Untitled

Malwarebytes log (It did find some other stuff witch I didn't know of.)
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 9/26/2015
Scan Time: 6:06 PM
Logfile:
Administrator: Yes

Version: 2.1.8.1057
Malware Database: v2015.09.26.05
Rootkit Database: v2015.09.22.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: Grant

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 466212
Time Elapsed: 34 min, 16 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 2
Trojan.Agent.MSIL, C:\ProgramData\Rabukelala Miss You\Rabukelala, Quarantined, [007db77d4348989e1c8a0d271ee5b64a],
Trojan.Agent.MSIL, C:\ProgramData\Rabukelala Miss You\Rabukelala\232.264.328.356, Quarantined, [007db77d4348989e1c8a0d271ee5b64a],

Files: 3
PUP.Optional.InstallCore, C:\Users\Grant\Downloads\FileZilla_3.10.2_win32-setup.exe, Quarantined, [582587adef9cd85e7286c320778ad52b],
RiskWare.TOR, C:\Users\Grant\Downloads\torchat-windows-0.9.9.553.zip, Quarantined, [7a032e06dfac3006b015b1f51de547b9],


Physical Sectors: 0
(No malicious items detected)


(end)
FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015
Ran by Grant (administrator) on GRANTMPC (26-09-2015 19:46:30)
Running from C:\Users\Grant\Downloads
Loaded Profiles: Grant (Available Profiles: Grant & nx)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 10\WVSScheduler.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(iOSinstaller.com) C:\Program Files (x86)\iOSinstaller\Updater.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security) C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filteringb.exe
() C:\Program Files (x86)\NoMachine\bin\nxservice64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(NoMachine) C:\Program Files (x86)\NoMachine\bin\nxserver.bin
(NoMachine) C:\Program Files (x86)\NoMachine\bin\nxd.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(NoMachine) C:\Program Files (x86)\NoMachine\bin\nxnode.bin
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NoMachine) C:\Program Files (x86)\NoMachine\bin\nxclient.bin
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.2.1.1\Lightshot.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe [2793016 2013-09-05] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [154680 2013-09-05] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [154680 2013-09-05] (Hewlett-Packard)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-11-20] (IDT, Inc.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2012-08-22] (Hewlett-Packard )
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2620728 2015-07-22] (Malwarebytes Corporation)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448520 2015-06-24] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861640 2015-06-26] (DivX, LLC)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-03] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [54520 2015-07-28] (Panda Security, S.L.)
HKLM-x32\...\Run: [Panda Security URL Filtering] => "C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filtering.exe"
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Run: [GoogleChromeAutoLaunch_B4E9779156F26FC26D03BF7A2ADC2259] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-23] (Google Inc.)
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2901184 2015-09-24] (Valve Corporation)
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3638256 2015-09-20] (Electronic Arts)
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Run: [ooVoo.exe] => C:\Program Files (x86)\ooVoo\oovoo.exe [36207136 2015-02-08] (ooVoo LLC)
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [488640 2015-04-06] (AppEx Networks Corporation)
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.)
Lsa: [Authentication Packages] msv1_0 nxlsa
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{429a6675-9bfd-45e6-a3e3-7522475d9a0f}: [DhcpNameServer] 192.168.11.1
Tcpip\..\Interfaces\{fcb377b4-e1b1-4102-97d4-21af51fa9781}: [DhcpNameServer] 192.168.11.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK14/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK14/1
HKU\S-1-5-21-849883198-3481065561-553632642-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK14/1
HKU\S-1-5-21-849883198-3481065561-553632642-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK14/1
HKU\S-1-5-21-849883198-3481065561-553632642-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/HPDSK14/1
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-849883198-3481065561-553632642-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-01] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-01] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Panda Security Toolbar -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll [2015-08-27] ()
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM-x32 - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll [2015-08-27] ()

