LoJoJoJo

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 02 Ran by Logan J (administrator) on LOGANJ-PC (27-06-2016 14:40:25) Running from C:\Users\Logan J\Desktop Loaded Profiles: Logan J & (Available Profiles: Logan J) Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe (Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchService.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe ( ) C:\Windows\System32\dldtcoms.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe (AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\19.4.0\ToolbarUpdater.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe (SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe () C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe () C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe (Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () C:\Program Files (x86)\Dell V305\dldtmon.exe (Wacom Technology, Corp.) C:\Windows\System32\WTablet\Pen_TabletUser.exe (Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files (x86)\Dell V305\dldtmsdmon.exe () C:\Program Files\Plantronics\GameCom780\GameCom780.exe (Space Sciences Laboratory) C:\Program Files\BOINC\boinctray.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe (Space Sciences Laboratory) C:\Program Files\BOINC\boincmgr.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe (Flux Software LLC) C:\Users\Logan J\AppData\Local\FluxSoftware\Flux\flux.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe (CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe (cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe () C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe (Visicom Media Inc. (Powered by Panda Security)) C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe (Space Sciences Laboratory) C:\Program Files\BOINC\boinc.exe () C:\Program Files (x86)\AVG Secure Search\vprot.exe () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (Microsoft Corporation) C:\Windows\System32\dllhost.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64E4E5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUC7D4.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64FA88.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA3A2.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64FA88.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA3A2.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64FA88.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA3A2.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64FA88.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA3A2.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64FA88.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA3A2.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64FA88.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA3A2.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\ModuleCore\ModuleCoreService.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64C9F1.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA9A5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64C9F1.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA9A5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64C9F1.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA9A5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\x64C9F1.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUA9A5.tmp (McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.9.741.0\McCSPServiceHost.exe (Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe (McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\McCBEntAndInstru.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\McCBEntAndInstru.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\McCBEntAndInstru.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\McCBEntAndInstru.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\McCBEntAndInstru.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (Microsoft Corporation) C:\Windows\System32\UI0Detect.exe (PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssist\imstrayicon.exe (Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe (Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchUser.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\CommonBuild\McCBEntAndInstru.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe (Intel Security) C:\Program Files\Common Files\mcafee\ClientAnalytics\McClientAnalytics.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2531624 2010-12-17] (Synaptics Incorporated) HKLM\...\Run: [FreeFallProtection] => C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2010-12-17] () HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-11-01] (Intel(R) Corporation) HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [4479648 2011-01-25] (Dell Inc.) HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" HKLM\...\Run: [DellStage] => C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2190704 2011-11-03] () HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6611048 2011-02-18] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2188904 2011-01-18] (Realtek Semiconductor) HKLM\...\Run: [dldtmon.exe] => C:\Program Files (x86)\Dell V305\dldtmon.exe [672424 2010-02-10] () HKLM\...\Run: [dldtamon] => C:\Program Files (x86)\Dell V305\dldtamon.exe [16040 2010-02-10] () HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.) HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" HKLM\...\Run: [GamecomSound] => C:\Program Files\Plantronics\GameCom780\GameCom780.exe [777448 2011-12-01] () HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [73360 2014-02-27] (Space Sciences Laboratory) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.) HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.) HKLM-x32\...\Run: [RemoteControl9] => c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-01] (CyberLink Corp.) HKLM-x32\...