Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Update/Defender 0x80073b01 error


  • This topic is locked This topic is locked
24 replies to this topic

#1 Mardez08

Mardez08

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 15 October 2015 - 04:24 PM

Hello Everyone!
So I got a problem with Windows Update. The problem is that i can't download any driver without getting the error 0x80073b01

 

Im running Windows 10 64-bit

My laptop model MSI GT70 0NC

 

Here is some furthrt information

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-10-2015 01
Ran by Gabba-MSI (administrator) on DESKTOP-SGSK6A1 (15-10-2015 22:57:08)
Running from C:\Users\Gabba-MSI\Downloads
Loaded Profiles: Gabba-MSI (Available Profiles: Gabba-MSI)
Platform: Windows 10 Home (X64) Language: Dansk (Danmark)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\S-Bar\MSIService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
() C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
(Micro-Star International Co.,Ltd.) C:\Program Files (x86)\S-Bar\S-Bar.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Application) C:\Program Files (x86)\KLM\KLM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Gabba-MSI\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(JamesR) C:\Users\Gabba-MSI\Desktop\Le Bot 8.4.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [593216 2015-08-11] (Razer Inc.)
HKLM-x32\...\Run: [S-Bar] => C:\Program Files (x86)\S-Bar\S-Bar.exe [5499392 2011-11-02] (Micro-Star International Co.,Ltd.)
HKLM-x32\...\Run: [VGAOCAP] => C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe [88576 2012-01-31] ()
HKLM-x32\...\Run: [KLM] => C:\Program Files (x86)\KLM\KLM.exe [1499784 2015-05-13] (Application)
Winlogon\Notify\igfxcui: c:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2901584 2015-10-14] (Valve Corporation)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [57981568 2015-09-28] (Skype Technologies S.A.)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7693880 2015-09-08] (GOG.com)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3638768 2015-10-11] (Electronic Arts)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [GoogleChromeAutoLaunch_ABBCDFD8526D0D8147045A98FFC271E7] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-08-08] (Google Inc.)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\RunOnce: [Uninstall C:\Users\Gabba-MSI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Gabba-MSI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\RunOnce: [Uninstall C:\Users\Gabba-MSI\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Gabba-MSI\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\MountPoints2: G - "G:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\MountPoints2: {478a26fc-5bf2-11e5-9c05-8c89a500566b} - "F:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\MountPoints2: {65cc329b-3c9c-11e5-9bc3-8c89a500566b} - "G:\HTC_Sync_Manager_PC.exe" 
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => No File
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-10-08]
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{4692B750-DE88-4DCF-9163-745AF5604B24}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2015-09-15]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3c198182-c327-4e76-9c49-ac14aa48f56a}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\Gabba-MSI\AppData\Roaming\Mozilla\Firefox\Profiles\00vbqbas.default
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1490353025-1406894430-964412238-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Gabba-MSI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox [2015-10-15]
 