FireFox:
========
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-01] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\3.2.0.23388\npSkypeWebPlugin64.dll [2014-11-03] (Skype)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2015-06-29] (DivX, LLC)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-06] (Microsoft Corporation)
FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\3.2.0.23388\npSkypeWebPlugin.dll [2014-11-03] (Skype)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-849883198-3481065561-553632642-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Grant\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-04-12]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/ig
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-14]
CHR Extension: (BetterTTV) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-03-14]
CHR Extension: (Google Docs) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-14]
CHR Extension: (Google Drive) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-14]
CHR Extension: (Cloud To Butt Plus) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\apmlngnhgbnjpajelfkmabhkfapgnoai [2015-03-14]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-03-14]
CHR Extension: (Web Developer) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2015-03-14]
CHR Extension: (MEGA) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-04-17]
CHR Extension: (YouTube) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-14]
CHR Extension: (Genius (Beta)) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccaokncpmmjiakalbcfdbfmpcaiddjdn [2015-08-29]
CHR Extension: (Google Search) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-14]
CHR Extension: (Netflix) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeohmmeldh [2015-03-14]
CHR Extension: (User-Agent Switcher for Chrome) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg [2015-03-14]
CHR Extension: (Google Play Music) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2015-03-14]
CHR Extension: (Pandora) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbangkleohkafngihneedemihgfeikcl [2015-04-19]
CHR Extension: (Google Sheets) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-14]
CHR Extension: (Simple RSS Reader [aNTP]) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpcobagjpehnbbfallbknjhbiinlfikf [2015-03-14]
CHR Extension: (HTTPS Everywhere) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2015-03-27]
CHR Extension: (Google Docs Offline) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
CHR Extension: (AdBlock) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-03-14]
CHR Extension: (Cut the Rope) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj [2015-03-14]
CHR Extension: (PageSpeed Insights (by Google)) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplegfbjlmmehdoakndmohflojccocli [2015-03-14]
CHR Extension: (Mibbit webchat) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbadbkkklnhamjjeagmknajgmbgcmnpi [2015-03-14]
CHR Extension: (Twitch Live) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiljidcefnbhbpamageahhblhbbhhopm [2015-03-14]
CHR Extension: (Millennials to Snake People) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhkibealmjkbkafogihpeidfcgnigmlf [2015-07-21]
CHR Extension: (Minecraft Wiki Searcher) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\kffllhckohamkhicfkcncgjekbbfmbji [2015-03-14]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (GeoTTV) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\lemlaglplhafhkehnojfbgmmgcpniega [2015-03-14]
CHR Extension: (W3bin.com - Who is hosting that website?) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\lljhfacjpknfplpagpnillgkiepplbjd [2015-03-14]
CHR Extension: (RSS Subscription Extension (by Google)) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2015-03-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-14]
CHR Extension: (Chrome Apps & Extensions Developer Tool) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohmmkhmmmpcnpikjeljgnaoabkaalbgc [2015-06-04]
CHR Extension: (Google Publisher Toolbar) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\omioeahgfecgfpfldejlnideemfidnkc [2015-03-14]
CHR Extension: (Gmail) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-14]
CHR Extension: (Secretbook) - C:\Users\Grant\AppData\Local\Google\Chrome\User Data\Default\Extensions\plglafijddgpenmohgiemalpcfgjjbph [2015-07-20]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AcuWVSSchedulerv10; C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 10\WVSScheduler.exe [1750760 2015-06-23] ()
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-07-27] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 Cachedrv server; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [109568 2013-09-05] () [File not signed]
R2 CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-08-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [298760 2013-08-12] (CyberLink)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-03-17] () [File not signed]
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [24888 2015-07-26] (Hewlett-Packard Company)
R2 iOSinstallerUpdater; C:\Program Files (x86)\iOSinstaller\updater.exe [165376 2015-04-08] (iOSinstaller.com) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [713016 2015-07-22] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [142072 2015-07-29] (Panda Security, S.L.)
R2 nxservice; C:\Program Files (x86)\NoMachine\bin\nxservice64.exe [821376 2015-02-20] ()
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [87552 2013-09-05] (Softex Inc.) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [38200 2015-07-09] (The OpenVPN Project)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-20] (Electronic Arts)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [73464 2015-07-23] (Panda Security, S.L.)
R2 panda_url_filtering; C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filteringb.exe [296760 2014-09-19] (Panda Security)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2015-07-28] (Panda Security, S.L.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-11-20] (IDT, Inc.) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-22] (Advanced Micro Devices, Inc.)
S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2014-03-28] (Google Inc)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [29184 2014-03-28] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [36352 2014-03-28] (LG Electronics Inc.)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2015-08-23] (Google Inc)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation)
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4301304 2015-05-17] (Qualcomm Atheros Communications, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 CpqDfw; C:\Windows\System32\drivers\CpqDfw.sys [27456 2012-05-29] (Windows (R) Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [63064 2015-07-22] ()
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-07-14] (LogMeIn Inc.)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-26] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R1 NNSALPC; C:\Windows\system32\DRIVERS\NNSALPC.sys [103824 2015-07-16] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\system32\DRIVERS\NNSHTTP.sys [211352 2015-07-16] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\system32\DRIVERS\NNSHTTPS.sys [120216 2015-07-16] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\system32\DRIVERS\NNSIDS.sys [120208 2015-07-16] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [58616 2015-06-19] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\system32\DRIVERS\NNSPICC.sys [112536 2015-07-16] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\system32\DRIVERS\NNSPIHSW.sys [87448 2015-07-16] ()
R1 NNSPOP3; C:\Windows\system32\DRIVERS\NNSPOP3.sys [133528 2015-07-16] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\system32\DRIVERS\NNSPROT.sys [309648 2015-07-16] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\system32\DRIVERS\NNSPRV.sys [179608 2015-07-16] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\system32\DRIVERS\NNSSMTP.sys [122776 2015-07-16] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\system32\DRIVERS\NNSSTRM.sys [267160 2015-07-16] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\system32\DRIVERS\NNSTLSC.sys [115600 2015-07-16] (Panda Security, S.L.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
R3 nxaudio; C:\Windows\system32\drivers\nxaudio.sys [17920 2014-04-22] (NoMachine)
R2 nxfs; C:\Program Files (x86)\NoMachine\bin\drivers\nxdisk\amd64\nxfs.sys [57008 2014-10-20] (NoMachine)
R2 nxusbf; C:\Windows\System32\drivers\nxusbf.sys [87216 2015-02-02] (NoMachine)
R3 nxusbh; C:\Windows\System32\drivers\nxusbh.sys [68096 2015-02-02] (NoMachine)
R3 nxusbs; C:\Windows\System32\drivers\nxusbs.sys [10240 2015-02-02] (NoMachine)
R2 PSINAflt; C:\Windows\system32\DRIVERS\PSINAflt.sys [173464 2015-07-21] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [130968 2015-07-21] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\system32\DRIVERS\PSINKNC.sys [207256 2015-07-21] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [133528 2015-07-21] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\system32\DRIVERS\PSINProt.sys [143768 2015-07-21] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\system32\DRIVERS\PSINReg.sys [117144 2015-07-21] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [62080 2015-06-16] (Panda Security, S.L.)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402136 2015-09-13] (Realsil Semiconductor Corporation)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42088 2015-06-03] (Anchorfree Inc.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
U5 usbfilter; C:\Windows\System32\Drivers\usbfilter.sys [58536 2012-08-29] (Advanced Micro Devices)
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [192344 2015-04-02] (IDRIX)
S3 vzandnetdiag; C:\Windows\system32\DRIVERS\lgvzandnetdiag64.sys [29696 2013-05-06] (LG Electronics Inc.)
S3 vzandnetmodem; C:\Windows\system32\DRIVERS\lgvzandnetmdm64.sys [36864 2013-05-06] (LG Electronics Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 RSUSBSTOR; \SystemRoot\System32\Drivers\RtsUStor.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-26 19:46 - 2015-09-26 19:47 - 00035225 _____ C:\Users\Grant\Downloads\FRST.txt
2015-09-26 19:46 - 2015-09-26 19:46 - 02192384 _____ (Farbar) C:\Users\Grant\Downloads\FRST64.exe
2015-09-26 19:46 - 2015-09-26 19:46 - 00000000 ____D C:\FRST
2015-09-26 19:38 - 2015-09-26 19:38 - 00016148 _____ C:\WINDOWS\system32\GRANTMPC_Grant_HistoryPrediction.bin
2015-09-26 18:50 - 2015-09-26 18:50 - 00000021 _____ C:\WINDOWS\S.dirmngr
2015-09-26 18:32 - 2015-09-26 18:32 - 00000102 _____ C:\Users\Grant\Desktop\What is iurlad(do)com- - Malware Removal Help - Malwarebytes Forum.url
2015-09-26 17:56 - 2015-09-26 17:56 - 00000600 _____ C:\Users\Grant\AppData\Roaming\winscp.rnd
2015-09-26 17:53 - 2015-09-26 17:53 - 00001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2015-09-26 17:53 - 2015-09-26 17:53 - 00001055 _____ C:\Users\Public\Desktop\WinSCP.lnk
2015-09-26 17:53 - 2015-09-26 17:53 - 00000000 ____D C:\Program Files (x86)\WinSCP
2015-09-26 17:52 - 2015-09-26 17:52 - 05861512 _____ (Martin Prikryl ) C:\Users\Grant\Downloads\winscp575setup.exe
2015-09-26 17:45 - 2015-09-26 17:45 - 27615232 _____ C:\Users\Grant\Downloads\buffalo-wzr-1750dhp-webflash.bin
2015-09-26 17:32 - 2015-09-26 17:33 - 27420848 _____ C:\Users\Grant\Downloads\wzr1750dhp-227.zip
2015-09-26 13:54 - 2015-09-26 13:54 - 00003202 _____ C:\Users\Grant\AppData\Local\recently-used.xbel
2015-09-25 20:53 - 2015-09-25 20:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2015-09-25 20:53 - 2015-09-25 20:53 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2015-09-25 20:52 - 2015-09-25 20:52 - 02511360 _____ (Skillbrains ) C:\Users\Grant\Downloads\setup-lightshot (1).exe
2015-09-25 20:32 - 2015-09-26 18:48 - 00000000 ____D C:\ProgramData\panda_url_filtering
2015-09-25 20:32 - 2015-09-25 20:32 - 00000000 ____D C:\ProgramData\Panda Security URL Filtering
2015-09-25 20:32 - 2015-06-16 10:41 - 00062080 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys
2015-09-25 20:31 - 2015-09-25 20:33 - 00002276 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus.lnk
2015-09-25 20:31 - 2015-09-25 20:32 - 00000000 ____D C:\Program Files (x86)\pandasecuritytb
2015-09-25 20:31 - 2015-09-25 20:31 - 00000000 ____D C:\Users\Grant\AppData\Roaming\Panda Security
2015-09-25 20:31 - 2015-09-25 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus
2015-09-25 20:31 - 2015-07-21 18:27 - 00117144 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2015-09-25 20:31 - 2015-07-21 18:22 - 00207256 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2015-09-25 20:31 - 2015-07-21 18:22 - 00173464 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2015-09-25 20:31 - 2015-07-21 18:22 - 00143768 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2015-09-25 20:31 - 2015-07-21 18:22 - 00133528 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2015-09-25 20:31 - 2015-07-21 18:22 - 00130968 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2015-09-25 20:30 - 2015-09-25 20:32 - 00000000 ____D C:\Program Files (x86)\Panda Security
2015-09-25 20:28 - 2015-09-25 20:28 - 03774136 _____ (Oleg N. Scherbakov) C:\Users\Grant\Downloads\HPSupportSolutionsFramework-12.0.30.81 (1).exe
2015-09-25 20:27 - 2015-09-25 20:32 - 00000000 ____D C:\ProgramData\Panda Security
2015-09-25 20:27 - 2015-09-25 20:27 - 02113152 _____ C:\Users\Grant\Downloads\PANDAFREEAV.exe
2015-09-25 20:24 - 2015-09-25 20:24 - 03774136 _____ (Oleg N. Scherbakov) C:\Users\Grant\Downloads\HPSupportSolutionsFramework-12.0.30.81.exe
2015-09-25 06:56 - 2015-09-25 06:56 - 05443202 _____ (Igor Pavlov) C:\Users\Grant\Downloads\LG_One_Click_Root_by_avicohh (1).exe
2015-09-25 06:56 - 2015-09-25 06:56 - 00000000 ____D C:\Users\Grant\Downloads\s
2015-09-25 06:50 - 2015-09-25 06:50 - 08813644 _____ C:\Users\Grant\Downloads\Stump-v1.2.0.apk
2015-09-25 06:46 - 2015-09-25 06:46 - 03766927 _____ C:\Users\Grant\Downloads\OneClickRoot.apk
2015-09-25 06:46 - 2015-09-25 06:46 - 03766927 _____ C:\Users\Grant\Downloads\OneClickRoot (1).apk
2015-09-24 21:22 - 2015-09-24 21:22 - 00002761 _____ C:\Users\Public\Desktop\Debloater.lnk
2015-09-24 21:22 - 2015-09-24 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gatesjunior Developer
2015-09-24 21:22 - 2015-09-24 21:22 - 00000000 ____D C:\Program Files (x86)\Debloater
2015-09-24 21:21 - 2015-09-24 21:21 - 02994545 _____ (Gatesjunior Developer) C:\Users\Grant\Downloads\Debloater-setup-v3.90.exe
2015-09-24 19:22 - 2015-09-24 19:22 - 02681856 _____ C:\Users\Grant\Downloads\HPDetect (4).msi
2015-09-23 14:21 - 2015-09-23 14:21 - 06521184 _____ (Tim Kosse) C:\Users\Grant\Downloads\FileZilla_3.14.0_win64-setup.exe
2015-09-21 19:26 - 2015-09-26 09:35 - 00003242 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForGrant
2015-09-20 18:42 - 2015-09-20 18:43 - 00000000 ____D C:\Users\Grant\Documents\Visual Studio 2015
2015-09-20 18:39 - 2015-09-20 18:39 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2015-09-20 18:37 - 2015-09-20 18:37 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
2015-09-20 18:37 - 2015-09-20 18:37 - 00000000 ____D C:\Program Files (x86)\ShellDir
