Untitled


FRST.txt File


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016
Ran by Dylan (administrator) on EDITING-PC (07-02-2016 20:36:48)
Running from C:\Users\Dylan\Downloads
Loaded Profiles: Dylan (Available Profiles: Dylan & Administrator)
Platform: Windows 8.1 (X64) Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\WINDOWS\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.5.5.15\n360.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Golden Frog, GmbH.) C:\Program Files (x86)\VyprVPN\VyprVPNService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\No-IP\ducservice.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.5.5.15\n360.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(Lorenzi Davide (hexagora.com)) C:\Program Files (x86)\PerfMon4x\PerfMon.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\WINDOWS\System32\GWX\GWX.exe
(Bogdan Sharkov) C:\Program Files (x86)\Clownfish\Clownfish.exe
(Visicom Media Inc.) C:\Program Files (x86)\ManyCam\ManyCam.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
(QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Golden Frog, GmbH.) C:\Program Files (x86)\VyprVPN\VyprVPN.exe
() C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpn.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-08] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-08] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4859592 2015-11-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [591512 2015-11-19] (Razer Inc.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-10-16] ()
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-12-12] (Raptr, Inc)
HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [509216 2015-10-13] (QFX Software Corporation)
HKLM-x32\...\Run: [OpenVPN-GUI.1.0.3] => C:\Program Files (x86)\OpenVPN\bin\openvpn-gui-1.0.3.exe [118272 2015-09-09] ()
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\...\Run: [PerfMon] => C:\Program Files (x86)\PerfMon4x\PerfMon.exe [1150976 2012-05-02] (Lorenzi Davide (hexagora.com))
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50622080 2016-01-19] (Skype Technologies S.A.)
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\...\Run: [Clownfish] => C:\Program Files (x86)\Clownfish\Clownfish.exe [1362152 2015-12-24] (Bogdan Sharkov)
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [9726760 2015-09-19] (Visicom Media Inc.)
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\...\Run: [uTorrent] => C:\Users\Dylan\AppData\Roaming\uTorrent\uTorrent.exe [2026520 2015-12-12] (BitTorrent Inc.)
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8202008 2015-04-09] (Piriform Ltd)
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\...\Policies\system: [EnableLUA] 1
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\...\MountPoints2: {a67a3c83-6671-11e5-859c-806e6f6e6963} - "D:\Autorun.exe"
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [1MediaFireIconError] -> {5EE8C634-CDC0-453D-9731-DF0B19F4E807} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon3_6439f.dll [2014-12-24] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [1MediaFireIconReadOnly] -> {7995D0FC-769B-4197-AEC0-991921CB99E1} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon5_6439f.dll [2014-12-24] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [1MediaFireIconSynched] -> {9A3B79CB-D899-40B5-8DBC-20447F1ADC8F} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon_6439f.dll [2014-12-24] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [1MediaFireIconSyncing] -> {C4D81971-6B13-4173-AB21-F83AD20CCC04} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon2_6439f.dll [2014-12-24] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dylan\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dylan\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dylan\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dylan\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [MediaFireIconLock] -> {759F3E92-F4E8-4953-8315-238B8B17E0F3} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon4_6439f.dll [2014-12-24] (TODO: <Company name>)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dylan\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dylan\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dylan\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-09] (Dropbox, Inc.)
Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LiveChat.lnk [2015-09-15]
ShortcutTarget: LiveChat.lnk -> C:\Program Files (x86)\LiveChat\LiveChat.exe (LiveChat, Inc.)
Startup: C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-01-03]
Startup: C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HMA Pro VPN 2.0.lnk [2016-01-03]
Startup: C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LiveChat.lnk [2016-01-03]

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{01A5992B-0097-4716-8326-B829588C2A87}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{0DE2EEF0-811A-48D7-B3E3-E67B3220FA13}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{0DE2EEF0-811A-48D7-B3E3-E67B3220FA13}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{223A8D23-E8FD-44BB-9178-6FD4DD800AE9}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{223A8D23-E8FD-44BB-9178-6FD4DD800AE9}: [DhcpNameServer] 10.211.254.254 8.8.8.8
Tcpip\..\Interfaces\{93D8029B-6794-4369-9083-1704908535B5}: [DhcpNameServer] 10.3.19.1
Tcpip\..\Interfaces\{9C1A4CAD-850E-46F7-9C21-20477B9BB736}: [DhcpNameServer] 192.168.200.3

Internet Explorer:
==================
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=N360&pvid=21.5.0.19
HKU\S-1-5-21-273558292-3134783237-3410145208-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKU\.DEFAULT -> {C8D4186E-1858-4FDC-9931-F7E95ABE802B} URL =
SearchScopes: HKU\S-1-5-21-273558292-3134783237-3410145208-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-273558292-3134783237-3410145208-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NSBU&chn=retail&geo=AU&ver=22&locale=en_AU&gct=kwd&qsrc=2869