\Run: [PDVD9LanguageShortcut] => c:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-09-17] (CyberLink Corp.) HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe [76872 2012-06-25] (cyberlink) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions) HKLM-x32\...\Run: [Desktop Disc Tool] => C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] () HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [1118936 2016-04-28] (McAfee, Inc.) HKLM-x32\...\Run: [AccuWeatherWidget] => C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [957440 2011-11-03] () HKLM-x32\...\Run: [Anti-phishing Domain Advisor] => C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe [217256 2011-07-29] (Visicom Media Inc. (Powered by Panda Security)) HKLM-x32\...\Run: [dldtmon.exe] => C:\Program Files (x86) (x86)\Dell V305\dldtmon.exe [668912 2008-03-20] () HKLM-x32\...\Run: [dldtamon] => C:\Program Files (x86) (x86)\Dell V305\dldtamon.exe [16624 2008-03-20] () HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Secure Search\vprot.exe [2662472 2016-04-18] () HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-09-15] (Apple Inc.) HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [577536 2012-05-09] (Creative Technology Ltd) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-06-16] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\tray.exe [1010008 2015-04-08] (Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\...\Run: [Google Update] => C:\Users\Logan J\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc.) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\...\Run: [Facebook Update] => C:\Users\Logan J\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook Inc.) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\...\Run: [KSS] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202296 2012-04-25] (Kaspersky Lab ZAO) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2917456 2016-06-14] (Valve Corporation) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\...\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [5885072 2014-02-27] (Space Sciences Laboratory) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-13] (Microsoft Corporation) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\...\Run: [f.lux] => C:\Users\Logan J\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\boinc.scr [1083024 2014-02-27] (Space Sciences Laboratory) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Google Update] => C:\Users\Logan J\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc.) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Facebook Update] => C:\Users\Logan J\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook Inc.) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [KSS] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202296 2012-04-25] (Kaspersky Lab ZAO) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2917456 2016-06-14] (Valve Corporation) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [5885072 2014-02-27] (Space Sciences Laboratory) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-13] (Microsoft Corporation) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [f.lux] => C:\Users\Logan J\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC) HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\boinc.scr [1083024 2014-02-27] (Space Sciences Laboratory) HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\tray.exe [1010008 2015-04-08] (Garmin Ltd. or its subsidiaries) AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [266448 2013-06-21] (NVIDIA Corporation) AppInit_DLLs: , C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll => C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [1847600 2015-05-01] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [214448 2013-06-21] (NVIDIA Corporation) AppInit_DLLs-x32: , C:\PROGRA~2\NVIDIA~1\NVSTRE~1\rxinput.dll => C:\Program Files (x86)\NVIDIA Corporation\NvStreamSrv\rxinput.dll [1587200 2015-05-01] (NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk [2013-05-09] ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-04-08] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe (McAfee, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: 0.0.0.1 mssplus.mcafee.com Tcpip\..\Interfaces\{09488881-9B6A-4BC6-BBBD-623456E32549}: [DhcpNameServer] 192.168.0.1 205.171.3.66 Tcpip\..\Interfaces\{D8BA5537-E0DE-45D2-A2D0-43CA7B342728}: [DhcpNameServer] 140.252.51.10 140.252.1.54 140.252.1.19 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.avg.com?cid={267B3A84-ECCB-44EC-9BA0-C213F1153291}&mid=2c961dfabca74807a615e4041557bdf3-e2bf970a8524543b8a767f1b58df9bed3e310de7&lang=en&ds=hk011&coid=&cmpid=&pr=sa&d=2012-07-12 16:03:00&v=19.4.0.508&pid=avg&sg=0&sap=hp HKU\S-1-5-21-2327425395-1393469141-3172563713-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/USCON/1 HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.avg.com?cid={267B3A84-ECCB-44EC-9BA0-C213F1153291}&mid=2c961dfabca74807a615e4041557bdf3-e2bf970a8524543b8a767f1b58df9bed3e310de7&lang=en&ds=hk011&coid=&cmpid=&pr=sa&d=2012-07-12 16:03:00&v=19.4.0.508&pid=avg&sg=0&sap=hp HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/USCON/1 URLSearchHook: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.) URLSearchHook: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) URLSearchHook: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 - YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.) URLSearchHook: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.) URLSearchHook: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) URLSearchHook: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.) SearchScopes: HKLM -> DefaultScope {2FA0D32E-136F-4CEE-A11A-BECF01616D0B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDR&src=IE-SearchBox SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {2FA0D32E-136F-4CEE-A11A-BECF01616D0B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDR&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope {709FBF6E-F5CF-45CD-9AFF-F9F1324494B3} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {2FA0D32E-136F-4CEE-A11A-BECF01616D0B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDR&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 -> DefaultScope {81A6053B-F325-4A89-905A-2D7AD07F55D9} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=B011US0D20140528&p={SearchTerms} SearchScopes: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 -> {709FBF6E-F5CF-45CD-9AFF-F9F1324494B3} URL = SearchScopes: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 -> {81A6053B-F325-4A89-905A-2D7AD07F55D9} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=B011US0D20140528&p={SearchTerms} SearchScopes: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={267B3A84-ECCB-44EC-9BA0-C213F1153291}&mid=2c961dfabca74807a615e4041557bdf3-e2bf970a8524543b8a767f1b58df9bed3e310de7&lang=en&ds=hk011&pr=sa&d=2012-07-12 16:03:00&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {81A6053B-F325-4A89-905A-2D7AD07F55D9} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=B011US0D20140528&p={SearchTerms} SearchScopes: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {709FBF6E-F5CF-45CD-9AFF-F9F1324494B3} URL = SearchScopes: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {81A6053B-F325-4A89-905A-2D7AD07F55D9} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=B011US0D20140528&p={SearchTerms} SearchScopes: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={267B3A84-ECCB-44EC-9BA0-C213F1153291}&mid=2c961dfabca74807a615e4041557bdf3-e2bf970a8524543b8a767f1b58df9bed3e310de7&lang=en&ds=hk011&pr=sa&d=2012-07-12 16:03:00&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms} BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation.) BHO-x32: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll [2015-01-19] (Yahoo! Inc.) BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-25] (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO-x32: AVG Security Toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Secure Search\19.4.0.508\AVG Secure Search_toolbar.dll [2016-04-18] (AVG Secure Search) BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-25] (Oracle Corporation) Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation.) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.) Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\19.4.0.508\AVG Secure Search_toolbar.dll [2016-04-18] (AVG Secure Search) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.) Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll [2015-01-19] (Yahoo! Inc.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.) Toolbar: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File Toolbar: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.) Toolbar: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File Toolbar: HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.) DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-04-20] (McAfee, Inc.) Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-04-20] (McAfee, Inc.) Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-04-20] (McAfee, Inc.) Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-04-20] (McAfee, Inc.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies) Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\19.4.0\ViProtocol.dll [2016-04-18] (AVG Secure Search) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-04-28] (McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-04-28] (McAfee, Inc.) FireFox: ======== FF ProfilePath: C:\Users\Logan J\AppData\Roaming\Mozilla\Firefox\Profiles\xk253pjh.default FF DefaultSearchEngine.US: Google FF Homepage: hxxp://misterlojo.deviantart.com/ FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-17] () FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-04-28] () FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] () FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\19.4.0\\npsitesafety.dll [No File] FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-25] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-25] (Oracle Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-04-28] () FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-06-21] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-06-21] (NVIDIA Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File] FF Plugin-x32: @wolfram.com/Mathematica -> C:\Program Files (x86)\Common Files\Wolfram Research\Browser\9.0.1.4055459\npmathplugin.dll [2013-01-24] (Wolfram Research, Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Logan J\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Logan J\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001: @talk.google.com/O1DPlugin -> C:\Users\Logan J\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Logan J\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Logan J\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Logan J\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-11-22] (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Logan J\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @talk.google.com/GoogleTalkPlugin -> C:\Users\Logan J\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @talk.google.com/O1DPlugin -> C:\Users\Logan J\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @tools.google.com/Google Update;version=3 -> C:\Users\Logan J\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @tools.google.com/Google Update;version=9 -> C:\Users\Logan J\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.) FF Plugin HKU\S-1-5-21-2327425395-1393469141-3172563713-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Logan J\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-11-22] (Unity Technologies ApS) FF user.js: detected! => C:\Users\Logan J\AppData\Roaming\Mozilla\Firefox\Profiles\xk253pjh.default\user.js [2013-11-27] FF Plugin ProgramFiles/Appdata: C:\Users\Logan J\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Logan J\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF SearchPlugin: C:\Users\Logan J\AppData\Roaming\Mozilla\Firefox\Profiles\xk253pjh.default\searchplugins\McSiteAdvisor.xml [2014-12-12] FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml [2016-04-18] FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2014-12-12] FF Extension: KillJasmin - C:\Users\Logan J\AppData\Roaming\Mozilla\Firefox\Profiles\xk253pjh.default\extensions\killjasmin@pierros14.com.xpi [2016-04-28] FF Extension: Greasemonkey - C:\Users\Logan J\AppData\Roaming\Mozilla\Firefox\Profiles\xk253pjh.