2015-09-20 18:34 - 2015-09-20 18:34 - 00000000 ____D C:\Program Files (x86)\AppInsights
2015-09-20 18:33 - 2015-09-20 18:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools
2015-09-20 18:32 - 2015-09-20 18:32 - 00000000 ____D C:\ProgramData\NuGet
2015-09-20 18:32 - 2015-09-20 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2015-09-20 18:32 - 2015-09-20 18:32 - 00000000 ____D C:\Program Files (x86)\NuGet
2015-09-20 18:32 - 2015-09-20 18:32 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
2015-09-20 18:31 - 2015-09-20 18:31 - 00001505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2015-09-20 18:30 - 2015-09-20 18:30 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
2015-09-20 18:30 - 2015-09-20 18:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-09-20 18:28 - 2015-09-20 18:29 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2015-09-20 18:27 - 2015-09-20 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2015-09-20 18:26 - 2015-09-20 18:39 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-09-20 18:26 - 2015-09-20 18:26 - 00000000 ____D C:\WINDOWS\symbols
2015-09-20 18:26 - 2015-09-20 18:26 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2015-09-20 18:23 - 2015-09-20 18:40 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-09-20 18:22 - 2015-09-20 18:40 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-09-20 18:22 - 2015-09-20 18:22 - 00001514 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2015-09-20 18:16 - 2015-09-20 18:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2015-09-20 18:16 - 2015-09-20 18:37 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-09-20 18:16 - 2015-09-20 18:23 - 00000000 ____D C:\WINDOWS\system32\1033
2015-09-20 18:16 - 2015-09-20 18:16 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf
2015-09-20 18:13 - 2015-09-20 18:13 - 00000000 ____D C:\ProgramData\VsTelemetry
2015-09-20 18:10 - 2015-09-20 18:10 - 00000935 _____ C:\Users\Public\Desktop\Unity 5.2.0f3 (64-bit).lnk
2015-09-20 18:10 - 2015-09-20 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 5.2.0f3 (64-bit)
2015-09-20 17:59 - 2015-09-20 18:11 - 00000000 ____D C:\Program Files\Unity
2015-09-20 17:55 - 2015-09-20 17:55 - 00672632 _____ C:\Users\Grant\Downloads\UnityDownloadAssistant-5.2.0f3.exe
2015-09-20 11:19 - 2014-05-13 21:06 - 00440320 _____ (Atheros) C:\WINDOWS\system32\athihvs.dll
2015-09-19 21:50 - 2015-09-26 13:48 - 00000000 ____D C:\Users\Grant\AppData\Local\ClassicShell
2015-09-19 21:50 - 2015-09-19 21:50 - 00000000 ____D C:\ProgramData\ClassicShell
2015-09-19 21:22 - 2015-09-19 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-19 21:22 - 2015-09-19 21:22 - 00002640 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-19 21:22 - 2015-09-19 21:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-19 21:18 - 2015-09-19 21:18 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-18 19:57 - 2015-09-24 21:24 - 00001786 _____ C:\WINDOWS\wininit.ini
2015-09-18 17:42 - 2015-09-18 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2015-09-18 17:39 - 2015-09-18 17:39 - 31986464 _____ (The Git Development Community ) C:\Users\Grant\Downloads\Git-2.5.3-64-bit (1).exe
2015-09-18 17:39 - 2015-09-18 17:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2015-09-18 17:39 - 2015-09-18 17:39 - 00000000 ____D C:\Program Files\Common Files\AV
2015-09-18 17:39 - 2015-09-18 17:39 - 00000000 ____D C:\Program Files\Classic Shell
2015-09-18 17:39 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2015-09-18 17:36 - 2015-09-18 17:36 - 04775936 _____ C:\ProgramData\ClassicShellSetup64_4_2_4.msi
2015-09-18 17:36 - 2015-09-18 17:36 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-09-18 17:35 - 2015-09-26 18:49 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-09-18 17:35 - 2015-09-24 21:24 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-09-18 17:35 - 2015-09-18 17:35 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Grant\Downloads\spybot-2.4.exe
2015-09-18 17:34 - 2015-09-18 17:38 - 06946544 _____ (IvoSoft) C:\Users\Grant\Downloads\ClassicShellSetup_4_2_4 (1).exe
2015-09-18 17:29 - 2015-09-18 17:42 - 00000000 ____D C:\Program Files\Git
2015-09-18 17:28 - 2015-09-18 17:42 - 00000000 ____D C:\ProgramData\Git
2015-09-18 17:27 - 2015-09-18 17:28 - 31986464 _____ (The Git Development Community ) C:\Users\Grant\Downloads\Git-2.5.3-64-bit.exe
2015-09-16 20:40 - 2015-09-16 20:41 - 02681856 _____ C:\Users\Grant\Downloads\HPDetect (3).msi
2015-09-16 18:58 - 2015-09-16 18:58 - 00000000 ___RD C:\Users\Grant\3D Objects
2015-09-14 12:43 - 2015-09-14 12:43 - 00837032 _____ (Akeo Consulting (http://akeo.ie)) C:\Users\Grant\Downloads\rufus-2.3.exe
2015-09-14 12:38 - 2015-09-14 12:38 - 00000000 ____D C:\Users\Grant\Documents\RPGVXAce
2015-09-14 12:32 - 2015-09-14 12:32 - 00000222 _____ C:\Users\Grant\Desktop\RPG Maker VX Ace.url
2015-09-14 12:32 - 2015-09-14 12:32 - 00000222 _____ C:\Users\Grant\Desktop\Game Character Hub.url
2015-09-13 19:29 - 2015-09-13 19:29 - 00000000 ____D C:\Users\Grant\Downloads\rufus_files
2015-09-13 17:07 - 2015-09-13 17:07 - 43791480 _____ C:\Users\Grant\Downloads\torbrowser-install-5.0.2_en-US (1).exe
2015-09-13 16:03 - 2015-09-13 16:03 - 09890008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2015-09-13 16:03 - 2015-09-13 16:03 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-09-13 15:59 - 2015-05-17 23:33 - 04301304 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw10x.sys
2015-09-13 15:58 - 2015-09-20 11:19 - 00000000 ____D C:\WINDOWS\system32\nn-NO
2015-09-13 15:58 - 2015-09-13 15:58 - 00000000 ____D C:\Program Files (x86)\Cisco
2015-09-13 15:58 - 2014-05-13 21:07 - 00060416 ____N (Atheros) C:\WINDOWS\system32\athihvui.dll
2015-09-13 15:17 - 2015-09-13 15:17 - 00000000 ____D C:\Users\Grant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2015-09-10 17:20 - 2015-09-26 18:49 - 00000350 _____ C:\WINDOWS\Tasks\HPCeeScheduleForGrant.job
2015-09-10 17:15 - 2015-09-10 17:15 - 00000722 _____ C:\Users\Grant\Downloads\programming-test.zip
2015-09-09 21:57 - 2015-09-09 21:57 - 06092714 _____ C:\Users\Grant\Downloads\XFv1.4.2-DGT.zip
2015-09-09 21:57 - 2015-09-09 21:57 - 06092714 _____ C:\Users\Grant\Downloads\XFv1.4.2-DGT (2).zip
2015-09-09 21:57 - 2015-09-09 21:57 - 06092714 _____ C:\Users\Grant\Downloads\XFv1.4.2-DGT (1).zip
2015-09-08 16:50 - 2015-09-01 20:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-08 16:50 - 2015-08-27 02:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-08 16:50 - 2015-08-27 01:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-08 16:50 - 2015-08-27 01:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-08 16:50 - 2015-08-27 01:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-08 16:50 - 2015-08-27 01:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-08 16:50 - 2015-08-27 01:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-08 16:50 - 2015-08-27 01:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-08 16:50 - 2015-08-27 01:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-08 16:50 - 2015-08-27 01:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-08 16:50 - 2015-08-27 01:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 16:50 - 2015-08-27 01:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-08 16:49 - 2015-09-01 21:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-08 16:49 - 2015-09-01 20:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-08 16:49 - 2015-08-27 02:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-08 16:49 - 2015-08-27 02:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-08 16:49 - 2015-08-27 01:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-08 16:49 - 2015-08-27 01:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-08 16:49 - 2015-08-27 01:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-08 16:49 - 2015-08-27 01:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-08 16:49 - 2015-08-27 01:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-08 16:49 - 2015-08-27 01:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-08 16:49 - 2015-08-27 01:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-08 16:49 - 2015-08-27 01:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-08 16:49 - 2015-08-27 01:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-08 16:49 - 2015-08-27 01:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-08 16:49 - 2015-08-27 01:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-08 16:49 - 2015-08-27 01:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-08 16:49 - 2015-08-27 01:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-08 16:49 - 2015-08-27 01:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-08 16:49 - 2015-08-27 01:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-08 16:49 - 2015-08-27 01:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-07 20:34 - 2015-09-07 20:41 - 288753935 _____ C:\Users\Grant\Downloads\cm-12.1-20150907-NIGHTLY-ls980.zip
2015-09-07 20:33 - 2015-09-07 20:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2015-09-07 20:31 - 2015-09-07 20:31 - 00238819 _____ C:\Users\Grant\Downloads\howto_driver.zip
2015-09-07 20:30 - 2015-09-07 20:30 - 09620767 _____ (Snoop05) C:\Users\Grant\Downloads\adb-setup-1.4.2.exe
2015-09-07 20:30 - 2015-09-07 20:30 - 09620767 _____ (Snoop05) C:\Users\Grant\Desktop\adb-setup-1.4.2.exe
2015-09-07 20:30 - 2015-09-07 20:30 - 00004664 _____ C:\WINDOWS\DPINST.LOG
2015-09-07 20:30 - 2015-09-07 20:30 - 00000000 ____D C:\Program Files\DIFX
2015-09-07 20:30 - 2015-09-07 20:30 - 00000000 ____D C:\adb
2015-09-07 20:30 - 2014-09-20 06:49 - 01002728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2015-09-07 20:27 - 2015-09-07 20:27 - 08683356 _____ C:\Users\Grant\Downloads\Universal_Naked_Driver_0.72.zip
2015-09-07 20:23 - 2015-09-07 20:23 - 09433088 _____ (AdbDriver.com) C:\Users\Grant\Downloads\AdbDriverInstaller.exe
2015-09-07 20:21 - 2015-09-07 20:21 - 08682859 _____ C:\Users\Grant\Downloads\latest_usb_driver_windows.zip
2015-09-06 14:24 - 2015-09-06 14:24 - 00003369 _____ C:\Users\Grant\Desktop\Plugin.jar
2015-09-06 13:16 - 2015-09-06 13:16 - 00000222 _____ C:\Users\Grant\Desktop\FortressCraft Evolved.url
2015-09-05 20:22 - 2015-09-05 20:26 - 00000000 ____D C:\Users\Grant\AppData\Roaming\tox
2015-09-05 20:21 - 2015-09-05 20:21 - 13929787 _____ C:\Users\Grant\Downloads\qTox_build_windows_x86-64_release.zip
2015-09-01 22:17 - 2015-09-05 19:18 - 00000000 ____D C:\Users\Grant\Desktop\Ticker
2015-09-01 18:41 - 2015-09-01 18:44 - 00000000 ____D C:\Users\Grant\Test
2015-09-01 16:55 - 2015-09-01 16:55 - 00000000 ____D C:\Users\Grant\AppData\Roaming\Sun
2015-09-01 16:55 - 2015-09-01 16:55 - 00000000 ____D C:\Users\Grant\.oracle_jre_usage
2015-09-01 12:53 - 2015-08-20 02:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-09-01 12:53 - 2015-08-20 02:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-09-01 12:53 - 2015-08-20 02:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-09-01 12:53 - 2015-08-20 01:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-09-01 12:53 - 2015-08-20 01:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-09-01 12:53 - 2015-08-20 01:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-09-01 12:53 - 2015-08-20 01:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-09-01 12:53 - 2015-08-18 03:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-01 12:53 - 2015-08-18 03:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-09-01 12:53 - 2015-08-18 03:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-09-01 12:53 - 2015-08-18 03:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-09-01 12:53 - 2015-08-18 03:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-09-01 12:53 - 2015-08-18 03:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-09-01 12:53 - 2015-08-18 03:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-09-01 12:53 - 2015-08-18 03:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-09-01 12:53 - 2015-08-18 03:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-09-01 12:53 - 2015-08-18 03:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-09-01 12:53 - 2015-08-18 03:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-09-01 12:53 - 2015-08-18 02:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-09-01 12:53 - 2015-08-18 02:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-09-01 12:53 - 2015-08-18 02:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-09-01 12:53 - 2015-08-18 02:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-09-01 12:53 - 2015-08-18 02:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-09-01 12:53 - 2015-08-18 02:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-09-01 12:53 - 2015-08-18 02:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-09-01 12:53 - 2015-08-18 02:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-09-01 12:53 - 2015-08-18 02:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-09-01 12:53 - 2015-08-18 02:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-09-01 12:53 - 2015-08-18 02:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-09-01 12:53 - 2015-08-18 02:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-09-01 12:53 - 2015-08-18 02:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-09-01 12:53 - 2015-08-18 02:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-09-01 12:53 - 2015-08-18 02:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-09-01 12:53 - 2015-08-18 02:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-09-01 12:53 - 2015-08-18 02:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-09-01 12:53 - 2015-08-18 02:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-09-01 12:53 - 2015-08-18 02:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-09-01 12:53 - 2015-08-18 02:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-09-01 12:53 - 2015-08-18 02:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-09-01 12:53 - 2015-08-18 02:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-09-01 12:53 - 2015-08-18 00:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-30 20:51 - 2015-08-30 20:52 - 00000499 _____ C:\Users\Grant\Desktop\News.pl
2015-08-30 20:51 - 2015-08-30 20:51 - 00000000 _____ C:\Users\Grant\Desktop\SS.txt
2015-08-30 15:55 - 2015-08-30 15:55 - 00000956 _____ C:\Users\Grant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2015-08-30 15:55 - 2015-08-30 15:55 - 00000908 _____ C:\Users\Grant\Desktop\Start Tor Browser.lnk
2015-08-30 15:54 - 2015-08-30 15:54 - 43791480 _____ C:\Users\Grant\Downloads\torbrowser-install-5.0.2_en-US.exe
2015-08-29 13:12 - 2015-05-07 01:00 - 3276800000 _____ C:\Users\Grant\Downloads\2015-05-05-raspbian-wheezy.img
2015-08-29 12:41 - 2015-08-29 12:44 - 1038523231 _____ C:\Users\Grant\Downloads\2015-05-05-raspbian-wheezy.zip
2015-08-29 12:40 - 2015-08-29 12:40 - 00039881 _____ C:\Users\Grant\Downloads\2015-05-05-raspbian-wheezy.zip.torrent
2015-08-29 12:35 - 2015-09-24 21:19 - 00008788 _____ C:\WINDOWS\setupact.log
2015-08-29 12:35 - 2015-08-29 12:35 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-08-29 12:32 - 2015-09-26 18:49 - 00289480 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-29 12:32 - 2015-09-26 18:49 - 00010352 _____ C:\WINDOWS\PFRO.log
2015-08-27 18:07 - 2015-08-27 18:07 - 00040941 _____ C:\Users\Grant\Downloads\thoughts on the freshpoint program so far.eml

