Jump to content

Hijack this Log


Recommended Posts

Hi all, computer has been playing funny for a while now with issue like the pc switching on by itself and just recently i ran adwcleaner and now my internet pages wont work as they normally do i.e i click a link and usually it would open another link to follow but its just stuck on loading......

 

Posting my log to see if you guys can help, its been a long time since i cleaned this pc, it very overdue! Hope you can help me :)

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 16:53:16, on 20/12/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)

FIREFOX: 43.0.1 (x86 en-GB)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_235.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_235.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\MattyC\Desktop\Downloads\HijackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {49c795c2-604a-4d18-aeb1-b3eba27e5ea2} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (file missing)
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll
O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [ComodoFSFirefox] "C:\Program Files (x86)\AdTrustMedia\PrivDog\FinalizeSetup.exe" /f
O4 - HKLM\..\Run: [ASUS WiFi GO! FileTransfer Execute] C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [20150107] C:\Program Files\AVAST Software\Avast\setup\emupdate\49e8953c-081a-4aa0-8fad-f7104545a18a.exe /check
O4 - HKCU\..\Run: [Wondershare Helper Compact.exe] "C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelperSetup.exe"
O4 - HKCU\..\Run: [Wallpaper Changer] C:\Program Files (x86)\Wallpaper Changer\Wallpaper Changer.exe /minimized
O4 - HKCU\..\Run: [uTorrent] "C:\Users\MattyC\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
O4 - HKCU\..\Run: [TSMApplication] "C:\Users\MattyC\Desktop\TSMApplication.exe"
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\MattyC\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\MattyC\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [Hobbyist Software VLC Streamer] "C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe" /startup
O4 - Startup: CurseClientStartup.ccip
O4 - Startup: Dropbox.lnk = MattyC\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: Download video on this page - res://C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_IE.dll/300
O8 - Extra context menu item: Download video this links to - res://C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_IE.dll/301
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll (file missing)
O9 - Extra button: Download Video - {B4FECE59-6D0A-4EE6-A07F-E6A94F846E55} - res://C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_IE.dll/300 (file missing)
O9 - Extra 'Tools' menuitem: Download video on this page - {B4FECE59-6D0A-4EE6-A07F-E6A94F846E55} - res://C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_IE.dll/300 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/betapit/PCPitStop.CAB
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{CEE2D10E-F15C-4B7C-BD44-00D60159F197}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{DB22FD27-2C37-4DC1-96DD-7972FE4A2864}: NameServer = 8.26.56.26,156.154.70.22
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\Jaksta\AC\x86\jaudcap.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASGT - Unknown owner - C:\Windows\SysWOW64\ASGT.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15290 bytes
 

Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:20-12-2015

Ran by MattyC (administrator) on MATTYC-PC (20-12-2015 17:49:04)

Running from C:\Users\MattyC\Desktop

Loaded Profiles: MattyC (Available Profiles: MattyC)

Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)

Internet Explorer Version 11 (Default browser: FF)

Boot Mode: Normal


 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(AMD) C:\Windows\System32\atiesrxx.exe

(AMD) C:\Windows\System32\atieclxx.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe

() C:\Windows\SysWOW64\ASGT.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe

(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

(Microsoft Corporation) C:\Windows\System32\rundll32.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe

() C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\S5WOW_App\x64\S5wow_2005.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\WMPSideShowGadget.exe

(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe

(Saitek) C:\Program Files\Saitek\SD6\Software\SaiMfd.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Saitek) C:\Program Files\Saitek\SD6\Software\ProfilerU.exe

(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe

(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe

(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe

(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe

() C:\Program Files (x86)\Wallpaper Changer\Wallpaper Changer.exe

(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe

(Akamai Technologies, Inc.) C:\Users\MattyC\AppData\Local\Akamai\netsession_win.exe

(Akamai Technologies, Inc.) C:\Users\MattyC\AppData\Local\Akamai\netsession_win.exe

(Dropbox, Inc.) C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Dropbox.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

(Dropbox, Inc.) C:\Users\MattyC\AppData\Local\Dropbox\Update\DropboxUpdate.exe

(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe

(Nero AG) C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe

(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe

(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe

(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AsDLNAServerReal.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

 

 

==================== Registry (Whitelisted) ===========================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)

HKLM\...\Run: [saiMfd] => C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [195072 2010-04-21] (Saitek)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212048 2012-06-07] (Realtek Semiconductor)

HKLM\...\Run: [ProfilerU] => C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [378880 2010-04-21] (Saitek)

HKLM\...\Run: [Launch LgDeviceAgent] => C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [415816 2010-08-03] (Logitech Inc.)

HKLM\...\Run: [Launch LGDCore] => C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [4725320 2010-08-03] (Logitech Inc.)

HKLM\...\Run: [Launch LCDMon] => C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2412616 2010-08-03] (Logitech Inc.)

HKLM\...\Run: [startCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4867784 2015-12-04] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)

HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2013-04-27] (RealNetworks, Inc.)

HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-12-11] (Raptr, Inc)

HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2010-03-26] (Nero AG)

HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-07-15] (Samsung Electronics Co., Ltd.)

HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)

HKLM-x32\...\Run: [iAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation)

HKLM-x32\...\Run: [ComodoFSFirefox] => "C:\Program Files (x86)\AdTrustMedia\PrivDog\FinalizeSetup.exe" /f

HKLM-x32\...\Run: [ASUS WiFi GO! FileTransfer Execute] => C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe [1384608 2012-06-08] (ASUSTeK Computer Inc.)

HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)

HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-20] (AVAST Software)

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [Wondershare Helper Compact.exe] => "C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelperSetup.exe"

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [Wallpaper Changer] => C:\Program Files (x86)\Wallpaper Changer\Wallpaper Changer.exe [735744 2013-07-22] ()

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [TSMApplication] => "C:\Users\MattyC\Desktop\TSMApplication.exe"

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564016 2013-07-15] (Samsung)

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [KiesAirMessage] => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [com.apple.dav.bookmarks.daemon] => C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1326408 2013-11-15] (Apple Inc.)

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [Akamai NetSession Interface] => C:\Users\MattyC\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [Dropbox Update] => C:\Users\MattyC\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-17] (Dropbox, Inc.)

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Run: [Hobbyist Software VLC Streamer] => "C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe" /startup

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\MountPoints2: {8ee36f72-1812-11e2-b112-806e6f6e6963} - D:\.\Bin\ASSETUP.exe

AppInit_DLLs: C:\Windows\Jaksta\AC\x64\jaudcap.dll => C:\Windows\Jaksta\AC\x64\jaudcap.dll [311584 2013-08-21] (Jaksta Technologies Pty Ltd)

AppInit_DLLs-x32: C:\Windows\Jaksta\AC\x86\jaudcap.dll => No File

ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll No File

ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll No File

ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll No File

ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll No File

ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll No File

ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll No File

ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll No File

ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll No File

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-20] (AVAST Software)

ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)

Startup: C:\Users\MattyC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2012-10-18] ()

Startup: C:\Users\MattyC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-12-11]

ShortcutTarget: Dropbox.lnk -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{CEE2D10E-F15C-4B7C-BD44-00D60159F197}: [NameServer] 8.26.56.26,156.154.70.22

Tcpip\..\Interfaces\{CEE2D10E-F15C-4B7C-BD44-00D60159F197}: [DhcpNameServer] 192.168.0.1

Tcpip\..\Interfaces\{DB22FD27-2C37-4DC1-96DD-7972FE4A2864}: [NameServer] 8.26.56.26,156.154.70.22

 

Internet Explorer:

==================

SearchScopes: HKLM-x32 -> DefaultScope value is missing

BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-20] (AVAST Software)

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)

BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll => No File

BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-20] (Oracle Corporation)

BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-20] (AVAST Software)

BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)

BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-20] (Oracle Corporation)

DPF: HKLM-x32 {0E5F0222-96B9-11D3-8997-00104BD12D94} hxxp://www.pcpitstop.com/betapit/PCPitStop.CAB

DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab

 

FireFox:

========

FF ProfilePath: C:\Users\MattyC\AppData\Roaming\Mozilla\Firefox\Profiles\cihy3fce.default

FF SelectedSearchEngine: Yahoo!

FF Homepage: hxxps://www.facebook.com/

FF NetworkProxy: "autoconfig_url", "http://clientconfig.immunicity.org/pacs/all.pac"

FF NetworkProxy: "type", 2

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-09] ()

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-09] ()

FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-20] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-20] (Oracle Corporation)

FF Plugin-x32: @meadco.com/neptune plugin,version=2.0.0.29 -> C:\PROGRA~2\MEADCO~1\npmeadax.dll [2007-09-05] (MeadCo Corp.)

FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)

FF Plugin-x32: @real.com/nppl3260;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2013-04-27] (RealNetworks, Inc.)

FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-03-06] (RealNetworks, Inc.)

FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-03-06] (RealNetworks, Inc.)

FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-03-06] (RealNetworks, Inc.)

FF Plugin-x32: @real.com/nprpplugin;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2013-04-27] (RealPlayer)

FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-03-06] (RealDownloader)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)

FF Extension: YouTube to MP3 Button - C:\Users\MattyC\AppData\Roaming\Mozilla\Firefox\Profiles\cihy3fce.default\extensions\flvto@hotger.com.xpi [2015-07-03]

FF Extension: Adblock Plus - C:\Users\MattyC\AppData\Roaming\Mozilla\Firefox\Profiles\cihy3fce.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-16]

FF HKLM-x32\...\Firefox\Extensions: [{DAC3F861-B30D-40dd-9166-F4E75327FAC7}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-04-27] [not signed]

FF HKLM-x32\...\Firefox\Extensions: [{55A8EC97-6AF6-442c-877F-11C51DBD162D}] - C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_FF.xpi

FF Extension: No Name - C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_FF.xpi [2013-05-13] [not signed]

FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-20]

 

Chrome: 

=======

CHR HomePage: Default -> hxxp://facebook.com/

CHR StartupUrls: Default -> "hxxp://facebook.com/"

CHR Profile: C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Docs) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-20]

CHR Extension: (Google Drive) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]

CHR Extension: (YouTube) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-27]

CHR Extension: (Google Search) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]

CHR Extension: (Tampermonkey) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-12-18]

CHR Extension: (Google Docs Offline) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]

CHR Extension: (AdBlock) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-12-05]

CHR Extension: (Avast Online Security) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-12-20]

CHR Extension: (RealDownloader) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-05-27]

CHR Extension: (YouTube Video Downloader Extension) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\igljnkmljjbhcellpnjppojkfdfmkjmp [2014-07-20]

CHR Extension: (Chrome Web Store Payments) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-06]

CHR Extension: (Gmail) - C:\Users\MattyC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-06]

CHR HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-20]

CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-03-06]

CHR HKLM-x32\...\Chrome\Extension: [igljnkmljjbhcellpnjppojkfdfmkjmp] - C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_GC.crx [2014-07-09]

 

==================== Services (Whitelisted) ========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()

R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]

R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)

R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-20] (AVAST Software)

S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)

R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [233328 2012-01-23] (DTS, Inc)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()

S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)

R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]

S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

 

===================== Drivers (Whitelisted) ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2012-01-06] (Asmedia Technology)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-20] (AVAST Software)

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-20] (AVAST Software)

R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-20] (AVAST Software)

R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-20] (AVAST Software)

R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-20] (AVAST Software)

R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-20] (AVAST Software)

R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-20] (AVAST Software)

R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-20] (AVAST Software)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-20] (Malwarebytes)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)

R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)

S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)

R3 SaiK0CC3; C:\Windows\System32\DRIVERS\SaiK0CC3.sys [171016 2010-04-22] (Saitek)

R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [22664 2010-04-22] (Saitek)

R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [49928 2010-04-22] (Saitek)

R3 SaiU0CC3; C:\Windows\System32\DRIVERS\SaiU0CC3.sys [41096 2010-04-22] (Saitek)

R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-09-22] (Duplex Secure Ltd.)