BHO: No Name -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\22.5.5.15\coIEPlg.dll [2015-11-06] (Symantec Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: No Name -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\22.5.5.15\coIEPlg.dll [2015-11-06] (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-13] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-13] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\22.5.5.15\coIEPlg.dll [2015-11-06] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\22.5.5.15\coIEPlg.dll [2015-11-06] (Symantec Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-03-12] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-13] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-17] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-11-25] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-13] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-09] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-09] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-13] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-13] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-11-25] (Adobe Systems)
FF Plugin HKU\S-1-5-21-273558292-3134783237-3410145208-1001: @hola.org/FlashPlayer -> C:\Users\Dylan\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll [2015-09-26] ()
FF Plugin HKU\S-1-5-21-273558292-3134783237-3410145208-1001: @hola.org/vlc -> C:\Users\Dylan\AppData\Local\Hola\firefox_hola\app\vlc\npvlc.dll [2015-09-26] (Hola)
FF Plugin HKU\S-1-5-21-273558292-3134783237-3410145208-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Dylan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-01-27] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon [2016-01-18]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default -> hxxps://www.google.com.au/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> google.com.au__
CHR Profile: C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Search and Replace) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bldchfkhmnkoimaciljpilanilmbnofo [2015-11-02]
CHR Extension: (YouTube) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Adblock Plus) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-04]
CHR Extension: (Google Search) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Frame by Frame for YouTube™) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\elkadbdicdciddfkdpmaolomehalghio [2015-12-30]
CHR Extension: (AdBlock) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-02-05]
CHR Extension: (Cryptocat) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gonbigodpnfghidmnphnadhepmbabhij [2016-01-04]
CHR Extension: (InvisibleHand) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lghjfnfolmcikomdjmoiemllfnlmmoko [2016-01-27]
CHR Extension: (AgarioMods Evergreen Script) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2015-12-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-17]
CHR Extension: (Deep Web) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pddpfllkbkhpmijocfdlhfkpfnolccfc [2015-12-30]
CHR Extension: (Gmail) - C:\Users\Dylan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-17]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.5.5.15\Exts\Chrome.crx [2015-12-15]
CHR HKLM\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] - <no Path/update_url>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.5.5.15\Exts\Chrome.crx [2015-12-15]
CHR HKLM-x32\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [683696 2015-11-16] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016448 2015-11-25] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
S4 Cepstral License Server; C:\Program Files (x86)\Cepstral\bin\CepstralLicSrv.exe [64000 2011-04-25] (Cepstral, LLC) [File not signed]
S4 DCPFLICS; C:\Program Files (x86)\DCPFLICS\DCPFLICS.exe [139268 2007-10-24] () [File not signed] <==== ATTENTION
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2574168 2015-09-12] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201560 2015-09-12] (Dell Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-08] (Intel Corporation)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-08-09] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [155448 2015-07-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-09] (Intel Corporation)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-31] (IObit)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [69964448 2015-04-03] (Microsoft Corporation)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
R2 N360; C:\Program Files (x86)\Norton 360\Engine\22.5.5.15\N360.exe [282016 2015-11-21] (Symantec Corporation)
R2 NoIPDUCService4; C:\Program Files (x86)\No-IP\ducservice.exe [12288 2015-07-21] () [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [38240 2016-02-01] (The OpenVPN Project)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-19] (Realtek Semiconductor)
S4 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915408 2013-10-18] (SoftThinks SAS)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [441512 2015-04-03] (Microsoft Corporation)
R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [1055008 2015-05-20] (IObit)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [21160 2015-09-30] (Dell Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-15] (TeamViewer GmbH)
S4 updater; C:\Program Files (x86)\LiveChat\updater.exe [492360 2015-08-04] (LiveChat, Inc.)
R2 VyprVPN; C:\Program Files (x86)\VyprVPN\VyprVPNService.exe [213504 2016-02-02] (Golden Frog, GmbH.) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [102912 2015-07-15] (Advanced Micro Devices)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\BASHDefs\20160125.001\BHDrvx64.sys [1665608 2015-10-09] (Symantec Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132920 2013-04-24] (Motorola Solutions, Inc.)
S3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1385784 2013-06-27] (Motorola Solutions, Inc.)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1605050.00F\ccSetx64.sys [173808 2015-07-11] (Symantec Corporation)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-31] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-05-23] (Dell Computer Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-12-14] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [157520 2015-12-14] (Symantec Corporation)
S3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [114632 2015-07-25] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\IPSDefs\20160201.001\IDSvia64.sys [767224 2015-12-11] (Symantec Corporation)
R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [224720 2015-08-19] (QFX Software Corporation)
S4 LMIRfsClientNP; no ImagePath
R3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv.sys [49312 2014-11-10] (Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [36000 2014-11-10] (Visicom Media Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-08-09] (Intel Corporation)