Chrome: 
=======
CHR Profile: C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Præsentation) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-07]
CHR Extension: (Google Dokumenter) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-07]
CHR Extension: (Google Drev) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-07]
CHR Extension: (YouTube) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-07]
CHR Extension: (Adblock Plus) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-15]
CHR Extension: (Steam inventory helper) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-10-13]
CHR Extension: (Google-søgning) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-07]
CHR Extension: (Google Ark) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-07]
CHR Extension: (LoungeDestroyer) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-08-15]
CHR Extension: (Hola Bedre Internet) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-09-20]
CHR Extension: (CS:GO Lounge Bump Bot) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhfkidfnhjcjjamcbdepeohblphlamgk [2015-08-15]
CHR Extension: (Skype Click to Call) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-08-20]
CHR Extension: (Betalinger i Chrome Webshop) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-07]
CHR Extension: (Gmail) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-07]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx <not found>
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000 2015-08-19] (Kaspersky Lab ZAO)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1738808 2015-09-08] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6943800 2015-09-08] (GOG.com)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-08] (IObit)
R2 Micro Star SCM; C:\Program Files (x86)\S-Bar\MSIService.exe [160768 2011-11-02] (Micro-Star International Co., Ltd.) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2078216 2015-10-11] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-04-17] (Qualcomm Atheros) [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-07-22] ()
R2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2015-10-08] () [File not signed]
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [82608 2014-04-10] (Qualcomm Atheros, Inc.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 Ke2200; C:\Windows\System32\drivers\e22w8x64.sys [130224 2014-03-27] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
S0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
S1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [171192 2015-06-30] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227000 2015-07-04] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [937656 2015-06-30] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
S3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klkbdflt2; C:\Windows\system32\DRIVERS\klkbdflt2.sys [33456 2015-06-09] (Kaspersky Lab ZAO)
S3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-10-15] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [78008 2015-06-26] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 L1C; C:\Windows\System32\drivers\e22w7x64.sys [161616 2012-03-08] (Qualcomm Atheros, Inc.)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
S3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [49880 2015-07-21] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [32792 2015-06-30] (SteelSeries ApS)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]
S3 MBfilt; \SystemRoot\system32\drivers\MBfilt64.sys [X]
S3 Trufos; system32\DRIVERS\Trufos.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-15 22:57 - 2015-10-15 22:58 - 00019057 _____ C:\Users\Gabba-MSI\Downloads\FRST.txt
2015-10-15 22:56 - 2015-10-15 22:57 - 00000000 ____D C:\FRST
2015-10-15 22:55 - 2015-10-15 22:56 - 02196480 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\FRST64.exe
2015-10-15 22:54 - 2015-10-15 22:55 - 01700352 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\FRST.exe
2015-10-15 17:52 - 2015-10-15 17:52 - 00002166 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2015-10-15 17:52 - 2015-10-15 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2015-10-15 17:52 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2015-10-15 17:51 - 2015-10-15 20:06 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-10-15 17:51 - 2015-10-15 17:51 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-10-15 17:51 - 2015-07-04 02:18 - 00227000 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2015-10-15 17:51 - 2015-06-30 01:05 - 00937656 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2015-10-15 17:51 - 2015-06-30 01:05 - 00171192 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2015-10-15 17:49 - 2015-10-15 17:51 - 172634312 _____ (Kaspersky Lab) C:\Users\Gabba-MSI\Downloads\kav16.0.0.614da-dk.exe
2015-10-15 16:56 - 2015-10-15 16:56 - 01131272 _____ (Developer Tribe (Pvt) Ltd. ) C:\Users\Gabba-MSI\Downloads\setup_rr.exe
2015-10-15 16:56 - 2015-10-15 16:56 - 00001189 _____ C:\Users\Public\Desktop\Registry Recycler.lnk
2015-10-15 12:47 - 2015-10-15 12:47 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-10-15 12:28 - 2015-10-15 12:28 - 00000000 ____D C:\NVIDIA
2015-10-14 23:44 - 2015-10-14 23:44 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\CrashRpt
2015-10-14 23:29 - 2015-10-14 23:29 - 00002520 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Gabba-MSI
2015-10-14 23:29 - 2015-10-14 23:29 - 00000318 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Gabba-MSI.job
2015-10-14 23:29 - 2015-10-14 23:29 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\ProductData
2015-10-14 23:29 - 2015-10-14 23:29 - 00000000 ____D C:\ProgramData\ProductData
2015-10-14 20:37 - 2015-10-14 20:37 - 00000000 ____D C:\Program Files (x86)\ESET
2015-10-14 20:36 - 2015-10-14 20:37 - 02870984 _____ (ESET) C:\Users\Gabba-MSI\Downloads\esetsmartinstaller_enu.exe
2015-10-14 20:31 - 2015-10-14 20:31 - 01801288 _____ (Malwarebytes) C:\Users\Gabba-MSI\Downloads\JRT.exe
2015-10-14 20:28 - 2015-10-14 20:28 - 00004129 _____ C:\Users\Gabba-MSI\Downloads\AdwCleaner[S1]5.txt
2015-10-14 20:23 - 2015-10-14 20:23 - 00004129 _____ C:\Users\Gabba-MSI\Downloads\AdwCleaner[C1].txt
2015-10-14 20:22 - 2015-10-14 20:28 - 00000000 ____D C:\AdwCleaner
2015-10-14 20:22 - 2015-10-14 20:22 - 00003845 _____ C:\Users\Gabba-MSI\Downloads\AdwCleaner[S1].txt
2015-10-14 20:21 - 2015-10-14 20:21 - 01682432 _____ C:\Users\Gabba-MSI\Downloads\AdwCleaner.exe
2015-10-14 20:17 - 2015-10-14 20:17 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Gabba-MSI\Downloads\tdsskiller.exe
2015-10-14 20:15 - 2015-10-14 20:15 - 00891392 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\MiniToolBox (1).exe
2015-10-14 20:11 - 2015-10-14 20:16 - 00035843 _____ C:\Users\Gabba-MSI\Downloads\MTB.txt
2015-10-14 20:10 - 2015-10-14 20:10 - 00891392 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\MiniToolBox.exe
2015-10-14 00:50 - 2015-10-15 17:12 - 00000000 ____D C:\ProgramData\Avg
2015-10-13 22:27 - 2015-10-15 17:27 - 00008488 _____ C:\WINDOWS\PFRO.log
2015-10-13 21:59 - 2015-10-10 09:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-13 21:59 - 2015-10-10 08:40 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-13 21:59 - 2015-10-10 08:07 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-13 21:59 - 2015-10-06 05:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 21:59 - 2015-10-06 04:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-13 21:59 - 2015-10-01 06:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-13 21:59 - 2015-10-01 06:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-13 21:59 - 2015-10-01 06:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-13 21:59 - 2015-10-01 06:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-13 21:59 - 2015-10-01 06:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 21:59 - 2015-10-01 05:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-13 21:59 - 2015-09-25 06:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-13 21:59 - 2015-09-25 06:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-13 21:59 - 2015-09-25 05:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-13 21:59 - 2015-09-25 05:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-13 21:59 - 2015-09-25 05:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-13 21:59 - 2015-09-25 05:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-13 21:59 - 2015-09-25 05:17 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-13 21:59 - 2015-09-25 05:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 21:59 - 2015-09-25 05:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-13 21:59 - 2015-09-25 05:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-13 21:59 - 2015-09-25 05:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 21:59 - 2015-09-25 05:04 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-13 21:59 - 2015-09-25 05:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-13 21:59 - 2015-09-25 05:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 21:59 - 2015-09-25 05:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 21:59 - 2015-09-25 05:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-13 21:59 - 2015-09-25 05:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-13 21:59 - 2015-09-25 05:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-13 21:59 - 2015-09-25 05:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 21:59 - 2015-09-25 05:02 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-13 21:59 - 2015-09-25 05:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-13 21:59 - 2015-09-25 05:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-13 21:59 - 2015-09-25 05:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-13 21:59 - 2015-09-25 05:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-13 21:59 - 2015-09-25 05:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-13 21:59 - 2015-09-25 05:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 21:59 - 2015-09-25 04:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-13 21:59 - 2015-09-25 04:48 - 19325952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-13 21:59 - 2015-09-25 04:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-13 21:59 - 2015-09-25 04:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-13 21:59 - 2015-09-25 04:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-13 21:59 - 2015-09-25 04:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-13 21:59 - 2015-09-25 04:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-13 21:59 - 2015-09-25 04:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-13 21:59 - 2015-09-25 04:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-13 21:59 - 2015-09-25 04:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-13 21:59 - 2015-09-25 04:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 21:59 - 2015-09-25 04:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-13 21:59 - 2015-09-25 04:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-13 21:59 - 2015-09-25 04:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-13 21:59 - 2015-09-25 04:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-13 21:59 - 2015-09-25 04:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-13 21:02 - 2015-10-13 21:02 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-10-13 21:02 - 2015-10-13 21:02 - 00000000 _____ C:\WINDOWS\setupact.log
2015-10-13 20:33 - 2015-10-13 20:41 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Ubisoft Game Launcher
2015-10-13 20:33 - 2015-10-13 20:33 - 00001284 _____ C:\Users\Gabba-MSI\Desktop\Uplay.lnk
2015-10-13 20:33 - 2015-10-13 20:33 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-10-13 20:33 - 2015-10-13 20:33 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2015-10-13 20:30 - 2015-10-13 20:32 - 67153848 _____ (Ubisoft) C:\Users\Gabba-MSI\Downloads\UplayInstaller.exe
2015-10-13 17:54 - 2015-10-15 21:58 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-12 15:01 - 2015-10-15 20:01 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-10-12 14:56 - 2015-10-12 14:56 - 00002878 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-10-12 14:56 - 2015-10-12 14:56 - 00000873 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-12 14:56 - 2015-10-12 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-12 14:56 - 2015-10-12 14:56 - 00000000 ____D C:\Program Files\CCleaner
2015-10-12 14:24 - 2015-10-15 12:49 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-10-12 13:56 - 2015-10-12 13:58 - 303687256 _____ (NVIDIA Corporation) C:\Users\Gabba-MSI\Downloads\358.50-notebook-win10-64bit-international-whql.exe
2015-10-12 13:10 - 2015-10-12 13:13 - 301556840 _____ (NVIDIA Corporation) C:\Users\Gabba-MSI\Downloads\358.50-notebook-win8-win7-64bit-international-whql.exe
2015-10-12 10:08 - 2015-10-12 10:23 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-10-11 23:36 - 2015-10-11 23:36 - 00000000 ____D C:\Users\Gabba-MSI\2FDD750F49B740C19D5ED2955BC0E2D8.TMP
2015-10-11 23:34 - 2015-10-11 23:35 - 60039168 _____ C:\Users\Gabba-MSI\Downloads\PhysX-9.14.0702-SystemSoftware.msi
2015-10-11 23:26 - 2015-10-12 14:54 - 00001460 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-10-11 23:22 - 2015-10-11 23:23 - 37627360 _____ (NVIDIA Corporation) C:\Users\Gabba-MSI\Downloads\GeForce_Experience_v2.5.15.46.exe
2015-10-11 21:14 - 2015-10-11 21:14 - 00000000 ____D C:\Users\Gabba-MSI\Downloads\x64
2015-10-11 21:00 - 2015-10-11 21:00 - 00000086 _____ C:\Users\Gabba-MSI\Documents\Gabbi on da bleep.txt
2015-10-11 19:29 - 2015-10-11 19:29 - 03391961 _____ C:\Users\Gabba-MSI\Downloads\Battery_Calibration_1.0.1405.0701.zip
2015-10-11 19:28 - 2015-10-11 22:53 - 15001939 _____ C:\Users\Gabba-MSI\Desktop\vga_1206_0601.zip
2015-10-11 19:28 - 2015-10-11 22:53 - 142814977 _____ C:\Users\Gabba-MSI\Desktop\vga_iib_9.17.10.2867_w764.zip
2015-10-11 19:26 - 2015-10-11 19:30 - 253678453 _____ C:\Users\Gabba-MSI\Desktop\vga_gt70_gf670_306.14_w764.zip
2015-10-11 17:13 - 2015-10-11 23:12 - 00000000 ____D C:\Users\Gabba-MSI\Documents\STAR WARS Battlefront Beta
2015-10-11 14:24 - 2015-10-11 14:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront Beta
2015-10-11 12:52 - 2015-10-11 12:52 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-10-11 12:50 - 2015-10-11 22:48 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Origin
2015-10-11 12:50 - 2015-10-11 12:52 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Origin
2015-10-11 12:46 - 2015-10-15 17:44 - 00000000 ____D C:\ProgramData\Origin
2015-10-11 12:46 - 2015-10-11 17:13 - 00000000 ____D C:\ProgramData\Electronic Arts
2015-10-11 12:46 - 2015-10-11 12:50 - 00000000 ____D C:\Program Files (x86)\Origin
2015-10-11 12:46 - 2015-10-11 12:46 - 00001058 _____ C:\Users\Public\Desktop\Origin.lnk
2015-10-11 12:46 - 2015-10-11 12:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-10-08 20:20 - 2015-10-08 20:20 - 00010752 _____ C:\WINDOWS\SetupAfterRebootService.exe
2015-10-08 19:32 - 2015-10-11 22:56 - 00020646 _____ C:\WINDOWS\system32\results.xml
2015-10-08 18:40 - 2015-10-08 18:41 - 00000000 ____D C:\Users\Gabba-MSI\Downloads\settings
2015-10-08 18:40 - 2015-10-08 16:50 - 01816576 _____ C:\Users\Gabba-MSI\Downloads\Display Driver Uninstaller.exe
2015-10-08 18:40 - 2015-10-08 16:50 - 00243200 _____ C:\Users\Gabba-MSI\Downloads\Display Driver Uninstaller.pdb
2015-10-08 18:39 - 2015-10-15 17:41 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-10-08 18:38 - 2015-10-08 18:38 - 00000000 ____D C:\WINDOWS\pss
2015-10-08 18:16 - 2015-10-08 18:40 - 01221844 _____ (Igor Pavlov) C:\Users\Gabba-MSI\Downloads\DDU v15.5.1.0.exe
2015-10-08 18:13 - 2015-10-08 18:14 - 00000000 ____D C:\ProgramData\Qualcomm
2015-10-08 18:13 - 2015-10-08 18:13 - 00002799 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk
2015-10-08 18:13 - 2015-10-08 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
2015-10-08 18:13 - 2015-10-08 18:13 - 00000000 ____D C:\ProgramData\Downloaded Installations
2015-10-08 18:13 - 2015-10-08 18:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros
2015-10-08 18:13 - 2015-10-08 18:13 - 00000000 _____ C:\Users\Gabba-MSI\AppData\Local\Driver_LOM_8161Present.flag
2015-10-08 18:02 - 2015-10-11 22:52 - 00000000 ____D C:\Program Files (x86)\Intel
2015-10-08 18:02 - 2011-12-06 16:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2015-10-08 18:01 - 2015-10-11 22:51 - 00000000 ____D C:\Intel
2015-10-08 17:51 - 2015-10-08 20:20 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-10-04 15:48 - 2015-10-02 19:36 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-04 15:48 - 2015-10-02 19:36 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-01 23:05 - 2015-10-01 23:05 - 00000074 _____ C:\Users\Gabba-MSI\Documents\New XML Autoer.xml