U3 ai312jtg; C:\Windows\System32\Drivers\ai312jtg.sys [0 ] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One Month Created files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-12-20 17:49 - 2015-12-20 17:49 - 00028684 _____ C:\Users\MattyC\Desktop\FRST.txt

2015-12-20 17:48 - 2015-12-20 17:49 - 00000000 ____D C:\FRST

2015-12-20 17:39 - 2015-12-20 17:39 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-12-20 17:36 - 2015-12-20 17:36 - 02370560 _____ (Farbar) C:\Users\MattyC\Desktop\FRST64.exe

2015-12-20 16:47 - 2015-12-20 16:48 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update

2015-12-20 16:47 - 2015-12-20 16:47 - 01055560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys

2015-12-20 16:47 - 2015-12-20 16:47 - 00451040 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys

2015-12-20 16:47 - 2015-12-20 16:47 - 00386096 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

2015-12-20 16:47 - 2015-12-20 16:47 - 00273784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys

2015-12-20 16:47 - 2015-12-20 16:47 - 00155304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys

2015-12-20 16:47 - 2015-12-20 16:47 - 00097648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys

2015-12-20 16:47 - 2015-12-20 16:47 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys

2015-12-20 16:47 - 2015-12-20 16:47 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys

2015-12-20 16:47 - 2015-12-20 16:47 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr

2015-12-20 16:47 - 2015-12-20 16:47 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys

2015-12-20 16:47 - 2015-12-20 16:47 - 00001885 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk

2015-12-20 16:47 - 2015-12-20 16:47 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\AVAST Software

2015-12-20 16:47 - 2015-12-20 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software

2015-12-20 16:46 - 2015-12-20 16:46 - 00000000 ____D C:\Program Files\AVAST Software

2015-12-20 16:43 - 2015-12-20 16:43 - 00000940 _____ C:\Users\MattyC\Desktop\JRT.txt

2015-12-20 16:03 - 2015-12-20 16:03 - 00001166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2015-12-20 16:03 - 2015-12-20 16:03 - 00001154 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk

2015-12-20 16:03 - 2015-12-20 16:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-12-20 15:47 - 2015-12-20 15:47 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\Sun

2015-12-20 15:47 - 2015-12-20 15:47 - 00000000 ____D C:\Users\MattyC\.oracle_jre_usage

2015-12-20 15:46 - 2015-12-20 15:46 - 00001073 _____ C:\Users\Public\Desktop\VLC media player.lnk

2015-12-20 15:46 - 2015-12-20 15:46 - 00000000 ____D C:\Users\MattyC\AppData\LocalLow\Oracle

2015-12-20 09:45 - 2015-12-20 09:45 - 00004224 _____ C:\Windows\System32\Tasks\AMD Updater

2015-12-20 09:37 - 2015-12-20 09:37 - 00000000 ____D C:\Program Files (x86)\AMD

2015-12-19 16:17 - 2015-12-20 16:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-12-19 15:59 - 2015-12-19 16:34 - 00000000 ____D C:\ProgramData\HitmanPro

2015-12-16 05:46 - 2015-12-16 05:46 - 00003026 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1450244795

2015-12-16 05:46 - 2015-12-16 05:46 - 00001000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk

2015-12-15 06:14 - 2015-12-19 17:51 - 00000056 _____ C:\Users\MattyC\Desktop\hours.txt

2015-12-14 17:04 - 2015-12-14 17:07 - 00000000 ____D C:\Users\MattyC\Desktop\icons

2015-12-11 17:36 - 2015-12-11 17:36 - 00381534 _____ C:\Users\MattyC\Documents\classics.nml

2015-12-11 17:35 - 2015-09-19 14:16 - 13885678 _____ C:\Users\MattyC\Documents\02 Eisbaer (Extended mix) 6A - 140 - 6A - 140.m4a

2015-12-11 17:35 - 2015-04-20 15:57 - 79292820 _____ C:\Users\MattyC\Documents\Starparty - I'm In Love (Sneijder Remix) - 7A - 140.wav

2015-12-11 17:35 - 2015-04-20 15:48 - 73722496 _____ C:\Users\MattyC\Documents\Orkidea vs Alt F4 - Beautiful Ally Brown Rework master - 2A - 140.wav

2015-12-11 17:35 - 2015-04-20 15:38 - 76254634 _____ C:\Users\MattyC\Documents\Innocente [Paul Denton & Alex Ryan Rework 8A 138 [Final Master] - 8A - 138.wav

2015-12-11 17:35 - 2015-04-20 15:15 - 79348352 _____ C:\Users\MattyC\Documents\Conductor & The Cowboy - Feeling This Way (Bryan Kearney & Adam Ellis Remix)  - 7A - 140.wav

2015-12-11 17:35 - 2015-03-08 13:20 - 90898722 _____ C:\Users\MattyC\Documents\Alex Bartlett - Amnesia (Marc Dawn Pres. Green Court Remix) (Tasso Update) - 7B - 136.wav

2015-12-11 05:28 - 2015-12-11 05:28 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

2015-12-09 12:08 - 2015-11-20 18:54 - 03170304 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-12-09 12:08 - 2015-11-20 18:54 - 02609152 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-12-09 12:08 - 2015-11-20 18:54 - 00709632 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2015-12-09 12:08 - 2015-11-20 18:54 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-12-09 12:08 - 2015-11-20 18:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-12-09 12:08 - 2015-11-20 18:54 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2015-12-09 12:08 - 2015-11-20 18:54 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2015-12-09 12:08 - 2015-11-20 18:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-12-09 12:08 - 2015-11-20 18:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-12-09 12:08 - 2015-11-20 18:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2015-12-09 12:08 - 2015-11-20 18:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2015-12-09 12:08 - 2015-11-20 18:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2015-12-09 12:08 - 2015-11-20 18:34 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2015-12-09 12:08 - 2015-11-20 18:34 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2015-12-09 12:08 - 2015-11-20 18:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2015-12-09 12:08 - 2015-11-20 18:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2015-12-09 12:08 - 2015-11-11 18:53 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll

2015-12-09 12:08 - 2015-11-11 18:53 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll

2015-12-09 12:08 - 2015-11-11 18:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll

2015-12-09 12:08 - 2015-11-11 18:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll

2015-12-09 12:08 - 2015-11-10 18:55 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll

2015-12-09 12:08 - 2015-11-10 18:55 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll

2015-12-09 12:08 - 2015-11-10 18:55 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll

2015-12-09 12:08 - 2015-11-10 18:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll

2015-12-09 12:08 - 2015-11-10 18:37 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll

2015-12-09 12:08 - 2015-11-10 17:47 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2015-12-09 12:08 - 2015-11-05 19:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll

2015-12-09 12:08 - 2015-11-05 19:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll

2015-12-09 12:08 - 2015-11-05 19:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

2015-12-09 12:08 - 2015-11-05 19:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

2015-12-09 12:08 - 2015-11-05 09:53 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys

2015-12-09 12:08 - 2015-11-03 19:04 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll

2015-12-09 12:08 - 2015-11-03 18:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll

2015-12-09 12:08 - 2015-10-08 23:22 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll

2015-12-09 12:08 - 2015-10-08 23:18 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL

2015-12-09 12:08 - 2015-10-08 23:18 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll

2015-12-09 12:08 - 2015-10-08 23:18 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL

2015-12-09 12:08 - 2015-10-08 23:18 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL

2015-12-09 12:08 - 2015-10-08 23:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll

2015-12-09 12:08 - 2015-10-08 23:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL

2015-12-09 12:08 - 2015-10-08 23:17 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll

2015-12-09 12:08 - 2015-10-08 19:13 - 00419928 _____ C:\Windows\SysWOW64\locale.nls

2015-12-09 12:08 - 2015-10-08 18:52 - 00419928 _____ C:\Windows\system32\locale.nls

2015-12-09 12:07 - 2015-11-11 21:12 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-12-09 12:07 - 2015-11-11 20:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-12-09 12:07 - 2015-11-11 16:21 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-12-09 12:07 - 2015-11-11 16:00 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-12-09 12:07 - 2015-11-11 15:44 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-12-09 12:07 - 2015-11-11 15:44 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-12-09 12:07 - 2015-11-11 15:41 - 20366848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-12-09 12:07 - 2015-11-11 15:12 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-12-09 12:07 - 2015-11-11 14:57 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-12-09 12:07 - 2015-11-10 00:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-12-09 12:07 - 2015-11-10 00:13 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-12-09 12:07 - 2015-11-10 00:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-12-09 12:07 - 2015-11-10 00:12 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2015-12-09 12:07 - 2015-11-10 00:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2015-12-09 12:07 - 2015-11-10 00:11 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2015-12-09 12:07 - 2015-11-10 00:08 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-12-09 12:07 - 2015-11-10 00:06 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-12-09 12:07 - 2015-11-10 00:06 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-12-09 12:07 - 2015-11-10 00:04 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-12-09 12:07 - 2015-11-10 00:03 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-12-09 12:07 - 2015-11-10 00:02 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-12-09 12:07 - 2015-11-10 00:02 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2015-12-09 12:07 - 2015-11-09 23:50 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2015-12-09 12:07 - 2015-11-09 23:47 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-12-09 12:07 - 2015-11-09 23:46 - 04514816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-12-09 12:07 - 2015-11-09 23:44 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2015-12-09 12:07 - 2015-11-09 23:37 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2015-12-09 12:07 - 2015-11-09 23:36 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-12-09 12:07 - 2015-11-09 23:36 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-12-09 12:07 - 2015-11-09 23:35 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2015-12-09 12:07 - 2015-11-09 23:17 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-12-09 12:07 - 2015-11-09 23:14 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-12-09 12:07 - 2015-11-09 23:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-12-09 12:07 - 2015-11-08 22:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-12-09 12:07 - 2015-11-08 22:32 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2015-12-09 12:07 - 2015-11-08 22:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-12-09 12:07 - 2015-11-08 22:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-12-09 12:07 - 2015-11-08 22:15 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-12-09 12:07 - 2015-11-08 22:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-12-09 12:07 - 2015-11-08 22:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2015-12-09 12:07 - 2015-11-08 22:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2015-12-09 12:07 - 2015-11-08 22:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-12-09 12:07 - 2015-11-08 22:06 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-12-09 12:07 - 2015-11-08 22:04 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-12-09 12:07 - 2015-11-08 22:02 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-12-09 12:07 - 2015-11-08 22:01 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-12-09 12:07 - 2015-11-08 22:01 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2015-12-09 12:07 - 2015-11-08 22:01 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-12-09 12:07 - 2015-11-08 22:01 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2015-12-09 12:07 - 2015-11-08 21:52 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-12-09 12:07 - 2015-11-08 21:48 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-12-09 12:07 - 2015-11-08 21:40 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2015-12-09 12:07 - 2015-11-08 21:35 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-12-09 12:07 - 2015-11-08 21:32 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-12-09 12:07 - 2015-11-08 21:29 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2015-12-09 12:07 - 2015-11-08 21:18 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-12-09 12:07 - 2015-11-08 21:15 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-12-09 12:07 - 2015-11-08 21:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-12-09 12:07 - 2015-11-08 21:14 - 14456832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-12-09 12:07 - 2015-11-08 21:14 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-12-09 12:07 - 2015-11-08 21:13 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-12-09 12:07 - 2015-11-08 20:53 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-12-09 12:07 - 2015-11-08 20:41 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-12-09 12:07 - 2015-11-08 20:30 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-12-09 12:07 - 2015-11-03 19:04 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll

2015-12-09 12:07 - 2015-11-03 18:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll

2015-12-07 13:56 - 2015-12-20 16:35 - 00000000 ____D C:\Users\MattyC\AppData\LocalLow\uTorrent

2015-12-04 17:45 - 2015-12-04 17:45 - 13189336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 01497248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00152568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00141792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00120656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00118608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll

2015-12-04 17:45 - 2015-12-04 17:45 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll

2015-12-04 17:44 - 2015-12-04 17:44 - 10815664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll

2015-12-04 17:44 - 2015-12-04 17:44 - 09017808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll

2015-12-04 17:41 - 2015-12-04 17:41 - 00296648 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys

2015-12-04 17:38 - 2015-12-04 17:38 - 23961088 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys

2015-12-04 17:33 - 2015-12-04 17:33 - 49984000 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll

2015-12-04 17:33 - 2015-12-04 17:33 - 00235008 _____ C:\Windows\system32\clinfo.exe

2015-12-04 17:30 - 2015-12-04 17:30 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2015-12-04 17:30 - 2015-12-04 17:30 - 00059392 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2015-12-04 17:29 - 2015-12-04 17:29 - 27596288 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll

2015-12-04 17:08 - 2015-12-04 17:08 - 00677888 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll

2015-12-04 17:08 - 2015-12-04 17:08 - 00562688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll

2015-12-04 17:08 - 2015-12-04 17:08 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll

2015-12-04 17:07 - 2015-12-04 17:07 - 06643200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll

2015-12-04 17:07 - 2015-12-04 17:07 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll

2015-12-04 17:03 - 2015-12-04 17:03 - 05223936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll

2015-12-04 16:59 - 2015-12-04 16:59 - 31376896 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll

2015-12-04 16:59 - 2015-12-04 16:59 - 00096256 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll

2015-12-04 16:59 - 2015-12-04 16:59 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll

2015-12-04 16:53 - 2015-12-04 16:53 - 25840128 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll

2015-12-04 16:53 - 2015-12-04 16:53 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll

2015-12-04 16:53 - 2015-12-04 16:53 - 00039424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll

2015-12-04 16:51 - 2015-12-04 16:51 - 15711744 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll

2015-12-04 16:51 - 2015-12-04 16:51 - 03437632 _____ C:\Windows\system32\atiumd6a.cap

2015-12-04 16:51 - 2015-12-04 16:51 - 00683968 _____ C:\Windows\SysWOW64\atiapfxx.blb

2015-12-04 16:51 - 2015-12-04 16:51 - 00683968 _____ C:\Windows\system32\atiapfxx.blb

2015-12-04 16:51 - 2015-12-04 16:51 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe

2015-12-04 16:51 - 2015-12-04 16:51 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll

2015-12-04 16:51 - 2015-12-04 16:51 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll

2015-12-04 16:51 - 2015-12-04 16:51 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll

2015-12-04 16:51 - 2015-12-04 16:51 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll

2015-12-04 16:50 - 2015-12-04 16:50 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll

2015-12-04 16:47 - 2015-12-04 16:47 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap

2015-12-04 16:47 - 2015-12-04 16:47 - 00552448 _____ (AMD) C:\Windows\system32\atieclxx.exe

2015-12-04 16:47 - 2015-12-04 16:47 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll

2015-12-04 16:47 - 2015-12-04 16:47 - 00246272 _____ (AMD) C:\Windows\system32\atiesrxx.exe

2015-12-04 16:47 - 2015-12-04 16:47 - 00223744 _____ C:\Windows\system32\dgtrayicon.exe

2015-12-04 16:47 - 2015-12-04 16:47 - 00204800 _____ C:\Windows\system32\amdgfxinfo64.dll

2015-12-04 16:47 - 2015-12-04 16:47 - 00189952 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll

2015-12-04 16:47 - 2015-12-04 16:47 - 00162304 _____ C:\Windows\system32\atieah64.exe

2015-12-04 16:47 - 2015-12-04 16:47 - 00145408 _____ C:\Windows\SysWOW64\atieah32.exe

2015-12-04 16:47 - 2015-12-04 16:47 - 00031744 _____ (AMD) C:\Windows\system32\atimuixx.dll

2015-12-04 16:46 - 2015-12-04 16:46 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll

2015-12-04 16:43 - 2015-12-04 16:43 - 01272832 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll

2015-12-04 16:43 - 2015-12-04 16:43 - 00941568 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll

2015-12-04 16:43 - 2015-12-04 16:43 - 00157696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll

2015-12-04 16:43 - 2015-12-04 16:43 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll

2015-12-04 16:43 - 2015-12-04 16:43 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll

2015-12-04 16:43 - 2015-12-04 16:43 - 00075776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll

2015-12-04 16:43 - 2015-12-04 16:43 - 00070144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll

2015-12-04 16:43 - 2015-12-04 16:43 - 00070144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll

2015-12-04 16:42 - 2015-12-04 16:42 - 00671232 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys

2015-12-04 16:42 - 2015-12-04 16:42 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll

2015-12-04 16:41 - 2015-12-04 16:41 - 00195072 _____ C:\Windows\system32\hsa-thunk64.dll

2015-12-04 16:41 - 2015-12-04 16:41 - 00174592 _____ C:\Windows\SysWOW64\hsa-thunk.dll

2015-12-03 17:35 - 2015-12-03 17:35 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software

2015-12-03 17:35 - 2015-12-03 17:35 - 00000000 ____D C:\Program Files\Common Files\AV

2015-12-01 16:33 - 2015-12-01 16:33 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\Hobbyist Software

2015-12-01 16:05 - 2015-12-01 16:05 - 00000000 ____D C:\ProgramData\ATI

2015-12-01 13:37 - 2015-12-20 09:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings

2015-12-01 13:37 - 2015-12-02 17:46 - 00000000 ____D C:\Users\MattyC\AppData\Local\AMD

 

==================== One Month Modified files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-12-20 17:48 - 2014-09-20 15:43 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\Raptr

2015-12-20 17:48 - 2009-07-14 03:20 - 00000000 ____D C:\Windows

2015-12-20 17:47 - 2014-05-27 18:13 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-12-20 17:47 - 2014-05-08 06:58 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2015-12-20 17:47 - 2013-04-27 14:01 - 00003344 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1243377394-1320084406-2606530148-1000

2015-12-20 17:47 - 2013-04-27 14:01 - 00003212 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1243377394-1320084406-2606530148-1000

2015-12-20 17:47 - 2009-07-14 05:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2015-12-20 17:47 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\PLA

2015-12-20 17:39 - 2014-05-08 06:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-12-20 17:39 - 2014-05-08 06:58 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-12-20 17:38 - 2012-10-18 18:44 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\uTorrent

2015-12-20 17:20 - 2014-05-27 18:13 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2015-12-20 17:02 - 2012-10-17 14:19 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2015-12-20 16:50 - 2015-06-17 16:39 - 00000922 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1243377394-1320084406-2606530148-1000UA.job

2015-12-20 16:46 - 2014-09-20 16:17 - 00000000 ____D C:\ProgramData\AVAST Software

2015-12-20 16:43 - 2009-07-14 04:45 - 00029136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-12-20 16:43 - 2009-07-14 04:45 - 00029136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-12-20 16:37 - 2013-08-26 14:24 - 00000000 ___RD C:\Users\MattyC\Dropbox

2015-12-20 16:37 - 2013-08-26 14:22 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\Dropbox

2015-12-20 15:51 - 2015-01-18 13:01 - 00000000 ____D C:\ProgramData\Ableton

2015-12-20 15:49 - 2012-10-18 06:38 - 00000000 ____D C:\Users\MattyC\AppData\Local\Deployment

2015-12-20 15:49 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\inf

2015-12-20 15:47 - 2014-11-10 15:59 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2015-12-20 15:47 - 2014-11-10 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2015-12-20 15:47 - 2014-11-10 15:59 - 00000000 ____D C:\Program Files (x86)\Java

2015-12-20 15:47 - 2012-10-16 21:23 - 00000000 ____D C:\Users\MattyC

2015-12-20 15:46 - 2013-04-24 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-12-20 15:30 - 2013-04-24 15:20 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\vlc

2015-12-20 11:45 - 2014-03-10 08:02 - 00000000 ____D C:\Users\MattyC\AppData\Roaming\PioneerLog

2015-12-20 09:37 - 2014-09-20 15:42 - 00000000 ____D C:\Program Files\AMD

2015-12-20 09:35 - 2012-10-17 14:10 - 00000000 ____D C:\AMD

2015-12-19 15:37 - 2015-11-15 09:25 - 00000000 ____D C:\AdwCleaner

2015-12-18 06:13 - 2015-04-05 22:49 - 00000000 ___SD C:\Windows\SysWOW64\GWX

2015-12-18 06:13 - 2015-04-05 22:49 - 00000000 ___SD C:\Windows\system32\GWX

2015-12-16 17:56 - 2014-09-20 15:43 - 00000000 ____D C:\Program Files (x86)\Raptr

2015-12-16 16:33 - 2012-11-30 15:00 - 00003424 _____ C:\Windows\System32\Tasks\Apple Diagnostics

2015-12-16 05:22 - 2014-05-27 18:14 - 00002186 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-12-09 18:34 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\rescache

2015-12-09 17:57 - 2009-07-14 04:45 - 00267672 _____ C:\Windows\system32\FNTCACHE.DAT

2015-12-09 17:55 - 2015-02-04 16:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-12-09 17:54 - 2015-02-04 16:46 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2015-12-09 17:54 - 2015-02-04 16:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2015-12-09 17:54 - 2013-08-14 18:27 - 00000000 ____D C:\Windows\system32\MRT

2015-12-09 17:50 - 2012-10-19 18:27 - 140158008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-12-09 16:02 - 2012-10-17 14:19 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2015-12-09 16:02 - 2012-10-17 14:19 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2015-12-09 16:02 - 2012-10-17 14:19 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2015-12-04 17:45 - 2015-07-16 02:11 - 00133016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll

2015-12-04 17:45 - 2014-04-18 01:08 - 00110344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll

2015-12-04 17:45 - 2012-12-19 19:30 - 00102616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll

2015-12-04 17:45 - 2012-07-28 02:15 - 01229984 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll

2015-12-04 17:44 - 2015-07-16 02:11 - 10907328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll

2015-12-04 17:44 - 2012-12-19 20:50 - 09070320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll

2015-12-04 17:44 - 2012-12-19 19:44 - 08089248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll

2015-12-04 17:31 - 2014-11-21 02:32 - 41510400 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll

2015-12-04 17:29 - 2015-06-23 01:55 - 22348288 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll

2015-12-04 16:57 - 2015-11-18 03:40 - 00865280 _____ (AMD) C:\Windows\system32\coinst_15.30.dll

2015-12-04 16:43 - 2014-11-21 02:09 - 00941568 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll

2015-12-04 16:43 - 2014-11-21 02:08 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll

2015-12-04 06:15 - 2014-05-27 18:13 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2015-12-04 06:15 - 2014-05-27 18:13 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2015-12-02 13:18 - 2010-11-21 03:27 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2015-12-01 13:36 - 2013-07-28 13:45 - 00000000 ____D C:\ProgramData\Package Cache

2015-11-26 14:58 - 2009-07-14 05:08 - 00032620 _____ C:\Windows\Tasks\SCHEDLGU.TXT

2015-11-23 07:50 - 2015-06-17 16:39 - 00000870 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1243377394-1320084406-2606530148-1000Core.job

 

==================== Files in the root of some directories =======

 

2012-10-29 16:30 - 2012-10-29 16:30 - 1531392 _____ (Toshiba Samsung Storage Technology Corporation) C:\Users\MattyC\AppData\Roaming\tsdnwin.dll

2012-10-18 19:56 - 2015-08-04 15:49 - 0112640 _____ () C:\Users\MattyC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2008-02-05 12:28 - 2008-02-05 12:28 - 0000051 _____ () C:\Users\MattyC\AppData\Local\setup.txt

2015-07-26 11:38 - 2015-07-26 11:38 - 0000000 _____ () C:\Users\MattyC\AppData\Local\{71234179-5B9F-4630-8BDE-841D875B9E0E}