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-04-28] FF Extension: Zotero - C:\Users\Logan J\AppData\Roaming\Mozilla\Firefox\Profiles\xk253pjh.default\extensions\zotero@chnm.gmu.edu.xpi [2016-05-09] FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-05-12] FF Extension: NoSquint - C:\Users\Logan J\AppData\Roaming\Mozilla\Firefox\Profiles\xk253pjh.default\Extensions\nosquint@urandom.ca.xpi [2016-04-28] FF Extension: Adblock Plus - C:\Users\Logan J\AppData\Roaming\Mozilla\Firefox\Profiles\xk253pjh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\18.9.0.230 => not found FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2016-06-23] [not signed] Chrome: ======= CHR Profile: C:\Users\Logan J\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (SiteAdvisor) - C:\Users\Logan J\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-11-12] CHR Extension: (Chrome Web Store Payments) - C:\Users\Logan J\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-12] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-06] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-06] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S2 0214161466066790mcinstcleanup; C:\Windows\TEMP\021416~1.EXE [962400 2016-04-12] (McAfee, Inc.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.) S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-05-23] (BitRaider, LLC) S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2010-02-02] (Microsoft Corporation) S2 CLKMSVC10_9EC60124; c:\Program Files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe [242448 2012-06-25] (CyberLink) R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-03-10] (Dell Inc.) R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-03-10] (Dell Inc.) R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-27] (Dell Inc.) S2 dldtCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\dldtserv.exe [33448 2009-07-09] () R2 dldt_device; C:\Windows\system32\dldtcoms.exe [1044648 2009-07-09] ( ) R2 dldt_device; C:\Windows\SysWOW64\dldtcoms.exe [594600 2009-07-09] ( ) S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [File not signed] S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [708616 2015-04-08] (Garmin Ltd. or its subsidiaries) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation) R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.) R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-11-10] (Nero AG) R2 KSS; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202296 2012-04-25] (Kaspersky Lab ZAO) R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes) R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [163592 2016-04-20] (McAfee, Inc.) R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [989192 2016-04-28] (McAfee, Inc.) S3 McAWFwk; c:\Program Files\mcafee\msc\McAWFwk.exe [224704 2011-03-08] (McAfee, Inc.) R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.309\McCHSvc.exe [293128 2016-03-11] (McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.741.0\\McCSPServiceHost.exe [1903320 2016-04-18] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.) S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [795528 2016-04-20] (McAfee, Inc.) S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-03-07] (McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-04-01] (McAfee, Inc.) R2 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-03-07] (McAfee, Inc.) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1424352 2016-04-21] (McAfee, Inc.) R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-11-01] () S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4722728 2013-04-29] (INCA Internet Co., Ltd.) [File not signed] R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation) R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed] R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1029856 2016-04-21] (Intel Security, Inc.) R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-04-22] (Dell Inc.) S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed] S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-05] (Microsoft Corporation) R2 vToolbarUpdater19.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\19.4.0\ToolbarUpdater.exe [1888328 2016-04-18] (AVG Secure Search) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 WTouchService; C:\Program Files\WTouch\WTouchService.exe [127272 2009-07-15] (Wacom Technology, Corp.) S2 Hamachi2Svc; "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s [X] ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [78632 2016-03-11] (McAfee, Inc.) R3 DDDriver; C:\Windows\System32\drivers\DDDriver64Dcsa.sys [32464 2016-01-05] (Dell Computer Corporation) R3 DellProf; C:\Windows\System32\drivers\DellProf.sys [24240 2016-01-05] (Dell Computer Corporation) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.) S3 JnprVaMgr; C:\Windows\System32\DRIVERS\jnprvamgr.sys [45352 2012-08-02] (Juniper Networks, Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-06-27] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation) S3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [419624 2016-03-11] (McAfee, Inc.) U3 mfeaack01; no ImagePath R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349480 2016-03-11] (McAfee, Inc.) U3 mfeavfk02; no ImagePath R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [493352 2016-03-11] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [842536 2016-03-11] (McAfee, Inc.) U3 mfehidk01; no ImagePath R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [543488 2016-02-10] (McAfee, Inc.) S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109480 2016-02-10] (McAfee, Inc.) R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [45728 2016-03-15] (McAfee, Inc.) R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [243496 2016-03-11] (McAfee, Inc.) R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [284448 2013-06-21] (NVIDIA Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) S3 PlantronicsGC; C:\Windows\System32\drivers\PLTGC.sys [1327104 2011-11-04] (C-Media Electronics Inc) S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X] S3 JNPRNA; system32\DRIVERS\jnprna6.sys [X] S3 mfeavfk01; \Device\mfeavfk01.