Jump to content
Join us in bringing the fight to COVID-19 ×
☆!Click here for PC Matic product support!☆ ×

MPB

Members
 View Profile  See their activity

  • Content Count

    26

  • Joined

  • Last visited

About MPB

  • Rank
    Member

Profile Information

  • Gender
    Male
  • Location
    Philly

Previous Fields

  • Teams:
    Nothing Selected
  1. MPB
    Thanks Juliet and team! I will take this to the new forum.
  2. MPB
    No I haven't uninstalled the printer. Can you tell me about the Licensing Diagnostic?
  3. MPB
    Can't print. Window updates don't fully load. Requests to activate Windows. Occasional System32 errors for .exe
  4. MPB
    It did not appear that I needed to do this based on the results. Should I?
  5. MPB
    Hi Juliet, here are the results. Also, please tell me how to interpret the licensing diagnostic. https://www.dropbox.com/s/mqjva5x2kciev36/cbs.txt?dl=0
  6. MPB
    After backing up, I initiated a System Refresh and it failed. message: There was a probelm refreshing your PC No changes were made Check for solutions to this problem When I tried to check for a solution, nothing happened. I believe there is also an issue with Windows activation however I no longer have the product key.
  7. MPB
    Ok, thanks. Do I need to back-up my files? Does this wipe out applications?
  8. MPB
    Thanks Juliet!
  9. MPB
    From the Tweaking.com - Windows Repair Pre-scan... Als, would you like to see the logfile(s) from the Windows Repair scan? ┌────────────────────────────────────────────────────────────────────────────────┐ │ Tweaking.com - Windows Repair v3.6.4 - Pre-Scan │ Computer: DAVID (Windows 8.1 6.3.9600 ) (64-bit) │ [started Scan - 11/18/2015 7:54:19 AM] └────────────────────────────────────────────────────────────────────────────────┘ ┌────────────────────────────────────────────────────────────────────────────────┐ │ Scanning Windows Packages Files. │ Started at (11/18/2015 7:54:19 AM) │ │ These Files Are Possibly Corrupt (Bad Digital Signature): (Total: 286) C:\WINDOWS\servicing\Packages\Package_1_for_KB3105216~31bf3856ad364e35~amd64~~6.3.1.0.cat C:\WINDOWS\servicing\Packages\Package_for_KB3105216_RTM~31bf3856ad364e35~amd64~~6.3.1.0.cat C:\WINDOWS\servicing\Packages\Package_for_KB3105216~31bf3856ad364e35~amd64~~6.3.1.0.cat C:\WINDOWS\servicing\Packages\Microsoft-Windows-ApisetNamespace-Com-Package~31bf3856ad364e35~amd64~en-US~6.3.9600.16384.mum C:\WINDOWS\servicing\Packages\Microsoft-Windows-ApisetNamespace-Mincore-Package~31bf3856ad364e35~amd64~en-US~6.3.9600.16384.mum C:\WINDOWS\servicing\Packages\Microsoft-Windows-ApisetNamespace-Shell-Package~31bf3856ad364e35~amd64~en-US~6.3.9600.16384.mum C:\WINDOWS\servicing\Packages\Microsoft-Windows-Common-Drivers-Package-ds~31bf3856ad364e35~amd64~~6.3.9600.16384.mum C:\WINDOWS\servicing\Packages\Microsoft-Windows-Common-Drivers-Package~31bf3856ad364e35~amd64~~6.3.9600.16384.mum C:\WINDOWS\servicing\Packages\Microsoft-Windows-ServicingStack-Full-Package~31bf3856ad364e35~amd64~~6.3.9600.16384.mum C:\WINDOWS\servicing\Packages\Package_1091_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_109_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_111_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1129_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_114_for_KB2984006~31bf3856ad364e35~amd64~~6.3.1.4.mum C:\WINDOWS\servicing\Packages\Package_116_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_117_for_KB3049563~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_117_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_117_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_118_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_1196_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1199_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_119_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_1202_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_120_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_121_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_1238_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1239_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_130_for_KB3044374~31bf3856ad364e35~amd64~~6.3.1.6.mum C:\WINDOWS\servicing\Packages\Package_130_for_KB3075853~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_1357_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1363_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_137_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_1406_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_141_for_KB3075853~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_1424_for_KB2994290~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_1534_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_154_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_1611_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1613_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_16_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_16_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1723_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_17_for_KB3074545~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_180_for_KB2883200~31bf3856ad364e35~amd64~~6.3.1.18.mum C:\WINDOWS\servicing\Packages\Package_1816_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1818_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1819_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1823_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1836_for_KB2932046~31bf3856ad364e35~amd64~~6.3.1.5.mum C:\WINDOWS\servicing\Packages\Package_1894_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1944_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1995_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB2975061~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3013531~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3023266~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3069114~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3072307~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3083992~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3084135~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3087040~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3087916~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_1_for_KB3105216~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_2025_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_20_for_KB2894852~31bf3856ad364e35~amd64~~6.3.2.0.mum C:\WINDOWS\servicing\Packages\Package_218_for_KB2967917~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_2192_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_22_for_KB2975061~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_22_for_KB3075853~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_22_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_23_for_KB3075853~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_2548_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2559_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2641_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2642_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2644_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2652_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2666_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2687_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2690_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2718_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2720_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2741_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_27_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_284_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2884_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_28_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_28_for_KB2962409~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_28_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_293_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_294_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_296_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_297_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_29_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_29_for_KB3060716~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_29_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB2962409~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB2966826~31bf3856ad364e35~amd64~~6.3.1.7.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB2975061~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB3048778~31bf3856ad364e35~amd64~~6.3.2.0.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB3069114~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB3082089~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB3083992~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB3084135~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB3087039~31bf3856ad364e35~amd64~~6.3.1.4.mum C:\WINDOWS\servicing\Packages\Package_2_for_KB3087916~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_3072_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3073_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3078_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3081_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3089_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3090_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_30_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3151_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3154_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_31_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_31_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3256_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_3257_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_327_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_328_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_32_for_KB3060716~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_32_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_33_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_34_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_35_for_KB3060716~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_35_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3_for_KB2904440~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_3_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_3_for_KB3030947~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_3_for_KB3061518~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_3_for_KB3069114~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_3_for_KB3082089~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_3_for_KB3087039~31bf3856ad364e35~amd64~~6.3.1.4.mum