2015-02-21 19:10 - 2015-02-21 19:10 - 0000000 _____ () C:\Users\MattyC\AppData\Local\{A700702E-BC0A-45B5-9D39-3A3006616E6F}

2013-10-18 12:02 - 2015-09-19 10:05 - 0000221 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

 

Some files in TEMP:

====================

C:\Users\MattyC\AppData\Local\Temp\12345.exe

C:\Users\MattyC\AppData\Local\Temp\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe

C:\Users\MattyC\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpp8xxhi.dll

C:\Users\MattyC\AppData\Local\Temp\GUR15C1.exe

C:\Users\MattyC\AppData\Local\Temp\GUR41A1.exe

C:\Users\MattyC\AppData\Local\Temp\GUR53BA.exe

C:\Users\MattyC\AppData\Local\Temp\GUR5A5E.exe

C:\Users\MattyC\AppData\Local\Temp\GUR5DB8.exe

C:\Users\MattyC\AppData\Local\Temp\GUR862F.exe

C:\Users\MattyC\AppData\Local\Temp\GUR8E2B.exe

C:\Users\MattyC\AppData\Local\Temp\GUR8E79.exe

C:\Users\MattyC\AppData\Local\Temp\GUREFBA.exe

C:\Users\MattyC\AppData\Local\Temp\HitmanPro.exe

C:\Users\MattyC\AppData\Local\Temp\Install_rekordbox_3_0_2_2524.exe

C:\Users\MattyC\AppData\Local\Temp\Install_rekordbox_3_1_0_2818.exe

C:\Users\MattyC\AppData\Local\Temp\Install_rekordbox_3_2_1_3231.exe

C:\Users\MattyC\AppData\Local\Temp\jre-8u31-windows-au.exe

C:\Users\MattyC\AppData\Local\Temp\plugin_mn8732.dll

C:\Users\MattyC\AppData\Local\Temp\plugin_Ta4292.dll

C:\Users\MattyC\AppData\Local\Temp\raptrpatch.exe

C:\Users\MattyC\AppData\Local\Temp\raptr_stub.exe

C:\Users\MattyC\AppData\Local\Temp\Uninstall.exe

 

 

==================== Bamital & volsnap =================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\Windows\system32\winlogon.exe => File is digitally signed

C:\Windows\system32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\system32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\system32\services.exe => File is digitally signed

C:\Windows\system32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\system32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\system32\rpcss.dll => File is digitally signed

C:\Windows\system32\dnsapi.dll => File is digitally signed

C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed

C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2015-12-20 09:33

 

==================== End of FRST.txt ============================
Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version:20-12-2015

Ran by MattyC (2015-12-20 17:49:24)

Running from C:\Users\MattyC\Desktop

Windows 7 Home Premium Service Pack 1 (X64) (2012-10-16 21:23:57)

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-1243377394-1320084406-2606530148-500 - Administrator - Disabled)

Guest (S-1-5-21-1243377394-1320084406-2606530148-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-1243377394-1320084406-2606530148-1002 - Limited - Enabled)

MattyC (S-1-5-21-1243377394-1320084406-2606530148-1000 - Administrator - Enabled) => C:\Users\MattyC

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

 

==================== Installed Programs ======================

 

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)

Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)

AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.04.03 - ASUSTeK Computer Inc.)

Akamai NetSession Interface (HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)

AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 5.00 - Advanced Micro Devices, Inc.)

Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)

Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.3.0 - Asmedia Technology)

Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)

ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.2.0.1 - ASUSTek COMPUTER INC.)

ASUS GPU Tweak (x32 Version: 2.2.0.1 - ASUSTek COMPUTER INC.) Hidden

Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)

Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)

Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Catalyst Control Center Next Localization BR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CHS (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CHT (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CS (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization DA (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization DE (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization EL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization ES (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization FI (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization FR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization HU (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization IT (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization JA (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization KO (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization NL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization NO (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization PL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization RU (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization SV (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization TH (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization TR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 4.02 - Piriform)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

DirectVobSub (remove only) (HKLM-x32\...\DirectVobSub) (Version:  - )

Dropbox (HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)

Dynasty Addons--Install/Update your Dynasty Addons with this updater (HKLM-x32\...\DynastyAddonsUpdater) (Version:  - )

ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )

FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version:  - Image-Line)

FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version:  - )

Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 0.3.5 - Hotger)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden

Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)

High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0 - Nero AG) Hidden

HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)

iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)

IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version:  - Image-Line)

Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)

Intel® Network Connections 17.0.200.2 (HKLM\...\PROSetDX) (Version: 17.0.200.2 - Intel)

Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)

Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)

Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)

iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)

Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)

K-Lite Codec Pack 9.4.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.4.0 - )

LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )

Logitech GamePanel Software 3.06.109 (HKLM\...\{A1E85B9A-AFAD-4D38-AF01-6B020DD5213A}) (Version: 3.06.109 - Logitech Inc.)

Loopmaster Samples version 1.0 (HKLM-x32\...\{EF29801F-C87A-481B-B4D1-6D1FBDEA954B}_is1) (Version: 1.0 - Serato LP INC)

Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)

Mashup (HKLM-x32\...\{D298BD02-4EB8-4C77-9368-42E332E8551B}) (Version: 1.5.884.0 - Mixed In Key LLC)

MediaCoder x64 0.8.30.5622 (HKLM\...\MediaCoder x64) (Version: 0.8.30.5622 - Mediatronic)

Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)

Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ Run Time  Lib Setup (HKLM-x32\...\{AAF4238F-7C29-451D-9925-C753271A5728}) (Version: 1.0.0 - Microsoft)

Mixed in Key (x32 Version: 1.0.208.0 - Mixed In Key LLC) Hidden

Mixed In Key 2.5 (HKLM-x32\...\Mixed In Key) (Version: 2.5 - )

Mixed In Key 7 (HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\{3de857a1-0c56-441b-94ce-4c17ef20b13e}) (Version: 7.0.208.0 - Mixed In Key LLC)

Modiac MP3 to WMV Audio Converter (HKLM-x32\...\Modiac MP3 to WMV Audio Converter) (Version: 1.0.0.4255 - Modiac Inc.)

Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Mozilla Firefox 43.0.1 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 en-GB)) (Version: 43.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1 - Mozilla)

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

Mumble 1.2.8 (HKLM-x32\...\{A9DBD31A-A09F-4C7E-86D1-3B21C59000D1}) (Version: 1.2.8 - Thorvald Natvig)

Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.6.1.1657 - Native Instruments)

Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.5.2.1549 - Native Instruments)

Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.6.7.337 - Native Instruments)

Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.4.11600.19.100 - Nero AG)

Nero Burning ROM 10 (HKLM-x32\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.0.11100.10.100 - Nero AG)

Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.0.11000.12.100 - Nero AG)

Nero CoverDesigner 10 (HKLM-x32\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.0.10900.11.100 - Nero AG)

Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.0.10800.7.100 - Nero AG)

Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.11000.10.100 - Nero AG)

Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.0.10800.8.100 - Nero AG)

Nero MediaHub 10 (HKLM-x32\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.0.13400.11.100 - Nero AG)

Nero Multimedia Suite 10 (HKLM-x32\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.0.13100 - Nero AG)

Nero Recode 10 (HKLM-x32\...\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}) (Version: 4.6.10900.4.100 - Nero AG)

Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.0.10900.9.100 - Nero AG)

Nero SoundTrax 10 (HKLM-x32\...\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}) (Version: 4.6.10600.2.100 - Nero AG)

Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.0.11200.12.100 - Nero AG)

Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0017 - Nero AG)

Nero Vision 10 (HKLM-x32\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.0.11100.8.100 - Nero AG)

Nero WaveEditor 10 (HKLM-x32\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.6.10600.2.100 - Nero AG)

Pioneer CDJ Driver (HKLM-x32\...\Pioneer CDJ) (Version: 1.102.000.001 - Pioneer Corporation.)

Pioneer DJM-900nexus Driver (HKLM-x32\...\DJM-900nexus) (Version:  - Pioneer Corporation.)

Plex Media Server (HKLM-x32\...\{10d692ef-81ce-40ac-b82b-058286c058a6}) (Version: 0.9.1204 - Plex, Inc.)

Plex Media Server (x32 Version: 0.9.1204 - Plex, Inc.) Hidden

PrivDog (HKLM-x32\...\PrivDog) (Version: 1.8.0.15 - privdog.com)

Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)

Raptr (HKLM-x32\...\Raptr) (Version:  - )

RealDownloader (x32 Version: 1.3.1 - RealNetworks, Inc.) Hidden

RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden

RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden

RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.0 - RealNetworks)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)

RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden

rekordbox 2.2.3 (HKLM-x32\...\Pioneer rekordbox 2.2.3) (Version: 2.2.3 - Pioneer)

rekordbox 2.2.4 (HKLM-x32\...\Pioneer rekordbox 2.2.4) (Version: 2.2.4 - Pioneer)

rekordbox 3.0.0 (HKLM-x32\...\Pioneer rekordbox 3.0.0) (Version: 3.0.0.2369 - Pioneer)

rekordbox 3.3.0 (HKLM-x32\...\Pioneer rekordbox 3.3.0) (Version: 3.3.0.4268 - Pioneer)

Replay Media Catcher 5 (5.0.1.7) (HKLM-x32\...\Replay Media Catcher 5) (Version: 5.0.1.7 - Applian Technologies)

Revo Uninstaller Pro 3.1.4 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.4 - VS Revo Group, Ltd.)

SafeZone Stable 1.46.1990.139 (x32 Version: 1.46.1990.139 - Avast Software) Hidden

Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.3.13052_10 - Samsung Electronics Co., Ltd.)

Samsung Kies (x32 Version: 2.5.3.13052_10 - Samsung Electronics Co., Ltd.) Hidden

Samsung Story Album Viewer (HKLM-x32\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)

Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden

SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)

Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version:  - )

Smart Technology Programming Software 7.0.0.26 (HKLM\...\{B16730D8-C156-46DF-860F-C5489C5ADEC5}) (Version: 7.0.0.26 - Mad Catz)

Steinberg Eucon Adapter 6.5 64bit (HKLM\...\{95D90857-61C2-4927-85FF-A317E46E7351}) (Version: 6.5.0 - Steinberg Media Technologies GmbH)

Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)

Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)

TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)

Total Recorder 7.0 (HKLM-x32\...\TotalRecorder) (Version:  - )

Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

Wallpaper Changer (HKLM-x32\...\{62340a00-1b99-4a03-9efc-765636e35146}) (Version: 3.0.6.0 - Digital Distribution)

Wallpaper Changer (x32 Version: 3.0.6.0 - Digital Distribution) Hidden

WebGadget Mixcloud Downloader (HKLM-x32\...\WebGadget Mixcloud Downloader_is1) (Version:  - )

WinDirStat 1.1.2 (HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\...\WinDirStat) (Version:  - )

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

Windows Mobile Device Center (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)

WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)

WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

Wondershare Dr.Fone for Android(Build 4.8.3.143) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 4.8.3.143 - Wondershare Software Co.,Ltd.)

YouTube Video Downloader 3 (HKLM-x32\...\YouTube Video Downloader_is1) (Version:  - Tomabo)

 

==================== Custom CLSID (Whitelisted): ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => No File

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => No File

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => No File

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => No File

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => No File

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => No File

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => No File

CustomCLSID: HKU\S-1-5-21-1243377394-1320084406-2606530148-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MattyC\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll => No File

 

==================== Restore Points =========================

 

 

==================== Hosts content: ===============================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2013-10-19 06:26 - 2013-10-19 06:26 - 00000000 ____A C:\Windows\system32\Drivers\etc\hosts

 

 

==================== Scheduled Tasks (Whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: {0737779C-AB1B-4773-BAF4-2F74495BA68E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-13] (Google Inc.)