R2 mfmonitor; C:\Windows\System32\DRIVERS\mfmonitor_x64.sys [20696 2015-03-24] (Windows (R) Win 7 DDK provider)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\VirusDefs\20160201.056\ENG64.SYS [138488 2015-12-14] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\VirusDefs\20160201.056\EX64.SYS [2148080 2015-12-14] (Symantec Corporation)
S3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [28768 2014-10-04] (SoftEther VPN Project at University of Tsukuba, Japan.)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3494680 2015-03-09] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-19] (Intel Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 pmxdrv; C:\WINDOWS\system32\drivers\pmxdrv.sys [31152 2014-11-08] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-08-14] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1605050.00F\SRTSP64.SYS [928496 2015-11-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1605050.00F\SRTSPX64.SYS [50936 2015-07-11] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\N360x64\1605050.00F\SYMEFASI64.SYS [1621232 2015-11-12] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1605050.00F\SymELAM.sys [24192 2015-07-11] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [111344 2015-09-22] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1605050.00F\Ironx64.SYS [297720 2015-07-11] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1605050.00F\SYMNETS.SYS [577768 2015-11-12] (Symantec Corporation)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
S3 tapvyprvpn; C:\Windows\system32\DRIVERS\tapvyprvpn.sys [44896 2015-09-29] (The OpenVPN Project)
S3 torguardtap0901; C:\Windows\system32\DRIVERS\torguardtap0901.sys [39840 2015-03-13] (The OpenVPN Project)
U3 TrueSight; C:\WINDOWS\System32\drivers\TrueSight.sys [24688 2016-02-07] ()
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [116232 2015-03-16] (Oracle Corporation)
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [192344 2015-08-02] (IDRIX)
S3 visctap0901; C:\Windows\system32\DRIVERS\visctap0901.sys [34440 2015-08-06] (The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 XSplit_Dummy; C:\Windows\system32\drivers\xspltspk.sys [26200 2015-05-25] (SplitmediaLabs Limited)
R3 XtuAcpiDriver; C:\Windows\System32\drivers\XtuAcpiDriver.sys [63840 2015-07-10] (Intel Corporation)
R4 eamonm; system32\DRIVERS\eamonm.sys [X]
R4 ehdrv; \SystemRoot\system32\DRIVERS\ehdrv.sys [X]
R4 ekbdflt; \SystemRoot\system32\DRIVERS\ekbdflt.sys [X]
R4 epfw; \SystemRoot\system32\DRIVERS\epfw.sys [X]
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
R3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-07 20:36 - 2016-02-07 20:37 - 00036480 _____ C:\Users\Dylan\Downloads\FRST.txt
2016-02-07 20:36 - 2016-02-07 20:36 - 00000000 ____D C:\FRST
2016-02-07 20:35 - 2016-02-07 20:36 - 02370560 _____ (Farbar) C:\Users\Dylan\Downloads\FRST64.exe
2016-02-07 17:40 - 2016-02-07 17:40 - 00000926 _____ C:\Users\Public\Desktop\OpenVPN GUI.lnk
2016-02-07 17:40 - 2016-02-07 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2016-02-07 17:40 - 2016-02-07 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2016-02-07 17:40 - 2016-02-07 17:40 - 00000000 ____D C:\Program Files\OpenVPN
2016-02-07 17:36 - 2016-02-07 17:36 - 01828608 _____ C:\Users\Dylan\Downloads\openvpn-install-2.3.10-I602-x86_64.exe
2016-02-07 14:19 - 2016-02-07 14:19 - 00024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-02-07 14:18 - 2016-02-07 14:18 - 00000000 ____D C:\ProgramData\RogueKiller
2016-02-07 14:14 - 2016-02-07 14:14 - 00000000 ____D C:\NoBot
2016-02-07 14:11 - 2016-02-07 14:11 - 00000000 ____D C:\Users\Dylan\AppData\Local\ESET
2016-02-07 12:48 - 2016-02-07 12:53 - 00264504 _____ C:\TDSSKiller.3.1.0.9_07.02.2016_12.48.04_log.txt
2016-02-07 12:25 - 2016-02-07 20:07 - 00048328 _____ C:\WINDOWS\ntbtlog.txt
2016-02-07 00:48 - 2016-02-07 19:42 - 00050181 _____ C:\Users\Dylan\Documents\MuseLog.txt
2016-02-06 20:57 - 2016-02-06 20:57 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\vlc
2016-02-06 20:57 - 2016-02-06 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-06 20:56 - 2016-02-06 20:56 - 00000000 ____D C:\Program Files\VideoLAN
2016-02-06 20:29 - 2016-02-06 20:30 - 00000000 ____D C:\Users\Dylan\Desktop\zip
2016-02-06 17:36 - 2016-02-06 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Golden Frog, GmbH
2016-02-04 19:55 - 2016-02-07 11:21 - 00000000 ____D C:\Users\Dylan\Desktop\site
2016-02-03 21:27 - 2016-02-07 11:32 - 03047424 _____ C:\Users\Dylan\Desktop\noformpseudo.muse
2016-02-03 21:21 - 2016-02-04 20:41 - 03211264 _____ C:\Users\Dylan\Desktop\formpseudo.muse
2016-01-31 18:58 - 2016-02-07 19:42 - 06881280 _____ C:\Users\Dylan\Desktop\MUM.muse
2016-01-31 18:02 - 2016-02-07 12:08 - 04882432 _____ C:\Users\Dylan\Desktop\adobe muse landing page.muse
2016-01-31 13:28 - 2016-01-31 13:28 - 00000000 ____D C:\Users\Dylan\Documents\League of Legends
2016-01-28 18:48 - 2016-01-28 18:48 - 00000000 ____D C:\Users\Dylan\.adito
2016-01-28 18:47 - 2016-01-28 18:56 - 00000000 ____D C:\Program Files (x86)\OpenVPN
2016-01-22 20:51 - 2016-01-22 20:55 - 00000000 ____D C:\Users\Dylan\Desktop\Sentry_MBA
2016-01-20 02:25 - 2016-01-20 02:26 - 30155649 _____ C:\Users\Dylan\Downloads\Notorious And Hostile Rekting LAX #Swatted.mp4
2016-01-19 17:27 - 2016-02-07 12:08 - 00000000 ____D C:\Program Files (x86)\KeyScrambler
2016-01-19 17:27 - 2016-01-19 17:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler
2016-01-19 17:27 - 2015-08-19 02:25 - 00224720 _____ (QFX Software Corporation) C:\WINDOWS\system32\Drivers\keyscrambler.sys
2016-01-19 14:19 - 2016-01-26 15:59 - 00000000 ____D C:\WINDOWS\LastGood
2016-01-19 14:19 - 2016-01-19 14:19 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_netaapl64_01009.Wdf
2016-01-19 13:50 - 2016-02-07 16:04 - 00001188 _____ C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CNext.lnk
2016-01-19 03:25 - 2016-02-04 20:17 - 00000000 ____D C:\Users\Dylan\Desktop\22-1-16_Backup
2016-01-19 01:21 - 2016-01-19 01:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2016-01-19 01:17 - 2016-01-19 06:13 - 00000000 ____D C:\xampp
2016-01-18 21:47 - 2016-01-18 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-01-18 21:45 - 2016-01-18 21:45 - 00000000 ____D C:\Users\Dylan\AppData\Local\AMD
2016-01-18 21:44 - 2016-01-18 21:47 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\Raptr