2015-10-01 15:07 - 2015-09-17 08:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-10-01 15:07 - 2015-09-17 08:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-01 15:07 - 2015-09-17 08:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-10-01 15:07 - 2015-09-17 08:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-01 15:07 - 2015-09-17 08:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-01 15:07 - 2015-09-17 08:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 15:07 - 2015-09-17 08:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-01 15:07 - 2015-09-17 08:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-10-01 15:07 - 2015-09-17 08:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 15:07 - 2015-09-17 08:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 15:07 - 2015-09-17 08:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-10-01 15:07 - 2015-09-17 08:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 15:07 - 2015-09-17 08:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-10-01 15:07 - 2015-09-17 08:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-10-01 15:07 - 2015-09-17 08:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-10-01 15:07 - 2015-09-17 08:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-10-01 15:07 - 2015-09-17 08:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-10-01 15:07 - 2015-09-17 08:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-10-01 15:07 - 2015-09-17 08:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-10-01 15:07 - 2015-09-17 08:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-10-01 15:07 - 2015-09-17 08:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-10-01 15:07 - 2015-09-17 08:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-10-01 15:07 - 2015-09-17 08:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-10-01 15:07 - 2015-09-17 08:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-01 15:07 - 2015-09-17 08:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-10-01 15:07 - 2015-09-17 08:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-10-01 15:07 - 2015-09-17 08:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 15:07 - 2015-09-17 08:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 15:07 - 2015-09-17 08:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-01 15:07 - 2015-09-17 08:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 15:07 - 2015-09-17 08:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 15:07 - 2015-09-17 08:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 15:07 - 2015-09-17 07:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 15:07 - 2015-09-17 07:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-10-01 15:07 - 2015-09-17 07:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 15:07 - 2015-09-17 07:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 15:07 - 2015-09-17 07:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 15:07 - 2015-09-17 07:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-01 15:07 - 2015-09-17 07:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 15:07 - 2015-09-17 07:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 15:07 - 2015-09-17 07:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 15:07 - 2015-09-17 07:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-01 15:07 - 2015-09-17 07:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-10-01 15:07 - 2015-09-17 07:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 15:07 - 2015-09-17 07:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 15:07 - 2015-09-17 07:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 15:07 - 2015-09-17 07:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 15:07 - 2015-09-17 07:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-01 15:07 - 2015-09-17 07:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 15:07 - 2015-09-17 07:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-10-01 15:07 - 2015-09-17 07:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 15:07 - 2015-09-17 07:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-01 15:07 - 2015-09-17 07:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 15:07 - 2015-09-17 07:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-10-01 15:07 - 2015-09-17 07:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 15:07 - 2015-09-17 07:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 15:07 - 2015-09-17 07:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 15:07 - 2015-09-17 07:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 15:07 - 2015-09-17 07:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 15:07 - 2015-09-17 07:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 15:07 - 2015-09-17 07:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-01 15:07 - 2015-09-17 07:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 15:07 - 2015-09-17 07:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 15:07 - 2015-09-17 07:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-01 15:07 - 2015-09-17 07:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-10-01 15:07 - 2015-09-17 07:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-10-01 15:07 - 2015-09-17 07:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-01 15:07 - 2015-09-17 07:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-10-01 15:07 - 2015-09-17 07:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 15:07 - 2015-09-17 07:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-10-01 15:07 - 2015-09-17 07:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-10-01 15:07 - 2015-09-17 07:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-10-01 15:07 - 2015-09-17 07:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-10-01 15:07 - 2015-09-17 07:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-10-01 15:07 - 2015-09-17 07:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 15:07 - 2015-09-17 07:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-10-01 15:07 - 2015-09-17 07:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-10-01 15:07 - 2015-09-17 07:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-10-01 15:07 - 2015-09-17 07:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-10-01 15:07 - 2015-09-17 07:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-10-01 15:07 - 2015-09-17 07:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-10-01 15:07 - 2015-09-17 07:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-01 15:07 - 2015-09-17 07:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-10-01 15:07 - 2015-09-17 07:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-10-01 15:07 - 2015-09-13 04:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-01 15:07 - 2015-09-13 03:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-01 15:06 - 2015-09-19 07:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-10-01 15:06 - 2015-09-17 08:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-10-01 15:06 - 2015-09-17 08:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 15:06 - 2015-09-17 08:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-10-01 15:06 - 2015-09-17 08:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-10-01 15:06 - 2015-09-17 08:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-10-01 15:06 - 2015-09-17 08:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-10-01 15:06 - 2015-09-17 08:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-10-01 15:06 - 2015-09-17 08:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-10-01 15:06 - 2015-09-17 08:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-10-01 15:06 - 2015-09-17 08:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-10-01 15:06 - 2015-09-17 08:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-10-01 15:06 - 2015-09-17 08:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-01 15:06 - 2015-09-17 08:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-10-01 15:06 - 2015-09-17 08:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-10-01 15:06 - 2015-09-17 08:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-10-01 15:06 - 2015-09-17 08:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-10-01 15:06 - 2015-09-17 08:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 15:06 - 2015-09-17 08:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 15:06 - 2015-09-17 08:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-10-01 15:06 - 2015-09-17 08:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-10-01 15:06 - 2015-09-17 08:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 15:06 - 2015-09-17 08:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 15:06 - 2015-09-17 08:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 15:06 - 2015-09-17 08:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 15:06 - 2015-09-17 08:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 15:06 - 2015-09-17 08:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 15:06 - 2015-09-17 08:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 15:06 - 2015-09-17 08:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 15:06 - 2015-09-17 08:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 15:06 - 2015-09-17 08:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 15:06 - 2015-09-17 08:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 15:06 - 2015-09-17 08:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 15:06 - 2015-09-17 08:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 15:06 - 2015-09-17 08:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 15:06 - 2015-09-17 08:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 15:06 - 2015-09-17 08:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 15:06 - 2015-09-17 07:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 15:06 - 2015-09-17 07:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 15:06 - 2015-09-17 07:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-10-01 15:06 - 2015-09-17 07:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-10-01 15:06 - 2015-09-17 07:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 15:06 - 2015-09-17 07:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-10-01 15:06 - 2015-09-17 07:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-01 