Task: {1671D823-9065-4E92-9A00-1D83B2238DB5} - System32\Tasks\{2457AE46-0056-4E5B-9E30-D4F87986618A} => pcalua.exe -a E:\install.exe -d E:\

Task: {27D6D153-3B76-4857-A93A-1CE3A0A2C0C1} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1243377394-1320084406-2606530148-1000UA => C:\Users\MattyC\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17] (Dropbox, Inc.)

Task: {32E27B44-5489-44CF-8960-474AF43E9203} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-20] (AVAST Software)

Task: {3AA3472B-1D90-4030-AD37-0169A5E9C41A} - System32\Tasks\{5043EFCC-9490-41EB-958D-1121FCAAC158} => pcalua.exe -a C:\Users\MattyC\Downloads\setup.exe -d C:\Users\MattyC\Downloads

Task: {4965393C-28B1-4FC0-BBB8-7C5A4D5F2726} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)

Task: {4FCC65DF-A04B-4CFA-A8B0-2E346843BB53} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1243377394-1320084406-2606530148-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)

Task: {5041C558-DA97-4BB4-83E1-539DA4A7188D} - System32\Tasks\{3B06C58B-2756-419D-82CA-40806F8D3D26} => pcalua.exe -a "C:\Program Files (x86)\HighCriteria\TotalRecorder\setup.exe"

Task: {555DDA6C-3AE1-4588-B573-F0E6AA9B8A10} - System32\Tasks\{C0446598-5415-491F-8E98-4FD3C4D34F3B} => pcalua.exe -a H:\Autorun.exe -d H:\

Task: {5AECD212-1296-46C6-B23C-354C977C0B5F} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)

Task: {5DCDE6D2-9217-4CF8-9B37-1650D3AD2F3D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-05-24] (Piriform Ltd)

Task: {731EADE9-B214-404D-9961-A8936D6D74E8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {7390D32C-7AC2-43F1-AC63-4EE1E1944D54} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1243377394-1320084406-2606530148-1000Core => C:\Users\MattyC\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17] (Dropbox, Inc.)

Task: {88E1EB13-E707-45E3-BDDF-7B536A79F4B4} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)

Task: {90495F49-8734-49FB-B699-EF4A83CFA5D5} - System32\Tasks\avastBCLRestartS-1-5-21-1243377394-1320084406-2606530148-1000 => Firefox.exe 

Task: {9922AF5A-ED93-4816-AA3C-AC9A9C9CB0BE} - System32\Tasks\SafeZone scheduled Autoupdate 1450244795 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe

Task: {9B9E9119-8190-4D2E-971F-89413DC690A8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-13] (Google Inc.)

Task: {AF581520-AE6D-49B1-A1BD-A01B8CCC767E} - System32\Tasks\{5400A1B4-BE39-44C3-88F6-103371B36D09} => pcalua.exe -a C:\Users\MattyC\Downloads\wlsetup-web.exe -d C:\Users\MattyC\Downloads

Task: {B7B484AC-EE14-4FBE-A382-CB10EED8C7BF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-09] (Adobe Systems Incorporated)

Task: {BA34B3DE-BE5F-40E2-8D0A-2FFCD9A988E5} - System32\Tasks\shutdwn => C:\Windows\System32\shutdown.exe [2009-07-14] (Microsoft Corporation)

Task: {C420ADDE-DBD6-4A12-975B-DD6CB19D121B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)

Task: {E41E2943-AEFA-4ED2-B30C-CD0568A079B0} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2015-12-04] (Advanced Micro Devices, Inc.)

Task: {E669C284-3930-49A5-A96E-A2053E214CD7} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1243377394-1320084406-2606530148-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)

Task: {E999DC80-936E-4A4F-8F3A-C2225C568AC4} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)

Task: {F318252C-9567-4D4B-888A-7E977C8A0F5F} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe [2012-06-19] (ASUSTeK Computer Inc.)

Task: {FA441689-F34B-4D83-89B4-CBC297B46E25} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-16] (AVAST Software)

Task: {FF3589C6-04D6-4E5A-AE5B-9B01665D743A} - System32\Tasks\{AFC9E22F-CBEC-42BD-835F-D07793AE83C2} => pcalua.exe -a C:\Users\MattyC\Downloads\ASIO4ALL_2_11_Beta2_English.exe -d C:\Users\MattyC\Downloads

Task: {FFC38EA5-57F4-4321-9F83-78D188055D6D} - System32\Tasks\{2F5EF954-D1C5-4471-B52D-27E6FF4E3E48} => pcalua.exe -a C:\Users\MattyC\Downloads\blazingcolorsviz.exe -d C:\Users\MattyC\Downloads

 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

 

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1243377394-1320084406-2606530148-1000Core.job => C:\Users\MattyC\AppData\Local\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1243377394-1320084406-2606530148-1000UA.job => C:\Users\MattyC\AppData\Local\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

 

==================== Shortcuts =============================

 

(The entries could be listed to be restored or removed.)

 

ShortcutWithArgument: C:\Users\MattyC\Desktop\icons\Ask Mr. Robot Client.lnk -> C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe (Microsoft Corporation) -> 3901401805.www.askmrrobot.com

ShortcutWithArgument: C:\Users\MattyC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ask Mr. Robot Client.lnk -> C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe (Microsoft Corporation) -> 3901401805.www.askmrrobot.com

 

==================== Loaded Modules (Whitelisted) ==============

 

2012-06-01 09:42 - 2012-06-01 09:42 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe

2012-01-17 10:24 - 2012-01-17 10:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe

2013-03-06 01:21 - 2013-03-06 01:21 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

2012-10-16 21:38 - 2012-05-03 09:40 - 00258048 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\S5WOW_App\x64\S5wow_2005.exe

2013-07-22 09:47 - 2013-07-22 09:47 - 00735744 _____ () C:\Program Files (x86)\Wallpaper Changer\Wallpaper Changer.exe

2015-12-20 16:47 - 2015-12-20 16:47 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll

2015-12-20 16:47 - 2015-12-20 16:47 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll

2015-12-20 16:47 - 2015-12-20 16:47 - 02805760 _____ () C:\Program Files\AVAST Software\Avast\defs\15122000\algo.dll

2015-12-20 16:47 - 2015-12-20 16:47 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll

2012-08-27 20:33 - 2012-08-27 20:33 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

2012-08-27 20:33 - 2012-08-27 20:33 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

2014-05-29 13:59 - 2015-12-20 17:47 - 00030720 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll

2012-10-16 21:38 - 2010-06-29 02:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll

2012-10-16 21:38 - 2012-05-02 17:04 - 00233472 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\AudioProjection.dll

2012-10-16 21:38 - 2010-12-14 16:46 - 00067584 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\CoreAudioCap.dll

2012-10-16 21:38 - 2012-03-03 12:39 - 00184320 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\DLCapPP.dll

2012-10-16 21:38 - 2011-08-09 13:52 - 00425984 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\awiscale.DLL

2012-10-16 21:38 - 2012-04-25 13:57 - 00073728 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\IsSupported.dll

2012-10-16 21:38 - 2012-01-12 15:44 - 00475136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFiGO_HookKey.dll

2012-10-16 21:38 - 2012-04-20 15:24 - 00716800 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiMoveHelp.dll

2012-10-16 21:38 - 2012-04-25 13:47 - 00659456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\PhoneCtrlAPI.dll

2012-10-16 21:38 - 2011-07-12 18:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll

2012-10-16 21:38 - 2010-10-05 07:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll

2012-10-16 21:38 - 2012-03-21 11:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll

2012-10-16 21:38 - 2012-05-25 09:33 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll

2012-10-16 21:38 - 2012-05-28 20:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll

2012-10-16 21:38 - 2011-09-19 19:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll

2012-10-16 21:38 - 2011-07-21 08:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll

2012-10-16 21:38 - 2011-10-14 19:03 - 00885248 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll

2012-10-16 21:38 - 2012-06-19 15:52 - 01625088 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\WiFiGO.dll

2012-10-16 21:38 - 2010-08-23 02:17 - 00662016 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll

2012-10-16 21:38 - 2010-10-05 07:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll

2012-10-16 21:38 - 2012-01-18 21:39 - 00073728 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi Engine\IsSupported.dll

2012-10-16 21:38 - 2009-08-12 19:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll

2013-09-14 01:51 - 2013-09-14 01:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll

2013-09-14 01:50 - 2013-09-14 01:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll

2015-12-11 05:28 - 2015-10-31 00:59 - 00034768 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00019408 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\faulthandler.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00022848 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Crypto.Random.OSRNG.winrandom.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00023352 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Crypto.Util._counter.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00042296 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Crypto.Cipher._AES.pyd

2015-12-11 05:28 - 2015-10-31 00:59 - 00116688 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\pywintypes27.dll

2015-12-11 05:28 - 2015-10-31 00:59 - 00093640 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\_ctypes.pyd

2015-12-11 05:28 - 2015-10-31 00:59 - 00018376 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\select.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00019760 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00105928 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32api.pyd

2015-12-11 05:28 - 2015-10-31 00:59 - 00392144 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\pythoncom27.dll

2015-12-11 05:28 - 2015-12-08 21:36 - 00381752 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd

2015-12-11 05:28 - 2015-10-31 00:59 - 00692688 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\unicodedata.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00020816 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00109520 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 01737032 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00020808 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00020800 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\_cffi_python_x66cf7a7cx17a72769.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00021840 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00038696 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\fastpath.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00024528 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32event.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00020936 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\mmapfile.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00114640 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32security.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00021320 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00124880 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32file.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00030160 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32pipe.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00043472 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32process.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00175560 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32gui.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00028616 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32ts.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00024016 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32clipboard.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00048592 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32service.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00024392 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00036296 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\librsync.dll

2015-12-11 05:28 - 2015-10-31 01:00 - 00024016 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\win32profile.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00117056 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00023376 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd

2015-12-11 05:28 - 2015-10-31 00:59 - 00134608 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\_elementtree.pyd

2015-12-11 05:28 - 2015-10-31 00:59 - 00134088 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\pyexpat.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00240584 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\jpegtran.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00020280 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00052024 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00021304 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Crypto.Util.strxor.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00350152 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\winxpgui.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00084792 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL

2015-12-11 05:28 - 2015-12-08 21:36 - 01826608 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd

2015-12-11 05:28 - 2015-10-31 01:00 - 00083912 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\sip.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 03891504 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 01950000 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00519984 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00133936 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00225080 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00207672 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd

2015-12-11 05:28 - 2015-12-08 21:36 - 00024904 _____ () C:\Users\MattyC\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd

2012-10-16 21:38 - 2012-02-06 20:08 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\pngio.dll

2015-12-20 16:47 - 2015-12-20 16:47 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

2010-11-22 22:56 - 2010-11-22 22:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd

2014-05-13 23:26 - 2014-05-13 23:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd

2014-05-13 23:26 - 2014-05-13 23:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd

2014-05-13 23:26 - 2014-05-13 23:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd

2014-05-13 23:26 - 2014-05-13 23:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd

2010-11-22 22:57 - 2010-11-22 22:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll

2010-11-22 22:56 - 2010-11-22 22:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd

2010-11-22 22:57 - 2010-11-22 22:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd

2010-11-22 22:57 - 2010-11-22 22:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd

2011-02-15 18:17 - 2011-02-15 18:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll

2010-11-22 22:57 - 2010-11-22 22:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd

2014-05-13 23:26 - 2014-05-13 23:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd

2015-10-21 20:29 - 2015-10-21 20:29 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll

2015-10-21 20:29 - 2015-10-21 20:29 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll

2015-06-26 23:09 - 2015-06-26 23:09 - 00271872 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll

2010-11-22 22:56 - 2010-11-22 22:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll

2010-11-22 22:57 - 2010-11-22 22:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd

2010-11-22 22:56 - 2010-11-22 22:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd

2010-11-22 22:57 - 2010-11-22 22:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd

2014-06-18 00:56 - 2014-06-18 00:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd

2011-02-15 18:17 - 2011-02-15 18:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll

2010-11-22 23:06 - 2010-11-22 23:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll

2013-05-09 23:52 - 2013-05-09 23:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll

2013-05-09 23:52 - 2013-05-09 23:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll

2013-05-09 23:52 - 2013-05-09 23:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll

2013-05-03 18:57 - 2013-05-03 18:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll

2013-05-03 18:56 - 2013-05-03 18:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll

2013-05-03 18:56 - 2013-05-03 18:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll

2013-05-03 18:57 - 2013-05-03 18:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll

2013-05-03 18:56 - 2013-05-03 18:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll

2013-05-03 18:57 - 2013-05-03 18:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll

2013-05-03 18:57 - 2013-05-03 18:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll

2013-05-03 18:57 - 2013-05-03 18:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll

2013-05-03 18:57 - 2013-05-03 18:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll

2015-12-16 05:22 - 2015-12-11 03:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll

2015-12-16 05:22 - 2015-12-11 03:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll

2015-12-16 05:22 - 2015-12-11 03:54 - 16573256 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll

2014-10-17 05:44 - 2014-10-17 05:44 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1eeea3ab8d69ec722bdcb28b8eb8dd75\IsdiInterop.ni.dll

2012-10-16 21:39 - 2012-02-01 15:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll

 

==================== Alternate Data Streams (Whitelisted) =========

 

(If an entry is included in the fixlist, only the ADS will be removed.)