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-06-27 14:39 - 2016-06-27 14:40 - 00000000 ____D C:\FRST 2016-06-27 14:38 - 2016-06-27 14:38 - 02389504 _____ (Farbar) C:\Users\Logan J\Desktop\FRST64.exe 2016-06-26 21:35 - 2016-06-26 21:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2016-06-17 12:27 - 2016-06-17 12:27 - 09717952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2016-06-15 11:39 - 2016-06-06 11:58 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-06-15 11:39 - 2016-06-06 11:50 - 01204224 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-06-15 11:39 - 2016-06-03 08:05 - 01413120 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-06-15 11:39 - 2016-05-27 08:06 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-06-15 11:39 - 2016-05-27 08:06 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-06-15 11:39 - 2016-05-27 08:06 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-06-15 11:39 - 2016-05-27 08:06 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2016-06-15 11:39 - 2016-05-22 08:06 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-06-15 11:39 - 2016-05-13 17:15 - 00382184 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-06-15 11:39 - 2016-05-13 17:09 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-06-15 11:39 - 2016-05-13 17:09 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-06-15 11:39 - 2016-05-13 17:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-06-15 11:39 - 2016-05-13 17:09 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-06-15 11:39 - 2016-05-13 16:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-06-15 11:39 - 2016-05-13 16:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2016-06-15 11:39 - 2016-05-13 16:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2016-06-15 11:39 - 2016-05-13 16:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2016-06-15 11:39 - 2016-05-13 16:27 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-06-15 11:39 - 2016-05-12 12:20 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-06-15 11:39 - 2016-05-12 12:20 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-06-15 11:39 - 2016-05-12 12:15 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-06-15 11:39 - 2016-05-12 12:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-06-15 11:39 - 2016-05-12 12:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll 2016-06-15 11:39 - 2016-05-12 12:15 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-06-15 11:39 - 2016-05-12 12:15 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-06-15 11:39 - 2016-05-12 12:15 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL 2016-06-15 11:39 - 2016-05-12 12:14 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-06-15 11:39 - 2016-05-12 12:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-06-15 11:39 - 2016-05-12 10:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2016-06-15 11:39 - 2016-05-12 10:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-06-15 11:39 - 2016-05-12 10:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-06-15 11:39 - 2016-05-12 09:58 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2016-06-15 11:39 - 2016-05-12 09:58 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2016-06-15 11:39 - 2016-05-12 09:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-06-15 11:39 - 2016-05-12 09:58 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2016-06-15 11:39 - 2016-05-12 09:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-06-15 11:39 - 2016-05-12 09:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-06-15 11:39 - 2016-05-12 09:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-06-15 11:39 - 2016-05-12 09:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-06-15 11:39 - 2016-05-12 09:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-06-15 11:39 - 2016-05-12 08:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-06-15 11:39 - 2016-05-12 08:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-06-15 11:39 - 2016-05-12 08:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2016-06-15 11:39 - 2016-05-11 12:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2016-06-15 11:39 - 2016-05-11 12:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2016-06-15 11:39 - 2016-05-11 12:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2016-06-15 11:39 - 2016-05-11 12:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll 2016-06-15 11:39 - 2016-05-11 10:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2016-06-15 11:39 - 2016-05-11 10:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll 2016-06-15 11:39 - 2016-05-11 10:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll 2016-06-15 11:39 - 2016-05-11 10:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll 2016-06-15 11:39 - 2016-05-11 10:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe 2016-06-15 11:39 - 2016-05-11 10:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe 2016-06-15 11:39 - 2016-05-11 09:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys 2016-06-15 11:38 - 2016-05-23 18:37 - 00394960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-06-15 11:38 - 2016-05-23 17:54 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-06-15 11:38 - 2016-05-21 12:28 - 25802752 