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-26 19:45 - 2015-03-15 12:07 - 00000000 ____D C:\Users\Grant\AppData\Roaming\Skype
2015-09-26 19:42 - 2015-08-26 16:36 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-26 19:39 - 2015-06-06 09:57 - 00000000 ____D C:\Users\Grant\AppData\Local\TSVNCache
2015-09-26 19:39 - 2015-04-06 16:02 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-26 19:39 - 2015-03-29 17:39 - 00000000 ___HD C:\Users\Grant\.nx
2015-09-26 19:39 - 2015-03-14 19:37 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-26 19:38 - 2015-03-14 19:30 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-26 19:05 - 2015-03-17 10:05 - 00000937 _____ C:\WINDOWS\Tasks\EPSON XP-410 Series Update {4BE27D09-7493-4B6D-985D-C35C67DD3389}.job
2015-09-26 19:05 - 2015-03-17 10:05 - 00000751 _____ C:\WINDOWS\Tasks\EPSON XP-410 Series Invitation {4BE27D09-7493-4B6D-985D-C35C67DD3389}.job
2015-09-26 18:59 - 2015-03-18 18:57 - 00000406 _____ C:\WINDOWS\Tasks\update-S-1-5-21-849883198-3481065561-553632642-1001.job
2015-09-26 18:58 - 2015-03-14 19:30 - 00000924 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-26 18:56 - 2015-07-29 13:55 - 00968010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-26 18:50 - 2015-08-17 11:50 - 00000937 _____ C:\WINDOWS\Tasks\EPSON XP-410 Series Update {FE824C0E-0076-4599-AB08-3A0107E8EE9E}.job
2015-09-26 18:50 - 2015-08-17 11:50 - 00000751 _____ C:\WINDOWS\Tasks\EPSON XP-410 Series Invitation {FE824C0E-0076-4599-AB08-3A0107E8EE9E}.job
2015-09-26 18:49 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-26 18:48 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-26 18:48 - 2015-07-10 05:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-26 18:48 - 2015-06-13 14:19 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2015-09-26 18:44 - 2015-08-11 14:05 - 00000000 ____D C:\ProgramData\Rabukelala Miss You
2015-09-26 18:44 - 2015-03-15 11:28 - 00000000 ____D C:\Users\Grant\Desktop\Tor Browser
2015-09-26 18:44 - 2015-03-14 19:16 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{231A6503-031A-43BE-A37A-CC6425AF0247}
2015-09-26 18:29 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-26 17:59 - 2015-03-17 20:01 - 00000600 _____ C:\Users\Grant\AppData\Local\PUTTY.RND
2015-09-26 17:36 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-26 15:50 - 2015-03-18 18:57 - 00000406 _____ C:\WINDOWS\Tasks\update-sys.job
2015-09-26 14:59 - 2015-03-14 19:30 - 00002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-26 13:54 - 2015-04-02 11:39 - 00000000 ____D C:\Users\Grant\AppData\Local\gtk-2.0
2015-09-26 13:54 - 2015-03-18 17:26 - 00000000 ____D C:\Users\Grant\AppData\Roaming\gnupg
2015-09-26 13:49 - 2015-07-29 18:10 - 00000258 __RSH C:\ProgramData\ntuser.pol
2015-09-26 13:43 - 2015-04-02 10:45 - 00000000 ____D C:\Users\Grant\AppData\Local\CrashDumps
2015-09-25 22:29 - 2015-07-29 13:56 - 00000000 ____D C:\Users\Grant
2015-09-25 22:29 - 2015-03-15 13:22 - 00000000 ____D C:\Users\Grant\Desktop\MultiMC
2015-09-25 20:44 - 2015-03-16 13:21 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-09-25 20:41 - 2014-01-04 13:59 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-09-24 21:21 - 2015-03-15 14:21 - 00000000 ____D C:\Users\Grant\AppData\Local\Downloaded Installations
2015-09-24 20:02 - 2015-06-23 19:42 - 00102318 _____ C:\Users\Grant\Downloads\DiagCommand.xml
2015-09-24 20:02 - 2015-06-23 19:42 - 00012702 _____ C:\Users\Grant\Downloads\setting.xml
2015-09-24 19:05 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-24 18:53 - 2015-05-16 21:06 - 00000000 ____D C:\Users\Grant\AppData\Local\Unity
2015-09-23 20:53 - 2015-03-17 11:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2015-09-23 20:52 - 2015-03-17 11:36 - 00000000 ____D C:\Program Files (x86)\epson
2015-09-23 20:52 - 2015-03-17 11:35 - 00000000 ____D C:\Program Files (x86)\EPSON Software
2015-09-23 20:52 - 2014-01-04 13:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-23 14:21 - 2015-03-19 18:50 - 00000000 ____D C:\Users\Grant\AppData\Roaming\FileZilla
2015-09-23 14:20 - 2015-05-14 18:10 - 00000000 ____D C:\Users\Grant\AppData\Local\Popcorn-Time
2015-09-20 18:41 - 2015-07-29 13:53 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-20 18:40 - 2014-01-04 14:39 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-09-20 18:27 - 2015-07-29 17:39 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-09-20 18:16 - 2015-07-10 07:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-09-20 16:19 - 2015-05-23 16:14 - 00000000 ____D C:\Users\Grant\AppData\Roaming\TS3Client
2015-09-20 13:08 - 2015-03-15 10:49 - 00000000 ____D C:\ProgramData\Origin
2015-09-20 12:03 - 2015-03-15 10:49 - 00000000 ____D C:\Program Files (x86)\Origin
2015-09-20 11:20 - 2014-01-04 14:03 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2015-09-20 11:19 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-09-20 11:18 - 2013-09-03 00:57 - 00000000 ____D C:\SWSETUP
2015-09-19 21:23 - 2015-03-15 12:07 - 00000000 ____D C:\ProgramData\Skype
2015-09-19 21:18 - 2015-03-14 19:35 - 00135752 ____N C:\WINDOWS\Minidump\091915-42609-01.dmp
2015-09-18 17:24 - 2015-03-19 20:45 - 00000000 ____D C:\Users\Grant\AppData\Local\Eclipse
2015-09-18 17:23 - 2015-03-19 20:44 - 00000000 ____D C:\Users\Grant\Desktop\eclipse
2015-09-17 21:24 - 2015-03-14 19:16 - 00000000 ____D C:\Users\Grant\AppData\Local\VirtualStore
2015-09-17 21:23 - 2015-07-04 15:38 - 00000000 ____D C:\Program Files (x86)\Minecraft
2015-09-16 18:53 - 2015-03-14 19:30 - 00003982 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 18:53 - 2015-03-14 19:30 - 00003750 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 18:42 - 2015-03-14 19:16 - 00000000 ____D C:\Users\Grant\AppData\Local\Packages
2015-09-15 21:02 - 2015-07-29 14:35 - 00002380 _____ C:\Users\Grant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-15 21:02 - 2015-03-14 19:22 - 00000000 __RDO C:\Users\Grant\SkyDrive
2015-09-15 12:12 - 2015-07-10 07:06 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 12:12 - 2015-07-10 07:06 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-14 12:32 - 2015-03-14 19:47 - 00000000 ____D C:\Users\Grant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-13 19:28 - 2015-05-18 20:00 - 00000000 ____D C:\Users\Grant\Downloads\tails-i386-1.4
2015-09-13 18:59 - 2015-04-11 20:13 - 00000000 ____D C:\Users\Grant\AppData\Local\Windows Live
2015-09-13 16:03 - 2015-08-10 20:09 - 00402136 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2015-09-13 16:03 - 2014-01-04 14:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-09-13 15:17 - 2015-05-14 18:09 - 00000000 ____D C:\Users\Grant\AppData\Local\Popcorn Time
2015-09-12 18:22 - 2015-03-14 19:29 - 00000000 ____D C:\Users\Grant\AppData\Local\Google
2015-09-10 20:01 - 2015-04-28 20:03 - 00000000 ____D C:\Users\Grant\AppData\Roaming\.StarMade
2015-09-09 21:58 - 2015-05-23 09:45 - 00000000 ____D C:\Users\Grant\Desktop\Newest Backup
2015-09-09 17:51 - 2015-03-17 10:05 - 00000000 ____D C:\ProgramData\EPSON
2015-09-09 11:16 - 2015-07-10 09:14 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 11:16 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-08 17:01 - 2015-03-16 17:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-07 20:22 - 2015-05-09 17:45 - 00000000 ____D C:\Users\Grant\Desktop\usb_driver
2015-09-06 15:32 - 2014-01-04 14:45 - 00000000 ____D C:\WINDOWS\Hewlett-Packard
2015-09-06 14:27 - 2015-03-21 20:11 - 00000000 ____D C:\Users\Grant\.zenmap
2015-09-03 03:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-02 05:01 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-01 18:45 - 2015-03-15 10:46 - 00000000 ____D C:\ProgramData\Oracle
2015-09-01 16:56 - 2015-03-15 10:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-01 16:56 - 2015-03-15 10:55 - 00000000 ____D C:\Program Files\Java
2015-09-01 16:55 - 2015-03-15 10:56 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-09-01 16:55 - 2015-03-15 10:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-09-01 16:50 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-08-30 10:52 - 2015-08-24 17:52 - 00000000 ____D C:\Users\Grant\Documents\ShareX
2015-08-29 12:44 - 2015-04-11 18:43 - 00000000 ____D C:\Users\Grant\AppData\Roaming\deluge
2015-08-29 12:32 - 2015-04-02 11:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-27 18:07 - 2015-04-02 12:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