C:\WINDOWS\servicing\Packages\Package_40_for_KB2967917~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_410_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_411_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_412_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_414_for_KB2975719~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_41_for_KB2967917~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_41_for_KB3014442~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_41_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_42_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_42_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_43_for_KB3049563~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_43_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_44_for_KB2938439~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_44_for_KB3049563~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_44_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_44_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_45_for_KB3049563~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_45_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_45_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_46_for_KB3049563~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_46_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_476_for_KB2932046~31bf3856ad364e35~amd64~~6.3.1.5.mum C:\WINDOWS\servicing\Packages\Package_47_for_KB2977629~31bf3856ad364e35~amd64~~6.3.1.4.mum C:\WINDOWS\servicing\Packages\Package_47_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_48_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_49_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_4_for_KB3082089~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_507_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_50_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_51_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_52_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_53_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_55_for_KB3075853~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_55_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_5645_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_5649_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_56_for_KB3075853~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_57_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_58_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_590_for_KB2932046~31bf3856ad364e35~amd64~~6.3.1.5.mum C:\WINDOWS\servicing\Packages\Package_59_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_59_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_5_for_KB3082089~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_6004_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_6005_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_6008_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_6014_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_6044_for_KB2919355~31bf3856ad364e35~amd64~~6.3.1.14.mum C:\WINDOWS\servicing\Packages\Package_60_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_62_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_63_for_KB2966826~31bf3856ad364e35~amd64~~6.3.1.7.mum C:\WINDOWS\servicing\Packages\Package_63_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_64_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_65_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_66_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_67_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_67_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_68_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_69_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_6_for_KB3082089~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_706_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_708_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_70_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_710_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_71_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_71_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_72_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_72_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_73_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_74_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_75_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_75_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_76_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_77_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_788_for_KB2883200~31bf3856ad364e35~amd64~~6.3.1.18.mum C:\WINDOWS\servicing\Packages\Package_79_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_7_for_KB3012199~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_83_for_KB3075853~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_83_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_84_for_KB3075853~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_85_for_KB3067505~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_867_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_872_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_876_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_8_for_KB2966826~31bf3856ad364e35~amd64~~6.3.1.7.mum C:\WINDOWS\servicing\Packages\Package_8_for_KB3044374~31bf3856ad364e35~amd64~~6.3.1.6.mum C:\WINDOWS\servicing\Packages\Package_8_for_KB3078601~31bf3856ad364e35~amd64~~6.3.1.4.mum C:\WINDOWS\servicing\Packages\Package_930_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_932_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_948_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_970_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_987_for_KB3000850~31bf3856ad364e35~amd64~~6.3.1.8.mum C:\WINDOWS\servicing\Packages\Package_98_for_KB3087038~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_99_for_KB3077715~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_9_for_KB2984006~31bf3856ad364e35~amd64~~6.3.1.4.mum C:\WINDOWS\servicing\Packages\Package_for_KB2894179~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB2904440~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB2934018~31bf3856ad364e35~amd64~~6.3.1.5.mum C:\WINDOWS\servicing\Packages\Package_for_KB2959626~31bf3856ad364e35~amd64~~6.3.2.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB2961072~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB2962806~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB2975061~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB2989930~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_for_KB2990967~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB2998174~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3003057~31bf3856ad364e35~amd64~~6.3.1.6.mum C:\WINDOWS\servicing\Packages\Package_for_KB3004394~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3012702~31bf3856ad364e35~amd64~~6.3.1.7.mum C:\WINDOWS\servicing\Packages\Package_for_KB3013531_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3013531_RTM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3016074~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3019215~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3019978~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_for_KB3020338~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3021910~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_for_KB3022777~31bf3856ad364e35~amd64~~6.3.1.9.mum C:\WINDOWS\servicing\Packages\Package_for_KB3023266~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3027209~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3029432~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3029603_RTM~31bf3856ad364e35~amd64~~6.3.2.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3038936~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_for_KB3055642_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3055642_RTM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3055642~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3061518~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3062760~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3069114_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_for_KB3069114_RTM~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_for_KB3069114~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_for_KB3072307_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.2.mum C:\WINDOWS\servicing\Packages\Package_for_KB3076949~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3082089_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3082089_RTM~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3082089~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3083992_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3083992_RTM~31bf3856ad364e35~amd64~~6.3.1.1.mum C:\WINDOWS\servicing\Packages\Package_for_KB3084135_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3084135_RTM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3084135~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3087039_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.4.mum C:\WINDOWS\servicing\Packages\Package_for_KB3087039_RTM~31bf3856ad364e35~amd64~~6.3.1.4.mum C:\WINDOWS\servicing\Packages\Package_for_KB3087040_RTM~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_for_KB3087040~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_for_KB3087916_RTM_GM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3087916~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3089023~31bf3856ad364e35~amd64~~6.3.1.3.mum C:\WINDOWS\servicing\Packages\Package_for_KB3093983~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3099406_RTM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3099406~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3105216_RTM~31bf3856ad364e35~amd64~~6.3.1.0.mum C:\WINDOWS\servicing\Packages\Package_for_KB3105216~31bf3856ad364e35~amd64~~6.3.1.0.mum │ 286 Combined Problems were found with the packages files, these files need to be replaced (These mainly only effect installing Windows Updates.) │ The SFC (System File Checker) doesn't scan and replace some of these files, so you may need to replace them manually. │ │ THESE FILES DO NOT KEEP THE REPAIRS FROM WORKING; YOU MAY STILL RUN THE REPAIRS IN THE PROGRAM. │ │ If you need help in replacing these files, post on the Forums at Tweaking.com for help. │ │ Files Checked & Verified: 10,307 │ │ Done Scanning Windows Packages Files.