2016-01-18 21:44 - 2016-01-18 21:47 - 00000000 ____D C:\Program Files (x86)\Raptr
2016-01-18 21:44 - 2016-01-18 21:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-01-18 21:41 - 2016-01-18 21:42 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-01-18 21:40 - 2016-01-18 21:40 - 00000000 ____D C:\AMD
2016-01-18 18:18 - 2016-01-18 18:18 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\Sublime Text 3
2016-01-18 18:18 - 2016-01-18 18:18 - 00000000 ____D C:\Users\Dylan\AppData\Local\Sublime Text 3
2016-01-18 18:14 - 2016-02-07 16:04 - 00001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk
2016-01-18 18:14 - 2016-01-18 18:14 - 00000000 ____D C:\Program Files (x86)\Sublime Text 3
2016-01-18 17:46 - 2016-01-18 17:46 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.5
2016-01-18 01:22 - 2016-02-07 16:12 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\Keybase
2016-01-14 21:21 - 2015-12-11 14:38 - 25837568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-14 21:21 - 2015-12-11 14:00 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-14 21:21 - 2015-12-11 13:55 - 06051328 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-01-14 21:21 - 2015-12-11 13:50 - 20367360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-14 21:21 - 2015-12-11 13:45 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-14 21:21 - 2015-12-11 13:21 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-14 21:21 - 2015-12-11 13:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-01-14 21:21 - 2015-12-11 13:09 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-01-14 21:21 - 2015-12-11 13:09 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-14 21:21 - 2015-12-11 13:03 - 14456832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-14 21:21 - 2015-12-11 12:59 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-14 21:21 - 2015-12-11 12:43 - 04610560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-01-14 21:21 - 2015-12-11 12:43 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-01-14 21:21 - 2015-12-11 12:38 - 02487808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-01-14 21:21 - 2015-12-11 12:37 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-01-14 21:21 - 2015-12-11 12:35 - 12856320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-01-14 21:21 - 2015-12-11 12:26 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-01-14 21:21 - 2015-12-11 12:14 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-01-14 21:21 - 2015-12-11 12:12 - 02011136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-01-14 21:21 - 2015-12-11 12:08 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-01-14 21:21 - 2015-12-11 12:07 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00498472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-14 21:21 - 2015-12-05 15:58 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-01-14 21:21 - 2015-12-05 15:58 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-01-14 21:21 - 2015-12-04 04:07 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-14 21:21 - 2015-12-04 04:07 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-14 21:21 - 2015-12-04 04:05 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-14 21:21 - 2015-12-04 04:02 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-14 21:21 - 2015-12-04 04:00 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-14 21:21 - 2015-12-04 03:58 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-01-14 21:21 - 2015-12-04 03:36 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-14 21:21 - 2015-12-04 03:30 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-14 21:21 - 2015-12-04 03:28 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-14 21:21 - 2015-12-04 03:28 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-14 21:21 - 2015-12-04 03:27 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-01-14 21:21 - 2015-12-04 03:24 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-14 21:21 - 2015-12-04 03:23 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-01-14 21:21 - 2015-12-04 03:06 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-14 21:21 - 2015-12-04 03:01 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-01-14 21:21 - 2015-12-04 02:40 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-14 21:21 - 2015-12-04 02:29 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-14 21:21 - 2015-12-03 01:04 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-14 21:21 - 2015-12-03 01:01 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-14 21:21 - 2015-11-12 01:44 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-01-14 21:21 - 2015-11-12 01:44 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-01-14 21:21 - 2015-11-10 10:11 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-01-14 21:21 - 2015-11-10 10:08 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-01-14 21:21 - 2015-11-10 10:04 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-01-14 21:21 - 2015-11-10 09:37 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-01-14 21:21 - 2015-11-10 09:36 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-01-14 21:21 - 2015-11-10 09:36 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-01-14 21:21 - 2015-11-10 09:25 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-01-14 21:21 - 2015-11-09 08:15 - 02887168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-01-14 21:21 - 2015-11-09 08:02 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-01-14 21:21 - 2015-11-09 07:32 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-01-14 21:21 - 2015-11-09 07:32 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-01-14 21:21 - 2015-11-09 07:18 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-01-14 21:21 - 2015-11-09 07:16 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-01-14 21:21 - 2015-11-09 07:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-01-14 21:21 - 2015-11-09 07:13 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-01-14 21:21 - 2015-11-09 06:53 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-01-14 21:12 - 2015-12-04 05:42 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-01-14 21:12 - 2015-12-04 05:42 - 00397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-14 21:12 - 2015-12-04 05:42 - 00137968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-01-14 21:12 - 2015-12-04 05:42 - 00106960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-01-14 21:12 - 2015-12-04 05:41 - 