==================== Files in the root of some directories =======

2015-04-02 21:28 - 2015-04-02 21:28 - 0000600 _____ () C:\Users\Grant\AppData\Roaming\PUTTY.RND
2015-09-26 17:56 - 2015-09-26 17:56 - 0000600 _____ () C:\Users\Grant\AppData\Roaming\winscp.rnd
2015-03-17 20:01 - 2015-09-26 17:59 - 0000600 _____ () C:\Users\Grant\AppData\Local\PUTTY.RND
2015-09-26 13:54 - 2015-09-26 13:54 - 0003202 _____ () C:\Users\Grant\AppData\Local\recently-used.xbel
2015-03-18 18:57 - 2015-03-18 18:57 - 0000003 _____ () C:\Users\Grant\AppData\Local\updater.log
2015-03-18 18:57 - 2015-08-24 17:59 - 0000059 _____ () C:\Users\Grant\AppData\Local\UserProducts.xml
2015-09-18 17:36 - 2015-09-18 17:36 - 4775936 _____ () C:\ProgramData\ClassicShellSetup64_4_2_4.msi

Some files in TEMP:
====================
C:\Users\Grant\AppData\Local\Temp\Extract.exe
C:\Users\Grant\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Grant\AppData\Local\Temp\ShareX-10.2.0-setup.exe
C:\Users\Grant\AppData\Local\Temp\ShareX-10.2.5-setup.exe
C:\Users\Grant\AppData\Local\Temp\SP71705.exe
C:\Users\Grant\AppData\Local\Temp\SP71858.exe
C:\Users\Grant\AppData\Local\Temp\SP72230.exe
C:\Users\Grant\AppData\Local\Temp\update.exe
C:\Users\Grant\AppData\Local\Temp\{CAA7662C-7DF4-4A9D-9425-E5C85606C785}.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-18 12:43

==================== End of FRST.txt ============================
Addition
Additional scan result of Farbar Recovery Scan Tool (x64) Version:23-09-2015
Ran by Grant (2015-09-26 19:47:45)
Running from C:\Users\Grant\Downloads
Windows 10 Home (X64) (2015-07-29 18:21:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-849883198-3481065561-553632642-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-849883198-3481065561-553632642-503 - Limited - Disabled)
Grant (S-1-5-21-849883198-3481065561-553632642-1001 - Administrator - Enabled) => C:\Users\Grant
Guest (S-1-5-21-849883198-3481065561-553632642-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-849883198-3481065561-553632642-1003 - Limited - Enabled)
nx (S-1-5-21-849883198-3481065561-553632642-1004 - Administrator - Enabled) => C:\Users\nx