(11/18/2015 7:56:05 AM) └────────────────────────────────────────────────────────────────────────────────┘ ┌────────────────────────────────────────────────────────────────────────────────┐ │ Scanning Reparse Points. │ Started at (11/18/2015 7:56:05 AM) │ │ Missing Default Reparse Point: (Original Path: C:\Users\michael\AppData\Local\Microsoft\Windows\INetCache\Content.IE5) (Target Path: C:\Users\michael\AppData\Local\Microsoft\Windows\INetCache\IE) │ A Default Reparse Point is missing and this can cause problems on the system. │ │ Problems were found with the Reparse Points. │ You can use the Repair Reparse Points Tool at the bottom of this Window to try and fix these problems. │ │ Files & Folders Searched: 331,095 │ Reparse Points Found: 70 │ │ Done Scanning Reparse Points.(11/18/2015 7:59:22 AM) └────────────────────────────────────────────────────────────────────────────────┘ ┌────────────────────────────────────────────────────────────────────────────────┐ │ Checking Environment Variables. │ Started at (11/18/2015 7:59:22 AM) │ │ No problems were found with the Environment Variables. │ │ Done Checking Environment Variables. (11/18/2015 7:59:22 AM) └────────────────────────────────────────────────────────────────────────────────┘ ┌────────────────────────────────────────────────────────────────────────────────┐ │ [Finished Scan - 11/18/2015 7:59:22 AM] │ │ [x] Scan Complete - Problems Found! │ [x] │ [x] You can use the Repair Reparse Points or Repair Environment Variables tools at the bottom of this Window if needed. │ [x] │ [x] While problems have been found, you can still run the repairs in the program. │ [x] But for the best results it is recommended to fix the problems reported in this scan if possible. │ [x] If you need help fixing any of the items in the log, just post in the forums at Tweaking.com for help. └────────────────────────────────────────────────────────────────────────────────┘ Addition.txt FRST.txt Tweaking.com - Windows Repair - Pre-Scan.txt
  10. MPB
    Reattached FRST results Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:16-11-2015 Ran by David (administrator) on DAVID (18-11-2015 07:29:35) Running from C:\Users\David\Desktop Loaded Profiles: David (Available Profiles: David & michael) Platform: Windows 8.1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe (Nero AG) C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe (Dassault Systèmes) C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe (Acer Incorporated) C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe (Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe (NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (Softros Systems, Inc.) C:\Program Files\Softros Systems\Process Blocker\Process Blocker.exe (Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System INC.) C:\Windows\RfBtnSvc64.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Flux Software LLC) C:\Users\David\AppData\Local\FluxSoftware\Flux\flux.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Symantec Corporation) C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe (Acer Incorporated) C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.4.9926.17994_x64__8wekyb3d8bbwe\glcnd.exe (Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Repair_Windows.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-10] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212048 2012-06-07] (Realtek Semiconductor) HKLM\...\Run: [btPreLoad] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe [64640 2013-01-28] () HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-16] (AVAST Software) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.) HKLM-x32\...\Run: [bCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [brStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation) Winlogon\Notify\igfxcui: igfxdev.dll [X] Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKLM\...\Policies\Explorer\Run: [btvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] (Qualcomm Atheros Commnucations) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [Google Update] => C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [MusicManager] => C:\Users\David\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7646208 2015-08-13] (Google Inc.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [Amazon Cloud Player] => C:\Users\David\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3168576 2014-03-07] () HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [spotify Web Helper] => C:\Users\David\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-04-11] (Spotify Ltd) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [MotoCast] => C:\Program Files (x86)\Motorola Mobility\MotoCast\MotoLauncher.lnk [2075 2014-04-21] () HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [f.lux] => C:\Users\David\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [spybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [GoogleChromeAutoLaunch_9A83AADA066CCEA6F8C613E0AB5C7E19] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-11-06] (Google Inc.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\MountPoints2: E - "E:\VZW_Software_upgrade_assistant.exe" HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\MountPoints2: {62ca4f68-a049-11e2-be73-20898462377a} - "E:\MotoCastSetup.exe" -a HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\MountPoints2: {77dff56d-862b-11e3-be8e-b8763f43915e} - "E:\LaunchU3.exe" -a HKLM\...\AppCertDlls: [ProcessBlocker] -> C:\Program Files\Softros Systems\Process Blocker\HelperLib.dll [114176 2014-10-03] (Softros Systems, inc.) HKLM\...\AppCertDlls: [ProcessBlocker86] -> C:\Program Files\Softros Systems\Process Blocker\HelperLib86.dll [95744 2014-10-03] (Softros Systems, inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-16] (AVAST Software) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk [2012-11-29] ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{D6FC2674-A71D-470B-8A1A-E22E2BB35085}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{DF8C11EA-9480-4BDC-950E-C0C7926C7045}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.yahoo.com/?fr=hp-avast&type=agc511 SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://search.yahoo.com/yhs/search?type=agc511&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://search.yahoo.com/yhs/search?type=agc511&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKU\S-1-5-21-1808542954-3622220976-1516702403-1001 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-16] (Oracle Corporation) BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28] (Qualcomm Atheros Commnucations) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-16] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-16] (Oracle Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-10-12] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-16] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-10-12] (Oracle Corporation) FireFox: ======== FF ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\6rbqyyt2.default FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-13] () FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-16] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-16] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-13] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-10-12] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-10-12] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin HKU\S-1-5-21-1808542954-3622220976-1516702403-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\David\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google) FF Plugin HKU\S-1-5-21-1808542954-3622220976-1516702403-1001: @talk.google.com/O1DPlugin -> C:\Users\David\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google) FF Plugin HKU\S-1-5-21-1808542954-3622220976-1516702403-1001: @tools.google.com/Google Update;version=3 -> C:\Users\David\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-21] (Google Inc.) FF Plugin HKU\S-1-5-21-1808542954-3622220976-1516702403-1001: @tools.google.com/Google Update;version=9 -> C:\Users\David\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-21] (Google Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\David\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\David\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google) FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-16] Chrome: ======= CHR HomePage: Default -> hxxp://google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll () CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\ppGoogleNaClPluginChrome.dll => No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\pdf.dll => No File CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Entanglement Web App) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd [2014-09-20] CHR Extension: (Google Cast) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-11-15] CHR Extension: (Google Calendar) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-10-12] CHR Extension: (Google Play Music) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2015-11-15] CHR Extension: (AdBlock) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-16] CHR Extension: (Pin It Button) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2015-11-16] CHR Extension: (Google Play) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2015-02-13] CHR Extension: (The Simplex Algorithm Calculator) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\laliphfdajliicjkmlpoefhkpbgoejdg [2014-09-20] CHR Extension: (Numerics Calculator & Converter) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2014-09-20] CHR Extension: (Google Hangouts) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2015-11-15] CHR