 

 

==================== Safe Mode (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

 

==================== EXE Association (Whitelisted) ===============

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

 

 

==================== Internet Explorer trusted/restricted ===============

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKU\S-1-5-21-1243377394-1320084406-2606530148-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MattyC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 8.26.56.26 - 156.154.70.22

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall is enabled.

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(Currently there is no automatic fix for this section.)

 

 

==================== FirewallRules (Whitelisted) ===============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [{9150906F-A153-48B6-A319-7DC6E510F95F}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe

FirewallRules: [{DD1921F9-4341-4FC4-A995-863511ED738B}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe

FirewallRules: [{8EACAC5D-E6FC-481F-B400-FEC5FFF2D684}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe

FirewallRules: [{1AE37E09-91ED-4B45-9E53-01D028B0D146}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe

FirewallRules: [{13E4439C-C2DB-436A-833A-CE94CDC1DEA5}] => (Allow) LPort=2869

FirewallRules: [{4243C8ED-9519-4E51-8199-CE3C6C868554}] => (Allow) LPort=1900

FirewallRules: [{D1C3DEEC-85DE-41ED-9939-FEAF1626E3D8}] => (Allow) LPort=2869

FirewallRules: [{CFCC1D2A-7EF1-4D74-A203-2EEE97EA897C}] => (Allow) LPort=1900

FirewallRules: [{FD2CCBD7-742A-48CB-B04B-D27980B35F41}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe

FirewallRules: [{4EEE3073-2E08-406E-B2D6-4F850D334CCB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{87A4090B-A11F-4C09-9007-4500131B518C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe

FirewallRules: [{CD5B7C5D-AFB5-4827-9F96-F2DF2BF413F0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{505259EF-10B8-495B-8444-0A37327B2634}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

FirewallRules: [{365141E6-55D7-4728-A294-B46003A902B1}] => (Allow) C:\Users\MattyC\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{E7E3C70A-6048-4B24-8BC4-17A61F6B47AC}] => (Allow) C:\Users\MattyC\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{ECEA0A2F-38BF-475F-8085-C71D76844ADD}] => (Allow) C:\Program Files (x86)\Applian Technologies\Replay Media Catcher 5\aria2c.exe

FirewallRules: [{923857D4-4CB5-4FFC-96DC-D7CB4FCAA412}] => (Allow) C:\Program Files (x86)\Applian Technologies\Replay Media Catcher 5\aria2c.exe

FirewallRules: [{57D143C2-27B7-45B6-91AE-B36746EF735E}] => (Allow) C:\Program Files (x86)\Applian Technologies\Replay Media Catcher 5\qtCopy.exe

FirewallRules: [{206B4C87-3670-465A-AD54-35EDE39596CD}] => (Allow) C:\Program Files (x86)\Applian Technologies\Replay Media Catcher 5\qtCopy.exe

FirewallRules: [{A9A3DF13-DF21-4F53-82EC-9403D2008B0A}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe

FirewallRules: [{D6F7F5F6-D99D-4D6C-B838-E1320658AA90}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe

FirewallRules: [{CA68A623-B972-4CA8-B3DF-4042EBF04BBC}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe

FirewallRules: [{633D8435-5814-48ED-AB5E-B03368A2CFC8}] => (Allow) C:\Users\MattyC\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{1A0B4ABD-7E45-4493-BEFA-BBBF10488333}] => (Allow) C:\Users\MattyC\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{32C66281-68F1-4AEF-9E95-D57E0A5E5376}] => (Allow) C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Dropbox.exe

FirewallRules: [{7BFAB6B9-B4B0-437F-8BD3-F194B9E15481}] => (Allow) C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Dropbox.exe

FirewallRules: [{E378E674-3A5C-4FEF-A58B-6DBF67AF37BD}] => (Allow) C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Dropbox.exe

FirewallRules: [{1CA40DD3-FBC5-447A-A191-BD72344E5623}] => (Allow) C:\Users\MattyC\AppData\Roaming\Dropbox\bin\Dropbox.exe

FirewallRules: [TCP Query User{BAE98B7F-FC3E-4D61-940A-EA9E7C605623}C:\users\mattyc\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\mattyc\appdata\local\akamai\netsession_win.exe

FirewallRules: [uDP Query User{1AACEED0-8341-4AFC-948A-4D50CF26ADD2}C:\users\mattyc\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\mattyc\appdata\local\akamai\netsession_win.exe

FirewallRules: [{CBED9737-40B1-4115-BB06-B992E45AA67D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe

FirewallRules: [{6A5AE94E-FA0A-4B13-9CCE-57F6E5151FBB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe

FirewallRules: [TCP Query User{B2F45A2A-AB11-4114-9D38-A28B98D3C605}C:\program files (x86)\pioneer\rekordbox 3.0.1\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.1\rekordbox 3.exe

FirewallRules: [uDP Query User{BEE8E028-C1BA-4E1D-99F0-E1963C3EEF4D}C:\program files (x86)\pioneer\rekordbox 3.0.1\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.1\rekordbox 3.exe

FirewallRules: [TCP Query User{21531924-10D7-4BD4-B958-AA5E70BB6DEB}C:\program files (x86)\pioneer\rekordbox 3.0.1\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.1\psvnfsd.exe

FirewallRules: [uDP Query User{7CB2269B-8327-4034-B4EF-60B320065105}C:\program files (x86)\pioneer\rekordbox 3.0.1\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.1\psvnfsd.exe

FirewallRules: [TCP Query User{21622702-DD36-4602-83F8-B23BC5BA42F3}C:\program files (x86)\pioneer\rekordbox 3.0.1\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.1\psvlinksysmgr.exe

FirewallRules: [uDP Query User{D2D7A193-C7C6-477B-AB31-FC6C0E11561C}C:\program files (x86)\pioneer\rekordbox 3.0.1\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.1\psvlinksysmgr.exe

FirewallRules: [TCP Query User{B16783B3-51C1-4496-A3B5-052E0528627B}C:\program files (x86)\pioneer\rekordbox 3.0.1\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.1\edb_streamd.exe

FirewallRules: [uDP Query User{1747CA4A-8DB1-40F2-A4D8-4A21BFAD0D30}C:\program files (x86)\pioneer\rekordbox 3.0.1\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.1\edb_streamd.exe

FirewallRules: [{8E86C08A-B11A-4EE1-B415-3AE084725FF5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe

FirewallRules: [{A686AB83-5BF4-4E18-82FD-9D8ED32C9DE4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe

FirewallRules: [{C54E6F0C-547E-4081-B8E3-3574C0A5D65B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe

FirewallRules: [{91CA2DEB-BE47-43F2-A900-26957CC5A18B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe

FirewallRules: [{CE94632C-5A86-46C9-8BBB-5E26110A5870}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe

FirewallRules: [{AAF88480-EC54-4766-B978-DA6099AADEAA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe

FirewallRules: [{9AEC7D81-A668-4FB2-B1C6-800FF5D1CBDE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe

FirewallRules: [{023DD347-2B35-4C53-BF33-75C5F07CBA12}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe

FirewallRules: [{B3D283AA-2BB5-46E8-A3E3-FF3E8C67F1A4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe

FirewallRules: [{FDACA6AA-EBC3-4955-9E4A-E10E60DF9EF6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe

FirewallRules: [TCP Query User{5A23ED09-6834-42BA-9BDB-160DD8984C4E}C:\program files (x86)\pioneer\rekordbox 3.0.2\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.2\rekordbox 3.exe

FirewallRules: [uDP Query User{DFFDB7C1-DE3E-4872-965B-59D7CF60D6B0}C:\program files (x86)\pioneer\rekordbox 3.0.2\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.2\rekordbox 3.exe

FirewallRules: [TCP Query User{41532BFB-2CD7-41F6-A2E9-D7A4BB4E7480}C:\program files (x86)\pioneer\rekordbox 3.0.2\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.2\psvnfsd.exe

FirewallRules: [uDP Query User{D86C0A5A-5BF4-472B-8E33-4AD1EADCBD72}C:\program files (x86)\pioneer\rekordbox 3.0.2\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.2\psvnfsd.exe

FirewallRules: [TCP Query User{FF808303-CA10-4DC6-B4A2-A514C538C96C}C:\program files (x86)\pioneer\rekordbox 3.0.2\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.2\psvlinksysmgr.exe

FirewallRules: [uDP Query User{F6C190B6-459A-4557-8018-F3EA3D084F69}C:\program files (x86)\pioneer\rekordbox 3.0.2\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.2\psvlinksysmgr.exe

FirewallRules: [{AAEAD187-CC5B-4AB3-B2A2-8CFFA8F02606}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe

FirewallRules: [{6812EE84-093E-4BB1-B17C-9D4663836CC4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe

FirewallRules: [{B3DDCA85-7609-428F-B3A7-118A988BDD7F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe

FirewallRules: [{0CD91927-2D81-4FE4-861A-29E420DB4CF1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe

FirewallRules: [TCP Query User{EE240A02-5F4B-40CB-8A4D-01AB1F00DB9E}C:\program files (x86)\pioneer\rekordbox 3.0.2\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.2\edb_streamd.exe

FirewallRules: [uDP Query User{E9C2F512-7DE4-407E-9532-D27326D1A223}C:\program files (x86)\pioneer\rekordbox 3.0.2\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.2\edb_streamd.exe

FirewallRules: [TCP Query User{C1098DC8-2CCB-421D-82B5-A6A5208FF0DA}C:\program files (x86)\pioneer\rekordbox 3.1.0\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.1.0\rekordbox 3.exe

FirewallRules: [uDP Query User{7A87EDA4-7574-46F6-BE73-01057364A3F3}C:\program files (x86)\pioneer\rekordbox 3.1.0\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.1.0\rekordbox 3.exe

FirewallRules: [TCP Query User{645A289B-ACB4-4264-BE1A-4DE7C095F505}C:\program files (x86)\pioneer\rekordbox 3.1.0\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.1.0\psvnfsd.exe

FirewallRules: [uDP Query User{8DC9BE0A-4AA5-4D2C-ACCF-E9C0CC39A7F5}C:\program files (x86)\pioneer\rekordbox 3.1.0\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.1.0\psvnfsd.exe

FirewallRules: [TCP Query User{3625A220-FA4E-47DB-9787-7FCC3CE7318A}C:\program files (x86)\pioneer\rekordbox 3.1.0\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.1.0\psvlinksysmgr.exe

FirewallRules: [uDP Query User{B2088E0F-C899-4FB2-B057-0929EBBF7F59}C:\program files (x86)\pioneer\rekordbox 3.1.0\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.1.0\psvlinksysmgr.exe