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Panda Free Antivirus (Enabled - Up to date) {AAF74A68-8713-CDF1-004F-30003398BE9E}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Panda Free Antivirus (Enabled - Up to date) {1196AB8C-A129-C27F-3AFF-0B72481FF423}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Panda Firewall (Disabled) {92CCCB4D-CD7C-CCA9-2B10-9935CD4BF9E5}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Acunetix Web Vulnerability Scanner 10.0 (HKLM-x32\...\{A2EE73C0-01F6-4CD0-B771-9370F6E1EDEF}_is1) (Version: 10.0 - Acunetix)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{E2078C11-E9EC-BD96-037C-A3423082F2BF}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 4.0.0.0 - AppEx Networks)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Insights Tools for Visual Studio 2015 (x32 Version: 3.3 - Microsoft Corporation) Hidden
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Boinc Tasks 32 and 64 Bit by eFMer V 1.66 (HKLM\...\BoincTasks_is1) (Version: 1.66 - eFMer)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Cities in Motion 2 (HKLM-x32\...\Steam App 225420) (Version:  - Colossal Order Ltd.)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6805 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.5.3103 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.3.4608 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.5.3215 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.5.3414 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3212 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Debloater (HKLM-x32\...\{2045C97A-8D9A-47E2-A76A-E6A69CB7030B}) (Version: 3.90 - Gatesjunior Developer)
Debugging Tools for Windows (x64) (HKLM\...\{7F2E5C3B-DBDF-469D-AD8D-F686D3B71176}) (Version: 6.11.1.404 - Microsoft Corporation)
DEFCON (HKLM-x32\...\Steam App 1520) (Version:  - Introversion Software)
Defy Gravity (HKLM-x32\...\Steam App 96100) (Version:  - Fish Factory Games)
Deluge 1.3.11 (HKLM-x32\...\Deluge) (Version:  - )
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.77 - DivX, LLC)
Dotfuscator and Analytics Community Edition 5.18.1 (x32 Version: 5.18.1.2898 - PreEmptive Solutions) Hidden
Enable Loopback Utility (HKLM-x32\...\EnableLoopback) (Version:  - Telerik)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.7.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{17FA0444-A025-43B9-862C-81AE6307C2F2}) (Version: 3.10.0050 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON XP-410 Series Printer Uninstall (HKLM\...\EPSON XP-410 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM\...\{15A0F113-BF2C-4C12-8AA8-42AE0D9AE1C9}) (Version: 3.1.2.0 - SEIKO EPSON Corporation)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version:  - SCS Software)
Farming Simulator 2013 (HKLM-x32\...\Steam App 220260) (Version:  - Giants Software)
FFmpeg (Windows) for Audacity version 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
Fiddler (HKLM-x32\...\Fiddler2) (Version: 4.5.0.0 - Telerik)
FileZilla Client 3.13.0 (HKLM-x32\...\FileZilla Client) (Version: 3.13.0 - Tim Kosse)
FortressCraft Evolved (HKLM-x32\...\Steam App 254200) (Version:  - ProjectorGames)
Game Character Hub (HKLM-x32\...\Steam App 292230) (Version:  - Sebastien Bini)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Git version 2.5.3 (HKLM\...\Git_is1) (Version: 2.5.3 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Gpg4win (2.2.4) (HKLM-x32\...\GPG4Win) (Version: 2.2.4 - The Gpg4win Project)
Hacker Evolution (HKLM-x32\...\Steam App 70100) (Version:  - exosyphen studios)
HashCheck Shell Extension (x86-32) (HKLM-x32\...\HashCheck Shell Extension) (Version: 2.1.11.1 - Kai Liu)
HashCheck Shell Extension (x86-64) (HKLM\...\HashCheck Shell Extension) (Version: 2.1.11.1 - Kai Liu)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Documentation (HKLM-x32\...\{06600E94-1C34-40E2-AB09-D30AECF78172}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7127.4628 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.00.51 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{F6A11738-3EE4-4573-AEA5-6CD5D491C167}) (Version: 12.0.30.81 - Hewlett-Packard Company)
HPDetect [Chrome] (HKLM-x32\...\{562C765D-5910-4532-B0DA-1B733D3FA24C}) (Version: 1.0.0 - HP)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6482.0 - IDT)
Inst5675 (Version: 8.00.51 - Softex Inc.) Hidden
Inst5676 (Version: 8.00.51 - Softex Inc.) Hidden
iOSinstaller (HKLM-x32\...\iOSinstaller) (Version:  - iosinstaller.com)
iTunes (HKLM\...\{BFEAB774-C7DC-4032-B05A-DA5F7CB7B365}) (Version: 12.2.2.25 - Apple Inc.)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java SE Development Kit 8 Update 40 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180400}) (Version: 8.0.400.26 - Oracle Corporation)
LADSPA_plugins-win-0.4.15 (HKLM-x32\...\LADSPA_plugins-win_is1) (Version:  - Audacity Team)
LG One Click Root (HKLM-x32\...\{5085AFF1-777B-4052-85D1-59140D26DB28}) (Version: 1.3.0.0 - avicohh software)
LG United Mobile Driver (HKLM-x32\...\{2A3A4BD6-6CE0-4e2a-80D2-1D0FF6ACBFBA}) (Version: 3.11.3.0 - LG Electronics)
LG Verizon United Driver (HKLM-x32\...\{A17B9856-40CF-4BEA-BB65-ADB8154A83DC}) (Version: 2.11.1 - LG Electronics)
LGFlashTool 1.8.1.1023 (HKLM-x32\...\LGFlashTool) (Version: 1.8.1.1023 - LGE)
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
Lightshot-5.2.1.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.2.1.1 - Skillbrains)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
Lua for Windows 5.1.4-46 (HKLM-x32\...\Lua_is1) (Version: 5.1.4.46 - The Lua for Windows Project and Lua and Tecgraf, PUC-Rio)
Malwarebytes Anti-Exploit version 1.07.1.1015 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.07.1.1015 - Malwarebytes)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{3D3CEBE6-40EA-4C48-97FD-73828281AB4A}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{68BA34E8-9B9D-4A74-83F0-7D366B532D75}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 (HKLM-x32\...\{50b32652-69d2-4b93-9316-edcd12067b8b}) (Version: 14.0.23107.10 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
mIRC (HKLM-x32\...\mIRC) (Version: 7.42 - mIRC Co. Ltd.)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.5.0 - Mozilla)
Mozilla Thunderbird 31.6.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 31.6.0 (x86 en-US)) (Version: 31.6.0 - Mozilla)
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Ncrack 0.2ALPHA (HKLM-x32\...\Ncrack) (Version:  - )
Nmap 6.47 (HKLM-x32\...\Nmap) (Version:  - )
NoMachine (HKLM-x32\...\NoMachine_is1) (Version: 4.4.12 - NoMachine S.a.r.l.)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.7001 - ooVoo LLC.)
Open Visual Traceroute version 1.6.0 (HKLM-x32\...\{74E0B6B8-9214-46A4-A0D7-6373A659A643}_is1) (Version: 1.6.0 - Leo Lewis)
OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
OpenVPN 2.3.7-I603  (HKLM\...\OpenVPN) (Version: 2.3.7-I603 - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.5.2850 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{db018a39-a0b5-48e7-868c-59d09bbc67c4}) (Version: latest - ppy Pty Ltd)
Panda Devices Agent (x32 Version: 1.03.05 - Panda Security) Hidden
Panda Devices Agent (x32 Version: 1.06.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 16.00.01.0000 - Panda Security)
Panda Free Antivirus (Version: 8.03.00.0000 - Panda Security) Hidden
Panda Security Toolbar (HKLM-x32\...\pandasecuritytb) (Version: 4.3.0.4 - Panda Security)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Pid  (HKLM-x32\...\Steam App 218740) (Version:  - Might and Delight)
Pinger (HKLM-x32\...\Pinger 1.1.1.2) (Version: 1.1.1.2 - Pinger Inc.)
Pinger (x32 Version: 1.1.1.2 - Pinger Inc.) Hidden
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version:  - Ndemic Creations)
Popcorn Time (HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\Popcorn Time) (Version:  - Popcorn Official)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prison Architect (HKLM-x32\...\Steam App 233450) (Version:  - Introversion Software)
Python 3.4.3 (64-bit) (HKLM\...\{9529565f-e693-3f11-b3bf-8cd545f5f9a0}) (Version: 3.4.3150 - Python Software Foundation)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Quintet (HKLM-x32\...\Steam App 340350) (Version:  - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.7001 - CyberLink Corp.) Hidden
Rescue: Everyday Heroes (HKLM-x32\...\Steam App 253130) (Version:  - Fragment Production Ltd)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
RPG Maker VX Ace (HKLM-x32\...\Steam App 220700) (Version:  - KADOKAWA)
Ruby 2.2.2-p95 (HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\{F4249FFD-42CD-4404-9534-170D074544F4}_is1) (Version: 2.2.2-p95 - RubyInstaller Team)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Screen Recorder 1.3 (HKLM-x32\...\{ED6FB8D3-ED4A-4FA6-8528-DCEB55CD6DAE}) (Version: 1.3.5564.28408 - Mehrzad Chehraz)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Shotcut (HKLM-x32\...\Shotcut) (Version:  - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Skype Quote Creator (HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\ad08ab58bc77059a) (Version: 1.0.6.0 - MKing)
Skype Web Plugin (HKLM-x32\...\{15AF46DB-9EBA-4662-AA52-29EF23585035}) (Version: 3.2.0.23388 - Skype Technologies S.A.)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
Source Filmmaker (HKLM-x32\...\Steam App 1840) (Version:  - Valve)
Spacebase DF-9 (HKLM-x32\...\Steam App 246090) (Version:  - Double Fine Productions)
StarMade (HKLM-x32\...\Steam App 244770) (Version:  - Schine, GmbH)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Subnautica (HKLM-x32\...\Steam App 264710) (Version:  - Unknown Worlds Entertainment)
Syndicate (HKLM-x32\...\{64CFBAAB-46F7-4628-8D9B-E656A8C11CDB}) (Version: 2.0.0.3 - Electronic Arts)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.23102 - Microsoft Corporation) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Tftpd32 Standalone Edition (remove only) (HKLM-x32\...\Tftpd32) (Version:  - )
ThrashIRC version 2.9 (HKLM-x32\...\{D3C0BE0C-9761-4AC1-8CEF-B53796FEDE44}) (Version: 2.9.0 - Anthony Thrash Durbin)
To the Moon (HKLM-x32\...\Steam App 206440) (Version:  - Freebird Games)
TortoiseSVN 1.8.11.26392 (64 bit) (HKLM\...\{11309CA9-9118-44D6-B345-83C86A5111D5}) (Version: 1.8.26392 - TortoiseSVN)
Tropico 4 (HKLM-x32\...\Steam App 57690) (Version:  - Haemimont Games)
Unity (HKLM-x32\...\Unity) (Version: 5.2.0f3 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 7.1 - Ubisoft)
Uplink (HKLM-x32\...\Steam App 1510) (Version:  - Introversion Software)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.0f-1 - IDRIX)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VS10Runtimex64 (Version: 1.0.0 - sourcefire) Hidden
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinSCP 5.7.5 (HKLM-x32\...\winscp3_is1) (Version: 5.7.5 - Martin Prikryl)
World of Tanks (HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812na}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814na}_is1) (Version:  - Wargaming.net)
XSplit (HKLM-x32\...\{AEDFE02E-FDDB-40A5-B5A9-5F955A75693F}) (Version: 1.2.1301.1501 - SplitMediaLabs)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.3) (Version: 1.3.3 - Xvid Team)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

06-09-2015 15:30:53 HPSF Applying updates
13-09-2015 15:54:55 HPSF Applying updates
18-09-2015 17:37:05 Installed Classic Shell
19-09-2015 21:49:55 HPSF Applying updates
20-09-2015 11:17:39 HPSF Applying updates
20-09-2015 18:10:51 Windows Modules Installer
20-09-2015 18:34:23 Windows Modules Installer
23-09-2015 20:50:48 Installed Epson Event Manager
24-09-2015 21:21:54 Installed Debloater.
25-09-2015 20:25:19 Installed HP Support Solutions Framework
25-09-2015 20:38:38 Installed HP Support Solutions Framework

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-29 15:00 - 2015-07-29 15:00 - 00512029 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 fr.a2dfp.net
0.0.0.0 m.fr.a2dfp.net
0.0.0.0 mfr.a2dfp.net
0.0.0.0 ad.a8.net
0.0.0.0 asy.a8ww.net
0.0.0.0 static.a-ads.com
0.0.0.0 atlas.aamedia.ro
0.0.0.0 abcstats.com
0.0.0.0 ad4.abradio.cz
0.0.0.0 a.abv.bg
0.0.0.0 adserver.abv.bg
0.0.0.0 adv.abv.bg
0.0.0.0 bimg.abv.bg
0.0.0.0 ca.abv.bg
0.0.0.0 www2.a-counter.kiev.ua
0.0.0.0 track.acclaimnetwork.com
0.0.0.0 accuserveadsystem.com
0.0.0.0 www.accuserveadsystem.com
0.0.0.0 achmedia.com
0.0.0.0 csh.actiondesk.com
0.0.0.0 ads.activepower.net
0.0.0.0 app.activetrail.com
0.0.0.0 stat.active24stats.nl #[Tracking.Cookie]
0.0.0.0 traffic.acwebconnecting.com
0.0.0.0 office.ad1.ru
0.0.0.0 cms.ad2click.nl
0.0.0.0 ad2games.com
0.0.0.0 ads.ad2games.com