Extension: (Drive) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfakdllpdfjjbfommlcnfkedmbigkfdo [2014-09-20] CHR Extension: (Chrome Web Store Payments) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-15] CHR Extension: (Amazon Assistant for Chrome) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2015-11-16] CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Google Slides) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-15] CHR Extension: (Google Docs) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-15] CHR Extension: (Google Drive) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-10] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-11-15] CHR Extension: (YouTube) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-10] CHR Extension: (Google Search) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-07] CHR Extension: (Google Sheets) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-15] CHR Extension: (Avast Online Security) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-15] CHR Extension: (Google Wallet) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-15] CHR Extension: (Gmail) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-07] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-16] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-16] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-16] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5554152 2015-11-16] (Avast Software) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed] R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2449552 2012-10-26] (Acer Incorporated) S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated) R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [123904 2015-01-14] (Dassault Systèmes) [File not signed] S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated) R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [102224 2012-08-17] (Condusiv Technologies) R2 FFSOpzSvc; C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe [161384 2012-03-12] (Acer Incorporated) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation) S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193576 2012-07-19] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC) R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-11-02] (NTI Corporation) R2 Process Blocker; C:\Program Files\Softros Systems\Process Blocker\Process Blocker.exe [2233168 2014-10-03] (Softros Systems, Inc.) R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed] R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-03-08] (Dritek System INC.) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) S3 USecuAppSvc; C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [345744 2012-11-12] (Acer Incorporated) R2 VIPAppService; C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe [75336 2014-07-14] (Symantec Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [0 2013-08-22] () <==== ATTENTION (zero byte File/Folder) S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [0 2013-08-22] () <==== ATTENTION (zero byte File/Folder) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-16] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-11-16] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-16] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [466400 2015-11-16] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-16] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-16] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-16] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-16] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-16] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-16] (AVAST Software) S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [0 2013-08-22] () <==== ATTENTION (zero byte File/Folder) R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23376 2012-08-17] (Condusiv Technologies) R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [103248 2012-08-17] (Condusiv Technologies) R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-07-20] (Intel Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) S3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [0 2013-08-22] () <==== ATTENTION (zero byte File/Folder) R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [147088 2015-11-16] (AVAST Software) R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-03-08] (Dritek System Inc.) S3 RasAgileVpn; C:\Windows\system32\DRIVERS\AgileVpn.sys [0 2014-10-28] () <==== ATTENTION (zero byte File/Folder) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [310904 2015-11-16] (Avast Software) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 MREMP50; \??\C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [X] S3 MREMP50a64; \??\C:\Program Files\Common Files\Motive\MREMP50a64.sys [X] S3 MRESP50; \??\C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [X] S3 MRESP50a64; \??\C:\Program Files\Common Files\Motive\MRESP50a64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-11-18 07:29 - 2015-11-18 07:29 - 00030708 _____ C:\Users\David\Desktop\FRST.txt 2015-11-18 07:21 - 2015-11-18 07:21 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2015-11-18 06:01 - 2015-11-18 06:20 - 00000000 ____D C:\Users\David\Documents\Woodworking 2015-11-18 05:49 - 2015-11-18 05:49 - 00000913 _____ C:\Users\David\Desktop\Documents - Shortcut.lnk 2015-11-18 05:05 - 2015-11-18 05:05 - 00015036 _____ C:\Users\David\Documents\cc_20151118_050535.reg 2015-11-17 21:18 - 2015-11-17 21:41 - 00000018 _____ C:\repair_starting.dat 2015-11-17 21:13 - 2015-11-17 19:55 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll 2015-11-16 19:20 - 2015-11-16 19:20 - 00000000 ____D C:\Users\David\AppData\Local\CrashRpt 2015-11-16 19:00 - 2015-11-16 19:00 - 00022178 _____ C:\Users\David\Documents\cc_20151116_190046.reg 2015-11-16 05:52 - 2015-11-16 05:52 - 00043104 _____ C:\Users\David\Documents\cc_20151116_055246.reg 2015-11-16 05:43 - 2015-11-16 05:43 - 00003026 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1447444372 2015-11-16 05:43 - 2015-11-16 05:43 - 00001017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2015-11-16 05:41 - 2015-11-16 05:41 - 00466400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys 2015-11-16 05:41 - 2015-11-16 05:41 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2015-11-16 05:41 - 2015-11-16 05:41 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2015-11-16 05:19 - 2015-11-16 19:01 - 02008576 _____ (Farbar) C:\Users\David\Desktop\FRST64.exe 2015-11-16 05:15 - 2015-11-16 05:15 - 00000000 ____D C:\Users\David\AppData\Local\GWX 2015-11-15 20:21 - 2015-11-17 21:38 - 00863592 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2015-11-15 19:53 - 2015-11-15 19:53 - 00000207 _____ C:\WINDOWS\tweaking.com-regbackup-DAVID-Windows-8.1-(64-bit).dat 2015-11-15 18:20 - 2015-11-17 19:28 - 00003648 _____ C:\WINDOWS\System32\Tasks\Tweaking.com - Windows Repair Tray Icon 2015-11-15 18:20 - 2015-11-15 18:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com 2015-11-15 14:52 - 2015-11-15 14:52 - 00000345 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Update.lnk 2015-11-15 14:36 - 2015-05-07 12:00 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2015-11-15 14:36 - 2015-05-07 11:12 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2015-11-15 14:35 - 2015-03-01 20:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll 2015-11-15 14:35 - 2015-03-01 20:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll 2015-11-15 14:34 - 2015-05-11 13:17 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2015-11-15 14:34 - 2015-04-02 19:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll 2015-11-15 14:34 - 2015-04-02 19:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll 2015-11-15 14:34 - 2014-11-04 14:25 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys 2015-11-15 14:34 - 2014-11-04 14:25 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys 2015-11-15 14:34 - 2014-11-04 01:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys 2015-11-15 14:34 - 2014-11-04 01:54 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys 2015-11-15 14:34 - 2014-11-04 01:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys 2015-11-15 14:34 - 2014-11-04 01:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys 2015-11-15 14:32 - 2015-04-13 17:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll 2015-11-15 14:32 - 2015-04-13 17:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll 2015-11-15 14:32 - 2015-02-17 18:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2015-11-15 14:31 - 2015-09-18 22:18 - 00035384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2015-11-15 14:31 - 2015-09-18 08:42 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 01163776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 00766464 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 00699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-11-15 14:31 - 2015-05-21 08:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2015-11-15 14:31 - 2015-03-12 23:03 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-11-15 14:31 - 2015-03-12 23:03 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2015-11-15 14:30 - 2015-08-22 08:42 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-11-15 14:29 - 2015-10-13 12:10 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-11-15 14:29 - 2015-10-13 12:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2015-11-15 14:27 - 2015-10-17 09:19 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-11-14 12:16 - 2015-11-15 07:48 - 00000000 ____D C:\AdwCleaner 2015-11-14 11:26 - 2015-11-14 11:27 - 00000333 _____ C:\WINDOWS\SysWOW64\debug.log 2015-11-14 07:09 - 2015-11-14 07:09 - 00000000 ____D C:\RegBackup 2015-11-13 22:01 - 2015-11-13 22:01 - 00000000 ____D C:\Program Files (x86)\Tweaking.com 2015-11-13 21:27 - 2015-11-18 07:29 - 00000000 ____D C:\FRST 2015-11-13 11:49 - 2015-11-13 11:49 - 00000000 ____D C:\Users\David\AppData\Roaming\supportdotcom 2015-11-13 06:02 - 2015-11-13 06:02 - 00001320 _____ C:\Users\David\Documents\cc_20151113_060232.reg 2015-11-08 10:43 - 2015-11-15 14:40 - 00000000 ____D C:\ProgramData\Auslogics 2015-11-08 10:42 - 2015-11-15 16:46 - 00000000 ____D C:\WINDOWS\System32\Tasks\Auslogics 2015-11-08 10:42 - 2015-11-15 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics 2015-11-08 10:42 - 2015-11-15 14:29 - 00000000 ____D C:\Program Files (x86)\Auslogics 2015-10-31 17:27 - 2015-10-31 17:28 - 00000000 ____D C:\Users\David\Documents\BEopt_2.5.0 2015-10-31 17:27 - 2015-10-31 17:27 - 00000000 ____D C:\Users\David\AppData\Roaming\BEopt_2.5.0 2015-10-31 17:26 - 2015-10-31 17:26 - 00001998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BEopt 2.5.lnk 2015-10-29 06:31 - 2015-10-29 06:31 - 00008186 _____ C:\Users\David\Documents\cc_20151029_073108.reg 2015-10-29 06:28 - 2015-10-29 06:28 - 00003196 _____ C:\WINDOWS\System32\Tasks\IHSelfDeleteTASK 2015-10-29 06:28 - 2015-10-29 06:28 - 00000000 ____D C:\ProgramData\Motive ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-11-18 07:29 - 2015-02-15 15:22 - 00000000 ____D C:\Users\David\Desktop\Utilities 2015-11-18 07:26 - 2013-09-29 23:04 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-11-18 07:23 - 2015-08-23 18:52 - 01622672 ____N C:\WINDOWS\WindowsUpdate.log 2015-11-18 07:22 - 2014-04-21 09:27 - 00000000 ____D C:\Temp 2015-11-18 07:22 - 2013-04-05 20:56 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-18 07:21 - 2013-08-22 09:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-11-18 07:18 - 2014-12-17 06:37 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2015-11-18 07:05 - 2013-04-05 20:56 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-18 07:00 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sru 2015-11-18 06:59 - 2013-04-05 20:26 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1808542954-3622220976-1516702403-1001 2015-11-18 06:50 - 2013-06-15 19:05 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-11-18 06:39 - 2014-12-05 07:21 - 00000000 ____D C:\Users\David\Documents\Financial 2015-11-18 06:38 - 2014-01-02 10:05 - 00000000 ____D C:\Users\David\AppData\Local\Deployment 2015-11-18 06:22 - 2014-11-14 20:18 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-11-18 06:21 - 2014-11-14 20:18 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-11-18 06:20 - 2015-04-02 05:24 - 00000000 ____D C:\Users\David\Documents\Maintenance & Building 2015-11-18 06:18 - 2014-12-05 07:21 - 00000000 ____D C:\Users\David\Documents\Home Design 2015-11-18 05:11 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-11-18 05:10 - 2014-03-21 21:17 - 00003914 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F546B436-119A-412B-8AE9-604A97ED20D8} 2015-11-18 05:04 - 2013-08-04 22:35 - 00000000 ____D C:\Users\David\AppData\Local\CrashDumps 2015-11-18 05:00 - 2014-09-01 18:36 - 00473624 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-11-17 21:41 - 2012-07-26 00:26 - 00000337 _____ C:\WINDOWS\win.ini 2015-11-17 21:13 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\ras 2015-11-17 21:13 - 2013-08-22 01:58 - 00000000 _____ C:\WINDOWS\system32\rasctrnm.h 2015-11-17 19:56 - 2015-03-15 06:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll 2015-11-17 19:55 - 2015-03-15 06:02 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmiv2.dll 2015-11-16 19:10 - 2015-01-14 07:59 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox 2015-11-16 19:10 - 2015-01-14 07:59 - 00000000 ____D C:\WINDOWS\system32\vbox 2015-11-16 19:09 - 2013-04-06 08:22 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2015-11-16 19:06 - 2013-08-06 19:37 - 00000000 ____D C:\Users\David\AppData\LocalLow\Temp 2015-11-16 19:04 - 2012-07-26 02:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-11-16 19:01 - 2014-11-08 06:14 - 00000000 ____D C:\Users\David\AppData\Roaming\BEopt_2.3.0 2015-11-16 07:13 - 2014-12-05 07:21 - 00000000 ____D C:\Users\David\Documents\Emergency Planning 2015-11-16 05:41 - 2015-10-01 05:34 - 00147088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\ngvss.sys 2015-11-16 05:41 - 2015-01-14 07:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-11-16 05:41 - 2014-04-23 19:43 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2015-11-16 05:41 - 2014-01-06 20:58 - 00154256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2015-11-16 05:41 - 2013-12-08 18:56 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2015-11-16 05:36 - 2014-08-23 05:34 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2015-11-16 05:36 - 2014-08-23 05:34 - 00000000 ____D C:\Program Files\Java 2015-11-16 05:36 - 2014-08-02 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ___SD C:\WINDOWS\system32\dsc 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\ToastData 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\Offline Web Pages 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\WinStore 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\uk-UA 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\th-TH 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-CS 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sppui 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sl-SI 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\ro-RO 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Recovery 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MSDRM 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\InstallShield 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\icsxml 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\hr-HR 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\he-IL 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Com 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Bthprops 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\bg-BG 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\zh-HK 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\WinMetadata 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\uk-UA 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\tr-TR 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\th-TH 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sppui 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sl-SI 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sk-SK 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\setup 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\ro-RO 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Recovery 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\ras 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\MSDRM 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\migwiz 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\lv-LV 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\lt-LT 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\icsxml 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\ias 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\hr-HR 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\he-IL 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\et-EE 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\en-GB 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Com 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system\Speech 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\downlevel 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\downlevel 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\Dism 2015-11-15 16:54 - 2013-03-08 08:09 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2015-11-15 16:54 - 2013-03-08 08:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-11-15 16:54 - 2012-11-29 06:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EgisTec 2015-11-15 16:54 - 2012-11-29 06:23 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-11-15 16:53 - 2013-12-02 20:00 - 00000000 ___RD C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-15 16:53 - 2013-09-29 22:51 - 00000000 ____D C:\WINDOWS\ShellNew 2015-11-15 16:53 - 2013-09-29 22:51 - 00000000 ____D C:\Program Files\Windows Journal 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 __RSD C:\WINDOWS\Media 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\DesktopTileResources 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Bthprops 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\bg-BG 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\ar-SA 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\rescache 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\MediaViewer 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\L2Schemas 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\IME 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\FileManager 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Cursors 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Camera 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\addins 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Windows Portable Devices 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Windows Defender 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Common Files\System 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Common Files\Services 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-11-15 16:53 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\servicing 2015-11-15 16:53 - 2013-04-08 16:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBee 2015-11-15 16:53 - 2012-11-29 06:30 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso 6.5 2015-11-15 16:53 - 2012-11-29 06:26 - 00000000 ____D C:\Program Files\EgisTec IPS 2015-11-15 16:53 - 2012-11-29 06:26 - 00000000 ____D C:\Program Files (x86)\EgisTec MyWinLocker 2015-11-15 16:53 - 2012-11-29 06:26 - 00000000 ____D C:\Program Files (x86)\EgisTec IPS 2015-11-15 16:46 - 2014-01-02 09:58 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform 2015-11-15 16:46 - 2013-12-02 19:55 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2015-11-15 16:46 - 2013-09-29 22:48 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm 2015-11-15 16:46 - 2013-09-29 22:48 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr 2015-11-15 16:46 - 2013-09-29 22:48 - 00000000 ____D C:\WINDOWS\system32\winrm 2015-11-15 16:46 - 2013-09-29 22:48 - 00000000 ____D C:\WINDOWS\system32\slmgr 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Speech 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MsDtc 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Licenses 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\restore 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\MUI 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Licenses 2015-11-15 16:46 - 2013-08-22 09:45 - 00000000 ____D C:\WINDOWS\Setup 2