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-06-15 11:38 - 2016-05-21 11:57 - 20341248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-06-15 11:38 - 2016-05-20 17:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-06-15 11:38 - 2016-05-20 17:27 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-06-15 11:38 - 2016-05-20 17:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-06-15 11:38 - 2016-05-20 17:10 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-06-15 11:38 - 2016-05-20 17:09 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-06-15 11:38 - 2016-05-20 17:09 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-06-15 11:38 - 2016-05-20 17:09 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-06-15 11:38 - 2016-05-20 17:08 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-06-15 11:38 - 2016-05-20 17:08 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-06-15 11:38 - 2016-05-20 17:02 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-06-15 11:38 - 2016-05-20 17:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-06-15 11:38 - 2016-05-20 16:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-06-15 11:38 - 2016-05-20 16:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-06-15 11:38 - 2016-05-20 16:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-06-15 11:38 - 2016-05-20 16:57 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-06-15 11:38 - 2016-05-20 16:56 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-06-15 11:38 - 2016-05-20 16:56 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-06-15 11:38 - 2016-05-20 16:55 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-06-15 11:38 - 2016-05-20 16:54 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-06-15 11:38 - 2016-05-20 16:54 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-06-15 11:38 - 2016-05-20 16:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-06-15 11:38 - 2016-05-20 16:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-06-15 11:38 - 2016-05-20 16:50 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-06-15 11:38 - 2016-05-20 16:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-06-15 11:38 - 2016-05-20 16:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-06-15 11:38 - 2016-05-20 16:45 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-06-15 11:38 - 2016-05-20 16:45 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-06-15 11:38 - 2016-05-20 16:44 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-06-15 11:38 - 2016-05-20 16:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-06-15 11:38 - 2016-05-20 16:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-06-15 11:38 - 2016-05-20 16:41 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-06-15 11:38 - 2016-05-20 16:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-06-15 11:38 - 2016-05-20 16:33 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-06-15 11:38 - 2016-05-20 16:32 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-06-15 11:38 - 2016-05-20 16:29 - 13815808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-06-15 11:38 - 2016-05-20 16:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-06-15 11:38 - 2016-05-20 16:27 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-06-15 11:38 - 2016-05-20 16:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-06-15 11:38 - 2016-05-20 16:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-06-15 11:38 - 2016-05-20 16:25 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-06-15 11:38 - 2016-05-20 16:23 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-06-15 11:38 - 2016-05-20 16:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-06-15 11:38 - 2016-05-20 16:22 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-06-15 11:38 - 2016-05-20 16:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-06-15 11:38 - 2016-05-20 16:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-06-15 11:38 - 2016-05-20 16:14 - 04610048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-06-15 11:38 - 2016-05-20 16:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-06-15 11:38 - 2016-05-20 16:11 - 15420928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-06-15 11:38 - 2016-05-20 16:11 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-06-15 11:38 - 2016-05-20 16:09 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-06-15 11:38 - 2016-05-20 16:09 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-06-15 11:38 - 2016-05-20 16:08 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-06-15 11:38 - 2016-05-20 16:08 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-06-15 11:38 - 2016-05-20 16:07 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-06-15 11:38 - 2016-05-20 16:07 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-06-15 11:38 - 2016-05-20 16:06 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-06-15 11:38 - 2016-05-20 15:46 - 02597888 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-06-15 11:38 - 2016-05-20 15:42 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-06-15 11:38 - 2016-05-20 15:38 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-06-15 11:38 - 2016-05-20 15:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-06-15 11:38 - 2016-05-20 15:34 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-06-15 11:38 - 2016-05-20 15:23 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-06-15 11:38 - 2016-05-18 11:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-06-15 11:38 - 2016-05-18 11:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-06-15 11:38 - 2016-04-14 11:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2016-06-15 11:38 - 2016-04-14 11:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2016-06-15 11:38 - 2016-04-14 11:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-06-15 11:38 - 2016-04-14 11:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2016-06-15 11:38 - 2016-04-14 11:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2016-06-15 