There are 1000 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {001739AF-07EF-4569-B071-32C4E451426D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {08357252-C60A-4CD0-BDFE-B6095DAB6A75} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {098165E9-9D56-4F39-A793-C451DBB7D23C} - System32\Tasks\HPCeeScheduleForGrant => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {1E4EFA41-7F2F-4E94-9271-55FFF5A5F5AE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {31DA62FD-E227-4CA2-8890-4CF442D1DE34} - System32\Tasks\EPSON XP-410 Series Invitation {4BE27D09-7493-4B6D-985D-C35C67DD3389} => C:\windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {34B361C1-5E11-45BF-ADC3-FCD85D90365A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {3775D464-C5B6-4A9B-9FC6-AA601A8E59D2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3A3F1C47-80B6-4EC6-8302-89118DDEA672} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3FD4EBA0-D219-42AF-A8C7-3E947D99E4FA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4BF5AEB7-8387-4018-BC6C-106DA711635A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {4C0B8E84-535C-40D3-B6B4-11C8352666EB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4D36E676-CF7E-4076-8DA9-34B8583C242A} - System32\Tasks\update-S-1-5-21-849883198-3481065561-553632642-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: {5389928B-2F94-4613-B9A6-52982E2B6D31} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: {5C2B1871-B124-4C79-AAEF-0567FC229A36} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {5E900E57-62AF-4F1F-94C4-11536FDBBD20} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {659F3AA6-545F-49B8-ABB7-972ECF50F32C} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {7B0C0DAA-28B2-4422-8A7C-E6986B2F0185} - System32\Tasks\CLVDLauncher => c:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
Task: {7B399379-3607-4FD0-A2B6-F64FF9A425E3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
Task: {804B412E-4510-496C-A4ED-1DF1B265AA30} - System32\Tasks\EPSON XP-410 Series Update {FE824C0E-0076-4599-AB08-3A0107E8EE9E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {8500B5C3-C7A4-419A-BF9B-2F9ADCC1FA54} - System32\Tasks\EPSON XP-410 Series Invitation {FE824C0E-0076-4599-AB08-3A0107E8EE9E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {9C0A44D6-EB45-4697-A2E5-24292DC781C5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-14] (Google Inc.)
Task: {9FCBE837-3A43-4C4D-942E-F5A4A1CE3B03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {A3014B57-ACE4-4EEA-A0ED-F01B49F57182} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
Task: {A3F997ED-B7D2-42B9-A16A-FAFA22AB1212} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {AAD93FC9-BFCD-4FD2-8701-4FE5CC3AB771} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-14] (Google Inc.)
Task: {AE1BDD28-FC24-409C-BD28-0A20EF2BC25C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {AFBAE21F-6162-4AEC-A2C1-248F2C369046} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {B21B227F-1A45-4F36-BFB8-47C56CB71566} - System32\Tasks\EPSON XP-410 Series Update {4BE27D09-7493-4B6D-985D-C35C67DD3389} => C:\windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {B638520C-03E7-4382-8E9B-59F8640E4B82} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {B647C387-FD3D-46E3-90AF-1E08F396548E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-06-24] (Hewlett-Packard)
Task: {DEE6BB88-758A-4F6E-B729-1FC8091F9870} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E47EE259-BF0E-4EC6-A5F3-123301AA1869} - System32\Tasks\CLMLSvc_P2G8 => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink)
Task: {E6A67649-B48A-45F1-B554-4C093CD9B0E7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {EF128FF4-C845-46E8-BE00-9DCE1636B82E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\EPSON XP-410 Series Invitation {4BE27D09-7493-4B6D-985D-C35C67DD3389}.job => C:\windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-410 Series Invitation {FE824C0E-0076-4599-AB08-3A0107E8EE9E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-410 Series Update {4BE27D09-7493-4B6D-985D-C35C67DD3389}.job => C:\windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE:/EXE:{4BE27D09-7493-4B6D-985D-C35C67DD3389} /F:UpdateWORKGROUP\GRANTMPC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-410 Series Update {FE824C0E-0076-4599-AB08-3A0107E8EE9E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE:/EXE:{FE824C0E-0076-4599-AB08-3A0107E8EE9E} /F:UpdateWORKGROUP\GRANTMPC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForGrant.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-849883198-3481065561-553632642-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Loaded Modules (Whitelisted) ==============

2015-03-29 17:35 - 2014-08-13 11:05 - 02203648 _____ () C:\WINDOWS\system32\nxlsa.DLL
2015-07-29 17:44 - 2015-07-29 17:44 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2013-09-05 07:22 - 2013-09-05 07:22 - 00109568 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
2013-09-05 07:24 - 2013-09-05 07:24 - 00627200 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachedrv.dll
2013-09-05 07:24 - 2013-09-05 07:24 - 02540544 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2013-09-05 07:21 - 2013-09-05 07:21 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2013-09-05 07:21 - 2013-09-05 07:21 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2013-09-05 07:21 - 2013-09-05 07:21 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2013-09-05 07:36 - 2013-09-05 07:36 - 00306064 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2013-09-05 07:36 - 2013-09-05 07:36 - 01298832 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00842880 _____ () C:\Program Files (x86)\NoMachine\bin\libnxlp64.dll
2015-05-23 16:25 - 2015-05-20 13:15 - 00020240 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\TeamViewer_PrintProcessor.dll
2015-08-04 19:32 - 2015-06-23 10:18 - 01750760 _____ () C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 10\WVSScheduler.exe
2015-08-22 12:33 - 2015-08-11 05:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-07-27 15:07 - 2015-07-27 15:07 - 00127488 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-03-17 10:21 - 2015-03-17 10:21 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2015-03-29 17:34 - 2015-02-20 12:50 - 00821376 _____ () C:\Program Files (x86)\NoMachine\bin\nxservice64.exe
2015-03-29 17:34 - 2015-02-20 12:50 - 00067200 _____ () C:\Program Files (x86)\NoMachine\bin\libnxfs64.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00867456 _____ () C:\Program Files (x86)\NoMachine\bin\libnxusb64.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 01344640 _____ () C:\Program Files (x86)\NoMachine\bin\libnxservice64.dll
2015-09-01 12:53 - 2015-08-18 03:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-01 12:53 - 2015-08-18 03:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-03-19 19:55 - 2015-03-19 19:55 - 00088960 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-12 15:06 - 2015-08-02 21:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 07:00 - 2015-07-10 09:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-22 12:33 - 2015-08-11 04:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-12 15:06 - 2015-08-02 21:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2013-09-05 07:31 - 2013-09-05 07:31 - 00064000 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-08-03 15:59 - 2015-08-03 15:59 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-03-17 09:54 - 2015-03-17 09:54 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2015-03-17 10:07 - 2015-03-17 10:07 - 00221184 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2015-03-17 10:07 - 2015-03-17 10:07 - 00070656 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2015-03-17 10:10 - 2015-03-17 10:10 - 00744448 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
2015-03-17 10:01 - 2015-03-17 10:01 - 00038400 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2013-04-12 13:23 - 2013-04-12 13:23 - 00612664 _____ () C:\Program Files (x86)\Panda Security\Panda Security Protection\SQLite3.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 01145984 _____ () C:\Program Files (x86)\NoMachine\bin\perl58.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00121472 _____ () C:\Program Files (x86)\NoMachine\bin\libgcc_s_sjlj-1.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00861312 _____ () C:\Program Files (x86)\NoMachine\bin\libstdc++-6.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00139392 _____ () C:\Program Files (x86)\NoMachine\lib\perl\POSIX.dll
2015-03-29 17:34 - 2015-02-17 17:30 - 00238505 _____ () C:\Program Files (x86)\NoMachine\lib\perl\libperl\auto\Fcntl\Fcntl.dll
2015-03-29 17:34 - 2015-02-17 17:30 - 00292498 _____ () C:\Program Files (x86)\NoMachine\lib\perl\libperl\auto\IO\IO.dll
2015-03-29 17:34 - 2015-02-17 17:28 - 00234484 _____ () C:\Program Files (x86)\NoMachine\lib\perl\libperl\auto\Cwd\Cwd.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00118400 _____ () C:\Program Files (x86)\NoMachine\lib\perl\File.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00078976 _____ () C:\Program Files (x86)\NoMachine\lib\perl\Win32.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00051840 _____ () C:\Program Files (x86)\NoMachine\lib\perl\NXFunc.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00093312 _____ () C:\Program Files (x86)\NoMachine\lib\perl\NetAdmin.dll
2015-03-29 17:34 - 2015-02-17 17:30 - 00264075 _____ () C:\Program Files (x86)\NoMachine\lib\perl\libperl\auto\List\Util\Util.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00061056 _____ () C:\Program Files (x86)\NoMachine\lib\perl\Process.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00060032 _____ () C:\Program Files (x86)\NoMachine\lib\perl\Pipe.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00643888 _____ () C:\Program Files (x86)\NoMachine\bin\NXPL.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00998016 _____ () C:\Program Files (x86)\NoMachine\bin\libnxdiag.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 01063040 _____ () C:\Program Files (x86)\NoMachine\bin\libnxc.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 01021568 _____ () C:\Program Files (x86)\NoMachine\bin\libnx.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 01661568 _____ () C:\Program Files (x86)\NoMachine\bin\libcrypto.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00065664 _____ () C:\Program Files (x86)\NoMachine\bin\libnxau.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00313984 _____ () C:\Program Files (x86)\NoMachine\bin\libnxcau.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00141440 _____ () C:\Program Files (x86)\NoMachine\bin\libnxcex.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00583808 _____ () C:\Program Files (x86)\NoMachine\bin\libnxcim.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00133248 _____ () C:\Program Files (x86)\NoMachine\bin\libnxcl.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00260736 _____ () C:\Program Files (x86)\NoMachine\bin\libnxcsl.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00243840 _____ () C:\Program Files (x86)\NoMachine\bin\libnxd.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00119424 _____ () C:\Program Files (x86)\NoMachine\bin\libnxdi.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00441984 _____ () C:\Program Files (x86)\NoMachine\bin\libnxdiex.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 01714816 _____ () C:\Program Files (x86)\NoMachine\bin\libnxdifb.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00531584 _____ () C:\Program Files (x86)\NoMachine\bin\libnxdixl.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00328320 _____ () C:\Program Files (x86)\NoMachine\bin\libnxdimi.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00331904 _____ () C:\Program Files (x86)\NoMachine\bin\libnxdift.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00062080 _____ () C:\Program Files (x86)\NoMachine\bin\libnxlo.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00102016 _____ () C:\Program Files (x86)\NoMachine\bin\libnxm.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00330368 _____ () C:\Program Files (x86)\NoMachine\bin\libnxne.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00171648 _____ () C:\Program Files (x86)\NoMachine\bin\libnxup.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 01985152 _____ () C:\Program Files (x86)\NoMachine\bin\libpixman.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00386176 _____ () C:\Program Files (x86)\NoMachine\bin\libssl.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00180864 _____ () C:\Program Files (x86)\NoMachine\bin\libssh.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00114304 _____ () C:\Program Files (x86)\NoMachine\bin\libz.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00054400 _____ () C:\Program Files (x86)\NoMachine\bin\libogg.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00330368 _____ () C:\Program Files (x86)\NoMachine\bin\libopus.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00127616 _____ () C:\Program Files (x86)\NoMachine\bin\libspeex.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00096384 _____ () C:\Program Files (x86)\NoMachine\bin\libspeexdsp.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00188544 _____ () C:\Program Files (x86)\NoMachine\bin\libvorbis.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 01549440 _____ () C:\Program Files (x86)\NoMachine\bin\libvorbisenc.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00064128 _____ () C:\Program Files (x86)\NoMachine\bin\libvorbisfile.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00362624 _____ () C:\Program Files (x86)\NoMachine\bin\libjpeg.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00192128 _____ () C:\Program Files (x86)\NoMachine\bin\libpng.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00665216 _____ () C:\Program Files (x86)\NoMachine\bin\libvp8.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00198272 _____ () C:\Program Files (x86)\NoMachine\bin\libwebm.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00232576 _____ () C:\Program Files (x86)\NoMachine\bin\libyuv.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00197248 _____ () C:\Program Files (x86)\NoMachine\bin\libnxs.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00326272 _____ () C:\Program Files (x86)\NoMachine\bin\libnxn.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00309888 _____ () C:\Program Files (x86)\NoMachine\bin\libfontconfig.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00057472 _____ () C:\Program Files (x86)\NoMachine\bin\libfontenc.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00519808 _____ () C:\Program Files (x86)\NoMachine\bin\libfreetype.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00073856 _____ () C:\Program Files (x86)\NoMachine\bin\libmdnsd.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00192128 _____ () C:\Program Files (x86)\NoMachine\bin\libexpat.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00056960 _____ () C:\Program Files (x86)\NoMachine\lib\perl\API.dll
2015-03-29 17:34 - 2015-02-17 17:30 - 00257207 _____ () C:\Program Files (x86)\NoMachine\lib\perl\libperl\auto\Socket\Socket.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00584320 _____ () C:\Program Files (x86)\NoMachine\bin\libnxcde.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 00297600 _____ () C:\Program Files (x86)\NoMachine\bin\libnxdiwi.dll
2015-03-29 17:34 - 2015-02-20 12:50 - 07440000 _____ () C:\Program Files (x86)\NoMachine\bin\libqt.dll
2014-01-04 14:06 - 2013-08-05 03:49 - 00627672 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-08-05 19:48 - 2013-08-05 19:48 - 00016856 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2015-07-09 16:39 - 2015-09-21 16:01 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-07-09 16:39 - 2015-09-24 19:36 - 02422464 _____ () C:\Program Files (x86)\Steam\video.dll
2015-03-14 19:39 - 2015-07-03 12:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-03-14 19:39 - 2015-07-03 12:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-03-14 19:39 - 2015-07-03 12:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-03-14 19:39 - 2015-09-23 20:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-03-14 19:39 - 2015-09-23 20:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-03-14 19:39 - 2015-09-23 20:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-03-14 19:39 - 2015-09-23 20:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-03-14 19:39 - 2015-09-23 20:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-03-14 19:39 - 2015-09-24 19:36 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-07-09 16:35 - 2015-09-14 16:20 - 00193536 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-08-15 08:42 - 2015-08-15 08:42 - 00039384 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2015-03-19 19:29 - 2015-03-19 19:29 - 00072064 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2012-04-30 03:55 - 2012-04-30 03:55 - 08358400 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avcodec-54.dll
2012-04-30 03:55 - 2012-04-30 03:55 - 01152512 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avformat-54.dll
2012-04-30 03:55 - 2012-04-30 03:55 - 00151040 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avutil-51.dll
2012-04-30 03:55 - 2012-04-30 03:55 - 00333824 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\swscale-2.dll
2012-04-30 03:55 - 2012-04-30 03:55 - 00026112 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\swresample-0.dll
2015-09-26 14:59 - 2015-09-23 22:34 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libglesv2.dll
2015-09-26 14:59 - 2015-09-23 22:34 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libegl.dll
2015-03-14 19:39 - 2015-09-23 20:33 - 44931464 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Grant\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Grant\Downloads\thoughts on the freshpoint program so far.eml:OECustomProperty