15:06 - 2015-09-17 07:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-10-01 15:06 - 2015-09-17 07:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-01 15:06 - 2015-09-17 07:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-10-01 15:06 - 2015-09-17 07:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-01 15:06 - 2015-09-17 07:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-10-01 15:06 - 2015-09-17 07:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-10-01 15:06 - 2015-09-17 07:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-10-01 15:06 - 2015-09-17 07:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 15:06 - 2015-09-17 07:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 15:06 - 2015-09-17 07:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 15:06 - 2015-09-17 07:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 15:06 - 2015-09-17 07:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 15:06 - 2015-09-17 07:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-01 15:06 - 2015-09-17 07:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-10-01 15:06 - 2015-09-17 07:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 15:06 - 2015-09-17 07:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-01 15:06 - 2015-09-17 07:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-10-01 15:06 - 2015-09-17 07:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-10-01 15:06 - 2015-09-17 07:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-10-01 15:06 - 2015-09-17 07:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 15:06 - 2015-09-17 07:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-10-01 15:06 - 2015-09-17 07:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 15:06 - 2015-09-17 07:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-10-01 15:06 - 2015-09-17 07:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-10-01 15:06 - 2015-09-17 07:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-09-30 21:24 - 2015-09-30 21:25 - 00000000 ____D C:\Users\Gabba-MSI\Documents\Heroes of the Storm
2015-09-30 19:19 - 2015-09-30 19:19 - 00001268 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2015-09-30 18:51 - 2015-10-14 15:57 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2015-09-29 18:27 - 2015-09-29 18:27 - 00898873 _____ (JamesR) C:\Users\Gabba-MSI\Desktop\Le Bot 8.4.exe
2015-09-28 22:11 - 2015-09-28 22:11 - 00000000 ____D C:\Users\Gabba-MSI\AppData\LocalLow\Unity
2015-09-28 22:11 - 2015-09-28 22:11 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Unity
2015-09-26 01:35 - 2015-09-26 01:35 - 00086966 _____ C:\Users\Gabba-MSI\Documents\DxDiag.txt
2015-09-24 19:06 - 2015-09-24 19:06 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\WinRAR
2015-09-24 19:06 - 2015-09-24 19:06 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-24 19:06 - 2015-09-24 19:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-24 19:06 - 2015-09-24 19:06 - 00000000 ____D C:\Program Files\WinRAR
2015-09-22 17:13 - 2015-10-14 00:47 - 00000356 _____ C:\WINDOWS\system32\config\afw_hm.conf
2015-09-22 17:13 - 2015-10-14 00:47 - 00000004 _____ C:\WINDOWS\system32\config\afw_db.conf
2015-09-22 17:04 - 2015-09-22 17:18 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\BullGuard
2015-09-22 17:02 - 2015-10-14 20:25 - 00000000 ____D C:\Program Files\BullGuard Ltd
2015-09-22 17:02 - 2015-09-22 17:02 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\QuickScan
2015-09-22 16:59 - 2015-10-14 00:47 - 00000000 ____D C:\ProgramData\BullGuard
2015-09-22 16:52 - 2015-09-22 16:52 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Avg2015
2015-09-22 16:47 - 2015-10-15 17:12 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\AvgSetupLog
2015-09-20 12:43 - 2015-09-20 12:43 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Adobe
2015-09-17 13:01 - 2015-09-17 13:01 - 00001302 _____ C:\Users\Gabba-MSI\Desktop\TeamSpeak 3 Client.lnk
2015-09-17 13:01 - 2015-09-17 13:01 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-09-17 13:01 - 2015-09-17 13:01 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\TeamSpeak 3 Client
2015-09-17 13:01 - 2015-09-17 13:01 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Overwolf
2015-09-17 12:55 - 2015-09-17 12:55 - 00000000 ____D C:\Users\Gabba-MSI\AppData\LocalLow\Temp
2015-09-16 23:28 - 2015-09-16 23:28 - 00000000 ____D C:\ProgramData\HTC
2015-09-16 23:28 - 2015-09-16 23:28 - 00000000 ____D C:\Program Files (x86)\HTC
2015-09-16 14:49 - 2015-09-16 14:49 - 00000000 ___RD C:\Users\Gabba-MSI\3D Objects
2015-09-15 15:22 - 2015-05-27 17:38 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-09-15 15:01 - 2015-09-15 15:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-15 22:48 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-15 22:46 - 2015-08-19 21:06 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Skype
2015-10-15 22:03 - 2015-08-07 02:58 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-15 18:03 - 2015-06-08 19:43 - 00041352 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpd.sys
2015-10-15 17:52 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-15 17:52 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-15 17:44 - 2015-08-07 03:21 - 00000000 ____D C:\Program Files (x86)\Steam
2015-10-15 17:44 - 2015-08-07 02:58 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-15 17:43 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-15 17:42 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-15 17:28 - 2015-08-18 21:11 - 00000000 ____D C:\ProgramData\MFAData
2015-10-15 12:39 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2015-10-15 09:06 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-14 20:17 - 2015-08-20 19:21 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Battle.net
2015-10-14 15:18 - 2015-08-20 19:31 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2015-10-14 15:18 - 2015-08-20 19:20 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-10-13 22:25 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-13 22:02 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-13 22:01 - 2015-08-12 01:29 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-12 23:27 - 2015-08-19 20:58 - 00000000 ____D C:\ProgramData\Skype
2015-10-12 15:32 - 2015-08-07 03:16 - 00000000 ____D C:\Users\Gabba-MSI\Tracing
2015-10-12 15:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-10-12 14:11 - 2015-08-07 02:48 - 00000000 ____D C:\Users\Gabba-MSI
2015-10-12 12:00 - 2015-08-09 01:56 - 00000000 ____D C:\Users\Gabba-MSI\Documents\my games
2015-10-11 22:57 - 2012-10-05 23:05 - 00441152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2015-10-11 22:57 - 2012-10-05 23:05 - 00398656 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2015-10-11 22:56 - 2012-10-05 23:05 - 00170304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2015-10-11 22:49 - 2015-08-07 02:46 - 01406774 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-11 22:49 - 2015-07-10 18:56 - 00464834 _____ C:\WINDOWS\system32\perfh006.dat
2015-10-11 22:49 - 2015-07-10 18:56 - 00079560 _____ C:\WINDOWS\system32\perfc006.dat
2015-10-08 23:00 - 2015-09-01 22:07 - 00000000 ____D C:\Users\Gabba-MSI\Documents\Opgaver
2015-10-08 20:21 - 2015-09-02 17:31 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-10-08 19:36 - 2014-08-12 18:38 - 00000000 ____D C:\Temp
2015-10-08 18:14 - 2015-09-13 17:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-08 17:51 - 2015-08-07 03:27 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Steam
2015-10-06 15:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-10-03 00:06 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-30 21:24 - 2015-08-20 19:20 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-09-30 02:41 - 2015-09-13 12:05 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-09-22 21:22 - 2015-08-27 21:41 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Avg
2015-09-22 17:25 - 2015-08-14 19:44 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-22 17:04 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-09-22 17:01 - 2015-09-02 16:59 - 00000000 ____D C:\Users\admin
2015-09-22 17:00 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-09-22 16:50 - 2015-08-18 21:11 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\MFAData
2015-09-17 15:52 - 2015-09-08 19:46 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\TS3Client
2015-09-16 13:30 - 2015-08-07 02:48 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Packages
2015-09-15 16:43 - 2015-08-12 01:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-15 15:47 - 2015-08-07 03:34 - 00000000 ____D C:\Program Files (x86)\Razer
2015-09-15 15:46 - 2015-08-07 03:35 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Razer
2015-09-15 15:46 - 2015-08-07 03:34 - 00000000 ____D C:\ProgramData\Razer
2015-09-15 15:46 - 2015-08-07 03:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-09-15 15:01 - 2015-09-02 17:00 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\SteelSeries Engine 3 Client
 
