-4FB7-AEFD-53DF578750D7}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3F77A8A5-28C9-47B2-9CCF-602CFE22BDBA}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{487AA04E-4209-4E7F-9022-6042EF9F5731}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{97D5C2AB-0E94-4C22-A03F-BC6B7B7E213F}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{45EE4C22-F64A-4BC0-A8B3-EDCE74434B75}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{248C3C94-AD5E-4D39-B395-30E94E2ADC93}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{0C8FF172-F8FD-4B09-97FD-EF517D32C59A}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4009425F-D6BC-4B95-B1FB-9C49560B004E}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A7EA31F1-0DA6-4BF8-B346-D770F32D6439}] => (Allow) D:\program files (x86)\Microsoft Office 2010\Office14\GROOVE.EXE
FirewallRules: [{7C187635-19D7-42B8-A866-811A67310C5B}] => (Allow) D:\program files (x86)\Microsoft Office 2010\Office14\GROOVE.EXE
FirewallRules: [{1B768BB3-23F5-48F8-8D8E-8177E1DC6D34}] => (Allow) D:\program files (x86)\Microsoft Office 2010\Office14\ONENOTE.EXE
FirewallRules: [{8D514D5D-B1E9-43B1-A5F8-972409E90BD5}] => (Allow) D:\program files (x86)\Microsoft Office 2010\Office14\ONENOTE.EXE
FirewallRules: [{BA6CE206-2048-4A37-A2F6-CE76B19F4C1D}] => (Allow) D:\Program Files (x86)\Microsoft Office 2010\Office14\outlook.exe
FirewallRules: [{8B82431C-DEC8-41B9-909E-958E43E5E469}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{BBA6AC3D-C03E-4E47-B9DC-3F03B40E33B3}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{CE05751A-62BD-4FAC-B97F-9C7FD348FC08}] => (Block) %SystemDrive%\Program Files\Sony\Vegas Pro 12.0\vegas120.exe
FirewallRules: [{FC4D18AB-3CC4-4FE3-B6E5-5EFB8BEFE1C6}] => (Block) %SystemDrive%\Program Files\Sony\Vegas Pro 12.0\ApplicationRegistration.exe
FirewallRules: [{8A704FDF-BBBA-45DF-9A60-4C1C2B397E02}] => (Block) %SystemDrive%\Program Files (x86)\Sony\Sound Forge Pro 11.0\Forge110.exe
FirewallRules: [{AB174B0F-3704-40E7-A892-9977B15548A5}] => (Block) %SystemDrive%\Program Files (x86)\Sony\Sound Forge Pro 11.0\ApplicationRegistration.exe
FirewallRules: [{62B39C91-F32C-44E3-A7F7-A33BA202D192}] => (Allow) D:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1E63A298-AB11-4172-B698-591B35F133CE}] => (Allow) D:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9A3317EE-76BE-4D3B-8ACC-55E9361F79C9}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{9FCB7C64-4964-4AA2-9C60-8AB64E91BB2E}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{06BBF9C3-465B-4928-AF98-907C975C243D}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{A1B133FD-3AF2-410E-83F1-5A0F32F8B256}D:\program files (x86)\steam\steam.exe] => (Allow) D:\program files (x86)\steam\steam.exe
FirewallRules: [UDP Query User{CD8A652F-F3A1-4B00-B93D-07ADF21EDAC3}D:\program files (x86)\steam\steam.exe] => (Allow) D:\program files (x86)\steam\steam.exe
FirewallRules: [{51F8EBFE-4B4E-4778-9435-6AF2C8B11E68}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{ED25A37E-1578-4CBA-8C6A-BEF3C4B5E076}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A197A845-A6AC-49A6-BE61-7C48AC2134D4}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{6596BC74-A2BD-4792-A55F-9ACCBA930EE9}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{90E2A08E-7E11-457B-A94A-FE590570BB36}] => (Allow) D:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3FC216ED-533E-4D1F-BF70-C89145F79271}] => (Allow) D:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{47F1107A-6EF1-4212-B507-A293B137AF7B}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F9BB8138-3D1E-4E29-BF52-C7E1188EF1BE}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F00AB740-A37A-4534-8C94-30378A9C1E62}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{15E4ACC3-1A3C-41D8-9901-324154D43736}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B882D584-5F2F-49A3-9DF4-32F51E681348}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2014 Editor\editor.exe
FirewallRules: [{BB256713-9A82-4A76-AB84-6DD46D1E0F2F}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2014 Editor\editor.exe
FirewallRules: [TCP Query User{111CB82C-9D75-497E-B1D7-1AAF7C044AF6}D:\program files (x86)\bitcoin\bitcoin-qt.exe] => (Allow) D:\program files (x86)\bitcoin\bitcoin-qt.exe
FirewallRules: [UDP Query User{385C7EC8-E300-4691-9116-726A5F9AD516}D:\program files (x86)\bitcoin\bitcoin-qt.exe] => (Allow) D:\program files (x86)\bitcoin\bitcoin-qt.exe
FirewallRules: [TCP Query User{C590E939-F8AC-4251-A75D-DA0579BAF6CE}D:\program files (x86)\bitcoin\bitcoin-qt.exe] => (Allow) D:\program files (x86)\bitcoin\bitcoin-qt.exe