FirewallRules: [TCP Query User{DC5D1AF0-F015-4065-A4B6-6F637EDC2610}C:\program files (x86)\pioneer\rekordbox 3.1.0\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.1.0\edb_streamd.exe

FirewallRules: [uDP Query User{E93B8EFA-FF50-48F9-8D9F-19EB0B166DA6}C:\program files (x86)\pioneer\rekordbox 3.1.0\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.1.0\edb_streamd.exe

FirewallRules: [{457F38D2-D7FF-46F4-8818-08D523A06FF6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe

FirewallRules: [{B253325E-4F89-464E-8787-79F7D573F2B0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe

FirewallRules: [{9F0FF788-4C4E-4CF4-86C7-1A96DD22D02C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe

FirewallRules: [{1C7E61A7-9E47-419F-8E0C-2A5A5727F661}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe

FirewallRules: [{F0EC3BAC-FE6E-4D87-AD8A-265A812C61E2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{03A7ACEF-91EA-4BCA-B931-07C9F6D0A851}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe

FirewallRules: [{0CD41C2B-D661-4CD6-8933-E5347D462BE0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe

FirewallRules: [{89FED5C6-FD11-4410-B10A-3A0CD627FF8F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe

FirewallRules: [{FC23F46C-F005-468E-8F81-C4228060E75A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe

FirewallRules: [TCP Query User{2556B3BF-AF00-4516-9DAF-DD92A3FEA0C0}C:\program files (x86)\pioneer\rekordbox 3.2.0\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.0\psvnfsd.exe

FirewallRules: [uDP Query User{D29131D3-6778-47F2-9EC4-E68FBEB255DC}C:\program files (x86)\pioneer\rekordbox 3.2.0\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.0\psvnfsd.exe

FirewallRules: [TCP Query User{FF60990E-EDC6-441B-ADB0-452930839B86}C:\program files (x86)\pioneer\rekordbox 3.2.0\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.0\psvlinksysmgr.exe

FirewallRules: [uDP Query User{AA1C8E75-94AD-44D8-9019-4C04896808B4}C:\program files (x86)\pioneer\rekordbox 3.2.0\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.0\psvlinksysmgr.exe

FirewallRules: [TCP Query User{F381EA87-EE9F-42C8-ADDA-5E7E8C889AA1}C:\program files (x86)\pioneer\rekordbox 3.2.0\edb_streamd.exe] => (Block) C:\program files (x86)\pioneer\rekordbox 3.2.0\edb_streamd.exe

FirewallRules: [uDP Query User{1E47109D-4F4E-4724-8E07-5944B55E8013}C:\program files (x86)\pioneer\rekordbox 3.2.0\edb_streamd.exe] => (Block) C:\program files (x86)\pioneer\rekordbox 3.2.0\edb_streamd.exe

FirewallRules: [{E977FCA1-12D4-4506-8454-782DB1F4339D}] => (Allow) C:\Program Files (x86)\Pioneer\rekordbox 3.2.0\rekordbox 3.exe

FirewallRules: [{F874D7C1-1A2C-47C1-8F2B-421E55A79983}] => (Allow) C:\Program Files (x86)\Pioneer\rekordbox 3.2.0\rekordbox 3.exe

FirewallRules: [{7909B265-0425-4F4E-92BE-AEF45DE881F7}] => (Allow) C:\Program Files (x86)\Pioneer\rekordbox 3.2.0\rekordbox 3.exe

FirewallRules: [{58285745-C6F5-4ED5-8C3B-C7F7EA4B76AA}] => (Allow) C:\Program Files (x86)\Pioneer\rekordbox 3.2.0\rekordbox 3.exe

FirewallRules: [TCP Query User{B2835976-1C77-4F2D-A0A9-9BC5E1427B2B}C:\program files (x86)\pioneer\rekordbox 3.2.1\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.1\rekordbox 3.exe

FirewallRules: [uDP Query User{F2F716EB-0B90-40D4-A954-7025ED87EFF4}C:\program files (x86)\pioneer\rekordbox 3.2.1\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.1\rekordbox 3.exe

FirewallRules: [TCP Query User{100071F2-FB3F-4472-B010-3803F7D4E80C}C:\program files (x86)\pioneer\rekordbox 3.2.1\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.1\psvnfsd.exe

FirewallRules: [uDP Query User{D6033C21-B3C3-42BA-AEF8-E80B3038E5EE}C:\program files (x86)\pioneer\rekordbox 3.2.1\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.1\psvnfsd.exe

FirewallRules: [TCP Query User{C0C49D01-C12D-4891-AD6F-7F72EC883707}C:\program files (x86)\pioneer\rekordbox 3.2.1\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.1\psvlinksysmgr.exe

FirewallRules: [uDP Query User{698B1FC6-BAB2-4099-96C0-FB5250A8BA4A}C:\program files (x86)\pioneer\rekordbox 3.2.1\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.1\psvlinksysmgr.exe

FirewallRules: [TCP Query User{C73B5BDE-A0E3-4CAE-B525-661B5A558DFB}C:\program files (x86)\pioneer\rekordbox 3.2.1\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.1\edb_streamd.exe

FirewallRules: [uDP Query User{C4BC1FC4-A4BB-47B7-9E27-DD82E9D6B472}C:\program files (x86)\pioneer\rekordbox 3.2.1\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.1\edb_streamd.exe

FirewallRules: [{F536A4EA-95BA-4964-8642-AD9C4A59035C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{8180AA08-24AB-4454-A7CA-0359F7978ADC}] => (Allow) LPort=2869

FirewallRules: [{A81E1D95-A796-4A35-BA98-7990D2491A23}] => (Allow) LPort=1900

FirewallRules: [{20FD0EA9-AA89-4904-A36F-A16C0EAFEB40}] => (Allow) LPort=2869

FirewallRules: [{DAACA595-F625-4C09-B428-38ABE30064AD}] => (Allow) LPort=1900

FirewallRules: [TCP Query User{53E4CE22-B304-4CAB-8CAB-2A96E39BE300}C:\program files (x86)\pioneer\rekordbox 3.2.2\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.2\rekordbox 3.exe

FirewallRules: [uDP Query User{474B6CE2-77DE-46A8-8C20-6C914819559D}C:\program files (x86)\pioneer\rekordbox 3.2.2\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.2\rekordbox 3.exe

FirewallRules: [TCP Query User{9B563B00-B8A3-4171-AC8A-78793CA5D41B}C:\program files (x86)\pioneer\rekordbox 3.2.2\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.2\psvnfsd.exe

FirewallRules: [uDP Query User{CB9E0BE5-2A96-4548-BF14-296AE7FF39F4}C:\program files (x86)\pioneer\rekordbox 3.2.2\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.2\psvnfsd.exe

FirewallRules: [TCP Query User{B40C83E9-6C74-4000-8CD2-589B5C90BB85}C:\program files (x86)\pioneer\rekordbox 3.2.2\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.2\psvlinksysmgr.exe

FirewallRules: [uDP Query User{089DB705-BA11-49DD-A955-B65B39CBF10D}C:\program files (x86)\pioneer\rekordbox 3.2.2\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.2\psvlinksysmgr.exe

FirewallRules: [TCP Query User{C0524336-B5FB-468D-B40B-342E0762988C}C:\users\mattyc\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\mattyc\appdata\local\akamai\netsession_win.exe

FirewallRules: [uDP Query User{F585A124-1594-4EAF-8348-278B45B6A4A4}C:\users\mattyc\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\mattyc\appdata\local\akamai\netsession_win.exe

FirewallRules: [{63B7E4B2-E3E3-40E5-AC8C-84C216EAA583}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe

FirewallRules: [{CAD417C4-F6D3-4B44-9C78-BE4922BD0A71}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe

FirewallRules: [{4C273E52-1565-43C0-95FE-3053C3F3E7A8}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe

FirewallRules: [TCP Query User{17D7BE0F-28E5-4D19-801D-57A432BC25C0}C:\program files (x86)\pioneer\rekordbox 3.3.0\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\rekordbox 3.exe

FirewallRules: [uDP Query User{AFB4A4DD-EBAF-4AA0-9DF6-FE7947FB4950}C:\program files (x86)\pioneer\rekordbox 3.3.0\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\rekordbox 3.exe

FirewallRules: [TCP Query User{5416203D-0803-4856-85E8-635B46EE615F}C:\program files (x86)\pioneer\rekordbox 3.3.0\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\psvnfsd.exe

FirewallRules: [uDP Query User{D478503D-C389-40CA-83E3-230D287F0F25}C:\program files (x86)\pioneer\rekordbox 3.3.0\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\psvnfsd.exe

FirewallRules: [TCP Query User{300D50BA-50DF-40F3-8EB7-D43041F3BA0B}C:\program files (x86)\pioneer\rekordbox 3.3.0\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\psvlinksysmgr.exe

FirewallRules: [uDP Query User{5B88B611-A47A-4BAE-B028-0D09909B2B56}C:\program files (x86)\pioneer\rekordbox 3.3.0\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\psvlinksysmgr.exe

FirewallRules: [{67B0FCFC-FF10-4181-A7AF-6E9D84DB51FE}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\psvlinksysmgr.exe

FirewallRules: [{7ACBAEC5-67CC-42D5-B2B7-3DB86E44E4B8}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\psvlinksysmgr.exe

FirewallRules: [{5B70FC13-8784-4F6B-9851-47BB062E4A5F}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\psvnfsd.exe

FirewallRules: [{21541CF1-9AE1-4976-B6A8-457D571E5A68}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\psvnfsd.exe

FirewallRules: [{C1FB743E-048E-483D-8862-906A948E1270}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\rekordbox 3.exe

FirewallRules: [{09F9DDE8-3123-4A24-AD70-A71854ACD200}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\rekordbox 3.exe

FirewallRules: [TCP Query User{11DB7355-2812-42E6-A121-27002B6B8CD4}C:\program files (x86)\pioneer\rekordbox 3.2.2\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.2\edb_streamd.exe

FirewallRules: [uDP Query User{0F2E77C4-794F-47BC-B0CA-2C4A6F81E320}C:\program files (x86)\pioneer\rekordbox 3.2.2\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.2.2\edb_streamd.exe

FirewallRules: [{3BC37842-DA41-4F14-878F-BB1F6A6FAED9}] => (Block) C:\program files (x86)\pioneer\rekordbox 3.2.2\edb_streamd.exe

FirewallRules: [{0C1B00F1-5BF0-437E-9EE6-832296ECCDE0}] => (Block) C:\program files (x86)\pioneer\rekordbox 3.2.2\edb_streamd.exe

FirewallRules: [TCP Query User{12A20B45-54FB-4311-89EC-94240978E869}C:\program files (x86)\pioneer\rekordbox 3.0.0\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\rekordbox 3.exe

FirewallRules: [uDP Query User{432F640F-B7FE-4B31-AFBA-C4DD5486C057}C:\program files (x86)\pioneer\rekordbox 3.0.0\rekordbox 3.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\rekordbox 3.exe

FirewallRules: [TCP Query User{CF20D127-03C9-46DC-BD4B-875B476E69B3}C:\program files (x86)\pioneer\rekordbox 3.0.0\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\psvnfsd.exe

FirewallRules: [uDP Query User{8E3FBEEB-D96F-4468-B465-CB0CCE71216F}C:\program files (x86)\pioneer\rekordbox 3.0.0\psvnfsd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\psvnfsd.exe

FirewallRules: [TCP Query User{1A1B4932-9683-4C77-86F5-903A3EA693C3}C:\program files (x86)\pioneer\rekordbox 3.0.0\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\psvlinksysmgr.exe

FirewallRules: [uDP Query User{444E67BB-BE78-4BC7-B679-5BC0291788F5}C:\program files (x86)\pioneer\rekordbox 3.0.0\psvlinksysmgr.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\psvlinksysmgr.exe