00177488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-01-14 21:12 - 2015-12-04 04:52 - 00340872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-01-14 21:12 - 2015-12-04 04:52 - 00120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-01-14 21:12 - 2015-12-04 04:52 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-01-14 21:12 - 2015-12-04 04:28 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-01-14 21:12 - 2015-12-04 04:28 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-01-14 21:12 - 2015-12-04 03:51 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-01-14 21:12 - 2015-12-04 03:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-01-14 21:12 - 2015-12-04 03:13 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-01-14 21:12 - 2015-12-04 03:07 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-14 21:12 - 2015-12-04 02:45 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-14 21:10 - 2015-12-31 05:32 - 07453016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-14 21:10 - 2015-12-31 05:32 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-01-14 21:10 - 2015-12-31 05:32 - 01499912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-01-14 21:10 - 2015-12-10 10:40 - 00033456 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-01-14 21:10 - 2015-12-07 20:56 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-14 21:10 - 2015-12-05 01:00 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-14 21:10 - 2015-11-22 16:59 - 01659568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-01-14 21:10 - 2015-11-22 16:59 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-01-14 21:10 - 2015-11-22 16:59 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-01-14 21:10 - 2015-11-22 16:59 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-01-14 21:10 - 2015-11-22 04:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2016-01-14 21:10 - 2015-11-22 03:50 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2016-01-14 21:10 - 2015-11-18 07:07 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-14 21:10 - 2015-11-18 07:07 - 01164800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-14 21:10 - 2015-11-18 07:07 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-14 21:10 - 2015-11-18 07:07 - 00705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-14 21:10 - 2015-11-18 07:07 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-14 21:10 - 2015-11-18 07:07 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-14 21:10 - 2015-11-18 07:07 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-01-14 21:08 - 2015-12-09 05:08 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-14 21:08 - 2015-12-09 05:07 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-10 15:57 - 2016-01-10 15:57 - 00000000 ____D C:\Users\Dylan\AppData\Local\Golden_Frog,_GmbH
2016-01-10 15:57 - 2016-01-10 15:57 - 00000000 ____D C:\Users\Dylan\AppData\Local\Golden Frog, GmbH
2016-01-10 15:56 - 2016-02-07 16:04 - 00000977 _____ C:\Users\Public\Desktop\VyprVPN.lnk
2016-01-10 15:56 - 2016-01-10 15:56 - 00000000 ____D C:\ProgramData\Golden Frog, GmbH
2016-01-10 15:04 - 2015-11-05 18:59 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-01-10 15:04 - 2015-10-14 03:10 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-01-10 15:04 - 2015-10-14 03:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-01-10 15:04 - 2015-09-29 22:24 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-01-10 15:04 - 2015-09-05 05:24 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2016-01-10 15:04 - 2015-08-29 08:20 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-01-10 15:02 - 2015-11-22 02:59 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-01-10 15:02 - 2015-11-22 02:49 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-01-10 15:02 - 2015-11-22 02:47 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-01-10 15:02 - 2015-11-22 02:40 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-01-10 15:02 - 2015-11-21 08:47 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-01-10 15:02 - 2015-11-21 04:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-01-10 15:02 - 2015-11-21 02:58 - 03706880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-01-10 15:02 - 2015-11-21 02:47 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-01-10 15:02 - 2015-11-21 02:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-01-10 15:02 - 2015-11-21 02:44 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-01-10 15:02 - 2015-11-21 02:44 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-01-10 15:02 - 2015-11-21 02:43 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-01-10 15:02 - 2015-11-21 02:42 - 02243584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-01-10 15:02 - 2015-11-21 02:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-01-10 15:02 - 2015-11-21 02:29 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-01-10 15:02 - 2015-11-21 02:28 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-01-10 15:02 - 2015-11-21 02:27 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-01-10 15:02 - 2015-11-09 10:41 - 01540728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-01-10 15:02 - 2015-11-09 08:30 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-01-10 15:02 - 2015-11-09 07:23 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-01-10 15:02 - 2015-11-09 07:13 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-01-10 15:02 - 2015-11-09 07:01 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-01-10 15:02 - 2015-11-09 06:52 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-01-10 15:02 - 2015-11-09 06:48 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-01-10 15:02 - 2015-11-09 06:42 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-01-10 15:02 - 2015-10-29 01:49 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-01-10 15:02 - 2015-10-29 01:29 - 02462720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-01-10 15:02 - 2015-10-16 02:08 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-01-10 15:02 - 2015-10-16 01:46 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-01-10 15:02 - 2015-10-11 16:34 - 00468824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-01-10 15:02 - 2015-10-11 16:34 - 00462168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-01-10 15:02 - 2015-10-11 16:34 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-01-10 15:02 - 2015-10-11 16:34 - 00092504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-01-10 15:02 - 2015-10-11 16:34 - 00027992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-01-10 15:02 - 2015-10-11 04:41 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-01-10 15:02 - 2015-10-11 04:41 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2016-01-10 15:02 - 2015-10-11 04:40 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winusb.sys