==================== Files in the root of some directories =======
 
2015-10-08 18:13 - 2015-10-08 18:13 - 0000000 _____ () C:\Users\Gabba-MSI\AppData\Local\Driver_LOM_8161Present.flag
2015-09-13 16:26 - 2015-09-13 16:26 - 0000000 _____ () C:\Users\Gabba-MSI\AppData\Local\{2E99D73A-6798-4945-9C3E-F89308B32160}
 
Some files in TEMP:
====================
C:\Users\Gabba-MSI\AppData\Local\Temp\avg-53739c73-30b0-4a4f-997e-fd672545d154.exe
C:\Users\Gabba-MSI\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Gabba-MSI\AppData\Local\Temp\sqlite3.dll
C:\Users\Gabba-MSI\AppData\Local\Temp\UNINSTALL.exe
C:\Users\Gabba-MSI\AppData\Local\Temp\{E404050A-360A-4786-B7C0-946F2B0B8740}-GoogleUpdateSetup.exe
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-10-14 15:05
 
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version:15-10-2015 01
Ran by Gabba-MSI (2015-10-15 22:58:25)
Running from C:\Users\Gabba-MSI\Downloads
Windows 10 Home (X64) (2015-08-07 00:44:38)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1490353025-1406894430-964412238-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1490353025-1406894430-964412238-503 - Limited - Disabled)
Gabba-MSI (S-1-5-21-1490353025-1406894430-964412238-1001 - Administrator - Enabled) => C:\Users\Gabba-MSI
Gæst (S-1-5-21-1490353025-1406894430-964412238-501 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version:  - Ubisoft)
AVG PC TuneUp 2015 (da-DK) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Bad Rats (HKLM-x32\...\Steam App 34900) (Version:  - Invent4 Entertainment)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Curse Client (HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version:  - Techland)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Fraps (HKLM-x32\...\Fraps) (Version:  - )
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Icecream Screen Recorder version 2.22 (HKLM-x32\...\{7ADEC622-3230-4C9A-9DCE-9BD462B74095}_is1) (Version: 2.22 - Icecream Apps)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.0.3.168 - IObit)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
KLM (HKLM-x32\...\InstallShield_{4DEA5B85-6C56-45F3-AE00-FED756B0D3B4}) (Version: 1.0.1505.1301 - Application)
KLM (x32 Version: 1.0.1505.1301 - Application) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 40.0.2 (x86 da) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 da)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2 - Mozilla)
MSI VGA Overclock Tool (HKLM-x32\...\{95193654-3EF2-4D17-8503-9F80B56D9ED5}) (Version: 12.01.3101 - MSI)
OpenOffice 4.1.1 (HKLM-x32\...\{FC226097-EED7-4560-BDCD-BD7136F74C07}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Qualcomm Atheros Network Manager (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Qualcomm Atheros Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.42.1045 - Qualcomm Atheros)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27405 - Razer Inc.)
Registry Recycler (HKLM-x32\...\Registry Recycler_is1) (Version: 0.9.2.9 - Developer Tribe (Pvt) Ltd.)
S-Bar (HKLM-x32\...\{39BDC923-826E-4007-8179-50E7C570E545}) (Version: 21.011.11023 - Micro-Star International Co.,Ltd.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
STAR WARS™ Battlefront™ Beta (HKLM-x32\...\{8A863B64-C9BE-4203-9ED7-92981CF690D3}) (Version: 1.0.4.9084 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.4.4.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.4.4.1 - SteelSeries ApS)
Tales from the Borderlands (HKLM-x32\...\1432213337_is1) (Version: 2.2.0.3 - GOG.com)
TeamSpeak 3 Client (HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version:  - Telltale Games)
Unity Web Player (HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 10.0 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.30 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.4 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== Restore Points =========================
 