11:38 - 2016-04-14 11:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2016-06-15 11:38 - 2016-04-14 10:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2016-06-15 11:38 - 2016-04-14 10:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2016-06-15 11:38 - 2016-04-14 10:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2016-06-15 11:38 - 2016-04-14 10:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll 2016-06-15 11:38 - 2016-04-14 10:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2016-06-15 11:38 - 2016-04-14 10:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2016-06-15 11:38 - 2016-04-09 01:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-06-15 11:38 - 2016-04-09 01:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2016-06-15 11:38 - 2016-04-09 01:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-06-15 11:38 - 2016-04-09 01:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2016-06-15 11:38 - 2016-04-09 00:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-06-15 11:38 - 2016-04-09 00:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2016-06-15 11:38 - 2016-03-09 14:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2016-06-15 11:38 - 2016-03-09 13:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll 2016-06-08 11:21 - 2016-06-08 11:21 - 00000000 ____D C:\Users\Logan J\AppData\Local\{45F8FDDB-374C-45E2-9E67-47F1A33C2795} 2016-06-07 12:44 - 2016-06-16 03:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-06-02 19:26 - 2016-06-02 19:26 - 00014027 _____ C:\Users\Logan J\AppData\Local\recently-used.xbel 2016-06-02 16:43 - 2016-06-02 16:44 - 00000000 ____D C:\Users\Logan J\AppData\Local\{4EC83E91-CFFF-4FCE-9339-25CFBF5F9159} ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-06-27 14:40 - 2009-07-13 23:45 - 00028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-06-27 14:40 - 2009-07-13 23:45 - 00028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-06-27 14:27 - 2013-10-12 19:18 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-06-27 14:19 - 2012-04-28 20:07 - 00000936 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2327425395-1393469141-3172563713-1001UA.job 2016-06-27 14:04 - 2014-04-13 13:15 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-06-27 13:46 - 2012-04-01 17:39 - 00000916 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2327425395-1393469141-3172563713-1001UA.job 2016-06-27 13:34 - 2016-03-27 16:59 - 00003484 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask 2016-06-26 22:27 - 2012-04-06 20:35 - 00000000 ____D C:\ProgramData\BOINC 2016-06-26 21:40 - 2012-04-01 17:39 - 00000864 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2327425395-1393469141-3172563713-1001Core.job 2016-06-26 21:38 - 2012-04-28 20:07 - 00000914 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2327425395-1393469141-3172563713-1001Core.job 2016-06-25 23:11 - 2013-10-18 09:42 - 00000000 ____D C:\ProgramData\Oracle 2016-06-25 23:08 - 2014-11-14 20:40 - 00000000 ____D C:\Program Files (x86)\Java 2016-06-25 23:07 - 2013-10-18 09:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-06-25 23:06 - 2015-11-22 02:53 - 00000000 ____D C:\Users\Logan J\.oracle_jre_usage 2016-06-25 23:06 - 2014-11-14 20:41 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-06-25 12:31 - 2015-06-25 09:56 - 00003068 _____ C:\Windows\System32\Tasks\McAfeeLogon 2016-06-24 23:57 - 2012-04-06 19:00 - 00000000 ____D C:\Users\Logan J\AppData\Roaming\Skype 2016-06-24 23:03 - 2016-01-31 22:39 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-06-24 23:02 - 2012-03-21 07:08 - 00000000 ____D C:\ProgramData\Skype 2016-06-23 22:58 - 2012-03-21 07:32 - 00000000 ____D C:\Program Files\Common Files\mcafee 2016-06-23 12:21 - 2012-04-17 21:17 - 00000000 ____D C:\Users\Logan J\AppData\Roaming\Audacity 2016-06-17 20:32 - 2012-04-01 17:39 - 00002383 _____ C:\Users\Logan J\Desktop\Google Chrome.lnk 2016-06-17 12:28 - 2013-10-12 19:18 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-06-17 12:28 - 2013-10-12 18:50 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-06-17 12:28 - 2013-10-12 18:50 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-06-16 20:57 - 2009-07-14 00:13 - 00782642 _____ C:\Windows\system32\PerfStringBackup.INI 2016-06-16 20:57 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\inf 2016-06-16 10:05 - 2013-09-26 15:36 - 00000000 ____D C:\Program Files (x86)\Steam 2016-06-16 10:04 - 2012-05-31 20:43 - 00000000 ____D C:\ProgramData\Anti-phishing Domain Advisor 2016-06-16 10:03 - 2013-02-28 22:06 - 00000000 ____D C:\Users\Logan J\AppData\Local\HTC MediaHub 2016-06-16 10:03 - 2012-03-21 07:06 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup 2016-06-16 10:02 - 2013-06-07 12:23 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job 2016-06-16 10:02 - 2013-06-02 21:18 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job 2016-06-16 10:02 - 2012-06-28 21:35 - 00000000 ____D C:\Users\Logan J\AppData\Roaming\WTablet 2016-06-16 10:02 - 2012-03-21 07:10 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks 2016-06-16 10:02 - 2012-03-21 07:10 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks 2016-06-16 03:37 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-06-16 03:36 - 2012-04-26 07:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-06-16 03:36 - 2012-03-21 08:22 - 00000000 ____D C:\ProgramData\NVIDIA 2016-06-16 03:36 - 2009-07-13 23:45 - 00450840 _____ C:\Windows\system32\FNTCACHE.DAT 2016-06-16 03:33 - 2014-12-14 19:18 - 00000000 ____D C:\Windows\system32\appraiser 2016-06-16 03:16 - 2013-08-15 14:03 - 00000000 ____D C:\Windows\system32\MRT 2016-06-16 03:08 - 2012-04-04 19:31 - 142482544 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-06-13 19:31 - 2010-11-20 22:27 - 00484008 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2016-06-04 03:10 - 2015-04-07 03:00 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2016-06-04 03:10 - 2015-04-07 03:00 - 00000000 ___SD