2016-01-10 15:02 - 2015-10-11 03:20 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-01-10 15:02 - 2015-10-09 02:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-01-10 15:02 - 2015-10-09 02:08 - 01083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-01-10 15:02 - 2015-10-09 01:50 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-01-10 15:02 - 2015-10-06 04:28 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-01-10 15:02 - 2015-10-06 04:25 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-10 15:02 - 2015-10-04 05:41 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-01-10 15:02 - 2015-10-04 05:41 - 01124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-01-10 15:02 - 2015-09-12 23:47 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-01-10 15:02 - 2015-09-08 02:22 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-01-10 15:02 - 2015-09-08 01:54 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-01-10 15:02 - 2015-09-08 01:30 - 01091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-01-09 21:22 - 2016-01-09 21:22 - 00030400 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-01-09 21:22 - 2016-01-09 21:22 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-01-08 22:58 - 2016-02-07 16:03 - 00001767 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-01-08 22:58 - 2016-01-08 22:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-01-08 22:57 - 2016-01-08 22:58 - 00000000 ____D C:\Program Files\iTunes
2016-01-08 22:57 - 2016-01-08 22:57 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2016-01-08 22:57 - 2016-01-08 22:57 - 00000000 ____D C:\Program Files\iPod
2016-01-08 22:57 - 2016-01-08 22:57 - 00000000 ____D C:\Program Files\Bonjour
2016-01-08 22:57 - 2016-01-08 22:57 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-01-08 22:57 - 2016-01-08 22:57 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-01-08 22:57 - 2016-01-08 22:57 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-01-08 22:50 - 2016-01-08 22:52 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2016-01-08 21:57 - 2016-01-08 21:57 - 00061440 _____ (Gary's Hood) C:\Users\Dylan\Downloads\rsclient.exe
2016-01-08 18:43 - 2016-01-08 18:43 - 00880432 _____ C:\Users\Dylan\Downloads\OSBuddy.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-07 20:32 - 2015-01-08 00:53 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\Skype
2016-02-07 20:13 - 2015-09-17 17:57 - 00000928 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-07 19:49 - 2015-07-06 16:35 - 00000940 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-273558292-3134783237-3410145208-1001UA.job
2016-02-07 19:42 - 2015-09-26 19:49 - 00000600 _____ C:\Users\Dylan\AppData\Local\PUTTY.RND
2016-02-07 19:38 - 2015-01-02 01:29 - 00000410 _____ C:\WINDOWS\Tasks\update-S-1-5-21-273558292-3134783237-3410145208-1001.job
2016-02-07 18:58 - 2013-08-23 01:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-02-07 18:42 - 2015-12-22 03:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2016-02-07 18:11 - 2015-01-02 01:29 - 00000410 _____ C:\WINDOWS\Tasks\update-sys.job
2016-02-07 17:45 - 2013-12-21 16:56 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-273558292-3134783237-3410145208-1001
2016-02-07 17:40 - 2015-12-23 17:03 - 00000000 ____D C:\Program Files\TAP-Windows
2016-02-07 17:36 - 2015-08-01 19:14 - 00000000 ____D C:\Users\Dylan\tor_service
2016-02-07 17:32 - 2015-12-13 00:31 - 00000000 ____D C:\Program Files (x86)\No-IP
2016-02-07 17:32 - 2015-10-31 15:06 - 00000000 ____D C:\Program Files (x86)\VyprVPN
2016-02-07 17:32 - 2015-09-17 17:57 - 00000924 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-07 17:32 - 2015-06-03 15:41 - 00000000 ____D C:\Program Files (x86)\Dell Digital Delivery
2016-02-07 16:13 - 2013-08-23 01:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-02-07 16:13 - 2013-08-22 23:36 - 00000000 ____D C:\WINDOWS\Inf
2016-02-07 16:04 - 2016-01-03 14:07 - 00002086 _____ C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OldSchool RuneScape.lnk
2016-02-07 16:04 - 2015-12-31 18:09 - 00001057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-02-07 16:04 - 2015-12-31 18:09 - 00001045 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-02-07 16:04 - 2015-12-16 19:59 - 00002713 _____ C:\Users\Public\Desktop\Skype.lnk
2016-02-07 16:04 - 2015-11-17 13:56 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-02-07 16:04 - 2015-11-06 10:20 - 00001223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-02-07 16:04 - 2015-10-26 01:06 - 00001022 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Client.lnk
2016-02-07 16:04 - 2015-10-26 01:06 - 00001006 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Control Panel.lnk
2016-02-07 16:04 - 2015-10-19 16:38 - 00001599 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2016-02-07 16:04 - 2015-10-19 16:38 - 00001587 _____ C:\Users\Public\Desktop\Wireshark.lnk
2016-02-07 16:04 - 2015-10-16 03:55 - 00001017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mullvad.lnk
2016-02-07 16:04 - 2015-10-03 17:13 - 00001243 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-02-07 16:04 - 2015-09-24 23:45 - 00002269 _____ C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Support (2).lnk
2016-02-07 16:04 - 2015-09-24 20:48 - 00001523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-02-07 16:04 - 2015-09-24 16:14 - 00002269 _____ C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Support.lnk
2016-02-07 16:04 - 2015-09-22 16:34 - 00002269 _____ C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Symantec Support.lnk
2016-02-07 16:04 - 2015-09-17 18:05 - 00002234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-07 16:04 - 2015-09-13 13:01 - 00001010 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Flash Professional CC 2015.lnk
2016-02-07 16:04 - 2015-09-11 15:40 - 00001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC 2015.lnk
2016-02-07 16:04 - 2015-09-11 15:28 - 00001140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2015.lnk