11-10-2015 14:24:11 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
11-10-2015 21:14:47 DDU System Restored Point
11-10-2015 23:35:43 Installerede NVIDIA PhysX
12-10-2015 12:03:59 Installationsprogram til Windows-moduler
12-10-2015 12:30:27 Installerede Microsoft Visual C++ 2005 Redistributable
12-10-2015 12:31:07 Installerede Microsoft Visual C++ 2005 Redistributable
14-10-2015 20:32:16 JRT Pre-Junkware Removal
15-10-2015 17:09:58 Installed AVG 2016
15-10-2015 17:10:49 Installed AVG
15-10-2015 17:12:05 Removed AVG 2016
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-07-10 13:04 - 2015-07-10 13:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {550A1511-9B8D-4C6D-AAB0-D3C908EA3FC2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-07] (Google Inc.)
Task: {5616C993-E81F-4440-9FBF-E5D5C2D9C327} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-13] (Microsoft Corporation)
Task: {9941C970-F062-4887-9B68-968D5A84388F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-07] (Google Inc.)
Task: {C8EBBFAD-657A-4803-9570-25A30C19961F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {CF0D4745-64D4-4BE5-9191-22DA219A3C4C} - System32\Tasks\Uninstaller_SkipUac_Gabba-MSI => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-08-08] (IObit)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Gabba-MSI.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-08-11 22:02 - 2015-07-15 04:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-19 15:42 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2015-07-22 23:30 - 2015-07-22 23:30 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-10-08 17:41 - 2015-10-08 17:41 - 00010752 ____N () C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
2015-10-01 15:07 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-01 15:07 - 2015-09-17 07:43 - 02028544 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll
2015-10-01 15:06 - 2015-09-17 07:42 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 15:06 - 2015-09-17 07:42 - 00619008 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll
2015-10-01 15:06 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-01 15:07 - 2015-09-17 07:44 - 06569472 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 15:06 - 2015-09-17 07:42 - 01808384 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 15:07 - 2015-09-17 07:43 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:58 - 00210432 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2012-10-05 23:05 - 2012-09-28 20:51 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-04-17 11:02 - 2014-04-17 11:02 - 00300544 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
2015-03-14 07:49 - 2015-03-14 07:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-08-26 09:44 - 2015-08-26 09:44 - 00055576 _____ () C:\Program Files\CCleaner\branding.dll
2015-10-03 16:35 - 2015-10-03 16:35 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-10-03 16:35 - 2015-10-03 16:35 - 10814464 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-08-19 20:41 - 2015-08-08 17:42 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2015-08-07 03:26 - 2015-10-05 18:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-08-07 03:26 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-08-07 03:26 - 2015-10-14 22:56 - 02423376 _____ () C:\Program Files (x86)\Steam\video.dll
2015-08-07 03:25 - 2015-09-24 02:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-08-07 03:25 - 2015-09-24 02:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-08-07 03:25 - 2015-09-24 02:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-08-07 03:25 - 2015-09-24 02:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-08-07 03:25 - 2015-09-24 02:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-08-07 03:26 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-08-07 03:26 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-08-07 03:25 - 2015-10-14 22:56 - 00705104 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-08-07 03:25 - 2015-10-09 20:13 - 00193024 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2015-10-11 12:50 - 2015-10-11 12:49 - 00243200 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll
2015-09-05 03:42 - 2015-09-05 03:42 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-08-12 02:04 - 2015-08-08 02:13 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libglesv2.dll
2015-08-12 02:04 - 2015-08-08 02:13 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libegl.dll
2015-08-19 20:41 - 2015-08-08 17:42 - 00183584 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-08-19 20:41 - 2015-08-08 17:42 - 00348960 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-08-19 20:41 - 2015-08-08 17:42 - 00050976 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-08-07 03:25 - 2015-10-09 00:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-08-08 22:39 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\Gabba-MSI\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-08-08 22:39 - 2014-11-26 03:12 - 00911360 _____ () C:\Users\Gabba-MSI\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2015-08-08 22:39 - 2014-11-26 03:12 - 00134144 _____ () C:\Users\Gabba-MSI\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\kpcengine.2.3.dll
2015-08-12 02:04 - 2015-08-08 02:13 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\PepperFlash\pepflashplayer.dll
2015-08-07 03:25 - 2015-09-25 01:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service"
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
HKLM\...\StartupApproved\StartupFolder: => "SteelSeries Engine 3.lnk"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run32: => "AvgUi"
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\StartupApproved\Run: => "GalaxyClient"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{ACBBDF24-4207-474D-9586-060308F979E1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C39437D1-B8C9-4130-ADA5-72AA027A1EAA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{46AA1088-5736-4BDA-9956-733427294018}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8E4F6E08-47AF-4B74-B4DD-AE4F12E2FA11}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{70B430A6-4D72-458F-96A4-68483626AA50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{87CD066A-220A-4CF3-BE87-D0ED5C5CE37F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{C62F7DEF-9406-4D29-B014-C99689278D05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{312033D8-5AC1-4828-91B7-179B30EE671C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{8099B7CB-FAEC-4048-AB96-BDB81FC4261E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{CFDA3E6C-27CD-4065-91A6-BDBF1213D01D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{BE91A51A-F131-456F-9B41-8FC356636668}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{F09FBD38-DE8B-4886-B79C-3EA2A42782F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{E6EC0704-A7D0-4AB0-AD59-FE040EDE466B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{F4184916-F6E6-4957-9B14-E0E5A526BA33}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{363675C4-BF8C-4EA5-8F7A-4D407F002741}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{4DD49974-4C10-4B59-B0B8-3466CE64E655}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{259B0503-9283-4628-B2FE-44851981E89D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{0F8A2DAD-7538-4019-BB82-BB7A6096B20D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\left 4 dead 2\left4dead2.exe
FirewallRules: [{A0FA0531-9182-41C8-9530-38E73CD52FC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\left 4 dead 2\left4dead2.exe
FirewallRules: [{726DE802-526A-4067-99D6-B7D375696F26}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{95214DCB-DCA9-48C3-8892-BBC281C9408D}] => (Allow) LPort=2869
FirewallRules: [{92EC2293-3DCF-4869-BB97-8CF43352CAAA}] => (Allow) LPort=1900
FirewallRules: [{83A0B414-E36C-46A7-8B7C-F3D4D164E778}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{C1E46388-1A59-460B-A535-95F7AAC74EE1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bad Rats\Rats.exe
FirewallRules: [{E3E94666-4F64-430A-9AC4-52A551E26E83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bad Rats\Rats.exe
FirewallRules: [{57AB43C6-6E66-401B-B096-2D8071280D75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{E77A95E6-C762-4ED4-B88A-7CBB4E34C652}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{200886D0-8516-4CF5-9CDD-B09A4B948148}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{EE36C612-217E-4543-85C0-A4618DE9978A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{F96BC7F1-662D-452E-91E2-121BF4CD9F14}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{6E9A9695-FAB2-4781-A8D9-0D6259428316}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{9C3878B9-CF9D-442E-B1A3-F7E1D435D702}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{12A60F66-3FA5-43B8-AADE-57DF6EEFCD8E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{2E94CCD0-E93A-423A-82E1-5D8C4E231E00}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{51B69B66-9329-4E3F-9C65-E4E73C141DF0}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{40DBBB8F-D8F2-40F8-B9E9-F2F6B6B07B8B}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{F6EEBE54-7020-4F22-B1D6-214577F7C259}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{3A031ACE-54ED-4A37-B622-1AFE2D5D6960}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{B65A8800-22EB-49EE-B534-BEB0E62FE420}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{195BF988-D0F3-4B96-ACD4-ADDA48F1EB96}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{F3BE9917-68FB-4682-B190-D7E241AC080D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C33B7033-8142-4DCF-994B-F6BD95A10712}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{80011773-5E9D-4DBF-B54B-0A3B997EB38D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{207D8113-EAE2-44FC-AFF7-01E0644ED8BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{0EEC74D1-6763-4FF8-BDBE-75061F3CA9B2}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{C359F1F7-33AD-4D0D-AE36-BAFCDF733734}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{709B8792-4C87-46CC-8711-02995C90E56F}C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{3195727C-E432-4BB2-99E4-756EF7F5A2D9}C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [{F1F96B93-11BC-432D-880F-186F22B9E25F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{8336C551-98E0-4E99-ACA1-0E24DF906590}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{9C49F71F-562A-4794-BE61-DD5F703468B9}] => (Allow) D:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{E164840E-E4F1-4B5E-AC8D-62E20CE73EB2}] => (Allow) D:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{32F8DB8C-AC5E-4AD2-804B-5A3975B74EE2}] => (Allow) D:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{FB23F263-624E-4B61-B0C6-CF4E01936BBA}] => (Allow) D:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{426EB89F-29DF-4953-A8B0-9074078438F9}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront Beta\starwarsbattlefront.exe
FirewallRules: [{CE88155F-030D-497B-BF82-CB156B823065}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront Beta\starwarsbattlefront.exe
 