C:\Windows\system32\GWX 2016-06-04 03:06 - 2011-02-10 11:10 - 00775256 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-06-02 22:16 - 2012-03-21 07:32 - 00000000 ____D C:\ProgramData\McAfee 2016-06-02 20:11 - 2012-06-28 17:34 - 00000000 ____D C:\Users\Logan J\.gimp-2.8 2016-06-02 13:14 - 2016-02-21 15:20 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-06-02 13:10 - 2015-07-22 01:44 - 00003348 _____ C:\Windows\System32\Tasks\McAfee Remediation (Prepare) ==================== Files in the root of some directories ======= 2013-05-20 18:28 - 2014-06-24 23:47 - 0003730 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml 2013-06-13 14:44 - 2013-06-14 22:01 - 0001201 _____ () C:\Users\Logan J\AppData\Roaming\ACInitialize.log 2013-06-06 14:34 - 2013-11-25 22:51 - 0000096 _____ () C:\Users\Logan J\AppData\Roaming\Camdata.ini 2013-06-06 14:34 - 2013-11-25 22:51 - 0000408 _____ () C:\Users\Logan J\AppData\Roaming\CamLayout.ini 2013-06-06 14:34 - 2013-11-25 22:51 - 0000408 _____ () C:\Users\Logan J\AppData\Roaming\CamShapes.ini 2013-06-06 14:20 - 2013-11-25 22:51 - 0004523 _____ () C:\Users\Logan J\AppData\Roaming\CamStudio.cfg 2012-08-28 20:20 - 2013-11-25 23:15 - 0006144 _____ () C:\Users\Logan J\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-06-02 19:26 - 2016-06-02 19:26 - 0014027 _____ () C:\Users\Logan J\AppData\Local\recently-used.xbel 2012-08-05 20:15 - 2012-08-05 20:15 - 0000000 _____ () C:\Users\Logan J\AppData\Local\rx_image32.Cache 2012-06-29 20:32 - 2012-10-22 11:51 - 0001780 _____ () C:\ProgramData\dldt.log 2012-07-03 15:19 - 2012-07-03 15:19 - 0000229 _____ () C:\ProgramData\dldtDiagnostics.log 2016-02-07 21:56 - 2015-12-09 21:56 - 0000032 ____R () C:\ProgramData\hash.dat 2013-06-12 23:29 - 2013-06-12 23:29 - 0033958 _____ () C:\ProgramData\uninstaller.exe 2012-07-03 15:18 - 2012-07-03 15:18 - 0000000 _____ () C:\ProgramData\UpdaterLog.txt Files to move or delete: ==================== C:\ProgramData\hash.dat C:\ProgramData\uninstaller.exe Some files in TEMP: ==================== C:\Users\Logan J\AppData\Local\Temp\1632351297.Server.exe C:\Users\Logan J\AppData\Local\Temp\1753378822.windows.exe C:\Users\Logan J\AppData\Local\Temp\air562D.exe C:\Users\Logan J\AppData\Local\Temp\airC259.exe C:\Users\Logan J\AppData\Local\Temp\AskSLib.dll C:\Users\Logan J\AppData\Local\Temp\avguidx.dll C:\Users\Logan J\AppData\Local\Temp\burnsetup.exe C:\Users\Logan J\AppData\Local\Temp\C9F6.exe C:\Users\Logan J\AppData\Local\Temp\cgrdi-yr.dll C:\Users\Logan J\AppData\Local\Temp\COMAP.EXE C:\Users\Logan J\AppData\Local\Temp\CommonInstaller.exe C:\Users\Logan J\AppData\Local\Temp\drm_dyndata_7370014.dll C:\Users\Logan J\AppData\Local\Temp\Easy_WebCam_Recording.exe C:\Users\Logan J\AppData\Local\Temp\FP_PL_PFS_INSTALLER_32bit-1.exe C:\Users\Logan J\AppData\Local\Temp\FP_PL_PFS_INSTALLER_32bit.exe C:\Users\Logan J\AppData\Local\Temp\GUR16AE.exe C:\Users\Logan J\AppData\Local\Temp\GUR371C.exe C:\Users\Logan J\AppData\Local\Temp\GUR77BB.exe C:\Users\Logan J\AppData\Local\Temp\GUR8371.exe C:\Users\Logan J\AppData\Local\Temp\GUR969E.exe C:\Users\Logan J\AppData\Local\Temp\GURB0F8.exe C:\Users\Logan J\AppData\Local\Temp\GURDB60.exe C:\Users\Logan J\AppData\Local\Temp\iGearedHelper.dll C:\Users\Logan J\AppData\Local\Temp\install_flashplayer11x32_mssd_aih.exe C:\Users\Logan J\AppData\Local\Temp\install_reader11_en_mssd_aih.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u4-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u5-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe C:\Users\Logan J\AppData\Local\Temp\jre-8u31-windows-au.exe C:\Users\Logan J\AppData\Local\Temp\jre-8u73-windows-au.exe C:\Users\Logan J\AppData\Local\Temp\jre-8u77-windows-au.exe C:\Users\Logan J\AppData\Local\Temp\jre-8u91-windows-au.exe C:\Users\Logan J\AppData\Local\Temp\JuniperSetupClientInstaller.exe C:\Users\Logan J\AppData\Local\Temp\MachineIdCreator.exe C:\Users\Logan J\AppData\Local\Temp\MSETUP4.EXE C:\Users\Logan J\AppData\Local\Temp\n1s.exe C:\Users\Logan J\AppData\Local\Temp\noralxe0.dll C:\Users\Logan J\AppData\Local\Temp\nv3DVStreaming.dll C:\Users\Logan J\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Logan J\AppData\Local\Temp\nvStereoApiI.dll C:\Users\Logan J\AppData\Local\Temp\nvStInst.exe C:\Users\Logan J\AppData\Local\Temp\oi_{3B737972-D8A4-4123-A853-477F0ACF5186}.exe C:\Users\Logan J\AppData\Local\Temp\prismsetup.exe C:\Users\Logan J\AppData\Local\Temp\SkypeSetup.exe C:\Users\Logan J\AppData\Local\Temp\SpOrder.dll C:\Users\Logan J\AppData\Local\Temp\SRLDetectionLibrary3131626155493347623.dll C:\Users\Logan J\AppData\Local\Temp\swt-win32-3740.dll C:\Users\Logan J\AppData\Local\Temp\tmp9E03.exe C:\Users\Logan J\AppData\Local\Temp\tmpA765.exe C:\Users\Logan J\AppData\Local\Temp\ToolbarInstaller.exe C:\Users\Logan J\AppData\Local\Temp\uninst.exe C:\Users\Logan J\AppData\Local\Temp\uninstall.exe C:\Users\Logan J\AppData\Local\Temp\vpsetup.exe C:\Users\Logan J\AppData\Local\Temp\wpsetup.exe C:\Users\Logan J\AppData\Local\Temp\_isEBA5.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-06-27 03:17 ==================== End of FRST.txt ============================

Hello, My computer is long overdue for a good scrubbing, since I've been putting off a number of small issues that are finally starting to worry me. Aside from generally high memory usage, these include the random and occasional appearance of Name Not Available in my volume mixer and receiving weekly spam emails from totally-not-a-robot women. The Name Not Available bug doesn't seem to play ads incessantly, but this morning I noticed a strange bloop noise seemingly coming from my closed, sleeping laptop, which is when I discovered Name Not Available. The column disappeared when my internet cut out and I restarted our router. If anyone has some tips on what steps I should take to clean out my computer, I'd greatly appreciate it. I have Farbar and mbam logs already made, and will paste them in additional posts.