2016-02-07 16:04 - 2015-09-11 15:21 - 00001086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Dreamweaver CC 2015.lnk
2016-02-07 16:04 - 2015-09-11 15:09 - 00001248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2015.lnk
2016-02-07 16:04 - 2015-09-11 15:08 - 00001354 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Character Animator (Preview).lnk
2016-02-07 16:04 - 2015-09-11 14:57 - 00001128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2016-02-07 16:04 - 2015-09-11 14:46 - 00000998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Muse CC 2015.lnk
2016-02-07 16:04 - 2015-08-25 16:03 - 00001062 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
2016-02-07 16:04 - 2015-08-02 01:45 - 00000865 _____ C:\Users\Public\Desktop\VeraCrypt.lnk
2016-02-07 16:04 - 2015-06-02 20:57 - 00001176 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2016-02-07 16:04 - 2015-02-02 00:52 - 00001138 _____ C:\Users\Public\Desktop\Unity.lnk
2016-02-07 16:04 - 2014-10-07 19:19 - 00001054 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2016-02-07 16:04 - 2014-05-29 19:28 - 00001220 _____ C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paint.lnk
2016-02-07 16:04 - 2014-03-25 18:14 - 00000883 _____ C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-02-07 16:04 - 2014-01-17 10:02 - 00000295 _____ C:\Users\Dylan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Homegroup.lnk
2016-02-07 16:04 - 2014-01-13 20:34 - 00001202 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paint.NET.lnk
2016-02-07 16:04 - 2014-01-13 20:34 - 00001190 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2016-02-07 16:04 - 2013-12-12 21:30 - 00001392 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-02-07 16:04 - 2013-12-12 21:30 - 00001323 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-02-07 16:03 - 2016-01-06 22:11 - 00001035 _____ C:\Users\Public\Desktop\ManyCam.lnk
2016-02-07 16:03 - 2016-01-03 14:07 - 00002056 _____ C:\Users\Dylan\Desktop\OldSchool RuneScape.lnk
2016-02-07 16:03 - 2016-01-02 22:45 - 00001915 _____ C:\Users\Public\Desktop\Clownfish.lnk
2016-02-07 16:03 - 2016-01-02 22:11 - 00001883 _____ C:\Users\Public\Desktop\EpicBot.lnk
2016-02-07 16:03 - 2015-12-25 12:30 - 00002165 _____ C:\Users\Public\Desktop\MorphVOX Pro.lnk
2016-02-07 16:03 - 2015-12-18 04:47 - 00000880 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-02-07 16:03 - 2015-12-01 14:33 - 00001652 _____ C:\Users\Dylan\Desktop\OBS.lnk
2016-02-07 16:03 - 2015-11-06 10:20 - 00001211 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-02-07 16:03 - 2015-10-03 17:13 - 00001231 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-02-07 16:03 - 2015-09-22 18:16 - 00002247 _____ C:\Users\Public\Desktop\Norton 360.LNK
2016-02-07 16:03 - 2015-09-17 18:05 - 00002277 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-07 16:03 - 2015-09-11 15:55 - 00001784 _____ C:\Users\Dylan\Desktop\Adobe Media Encoder.lnk
2016-02-07 16:03 - 2015-09-11 15:55 - 00001764 _____ C:\Users\Dylan\Desktop\Adobe Premiere Pro.lnk
2016-02-07 16:03 - 2015-09-11 15:55 - 00001650 _____ C:\Users\Dylan\Desktop\Photoshop.lnk
2016-02-07 16:03 - 2015-09-11 15:55 - 00001546 _____ C:\Users\Dylan\Desktop\Muse.lnk
2016-02-07 16:03 - 2015-09-11 15:54 - 00001707 _____ C:\Users\Dylan\Desktop\Adobe Audition CC.lnk
2016-02-07 16:03 - 2015-09-11 15:54 - 00001345 _____ C:\Users\Dylan\Desktop\Adobe After Effects CC.lnk
2016-02-07 16:03 - 2015-09-04 16:33 - 00001248 _____ C:\Users\Dylan\Desktop\Kali Linux.lnk
2016-02-07 16:03 - 2015-08-01 22:57 - 00002667 _____ C:\Users\Dylan\Desktop\µTorrent.lnk
2016-02-07 16:03 - 2015-07-25 23:55 - 00002072 _____ C:\Users\Dylan\Desktop\Popcorn Time.lnk
2016-02-07 16:03 - 2015-07-01 13:46 - 00001885 _____ C:\Users\Public\Desktop\LiveChat.lnk
2016-02-07 16:03 - 2015-06-22 22:44 - 00000799 _____ C:\Users\Dylan\Desktop\Start Tor Browser.lnk
2016-02-07 16:03 - 2015-06-12 22:11 - 00000975 _____ C:\Users\Public\Desktop\Minecraft.lnk
2016-02-07 16:03 - 2015-06-07 21:09 - 00001916 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2016-02-07 16:03 - 2015-01-20 12:41 - 00001658 _____ C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2016-02-07 16:03 - 2015-01-07 20:12 - 00001625 _____ C:\Users\Public\Desktop\League of Lebsibians.lnk
2016-02-07 16:03 - 2014-12-18 20:51 - 00001395 _____ C:\Users\Dylan\Desktop\Microsoft Visual Basic 2010 Express.lnk
2016-02-07 16:03 - 2014-11-08 10:26 - 00002214 _____ C:\Users\Public\Desktop\Grand Theft Auto IV.lnk
2016-02-07 16:03 - 2014-11-07 20:34 - 00000842 _____ C:\Users\Dylan\Desktop\Handbrake.lnk
2016-02-07 16:03 - 2014-01-29 17:22 - 00001061 _____ C:\Users\Dylan\Desktop\Dropbox.lnk
2016-02-07 15:54 - 2013-08-23 00:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-07 15:52 - 2013-08-23 01:36 - 00000000 ____D C:\WINDOWS\Vss
2016-02-07 15:51 - 2014-10-07 19:20 - 00000000 ____D C:\Users\Dylan\.VirtualBox
2016-02-07 15:51 - 2013-12-21 16:55 - 00003790 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0BCB8E54-4207-45A6-A5EC-C33B24DC1EFD}
2016-02-07 15:46 - 2016-01-02 22:10 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\StormFall
2016-02-07 13:16 - 2015-12-26 23:24 - 00000000 ____D C:\Users\Dylan\Desktop\LuminosityLink-CrackedByAlcatraz3222
2016-02-07 13:16 - 2015-12-12 23:45 - 00000000 ____D C:\ProgramData\Nimoru
2016-02-07 13:16 - 2015-12-12 22:49 - 00000000 ____D C:\Users\Dylan\Desktop\Windows 7 Share
2016-02-07 13:16 - 2014-08-03 10:07 - 00000000 ____D C:\Users\Dylan\AppData\LocalLow\Company
2016-02-07 13:16 - 2014-08-03 00:56 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2016-02-07 13:16 - 2013-12-22 01:55 - 00000000 ____D C:\Users\Dylan\AppData\Local\genienext
2016-02-07 12:53 - 2014-01-10 01:07 - 00000000 ____D C:\Users\Dylan\AppData\Local\CrashDumps
2016-02-07 12:40 - 2015-08-26 16:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-07 12:31 - 2014-08-13 21:45 - 00000000 ____D C:\Users\Dylan\AppData\Local\NPE
2016-02-07 12:23 - 2015-06-12 16:46 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\uTorrent
2016-02-07 12:08 - 2015-05-01 18:05 - 00000000 ____D C:\Program Files (x86)\Clownfish
2016-02-07 11:59 - 2015-06-13 09:56 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\FileZilla
2016-02-07 10:49 - 2015-07-06 16:35 - 00000888 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-273558292-3134783237-3410145208-1001Core.job
2016-02-07 02:00 - 2013-12-22 02:44 - 00000000 ____D C:\Users\Dylan\AppData\Local\Adobe