FirewallRules: [UDP Query User{79796DA9-D8C7-4891-8BD2-3A0A7868E321}D:\program files (x86)\bitcoin\bitcoin-qt.exe] => (Allow) D:\program files (x86)\bitcoin\bitcoin-qt.exe
FirewallRules: [{5B0160A9-FF3C-48BA-98D7-7216B6A6FD03}] => (Allow) D:\program files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{3911369D-90EB-4D88-9BEC-C40ED43F03DA}] => (Allow) D:\program files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{4460C1F4-4B41-4D89-AD11-0E609CD70843}] => (Allow) D:\program files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{35075CDC-17F9-46B8-BE5A-FF2C88D671F2}] => (Allow) D:\program files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{780650AA-A482-496D-A236-5274196181DB}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{182069F9-7C9A-4C12-AE74-010A62D84666}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [TCP Query User{55342BA0-589E-4B03-9B9E-58C18D585092}D:\program files (x86)\xbmc\xbmc.exe] => (Allow) D:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [UDP Query User{2870D945-7A4A-417A-AF55-39F42666866F}D:\program files (x86)\xbmc\xbmc.exe] => (Allow) D:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [TCP Query User{8F73272F-9E26-461C-BCCB-F88A71146D05}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe
FirewallRules: [UDP Query User{3ADB4E75-604E-4C17-AC90-86A721125C2F}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe
FirewallRules: [{7E05CBCA-C483-4276-8E3C-53538F86FB8F}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2012 Editor\editor.exe
FirewallRules: [{A5D74A3E-7BC0-4AD6-965C-9886FC394920}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2012 Editor\editor.exe
FirewallRules: [TCP Query User{0B6377CF-24AF-40F6-9359-D38213113CF0}D:\program files\winhttrack\winhttrack.exe] => (Allow) D:\program files\winhttrack\winhttrack.exe
FirewallRules: [UDP Query User{DED51129-0F03-435D-A7BC-2AD8EAB1D56B}D:\program files\winhttrack\winhttrack.exe] => (Allow) D:\program files\winhttrack\winhttrack.exe
FirewallRules: [{CCBA1EEA-DF96-4291-84C1-C1FA41365EAA}] => (Allow) D:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{ACEFF758-FFB9-4D2F-9DAD-07825355E15A}] => (Allow) D:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{7696F738-67C2-4183-A294-C344C1615929}] => (Allow) D:\program files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{78502C7F-DFBC-4E0F-93EF-C829A4D0EBDC}] => (Allow) D:\program files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EBCE97C1-8586-442B-9107-8665EA757727}] => (Allow) D:\program files (x86)\Steam\steamapps\common\To the Moon\To the Moon\To the Moon.exe
FirewallRules: [{9F877D7D-FDE3-4120-BFF8-F091574267B1}] => (Allow) D:\program files (x86)\Steam\steamapps\common\To the Moon\To the Moon\To the Moon.exe
FirewallRules: [{F0291C0A-E00A-489F-A985-D4F41B13CF78}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2015\fm.exe
FirewallRules: [{EBCA4BD1-2F8A-4B07-A462-5874E9012215}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2015\fm.exe
FirewallRules: [{061FC78C-F763-4091-B5AC-44A9D85551EC}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2015 Editor\editor.exe
FirewallRules: [{7FBCFD7C-037C-43B4-9D7F-9B040FA07468}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Football Manager 2015 Editor\editor.exe
FirewallRules: [{044BCF78-6064-4D53-BD77-5312A2375700}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Broken Sword Shadow of the Templars\bs1dc.exe
FirewallRules: [{39FE4969-AE87-4812-8B98-CAEC4C6528B9}] => (Allow) D:\program files (x86)\Steam\steamapps\common\Broken Sword Shadow of the Templars\bs1dc.exe
FirewallRules: [{7DBAC7C4-2769-4122-A662-2EBBC56F07B2}] => (Allow) D:\program files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1D399267-86AE-43C6-904F-BB125373EAFB}] => (Allow) D:\program files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{93FC3241-122C-48D4-8D81-8A77DAB9FCAB}] => (Block) %ProgramFiles% (x86)\Photodex\ProShow Producer\proshow.exe
FirewallRules: [{D13B9399-18D2-4FEE-BDE4-3E2DBCB1CED6}] => (Block) %SystemDrive%\Program Files (x86)\Photodex\ProShow Producer\proshow.exe
FirewallRules: [{DEEA5F33-736A-4F56-90F6-9D0B32D4A5BA}] => (Allow) D:\Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{686250EF-EB52-4FDB-8EDC-C1AF3FBE1088}] => (Allow) D:\Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{7C34963F-4A1B-49CE-9AAA-D61325790DCD}] => (Block) D:\Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{308C2F0D-3858-45A7-8849-78D066390580}] => (Allow) D:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{C8294A4E-2DB6-40A5-9F20-AC0517983AE9}] => (Allow) D:\Program Files\Serviio\bin\ServiioService.exe
FirewallRules: [{D19FC4A1-1B97-4862-A537-B91C8F7A8C39}] => (Allow) D:\Program Files\Serviio\bin\ServiioConsole.exe