FirewallRules: [{966C7984-0A92-4814-B23E-871D4F088D7C}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\psvlinksysmgr.exe

FirewallRules: [{642323DC-24AD-4F0D-BF29-CAB6EEE20930}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\psvlinksysmgr.exe

FirewallRules: [{65AC8E1C-15E6-4EDA-B4E0-366FD2223E72}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\psvnfsd.exe

FirewallRules: [{A771FB09-F641-4BD5-8FD9-566D3491D8E8}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\psvnfsd.exe

FirewallRules: [{081D9C6E-D0F9-47ED-A841-5A85FEB9E415}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\rekordbox 3.exe

FirewallRules: [{BDAE4D91-8C1D-4B26-ADD0-77254DC49475}] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.0.0\rekordbox 3.exe

FirewallRules: [TCP Query User{08C3ED70-FBCC-46F9-ABF2-6E0A8D9D7F3B}C:\program files (x86)\pioneer\rekordbox 3.3.0\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\edb_streamd.exe

FirewallRules: [uDP Query User{2E5B06D9-6681-479C-B0CD-3F4DDC840754}C:\program files (x86)\pioneer\rekordbox 3.3.0\edb_streamd.exe] => (Allow) C:\program files (x86)\pioneer\rekordbox 3.3.0\edb_streamd.exe

FirewallRules: [{E6118F89-4B6A-41D6-B75A-476010AFE004}] => (Block) C:\program files (x86)\pioneer\rekordbox 3.3.0\edb_streamd.exe

FirewallRules: [{9AC955AB-B997-4556-B62D-4F1AF296B75D}] => (Block) C:\program files (x86)\pioneer\rekordbox 3.3.0\edb_streamd.exe

FirewallRules: [{4149C64C-4801-4EA9-89B2-2E61625489EE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{4F71677F-9329-465B-B472-84CC40C25D37}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{13E0C3D1-5791-4C50-9516-6350BD171449}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\VLC Setup Helper.exe

FirewallRules: [{709C3CD9-0524-4590-93D8-B644B7FB9702}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\mDNSResponder.exe

FirewallRules: [{CA62C53E-F814-4579-87E9-4C5D66599B18}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe\Bonjour\mDNSResponder.exe

FirewallRules: [{8242D884-DEF4-449E-94F0-B6CA2C5F920F}] => (Allow) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe

FirewallRules: [{BA987046-57E0-481E-B77A-0D2F6E604877}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\VLC Streamer Configuration.exe

FirewallRules: [{3816D34C-C745-475C-9893-9904FD6CC4D5}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Streamer\mDNSResponder.exe

FirewallRules: [{ACA900B2-A049-4DF4-A0DF-0D62E7E5CBCC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

FirewallRules: [{036BD30C-459A-4AAD-8724-ECE78B10016B}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe

FirewallRules: [{CE911098-D444-447F-88C5-75463AEB5AB7}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe

FirewallRules: [{57D96EC5-DA48-42DA-B79B-6A3D59CFAAB7}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe

FirewallRules: [{A7DC3C18-1D1B-46DB-B391-B00AD76D37FB}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YouTubeVideoDownloader.exe] => Enabled:YouTube Video Downloader

 

==================== Faulty Device Manager Devices =============

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (12/20/2015 05:47:57 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: Wallpaper Changer.exe, version: 3.0.6.0, time stamp: 0x51ece3a6

Faulting module name: KERNELBASE.dll, version: 6.1.7601.19045, time stamp: 0x56258f05

Exception code: 0xe0434352

Fault offset: 0x0000c42d

Faulting process id: 0x1208

Faulting application start time: 0xWallpaper Changer.exe0

Faulting application path: Wallpaper Changer.exe1

Faulting module path: Wallpaper Changer.exe2

Report Id: Wallpaper Changer.exe3

 

Error: (12/20/2015 05:47:54 PM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Application: Wallpaper Changer.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: System.Configuration.ConfigurationErrorsException

Stack:

   at System.Configuration.BaseConfigurationRecord.GetSectionRecursive(System.String, Boolean, Boolean, Boolean, Boolean, System.Object ByRef, System.Object ByRef)

   at System.Configuration.BaseConfigurationRecord.GetSection(System.String)

   at System.Configuration.ClientConfigurationSystem.System.Configuration.Internal.IInternalConfigSystem.GetSection(System.String)

   at System.Configuration.ConfigurationManager.GetSection(System.String)

   at System.Configuration.ClientSettingsStore.ReadSettings(System.String, Boolean)

   at System.Configuration.LocalFileSettingsProvider.GetPropertyValues(System.Configuration.SettingsContext, System.Configuration.SettingsPropertyCollection)

   at System.Configuration.SettingsBase.GetPropertiesFromProvider(System.Configuration.SettingsProvider)

   at System.Configuration.SettingsBase.GetPropertyValueByName(System.String)

   at System.Configuration.SettingsBase.get_Item(System.String)

   at System.Configuration.ApplicationSettingsBase.GetPropertyValue(System.String)

   at System.Configuration.ApplicationSettingsBase.get_Item(System.String)

   at WPFBChanger.Properties.Settings.get_UserName()

   at WPFBChanger.DataObjects.Settings.Load()

   at WPFBChanger.DataObjects.Settings.get_Current()

   at WPFBChanger.Updater.Client..ctor()

   at WPFBChanger.SettingsWindow.<.ctor>b__1()

   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)

   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)

   at System.Threading.ThreadHelper.ThreadStart()

 

Error: (12/20/2015 05:47:34 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (12/20/2015 04:41:44 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT AUTHORITY)

Description: The performance counter explain text string value in the registry is not formatted correctly. The malformed string is . The first DWORD in the Data section contains the index value to the malformed string while the second and third DWORDs in the Data section contain the last valid index values.

 

Error: (12/20/2015 04:37:28 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (12/20/2015 04:35:49 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: Wallpaper Changer.exe, version: 3.0.6.0, time stamp: 0x51ece3a6

Faulting module name: KERNELBASE.dll, version: 6.1.7601.19045, time stamp: 0x56258f05

Exception code: 0xe0434352

Fault offset: 0x0000c42d

Faulting process id: 0x8d8

Faulting application start time: 0xWallpaper Changer.exe0

Faulting application path: Wallpaper Changer.exe1

Faulting module path: Wallpaper Changer.exe2

Report Id: Wallpaper Changer.exe3

 

Error: (12/20/2015 04:35:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Application: Wallpaper Changer.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: System.Configuration.ConfigurationErrorsException

Stack:

   at System.Configuration.BaseConfigurationRecord.GetSectionRecursive(System.String, Boolean, Boolean, Boolean, Boolean, System.Object ByRef, System.Object ByRef)

   at System.Configuration.BaseConfigurationRecord.GetSection(System.String)

   at System.Configuration.ClientConfigurationSystem.System.Configuration.Internal.IInternalConfigSystem.GetSection(System.String)

   at System.Configuration.ConfigurationManager.GetSection(System.String)

   at System.Configuration.ClientSettingsStore.ReadSettings(System.String, Boolean)

   at System.Configuration.LocalFileSettingsProvider.GetPropertyValues(System.Configuration.SettingsContext, System.Configuration.SettingsPropertyCollection)

   at System.Configuration.SettingsBase.GetPropertiesFromProvider(System.Configuration.SettingsProvider)

   at System.Configuration.SettingsBase.GetPropertyValueByName(System.String)

   at System.Configuration.SettingsBase.get_Item(System.String)

   at System.Configuration.ApplicationSettingsBase.GetPropertyValue(System.String)

   at System.Configuration.ApplicationSettingsBase.get_Item(System.String)

   at WPFBChanger.Properties.Settings.get_UserName()

   at WPFBChanger.DataObjects.Settings.Load()

   at WPFBChanger.DataObjects.Settings.get_Current()

   at WPFBChanger.Updater.Client..ctor()

   at WPFBChanger.SettingsWindow.<.ctor>b__1()

   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)

   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)

   at System.Threading.ThreadHelper.ThreadStart()

 

Error: (12/20/2015 04:12:43 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT AUTHORITY)

Description: The performance counter explain text string value in the registry is not formatted correctly. The malformed string is . The first DWORD in the Data section contains the index value to the malformed string while the second and third DWORDs in the Data section contain the last valid index values.

 

Error: (12/20/2015 04:07:01 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (12/20/2015 04:07:01 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: Wallpaper Changer.exe, version: 3.0.6.0, time stamp: 0x51ece3a6

Faulting module name: KERNELBASE.dll, version: 6.1.7601.19045, time stamp: 0x56258f05

Exception code: 0xe0434352

Fault offset: 0x0000c42d

Faulting process id: 0xffc

Faulting application start time: 0xWallpaper Changer.exe0

Faulting application path: Wallpaper Changer.exe1

Faulting module path: Wallpaper Changer.exe2

Report Id: Wallpaper Changer.exe3

 

 

System errors:

=============

Error: (12/20/2015 05:36:57 PM) (Source: volsnap) (EventID: 36) (User: )

Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

 

Error: (12/20/2015 03:51:05 PM) (Source: volsnap) (EventID: 36) (User: )

Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

 

Error: (12/20/2015 03:49:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Bonjour Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (12/20/2015 11:45:37 AM) (Source: volsnap) (EventID: 36) (User: )

Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

 

Error: (12/20/2015 09:48:04 AM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: The IPsec Policy Agent service terminated with the following error: 

%%1747

 

Error: (12/20/2015 09:47:57 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Apple Mobile Device service failed to start due to the following error: 

%%1053

 

Error: (12/20/2015 09:47:57 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Apple Mobile Device service to connect.

 

Error: (12/20/2015 09:46:36 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Avast Antivirus service failed to start due to the following error: 

%%1053

 

Error: (12/20/2015 09:46:36 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Avast Antivirus service to connect.

 

Error: (12/19/2015 04:34:07 PM) (Source: volsnap) (EventID: 36) (User: )

Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

 

 

CodeIntegrity:

===================================

  Date: 2015-12-20 17:47:50.012

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 17:34:12.347

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 16:35:52.449

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 16:07:05.481

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 15:57:22.683

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 15:45:19.297

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 11:19:52.130

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 11:07:42.841

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 09:48:39.996

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

  Date: 2015-12-20 09:35:35.458

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

 

 

==================== Memory info =========================== 

 

Processor: Intel® Core i5-3570K CPU @ 3.40GHz

Percentage of memory in use: 20%

Total physical RAM: 16332.28 MB

Available physical RAM: 12946.69 MB

Total Virtual: 32662.77 MB

Available Virtual: 29216 MB

 

==================== Drives ================================

 

Drive c: (SSD) (Fixed) (Total:111.69 GB) (Free:17.28 GB) NTFS

Drive d: (Mattys Drive) (Fixed) (Total:916.43 GB) (Free:671.65 GB) NTFS ==>[system with boot components (obtained from drive)]

Drive e: (Seagate) (Fixed) (Total:1863.01 GB) (Free:98.4 GB) NTFS

Drive f: (RECOVERY) (Fixed) (Total:15 GB) (Free:7.54 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: F4F998ED)

Partition 1: (Not Active) - (Size=1863 GB) - (Type=42)

 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 8D58BD02)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

 

========================================================

Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 08000000)

Partition 1: (Not Active) - (Size=78 MB) - (Type=DE)

Partition 2: (Not Active) - (Size=15 GB) - (Type=07 NTFS)

Partition 3: (Active) - (Size=916.4 GB) - (Type=07 NTFS)

 

==================== End of Addition.txt ============================

Link to post
Share on other sites

FRST.gif Fix with Farbar Recovery Scan Tool

icon_exclaim.gif This fix was created for this user for use on that particular machine. icon_exclaim.gif

icon_exclaim.gif Running it on another one may cause damage and render the system unstable. icon_exclaim.gif

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.

    (XP users click run after receipt of Windows Security Warning - Open File).

  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.
Please attach it to your reply.

fixlist.txt

Link to post
Share on other sites

  • 2 weeks later...
  • Root Admin

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.