2016-02-07 01:36 - 2015-10-10 13:54 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\HexChat
2016-02-07 01:35 - 2015-06-07 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-02-07 01:35 - 2015-06-07 21:09 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2016-02-06 22:44 - 2014-10-07 19:20 - 00000000 ____D C:\Users\Dylan\VirtualBox VMs
2016-02-06 20:35 - 2015-12-16 19:57 - 00000000 ____D C:\Users\Dylan\Downloads\Gif & Web
2016-02-06 14:55 - 2015-06-22 22:44 - 00000000 ____D C:\Users\Dylan\Desktop\Tor Browser
2016-02-06 13:39 - 2013-08-23 01:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-06 03:37 - 2015-12-25 02:15 - 00000000 ____D C:\Program Files (x86)\ManyCam
2016-02-04 20:43 - 2015-05-21 23:46 - 00000000 ____D C:\Users\Dylan\Downloads\Hacks & Cracks
2016-02-03 15:50 - 2014-06-04 19:57 - 00000000 ____D C:\ProgramData\Skype
2016-02-03 02:11 - 2013-08-22 23:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-02-03 02:08 - 2013-12-21 16:58 - 00003900 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-03 02:08 - 2013-12-21 16:58 - 00003664 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-03 00:06 - 2015-12-31 18:15 - 03637248 _____ C:\Users\Dylan\Desktop\pseudo.muse
2016-02-02 18:38 - 2015-08-08 13:14 - 00000000 ____D C:\ProgramData\rgt
2016-02-02 15:59 - 2013-08-22 23:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-02-02 01:05 - 2015-12-18 04:47 - 00000000 ____D C:\Program Files\CCleaner
2016-02-02 00:11 - 2015-10-21 20:42 - 07045120 _____ C:\Users\Dylan\Desktop\BruteNode.muse
2016-01-31 16:45 - 2015-06-12 16:46 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\HandBrake
2016-01-28 20:59 - 2015-06-12 19:06 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\.minecraft
2016-01-28 18:48 - 2015-09-24 20:39 - 00000000 ____D C:\Users\Dylan
2016-01-27 00:17 - 2015-10-16 02:02 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\TeamViewer
2016-01-27 00:17 - 2014-10-20 21:09 - 00000000 ____D C:\Program Files (x86)\Steam
2016-01-26 12:33 - 2015-06-12 16:28 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\OBS
2016-01-24 05:02 - 2014-01-13 20:34 - 00000000 ____D C:\Program Files\Paint.NET
2016-01-22 01:12 - 2015-11-10 23:36 - 00000044 _____ C:\Users\Dylan\jagex_cl_oldschool_LIVE.dat
2016-01-21 13:48 - 2015-12-25 02:16 - 00000000 ____D C:\Users\Dylan\AppData\Local\ManyCam
2016-01-19 01:21 - 2013-12-12 21:25 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-18 21:43 - 2015-09-30 13:12 - 00000000 ____D C:\Program Files (x86)\AMD
2016-01-18 21:43 - 2014-11-01 17:11 - 00000000 ____D C:\Program Files\AMD
2016-01-18 17:45 - 2015-05-29 22:08 - 00000000 ____D C:\Users\Dylan\AppData\Local\Package Cache
2016-01-17 15:00 - 2014-03-19 01:26 - 00957724 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-17 14:53 - 2015-12-18 19:05 - 05285672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-17 14:52 - 2014-01-14 11:46 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-17 14:52 - 2014-01-13 19:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-17 07:26 - 2015-04-13 10:21 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2016-01-17 07:26 - 2015-04-13 10:21 - 00000000 ___SD C:\WINDOWS\system32\GWX
2016-01-17 07:26 - 2013-08-23 01:36 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-01-17 07:26 - 2013-08-23 01:36 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-01-17 07:25 - 2014-12-11 00:05 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-17 07:25 - 2014-09-24 19:50 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2016-01-17 07:25 - 2013-08-23 01:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-01-16 16:07 - 2013-08-23 01:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-16 16:06 - 2014-01-14 11:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-16 16:03 - 2014-03-25 21:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-01-16 16:01 - 2013-08-22 23:25 - 00000364 _____ C:\WINDOWS\win.ini
2016-01-16 15:54 - 2013-12-22 03:18 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-16 15:49 - 2013-12-22 03:18 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-16 15:17 - 2015-12-16 19:59 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-01-15 13:28 - 2015-11-06 10:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-01-08 22:58 - 2015-06-13 19:37 - 00000000 ____D C:\Users\Dylan\AppData\Roaming\Apple Computer
2016-01-08 22:57 - 2013-12-22 03:19 - 00000000 ____D C:\ProgramData\Apple
2016-01-08 22:57 - 2013-12-22 03:19 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-01-08 17:25 - 2014-12-21 21:57 - 00000023 _____ C:\Users\Dylan\jagexappletviewer.preferences

==================== Files in the root of some directories =======

2015-01-11 22:49 - 2015-01-11 22:49 - 0000268 ___RH () C:\Users\Dylan\AppData\Roaming\manual
2014-08-14 19:24 - 2014-10-19 21:30 - 0001456 _____ () C:\Users\Dylan\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-01-10 00:17 - 2014-05-24 17:48 - 0005632 _____ () C:\Users\Dylan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-26 19:49 - 2016-02-07 19:42 - 0000600 _____ () C:\Users\Dylan\AppData\Local\PUTTY.RND
2014-08-02 13:35 - 2015-11-23 20:39 - 0007601 _____ () C:\Users\Dylan\AppData\Local\Resmon.ResmonCfg
2015-05-25 21:17 - 2015-05-25 21:17 - 0000003 _____ () C:\Users\Dylan\AppData\Local\updater.log
2015-01-02 01:29 - 2016-01-03 19:43 - 0000424 _____ () C:\Users\Dylan\AppData\Local\UserProducts.xml
2014-01-21 14:13 - 2014-01-21 14:13 - 0017408 _____ () C:\Users\Dylan\AppData\Local\WebpageIcons.db
2016-01-02 21:53 - 2016-01-02 21:53 - 0000006 ____S () C:\ProgramData\a2f1dba0be975a7e51b9d49e1828f5a9126ffab5
2015-01-11 22:49 - 2015-01-11 22:49 - 0000268 ___RH () C:\ProgramData\AccountTypes
2015-09-24 20:34 - 2015-09-24 20:34 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-01-11 22:42 - 2015-01-13 14:14 - 0000020 ____H () C:\ProgramData\PKP_DLdy.DAT
2013-12-26 13:47 - 2013-12-26 13:47 - 0000032 _____ () C:\ProgramData\Temp.log
2013-12-12 21:23 - 2013-12-12 21:24 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-12-12 21:20 - 2013-12-12 21:21 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-12-12 21:21 - 2013-12-12 21:22 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-12-12 21:22 - 2013-12-12 21:23 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2013-12-12 21:20 - 2013-12-12 21:20 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-24 20:32

==================== End of FRST.txt ============================