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\localhost -> hxxps://localhost

IE restricted site: HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\skype.com -> hxxps://apps.skype.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-849883198-3481065561-553632642-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Grant\Desktop\836dc215d38eb481.png
DNS Servers: 192.168.11.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Malwarebytes Anti-Exploit"
HKLM\...\StartupApproved\Run32: => "DivXUpdate"
HKLM\...\StartupApproved\Run32: => "DivXMediaServer"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_B4E9779156F26FC26D03BF7A2ADC2259"
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\StartupApproved\Run: => "ooVoo.exe"
HKU\S-1-5-21-849883198-3481065561-553632642-1001\...\StartupApproved\Run: => "iCloudServices"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{82B93D59-E17B-4DC3-9574-5A96790ADC0E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{9BD2032E-2237-48A5-AD1D-83D63E3E2088}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{103A260A-722A-4FFB-B6C2-0C4ADCFFAFCA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{1148306B-EA68-4615-A7C9-7A8C4145AB0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{320D9E9F-0D81-4515-808C-83460BEDF4EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{B4340DE0-D77F-40DA-880A-1C9345A2FCA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{B78526FE-3E8D-4EF6-9168-31AEC6454C41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [UDP Query User{0DC3B215-C935-47E0-9FDE-5082A525B0FD}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{815E747C-C728-4E04-B4B9-449A7FE75573}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{FA235DA1-BB72-4AA4-A489-5F0BA2C47363}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [TCP Query User{4DE3D11F-AC09-4EE7-A4F1-9EFAFF2189A2}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{A9DF9E4F-0515-4C5B-8D36-A142677311C1}C:\program files (x86)\thrashirc\thrashirc.exe] => (Allow) C:\program files (x86)\thrashirc\thrashirc.exe
FirewallRules: [TCP Query User{B3F69CBA-A40A-4856-85E4-96B9226A80CF}C:\program files (x86)\thrashirc\thrashirc.exe] => (Allow) C:\program files (x86)\thrashirc\thrashirc.exe
FirewallRules: [UDP Query User{47BADA39-8522-4227-9FF8-C9000A6082A4}C:\program files\java\jre1.8.0_51\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\java.exe
FirewallRules: [TCP Query User{303EC10C-4A72-4062-A9B1-620566D2AEEC}C:\program files\java\jre1.8.0_51\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\java.exe
FirewallRules: [UDP Query User{AFDA543C-8C99-4EAB-BBA8-A686658E33CD}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{F63E489D-FF59-4500-9370-1789E2BCFE00}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{645A41A7-49F8-4C7D-8D75-1A12292C8857}C:\users\grant\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\grant\appdata\local\popcorn time\nw.exe
FirewallRules: [TCP Query User{B80259CB-4EE8-4FB1-9F37-04AEE23E6FB5}C:\users\grant\appdata\local\popcorn time\nw.exe] => (Allow) C:\users\grant\appdata\local\popcorn time\nw.exe
FirewallRules: [{6D022EB5-DFF4-493C-A01A-E304E60E99A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{EAA5583B-CB85-408E-BFB3-A972EEC7F2F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{3D973565-2D9C-4A3C-8ED0-B3BD1D9A3528}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0A5EA100-D38D-46A9-A4A5-DA0F7B7A2443}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{74A906CC-325D-4F3E-9108-405471FF1A34}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{8A54C201-B4C6-4F26-ACFE-D42DE2A0236F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{34BCD2D2-639E-4E1C-B71E-E6B9BD5B4318}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{90622550-A33C-4DA5-94B3-EE0034E04A9C}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{987FBE0E-2A0C-4DAA-8518-74E486A03E1D}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [TCP Query User{0402928C-2C77-409A-887B-9F82FDC0BA35}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{AB17BEF4-0185-4C44-A87A-FD2779EE87CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{8C966804-2A53-45BD-BA9A-CB3287F34FD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{E4E66C69-9131-4A03-979B-064D3B762C73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{1E811ED4-23BA-44AF-BF44-7F91674CA4E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{2B14CD7B-B9C2-4E69-AB06-1B745146B934}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 2013\FarmingSimulator2013Game.exe
FirewallRules: [{A63DEFF9-4A09-4243-AEE5-0991FBC51B44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 2013\FarmingSimulator2013Game.exe
FirewallRules: [{716B31EA-E8D0-458F-952E-C22391970661}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpacebaseDF9\Space.exe
FirewallRules: [{8EE586BB-E888-4BC4-812E-66BA01A3A86C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpacebaseDF9\Space.exe
FirewallRules: [{32ECC192-E01E-44F3-B457-0D13716D7323}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D5926ACE-39B6-444B-B8FF-5D0D39863EF1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{01794CCB-09DE-4CCB-B795-00FCCC533BDF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{7F6B434A-FE3E-4577-B6EB-D65F5184779F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [UDP Query User{61C49C86-E8DD-4941-A3D5-51EE1C6B2899}C:\users\grant\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\grant\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [TCP Query User{98FFE9A4-35B3-4BE6-9680-F8AB7332335D}C:\users\grant\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\grant\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [{08A96EEE-C157-48BF-8E11-EC07279C61B8}] => (Allow) C:\Program Files (x86)\iOSinstaller\iOSinstaller.exe
FirewallRules: [{34663D64-C184-40C0-A048-E332BCD5F2EC}] => (Allow) C:\Program Files (x86)\iOSinstaller\iOSinstaller.exe
FirewallRules: [{AC4CD992-3EB3-42EE-90D8-711B9DA402CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Quintet\Quintet.exe
FirewallRules: [{2B14D6D7-39C1-44B9-8BFF-DC49E9D4653B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Quintet\Quintet.exe
FirewallRules: [UDP Query User{C5C59503-F0F7-4915-8D78-9F7C66FC6365}C:\program files (x86)\tftpd32\tftpd32.exe] => (Allow) C:\program files (x86)\tftpd32\tftpd32.exe
FirewallRules: [TCP Query User{429F6DD2-FA69-4DB7-B60C-258F9802ABAD}C:\program files (x86)\tftpd32\tftpd32.exe] => (Allow) C:\program files (x86)\tftpd32\tftpd32.exe
FirewallRules: [{E9FC5191-5850-43BC-9824-13845940DC64}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\StarMade\StarMade-starter.exe
FirewallRules: [{84A8D9D2-2084-4AAF-B4E9-70EAEF1DEB24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\StarMade\StarMade-starter.exe
FirewallRules: [{8D8E1F94-B857-4DB1-96A8-E867AA5AA915}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{0C344D01-2E1D-46C0-8A96-D29BDAFE3332}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{D5087929-9B84-46D1-B508-0A09D24EF495}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hacker Evolution\HackerEvolutionModEditor.exe
FirewallRules: [{E21F3046-8C29-4222-8231-AAD72E141AB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hacker Evolution\HackerEvolutionModEditor.exe
FirewallRules: [{5F73E837-207D-4DEC-975B-8B310B9B34CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hacker Evolution\HackerEvolution.exe
FirewallRules: [{AFE245E0-0F2A-4EF6-A608-4E76A92D9BB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hacker Evolution\HackerEvolution.exe
FirewallRules: [{4FF2B000-1C24-4A2F-9ABC-A5C186DC88E3}] => (Allow) C:\Program Files (x86)\Fiddler2\Fiddler.exe
FirewallRules: [{3CFC6169-3763-48B9-8C4E-031B2537CB4C}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{2CCB1510-0660-43C1-9FE9-8B2E6C537D2F}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{3668557D-2380-40AB-89DA-0FE75A884865}] => (Allow) C:\Program Files\Lightworks\Lightworks.exe
FirewallRules: [{C6BDFEC2-B1F3-4EA0-8F60-F6D28E4FFC7F}] => (Allow) C:\Program Files\Lightworks\Lightworks.exe
FirewallRules: [UDP Query User{585926B8-CB24-4AD9-B0E8-1A55D811E3B3}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [TCP Query User{6494FD47-A939-410E-8CC0-2A4703701816}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [{C1B6B245-607A-4812-92D8-67D329749065}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Defy Gravity\DefyGravity.exe
FirewallRules: [{C6C84650-0B80-467A-B639-2A99AA758A41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Defy Gravity\DefyGravity.exe
FirewallRules: [{9E5B1D05-2AD5-4AC0-94E4-5943EEC43004}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{2B68F759-1188-499B-983F-E7DDEB788210}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [UDP Query User{8D4D3827-AC89-4C23-A709-B779D480CBCE}C:\program files (x86)\nmap\nmap.exe] => (Allow) C:\program files (x86)\nmap\nmap.exe
FirewallRules: [TCP Query User{722D7557-942D-49F0-B5BF-71859DA5C6B4}C:\program files (x86)\nmap\nmap.exe] => (Allow) C:\program files (x86)\nmap\nmap.exe
FirewallRules: [{7A7448AC-A43D-4963-8AE1-59497957C7B4}] => (Allow) C:\Program Files (x86)\NoMachine\bin\nxclient.bin
FirewallRules: [{98A79418-DAF1-4F83-B2F5-0FF2956BC0F8}] => (Allow) C:\Program Files (x86)\NoMachine\bin\nxclient.bin
FirewallRules: [{8CD2359D-3F3F-4C5D-8E36-F566A3E69AD8}] => (Allow) C:\Program Files (x86)\NoMachine\bin\nxserver.bin
FirewallRules: [{B8EB85F8-E35A-43C6-AEBA-1F2332B8DBAD}] => (Allow) C:\Program Files (x86)\NoMachine\bin\nxserver.bin
FirewallRules: [{211E8FC8-391A-4B32-A599-3282EE38E89B}] => (Allow) C:\Program Files (x86)\NoMachine\bin\nxd.exe
FirewallRules: [{CFE8A3BD-BC21-4F05-ABD2-948890493599}] => (Allow) C:\Program Files (x86)\NoMachine\bin\nxd.exe
FirewallRules: [{D4146CDC-D295-47EC-8DDB-4885E400637E}] => (Allow) C:\Program Files (x86)\NoMachine\bin\nxplayer.bin
FirewallRules: [{B9F6D13F-C144-46A1-8EA3-8EDA56C2E494}] => (Allow) C:\Program Files (x86)\NoMachine\bin\nxplayer.bin
FirewallRules: [{6EC63525-C730-486A-AD01-AD3FAD9CC6E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\To the Moon\To the Moon\To the Moon.exe
FirewallRules: [{9DEED136-8410-4182-A433-56FF8E0180C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\To the Moon\To the Moon\To the Moon.exe
FirewallRules: [{7F5D3466-9C80-42BC-8CF5-31DB3E67A5EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe
FirewallRules: [{892A457C-1FF7-458E-A570-1640263AD4C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe
FirewallRules: [{05605EA8-BE35-446E-B85B-D4E75679BE77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{B8D7ACF3-440A-4EC8-ABA0-7D80EE1B910A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{3E03BC9E-695D-472B-94EF-CE4BB423BF8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{D488EA89-E2EB-445F-B021-10A0E6D50D43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{DAD3E53E-AEC8-4DE5-A24E-C5C54C110194}] => (Allow) C:\Program Files (x86)\SkypeWebPlugin\3.2.0.23388\SkypeWebPlugin.exe
FirewallRules: [{2E78713A-5A90-473B-A2B6-A1E4404E8847}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Uplink\Uplink.exe
FirewallRules: [{B22CC361-B1D7-4BEA-9E54-FDFF4BD6A6BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Uplink\Uplink.exe
FirewallRules: [{3F61B243-E4CB-41D1-A3BB-D2E3001B332F}] => (Allow) C:\Program Files (x86)\Origin Games\Syndicate (1993)\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{ACF2E7B9-BE12-4071-B4C2-717B5E2ED264}] => (Allow) C:\Program Files (x86)\Origin Games\Syndicate (1993)\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{9E3A3B3B-9D22-4BA1-AC7F-6A572B77B576}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\qsdklauncher.exe
FirewallRules: [{B9AB5131-5C67-4C8A-B192-4602B29F11DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\qsdklauncher.exe
FirewallRules: [{8DFE452E-68EB-474A-8F33-44DEC6791EC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe
FirewallRules: [{CCCD2553-33DB-447F-842B-B61E9D6D6E99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe
FirewallRules: [UDP Query User{3AFDAF79-8A92-41E1-8929-40D1E89F73E9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{CDFB30EC-0D64-4C15-8E2F-842D3AB62C68}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{D4C28A39-DB54-4B43-A2C5-82F21FF3E675}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{61CD4ED4-E67D-431E-9801-9A91C84F7B88}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{73FBB045-EA92-40D4-BA12-0B66DDCD1A1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{AF705C29-43EF-4EC7-BE83-1EF83ABE284C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{10AAC6E4-8D24-4290-B6F1-B56B68F41229}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3CD54281-F393-437F-97EE-695DA2A014D4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D7643111-749C-4EE6-ABB3-25CB8E3AD116}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{488A709D-D5B4-44BC-B92E-210A39425282}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4D624BC0-D475-4C19-AA18-E7C25A2177CF}] => (Allow) LPort=1900
FirewallRules: [{A4EE7061-2F1B-45BD-BA60-80FF451AA2C4}] => (Allow) LPort=2869
FirewallRules: [{0ECF6A2E-FEF7-4B7A-BE7E-8E8B81603F2B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A929084A-F2BB-45A8-8C60-91E4D7BF846F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3F88DD15-C827-4AE8-B943-A1782BA3CB9D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C1E3B05B-EC57-4C9E-8884-60EBF2DEF13C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{84256376-C22C-4D40-B9FF-62CEC37ED1DC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9BDF530E-8206-4847-B120-646ACB607C82}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{94F470E4-B073-4919-A7C8-EB9597CA5E23}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{1CB980EE-86D1-4932-A177-9DA9025B9EDA}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{7CCDB524-DC64-494A-818B-BC04672405C6}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{D4F24E00-02D2-4096-8227-032EFC17EAF0}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{E7BD5371-E34E-4B8A-BA86-EE807B0AB591}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
FirewallRules: [{CF2CEA8C-C8BD-448F-9775-A5A95F31CEAB}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
FirewallRules: [{EC945237-AEF4-4343-9DED-A8B04BE4CC4E}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{1A37BBB1-DC19-469C-9303-66AF9A2214D3}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{40D190E5-897A-4BDB-9BB5-4DA432B3A927}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{70BD7AF5-E0C7-4786-9894-2E44638F08DF}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{5855E8B4-0EFF-4E34-B23C-23C93C95CA1E}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{9BB84617-649B-4ECA-91A2-57394935866A}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{BC477B41-1886-4836-B28B-3507C1BC12DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{A6098AAC-D5D1-4ECE-AF13-12B2841648AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{13151AB6-94F0-418E-9FA5-866C87BDA1B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{9DE92424-1BED-4F38-89A3-94B3434E86DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{2E969661-2C13-4A6B-B9CC-2B091E4924A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{2A0F8C52-E97A-4DB0-A44D-433EDE355670}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{4877BFDE-6213-44E3-A5D5-6DF9C20A7167}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
FirewallRules: [{17036687-E05F-45C6-9941-73D3D90AF553}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
FirewallRules: [{4E19A829-9CD1-4BEB-ABA1-0BA1AF42186E}] => (Allow) C:\Users\Grant\AppData\Local\Temp\WZSE0.TMP\Common\EpsonNet Setup\ENEasyApp.exe
FirewallRules: [{F42E82F4-1166-4932-8E38-481E229D6A44}] => (Allow) C:\Users\Grant\AppData\Local\Temp\WZSE0.TMP\Common\EpsonNet Setup\ENEasyApp.exe
FirewallRules: [{48A42B04-ECF8-4CE1-BF0E-1D5A98DC3E39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{DCD1894E-5675-473A-A5DB-A36A2A45771D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{6B19A9D9-8B45-4A9F-B4F1-F65C11F5BD86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Defcon\defcon.exe
FirewallRules: [{18648352-BFD5-473C-B1F7-619747FFC4F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Defcon\defcon.exe
FirewallRules: [{B2602822-33C3-470B-835B-BBAFCBC4AB53}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pid\Pid.exe
FirewallRules: [{773EFA04-B2AF-46AB-BE79-02F5ADE9A606}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pid\Pid.exe
FirewallRules: [{74390F80-CE98-4116-978D-00D781000C53}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{B144201A-0A1D-4D3D-A667-1DB9F7186073}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [UDP Query User{15BC3302-1EB8-4F7C-958A-1C4139B5E132}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [{2B6061DE-D8ED-4A12-88D6-3B1BD356BF08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{0722ADB7-94FB-41C4-874A-D088EDD4FAAF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{8B678871-0CEC-4A75-A7AA-B9D2C3054D26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{92B81695-D1C3-42FB-B419-F086A1FEC56C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [TCP Query User{301F82FC-6C26-49EF-BF5C-0643E10419EE}C:\users\grant\desktop\tor browser\qtox.exe] => (Allow) C:\users\grant\desktop\tor browser\qtox.exe
FirewallRules: [UDP Query User{CDE81420-2A64-4CBE-B12F-B1E5EC00778C}C:\users\grant\desktop\tor browser\qtox.exe] => (Allow) C:\users\grant\desktop\tor browser\qtox.exe
FirewallRules: [{6CE18D1C-5C4C-4DF4-AAF2-2863983F3009}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FortressCraft\64\FC_64.exe
FirewallRules: [{D2052318-791C-420C-88B2-28649174E9BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FortressCraft\64\FC_64.exe
FirewallRules: [TCP Query User{C190FFAA-17C0-4AA1-9693-CABEAD78D813}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{E3FE5EEA-9B55-46F2-8C79-D20A2DBCEDFE}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{F92A3DC3-A01C-4C35-905B-224D552434BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RPGVXAce\RPGVXAce.exe
FirewallRules: [{74563D14-37E7-48E2-9EAE-1160C8685BFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RPGVXAce\RPGVXAce.exe
FirewallRules: [{E33F20D7-1042-4B87-80FB-DFA768DAFC34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Game Character Hub\GameCharacterHub.exe
FirewallRules: [{3DE45669-0535-4D0C-8629-BDAD41559752}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Game Character Hub\GameCharacterHub.exe
FirewallRules: [TCP Query User{9AA89126-65C0-45D5-AC05-EAA10D43C8A7}C:\program files\java\jdk1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jdk1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{312B5716-562E-4735-A4DC-15E8EDFA3DF9}C:\program files\java\jdk1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jdk1.8.0_40\bin\javaw.exe
FirewallRules: [{69C78F81-3CC2-42C4-BDA1-A081A4FF8BB6}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [{EB28C97A-44A1-4103-A64B-D994B2BD5BF8}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{97C9011E-41DD-404D-919E-BDE17A8AF872}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{2F295B6C-9930-4381-93D9-2F958F9C1C87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{23011C9D-858D-4B1A-9CEC-11B006437012}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{3277E24E-9BE1-4368-95C2-2D0E8C7B1F07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{F16ABFB9-8342-4798-9088-72CA38986E93}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{66D054E9-6499-47CD-8483-90F112F7A942}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{4CEF60ED-AC6B-409B-94E4-8EF0A95F84F0}] => (Allow) C:\Program Files (x86)\pandasecuritytb\dtuser.exe
FirewallRules: [{3CEE7FCB-D28B-4C37-AAA2-9D8601373D70}] => (Allow) C:\Program Files (x86)\pandasecuritytb\dtuser.exe
FirewallRules: [{49B5F8A0-D75B-40AC-97C6-5EB0AFB527FB}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{9D7DDC73-DD43-45E8-8873-46F275DA8376}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{0712958A-6BBF-43AB-8722-C1F97850C172}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/26/2015 07:44:29 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6908) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (09/26/2015 07:44:29 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6908) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

Error: (09/26/2015 07:44:19 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6908) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (09/26/2015 07:44:19 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6908) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

Error: (09/26/2015 07:44:09 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6908) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (09/26/2015 07:44:09 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6908) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

Error: (09/26/2015 07:43:58 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6908) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (09/26/2015 07:43:58 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6908) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

Error: (09/26/2015 07:43:48 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6908) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (09/26/2015 07:43:48 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6908) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).


System errors:
=============
Error: (09/26/2015 07:43:23 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (09/26/2015 07:43:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable


CodeIntegrity:
===================================
  Date: 2015-09-25 20:37:57.188
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-25 20:37:57.159
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-25 20:37:57.066
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-25 20:37:41.760
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-25 20:37:27.985
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-25 20:36:33.844
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-25 20:36:33.642
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-23 11:18:53.640
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-23 11:18:53.620
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-23 11:18:53.599
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: AMD A8-6500 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 41%
Total physical RAM: 7365.14 MB
Available physical RAM: 4328.2 MB
Total Virtual: 7765.14 MB
Available Virtual: 4172.39 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:1845.8 GB) (Free:1490.69 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (Recovery Image) (Fixed) (Total:15.29 GB) (Free:1.87 GB) NTFS ==>[system with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 2AABF006)

Partition: GPT.

==================== End of Addition.txt ============================
RogueKiller
RogueKiller V10.10.6.0 [Sep 21 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.10240) 64 bits version
Started in : Normal mode
User : Grant [Administrator]
Started from : C:\Users\Grant\Downloads\RogueKiller.exe
Mode : Scan Aborted -- Date : 09/26/2015 19:52:57

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