FirewallRules: [{D90E0D00-A71D-44D4-B9B1-3EB923F75AF5}] => (Allow) D:\program files (x86)\Steam\steamapps\common\To the Moon\Minisode_1\Sigmund Holiday Special 1\Siggy - Holiday Special.exe
FirewallRules: [{5AC89F25-D772-4D7A-AC1B-247ED96A7310}] => (Allow) D:\program files (x86)\Steam\steamapps\common\To the Moon\Minisode_1\Sigmund Holiday Special 1\Siggy - Holiday Special.exe
FirewallRules: [{18C138FB-B336-4665-9040-070A1E237843}] => (Allow) D:\program files (x86)\Steam\steamapps\common\To the Moon\Minisode_2\Sigmund Holiday Special 2\SigCorp Minisode 2.exe
FirewallRules: [{14BBE4FD-BC65-4AF3-98F9-DB7A0EBA6BCE}] => (Allow) D:\program files (x86)\Steam\steamapps\common\To the Moon\Minisode_2\Sigmund Holiday Special 2\SigCorp Minisode 2.exe
FirewallRules: [{68F4C226-C887-45CD-8125-A0D05D6F90CE}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{E0F6224D-8DE0-4584-B0D9-4B7873E0AF58}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B8318A72-1C33-494A-AD24-C39313F5CCA6}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{E16F03EE-A1CD-491B-812E-8AFA89A34FD9}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E85D6FCA-90EA-4445-B33F-2359151E2AF8}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AA46F5DB-78D9-4630-BB88-762671026F7B}] => (Allow) D:\program files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{02CEF1C1-BB19-47FD-AB0B-6448EBAF6A10}] => (Allow) D:\program files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{26589A05-D2FD-42C0-834D-B91CE184F38F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{31F886D0-5AEA-4F2F-B2DE-B577F01DE044}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F80B1B83-9275-4838-B3EF-E0D3F5E75D08}] => (Allow) D:\program files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0F495C86-410D-4F58-954F-E191DC65EB0E}] => (Allow) D:\program files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{01BCE8E7-80BC-4614-A193-BA9E7D154F6C}] => (Allow) D:\program files\Bonjour\mDNSResponder.exe
FirewallRules: [{F76F59B2-8172-463F-BACA-06A4C9EF3B2E}] => (Allow) D:\program files\Bonjour\mDNSResponder.exe
FirewallRules: [{9DF467CA-9C70-4E21-A00B-44D4A0634114}] => (Allow) D:\program files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A933785A-27CC-4BE2-A2CC-181C52AD29AB}] => (Allow) D:\program files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F6DF1168-1F9A-4510-BF57-BB75197ED5A6}] => (Allow) D:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D3748735-2325-4A7F-9AC8-CA9513A6AD0C}] => (Allow) D:\program files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{ECD009AD-1219-4549-A1EC-127E447C3684}] => (Allow) D:\program files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{B2001446-9057-42EF-B0E9-9C721C10586E}] => (Allow) D:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/18/2015 01:13:02 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.
System Error:
0xC0000039 (unresolvable).
Error: (10/18/2015 01:12:57 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.
System Error:
0xC0000039 (unresolvable).
System errors:
=============
CodeIntegrity:
===================================
Date: 2013-02-22 23:51:40.184
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:51:40.145
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:31:36.804
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:31:36.769
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:30:39.979
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:30:39.944
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:29:10.960
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:29:10.924
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:27:20.338
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-22 23:27:20.307
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel® Core™ i7 CPU 970 @ 3.20GHz
Percentage of memory in use: 38%
Total physical RAM: 12286.15 MB
Available physical RAM: 7600.54 MB
Total Virtual: 24570.5 MB
Available Virtual: 19735.06 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:83.75 GB) (Free:21.46 GB) NTFS
Drive d: () (Fixed) (Total:2794.39 GB) (Free:724.44 GB) NTFS
Drive f: (Expansion Drive) (Fixed) (Total:927.51 GB) (Free:167 GB) NTFS
Drive g: (X-BOX) (Fixed) (Total:3.99 GB) (Free:1.35 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 83.8 GB) (Disk ID: 5169F1A3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=83.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: 05E26600)
Partition 1: (Active) - (Size=927.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=4 GB) - (Type=0C)
==================== End of Addition.txt ============================
I appreciate any help.
Thanks.