  11. MPB
    Ok. Tried various conditions to print and no luck. Reran ESET which found the same two trojan threats, quarantined. Reran MBAR, no malware. Reran Tweaking.com - Windows Repair - System File Check found issues but could not finish - Windows Repair found issues and could not finish Based on this, what can we do to repair Windows first? Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:16-11-2015 Ran by David (administrator) on DAVID (18-11-2015 07:29:35) Running from C:\Users\David\Desktop Loaded Profiles: David (Available Profiles: David & michael) Platform: Windows 8.1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe (Nero AG) C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe (Dassault Systèmes) C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe (Acer Incorporated) C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe (Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe (NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (Softros Systems, Inc.) C:\Program Files\Softros Systems\Process Blocker\Process Blocker.exe (Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System INC.) C:\Windows\RfBtnSvc64.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Flux Software LLC) C:\Users\David\AppData\Local\FluxSoftware\Flux\flux.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Symantec Corporation) C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe (Acer Incorporated) C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.4.9926.17994_x64__8wekyb3d8bbwe\glcnd.exe (Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Repair_Windows.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-10] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212048 2012-06-07] (Realtek Semiconductor) HKLM\...\Run: [btPreLoad] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe [64640 2013-01-28] () HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-16] (AVAST Software) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.) HKLM-x32\...\Run: [bCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [brStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation) Winlogon\Notify\igfxcui: igfxdev.dll [X] Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKLM\...\Policies\Explorer\Run: [btvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] (Qualcomm Atheros Commnucations) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [Google Update] => C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [MusicManager] => C:\Users\David\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7646208 2015-08-13] (Google Inc.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [Amazon Cloud Player] => C:\Users\David\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3168576 2014-03-07] () HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [spotify Web Helper] => C:\Users\David\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-04-11] (Spotify Ltd) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [MotoCast] => C:\Program Files (x86)\Motorola Mobility\MotoCast\MotoLauncher.lnk [2075 2014-04-21] () HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [f.lux] => C:\Users\David\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [spybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\Run: [GoogleChromeAutoLaunch_9A83AADA066CCEA6F8C613E0AB5C7E19] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-11-06] (Google Inc.) HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\MountPoints2: E - "E:\VZW_Software_upgrade_assistant.exe" HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\MountPoints2: {62ca4f68-a049-11e2-be73-20898462377a} - "E:\MotoCastSetup.exe" -a HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\...\MountPoints2: {77dff56d-862b-11e3-be8e-b8763f43915e} - "E:\LaunchU3.exe" -a HKLM\...\AppCertDlls: [ProcessBlocker] -> C:\Program Files\Softros Systems\Process Blocker\HelperLib.dll [114176 2014-10-03] (Softros Systems, inc.) HKLM\...\AppCertDlls: [ProcessBlocker86] -> C:\Program Files\Softros Systems\Process Blocker\HelperLib86.dll [95744 2014-10-03] (Softros Systems, inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-16] (AVAST Software) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk [2012-11-29] ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{D6FC2674-A71D-470B-8A1A-E22E2BB35085}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{DF8C11EA-9480-4BDC-950E-C0C7926C7045}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\S-1-5-21-1808542954-3622220976-1516702403-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.yahoo.com/?fr=hp-avast&type=agc511 SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://search.yahoo.com/yhs/search?type=agc511&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://search.yahoo.com/yhs/search?type=agc511&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKU\S-1-5-21-1808542954-3622220976-1516702403-1001 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-16] (Oracle Corporation) BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28] (Qualcomm Atheros Commnucations) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-16] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-16] (Oracle Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-10-12] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-16] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-10-12] (Oracle Corporation) FireFox: ======== FF ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\6rbqyyt2.default FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-13] () FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-16] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-16] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-13] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-10-12] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-10-12] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin HKU\S-1-5-21-1808542954-3622220976-1516702403-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\David\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google) FF Plugin HKU\S-1-5-21-1808542954-3622220976-1516702403-1001: @talk.google.com/O1DPlugin -> C:\Users\David\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google) FF Plugin HKU\S-1-5-21-1808542954-3622220976-1516702403-1001: @tools.google.com/Google Update;version=3 -> C:\Users\David\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-21] (Google Inc.) FF Plugin HKU\S-1-5-21-1808542954-3622220976-1516702403-1001: @tools.google.com/Google Update;version=9 -> C:\Users\David\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-21] (Google Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\David\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\David\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google) FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-16] Chrome: ======= CHR HomePage: Default -> hxxp://google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll () CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\ppGoogleNaClPluginChrome.dll => No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\pdf.dll => No File CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Entanglement Web App) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd [2014-09-20] CHR Extension: (Google Cast) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-11-15] CHR Extension: (Google Calendar) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-10-12] CHR Extension: (Google Play Music) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2015-11-15] CHR Extension: (AdBlock) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-16] CHR Extension: (Pin It Button) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2015-11-16] CHR Extension: (Google Play) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2015-02-13] CHR Extension: (The Simplex Algorithm Calculator) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\laliphfdajliicjkmlpoefhkpbgoejdg [2014-09-20] CHR Extension: (Numerics Calculator & Converter) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2014-09-20] CHR Extension: (Google Hangouts) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2015-11-15] CHR Extension: (Drive) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfakdllpdfjjbfommlcnfkedmbigkfdo [2014-09-20] CHR Extension: (Chrome Web Store Payments) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-15] CHR Extension: (Amazon Assistant for Chrome) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2015-11-16] CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Google Slides) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-15] CHR Extension: (Google Docs) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-15] CHR Extension: (Google Drive) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-10] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-11-15] CHR Extension: (YouTube) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-10] CHR Extension: (Google Search) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-07] CHR Extension: (Google Sheets) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-15] CHR Extension: (Avast Online Security) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-15] CHR Extension: (Google Wallet) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-15] CHR Extension: (Gmail) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-07] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-16] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-16] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-16] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5554152 2015-11-16] (Avast Software) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed] R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2449552 2012-10-26] (Acer Incorporated) S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated) R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [123904 2015-01-14] (Dassault Systèmes) [File not signed] S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated) R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [102224 2012-08-17] (Condusiv Technologies) R2 FFSOpzSvc; C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe [161384 2012-03-12] (Acer Incorporated) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation) S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193576 2012-07-19] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC) R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-11-02] (NTI Corporation) R2 Process Blocker; C:\Program Files\Softros Systems\Process Blocker\Process Blocker.exe [2233168 2014-10-03] (Softros Systems, Inc.) R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed] R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-03-08] (Dritek System INC.) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) S3 USecuAppSvc; C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [345744 2012-11-12] (Acer Incorporated) R2 VIPAppService; C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe [75336 2014-07-14] (Symantec Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [0 2013-08-22] () <==== ATTENTION (zero byte File/Folder) S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [0 2013-08-22] () <==== ATTENTION (zero byte File/Folder) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-16] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-11-16] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-16] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [466400 2015-11-16] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-16] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-16] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-16] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-16] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-16] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-16] (AVAST Software) S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [0 2013-08-22] () <==== ATTENTION (zero byte File/Folder) R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23376 2012-08-17] (Condusiv Technologies) R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [103248 2012-08-17] (Condusiv Technologies) R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-07-20] (Intel Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) S3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [0 2013-08-22] () <==== ATTENTION (zero byte File/Folder) R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [147088 2015-11-16] (AVAST Software) R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-03-08] (Dritek System Inc.) S3 RasAgileVpn; C:\Windows\system32\DRIVERS\AgileVpn.sys [0 2014-10-28] () <==== ATTENTION (zero byte File/Folder) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [310904 2015-11-16] (Avast Software) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 MREMP50; \??\C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [X] S3 MREMP50a64; \??\C:\Program Files\Common Files\Motive\MREMP50a64.sys [X] S3 MRESP50; \??\C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [X] S3 MRESP50a64; \??\C:\Program Files\Common Files\Motive\MRESP50a64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-11-18 07:29 - 2015-11-18 07:29 - 00030708 _____ C:\Users\David\Desktop\FRST.txt 2015-11-18 07:21 - 2015-11-18 07:21 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2015-11-18 06:01 - 2015-11-18 06:20 - 00000000 ____D C:\Users\David\Documents\Woodworking 2015-11-18 05:49 - 2015-11-18 05:49 - 00000913 _____ C:\Users\David\Desktop\Documents - Shortcut.lnk 2015-11-18 05:05 - 2015-11-18 05:05 - 00015036 _____ C:\Users\David\Documents\cc_20151118_050535.reg 2015-11-17 21:18 - 2015-11-17 21:41 - 00000018 _____ C:\repair_starting.dat 2015-11-17 21:13 - 2015-11-17 19:55 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll 2015-11-16 19:20 - 2015-11-16 19:20 - 00000000 ____D C:\Users\David\AppData\Local\CrashRpt 2015-11-16 19:00 - 2015-11-16 19:00 - 00022178 _____ C:\Users\David\Documents\cc_20151116_190046.reg 2015-11-16 05:52 - 2015-11-16 05:52 - 00043104 _____ C:\Users\David\Documents\cc_20151116_055246.reg 2015-11-16 05:43 - 2015-11-16 05:43 - 00003026 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1447444372 2015-11-16 05:43 - 2015-11-16 05:43 - 00001017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2015-11-16 05:41 - 2015-11-16 05:41 - 00466400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys 2015-11-16 05:41 - 2015-11-16 05:41 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2015-11-16 05:41 - 2015-11-16 05:41 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2015-11-16 05:19 - 2015-11-16 19:01 - 02008576 _____ (Farbar) C:\Users\David\Desktop\FRST64.exe 2015-11-16 05:15 - 2015-11-16 05:15 - 00000000 ____D C:\Users\David\AppData\Local\GWX 2015-11-15 20:21 - 2015-11-17 21:38 - 00863592 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2015-11-15 19:53 - 2015-11-15 19:53 - 00000207 _____ C:\WINDOWS\tweaking.com-regbackup-DAVID-Windows-8.1-(64-bit).dat 2015-11-15 18:20 - 2015-11-17 19:28 - 00003648 _____ C:\WINDOWS\System32\Tasks\Tweaking.com - Windows Repair Tray Icon 2015-11-15 18:20 - 2015-11-15 18:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com 2015-11-15 14:52 - 2015-11-15 14:52 - 00000345 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Update.lnk 2015-11-15 14:36 - 2015-05-07 12:00 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2015-11-15 14:36 - 2015-05-07 11:12 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2015-11-15 14:35 - 2015-03-01 20:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll 2015-11-15 14:35 - 2015-03-01 20:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll 2015-11-15 14:34 - 2015-05-11 13:17 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2015-11-15 14:34 - 2015-04-02 19:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll 2015-11-15 14:34 - 2015-04-02 19:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll 2015-11-15 14:34 - 2014-11-04 14:25 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys 2015-11-15 14:34 - 2014-11-04 14:25 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys 2015-11-15 14:34 - 2014-11-04 01:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys 2015-11-15 14:34 - 2014-11-04 01:54 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys 2015-11-15 14:34 - 2014-11-04 01:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys 2015-11-15 14:34 - 2014-11-04 01:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys 2015-11-15 14:32 - 2015-04-13 17:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll 2015-11-15 14:32 - 2015-04-13 17:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll 2015-11-15 14:32 - 2015-02-17 18:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2015-11-15 14:31 - 2015-09-18 22:18 - 00035384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2015-11-15 14:31 - 2015-09-18 08:42 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 01163776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 00766464 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 00699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2015-11-15 14:31 - 2015-09-18 08:42 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-11-15 14:31 - 2015-05-21 08:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2015-11-15 14:31 - 2015-03-12 23:03 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-11-15 14:31 - 2015-03-12 23:03 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2015-11-15 14:30 - 2015-08-22 08:42 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-11-15 14:30 - 2015-08-22 08:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-11-15 14:29 - 2015-10-13 12:10 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-11-15 14:29 - 2015-10-13 12:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2015-11-15 14:27 - 2015-10-17 09:19 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-11-14 12:16 - 2015-11-15 07:48 - 00000000 ____D C:\AdwCleaner 2015-11-14 11:26 - 2015-11-14 11:27 - 00000333 _____ C:\WINDOWS\SysWOW64\debug.log 2015-11-14 07:09 - 2015-11-14 07:09 - 00000000 ____D C:\RegBackup 2015-11-13 22:01 - 2015-11-13 22:01 - 00000000 ____D C:\Program Files (x86)\Tweaking.com 2015-11-13 21:27 - 2015-11-18 07:29 - 00000000 ____D C:\FRST 2015-11-13 11:49 - 2015-11-13 11:49 - 00000000 ____D C:\Users\David\AppData\Roaming\supportdotcom 2015-11-13 06:02 - 2015-11-13 06:02 - 00001320 _____ C:\Users\David\Documents\cc_20151113_060232.reg 2015-11-08 10:43 - 2015-11-15 14:40 - 00000000 ____D C:\ProgramData\Auslogics 2015-11-08 10:42 - 2015-11-15 16:46 - 00000000 ____D C:\WINDOWS\System32\Tasks\Auslogics 2015-11-08 10:42 - 2015-11-15 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics 2015-11-08 10:42 - 2015-11-15 14:29 - 00000000 ____D C:\Program Files (x86)\Auslogics 2015-10-31 17:27 - 2015-10-31 17:28 - 00000000 ____D C:\Users\David\Documents\BEopt_2.5.0 2015-10-31 17:27 - 2015-10-31 17:27 - 00000000 ____D C:\Users\David\AppData\Roaming\BEopt_2.5.0 2015-10-31 17:26 - 2015-10-31 17:26 - 00001998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BEopt 2.5.lnk 2015-10-29 06:31 - 2015-10-29 06:31 - 00008186 _____ C:\Users\David\Documents\cc_20151029_073108.reg 2015-10-29 06:28 - 2015-10-29 06:28 - 00003196 _____ C:\WINDOWS\System32\Tasks\IHSelfDeleteTASK 2015-10-29 06:28 - 2015-10-29 06:28 - 00000000 ____D C:\ProgramData\Motive ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-11-18 07:29 - 2015-02-15 15:22 - 00000000 ____D C:\Users\David\Desktop\Utilities 2015-11-18 07:26 - 2013-09-29 23:04 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-11-18 07:23 - 2015-08-23 18:52 - 01622672 ____N C:\WINDOWS\WindowsUpdate.log 2015-11-18 07:22 - 2014-04-21 09:27 - 00000000 ____D C:\Temp 2015-11-18 07:22 - 2013-04-05 20:56 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-18 07:21 - 2013-08-22 09:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-11-18 07:18 - 2014-12-17 06:37 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2015-11-18 07:05 - 2013-04-05 20:56 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-18 07:00 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sru 2015-11-18 06:59 - 2013-04-05 20:26 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1808542954-3622220976-1516702403-1001 2015-11-18 06:50 - 2013-06-15 19:05 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-11-18 06:39 - 2014-12-05 07:21 - 00000000 ____D C:\Users\David\Documents\Financial 2015-11-18 06:38 - 2014-01-02 10:05 - 00000000 ____D C:\Users\David\AppData\Local\Deployment 2015-11-18 06:22 - 2014-11-14 20:18 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-11-18 06:21 - 2014-11-14 20:18 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-11-18 06:20 - 2015-04-02 05:24 - 00000000 ____D C:\Users\David\Documents\Maintenance & Building 2015-11-18 06:18 - 2014-12-05 07:21 - 00000000 ____D C:\Users\David\Documents\Home Design 2015-11-18 05:11 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-11-18 05:10 - 2014-03-21 21:17 - 00003914 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F546B436-119A-412B-8AE9-604A97ED20D8} 2015-11-18 05:04 - 2013-08-04 22:35 - 00000000 ____D C:\Users\David\AppData\Local\CrashDumps 2015-11-18 05:00 - 2014-09-01 18:36 - 00473624 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-11-17 21:41 - 2012-07-26 00:26 - 00000337 _____ C:\WINDOWS\win.ini 2015-11-17 21:13 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\ras 2015-11-17 21:13 - 2013-08-22 01:58 - 00000000 _____ C:\WINDOWS\system32\rasctrnm.h 2015-11-17 19:56 - 2015-03-15 06:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll 2015-11-17 19:55 - 2015-03-15 06:02 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmiv2.dll 2015-11-16 19:10 - 2015-01-14 07:59 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox 2015-11-16 19:10 - 2015-01-14 07:59 - 00000000 ____D C:\WINDOWS\system32\vbox 2015-11-16 19:09 - 2013-04-06 08:22 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2015-11-16 19:06 - 2013-08-06 19:37 - 00000000 ____D C:\Users\David\AppData\LocalLow\Temp 2015-11-16 19:04 - 2012-07-26 02:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-11-16 19:01 - 2014-11-08 06:14 - 00000000 ____D C:\Users\David\AppData\Roaming\BEopt_2.3.0 2015-11-16 07:13 - 2014-12-05 07:21 - 00000000 ____D C:\Users\David\Documents\Emergency Planning 2015-11-16 05:41 - 2015-10-01 05:34 - 00147088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\ngvss.sys 2015-11-16 05:41 - 2015-01-14 07:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-11-16 05:41 - 2014-04-23 19:43 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2015-11-16 05:41 - 2014-01-06 20:58 - 00154256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2015-11-16 05:41 - 2013-12-08 18:56 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2015-11-16 05:41 - 2013-12-08 17:46 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2015-11-16 05:36 - 2014-08-23 05:34 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2015-11-16 05:36 - 2014-08-23 05:34 - 00000000 ____D C:\Program Files\Java 2015-11-16 05:36 - 2014-08-02 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ___SD C:\WINDOWS\system32\dsc 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\ToastData 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\Offline Web Pages 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\WinStore 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\uk-UA 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\th-TH 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-CS 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sppui 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sl-SI 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\ro-RO 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Recovery 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MSDRM 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\InstallShield 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\icsxml 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\hr-HR 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\he-IL 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Com 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Bthprops 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\bg-BG 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\zh-HK 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\WinMetadata 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\uk-UA 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\tr-TR 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\th-TH 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sppui 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sl-SI 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sk-SK 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\setup 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\ro-RO 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Recovery 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\ras 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\MSDRM 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\migwiz 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\lv-LV 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\lt-LT 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\icsxml 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\ias 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\hr-HR 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\he-IL 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\et-EE 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\en-GB 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Com 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system\Speech 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-11-15 16:54 - 2013-08-22 10:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\downlevel 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\downlevel 2015-11-15 16:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\Dism 2015-11-15 16:54 - 2013-03-08 08:09 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2015-11-15 16:54 - 2013-03-08 08:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-11-15 16:54 - 2012-11-29 06:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EgisTec 2015-11-15 16:54 - 2012-11-29 06:23 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-11-15 16:53 - 2013-12-02 20:00 - 00000000 ___RD C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-15 16:53 - 2013-09-29 22:51 - 00000000 ____D C:\WINDOWS\ShellNew 2015-11-15 16:53 - 2013-09-29 22:51 - 00000000 ____D C:\Program Files\Windows Journal 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 __RSD C:\WINDOWS\Media 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\DesktopTileResources 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\Bthprops 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\bg-BG 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\ar-SA 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\rescache 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\MediaViewer 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\L2Schemas 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\IME 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\FileManager 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Cursors 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Camera 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\addins 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Windows Portable Devices 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Windows Multimedia Platform 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Windows Defender 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Common Files\System 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Common Files\Services 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform 2015-11-15 16:53 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-11-15 16:53 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\servicing 2015-11-15 16:53 - 2013-04-08 16:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBee 2015-11-15 16:53 - 2012-11-29 06:30 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso 6.5 2015-11-15 16:53 - 2012-11-29 06:26 - 00000000 ____D C:\Program Files\EgisTec IPS 2015-11-15 16:53 - 2012-11-29 06:26 - 00000000 ____D C:\Program Files (x86)\EgisTec MyWinLocker 2015-11-15 16:53 - 2012-11-29 06:26 - 00000000 ____D C:\Program Files (x86)\EgisTec IPS 2015-11-15 16:46 - 2014-01-02 09:58 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform 2015-11-15 16:46 - 2013-12-02 19:55 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2015-11-15 16:46 - 2013-09-29 22:48 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm 2015-11-15 16:46 - 2013-09-29 22:48 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr 2015-11-15 16:46 - 2013-09-29 22:48 - 00000000 ____D C:\WINDOWS\system32\winrm 2015-11-15 16:46 - 2013-09-29 22:48 - 00000000 ____D C:\WINDOWS\system32\slmgr 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Speech 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MsDtc 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Licenses 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod 2015-11-15 16:46 - 2013-08-22 10:36 - 00000000 ____D C:\WIN
  12. MPB
    I have no earlier Restore Points....what now?
  13. MPB
    I tried to Activate from PC Settings but it could not. How do I see the earlier Restore Points? Fix result of Farbar Recovery Scan Tool (x64) Version:16-11-2015 Ran by David (2015-11-17 06:39:58) Run:2 Running from C:\Users\David\Desktop Loaded Profiles: David (Available Profiles: David & michael) Boot Mode: Normal ============================================== fixlist content: ***************** start CreateRestorePoint: CloseProcesses: C:\Users\David\Downloads\FLVPlayer-Chrome (1).exe C:\Users\David\Downloads\FLVPlayer-Chrome.exe EmptyTemp: Hosts: End ***************** Restore point was successfully created. Processes closed successfully. C:\Users\David\Downloads\FLVPlayer-Chrome (1).exe => moved successfully C:\Users\David\Downloads\FLVPlayer-Chrome.exe => moved successfully C:\Windows\System32\Drivers\etc\hosts => moved successfully Hosts restored successfully. EmptyTemp: => 105.3 MB temporary data Removed. The system needed a reboot. ==== End of Fixlog 06:40:14 ====
  14. MPB
    Also as I logged on this morning, but not every time, I am instructed to go to PC Settings to Activate Windows. And after doing so it says it cannot be done at this time.
  15. MPB
    No Windows update during that time. ESET Scan results: C:\Users\David\Downloads\ccsetup501 (1).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application C:\Users\David\Downloads\ccsetup501.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application C:\Users\David\Downloads\ccsetup502.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application C:\Users\David\Downloads\FLVPlayer-Chrome (1).exe NSIS/TrojanDownloader.Adload.AA trojan C:\Users\David\Downloads\FLVPlayer-Chrome.exe NSIS/TrojanDownloader.Adload.AA trojan
×
×
  • Create New...