==================== Faulty Device Manager Devices =============
 
Name: Microsoft Basic-skærmkort
Description: Microsoft Basic-skærmkort
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardskærmtyper)
Service: BasicDisplay
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/15/2015 10:54:32 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Det lykkedes ikke at oprette aktiveringskontekst for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Der opstod fejl i manifest- eller politikfilen "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" på linje C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
En komponentversion, der er påkrævet af programmet, er i konflikt med en anden komponentversion, der allerede er aktiv.
Komponenter i konflikt er:
Komponent 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponent 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
 
Error: (10/15/2015 05:42:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: Kryptografiske tjenester kunne ikke initialisere VSS-sikkerhedskopiobjektet "System Writer".
 
Details:
Could not query the status of the EventSystem service.
 
System Error:
Systemet er ved at lukke ned.
.
 
Error: (10/15/2015 05:42:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-SGSK6A1)
Description: Aktivering af app‘en Microsoft.Getstarted_2.4.13.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca mislykkedes med fejlen: -2144927149 Du kan finde flere oplysninger i loggen Microsoft-Windows-TWinUI/Operational.
 
Error: (10/15/2015 05:40:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-SGSK6A1)
Description: Aktivering af app‘en Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI mislykkedes med fejlen: -2144927141 Du kan finde flere oplysninger i loggen Microsoft-Windows-TWinUI/Operational.
 
Error: (10/15/2015 05:29:52 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-SGSK6A1)
Description: Aktivering af app‘en Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI mislykkedes med fejlen: -2147023170 Du kan finde flere oplysninger i loggen Microsoft-Windows-TWinUI/Operational.
 
Error: (10/15/2015 05:29:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Navn på program med fejl: SearchUI.exe, version: 10.0.10240.16515, tidsstempel: 0x55fa5578
Navn på modul med fejl: CortanaApi.dll, version: 0.0.0.0, tidsstempel: 0x55fa5354
Undtagelseskode: 0x80000003
Forskydning med fejl 0x0000000000151a73
Proces-id 0xbec
Programmets starttidspunkt 0xSearchUI.exe0
Programsti: SearchUI.exe1
Modulsti: SearchUI.exe2
Rapport-id: SearchUI.exe3
Fuldt navn på program med fejl: SearchUI.exe4
Relativt program-id for program med fejl: SearchUI.exe5
 
Error: (10/15/2015 05:29:37 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Det lykkedes ikke at oprette aktiveringskontekst for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Der opstod fejl i manifest- eller politikfilen "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" på linje C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
En komponentversion, der er påkrævet af programmet, er i konflikt med en anden komponentversion, der allerede er aktiv.
Komponenter i konflikt er:
Komponent 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponent 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
 
Error: (10/15/2015 05:28:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-SGSK6A1)
Description: Aktivering af app‘en Microsoft.Getstarted_2.4.13.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca mislykkedes med fejlen: -2144927149 Du kan finde flere oplysninger i loggen Microsoft-Windows-TWinUI/Operational.
 
Error: (10/15/2015 05:28:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-SGSK6A1)
Description: Aktivering af app‘en Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI mislykkedes med fejlen: -2147023170 Du kan finde flere oplysninger i loggen Microsoft-Windows-TWinUI/Operational.
 
Error: (10/15/2015 05:28:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Navn på program med fejl: SearchUI.exe, version: 10.0.10240.16515, tidsstempel: 0x55fa5578
Navn på modul med fejl: CortanaApi.dll, version: 0.0.0.0, tidsstempel: 0x55fa5354
Undtagelseskode: 0x80000003
Forskydning med fejl 0x0000000000151a73
Proces-id 0x7b8
Programmets starttidspunkt 0xSearchUI.exe0
Programsti: SearchUI.exe1
Modulsti: SearchUI.exe2
Rapport-id: SearchUI.exe3
Fuldt navn på program med fejl: SearchUI.exe4
Relativt program-id for program med fejl: SearchUI.exe5
 
 
System errors:
=============
Error: (10/15/2015 08:02:44 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80073b01: NVIDIA driver update for NVIDIA GeForce GTX 670M.
 
Error: (10/15/2015 08:02:21 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80073b01: nVidia - Graphics Adapter WDDM1.1, Graphics Adapter WDDM1.2, Graphics Adapter WDDM1.3, Graphics Adapter WDDM2.0 - NVIDIA GeForce GTX 670M.
 
Error: (10/15/2015 08:01:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfejl: Der opstod en fejl, da Windows skulle installere følgende opdatering 0x80073b01: NVIDIA driver update for NVIDIA GeForce GTX 670M.
 
Error: (10/15/2015 05:42:32 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1084dpsIkke tilgængelig{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
 
Error: (10/15/2015 05:42:32 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1084dpsIkke tilgængelig{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
 
Error: (10/15/2015 05:42:30 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-SGSK6A1)
Description: 1084WSearchIkke tilgængelig{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (10/15/2015 05:42:28 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-SGSK6A1)
Description: 1084WSearchIkke tilgængelig{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (10/15/2015 05:42:08 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-SGSK6A1)
Description: 1084WSearchIkke tilgængelig{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (10/15/2015 05:42:08 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-SGSK6A1)
Description: 1084WSearchIkke tilgængelig{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (10/15/2015 05:42:08 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-SGSK6A1)
Description: 1084WSearchIkke tilgængelig{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
 
CodeIntegrity:
===================================
  Date: 2015-10-03 15:22:27.434
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-15 17:05:33.217
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-15 17:05:32.994
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-02 16:49:40.490
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-02 16:49:40.273
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-02 16:49:38.437
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-02 16:49:38.219
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-02 16:49:35.243
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-02 16:49:35.008
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-09-02 16:49:11.234
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-3610QM CPU @ 2.30GHz
Percentage of memory in use: 55%
Total physical RAM: 8088.75 MB
Available physical RAM: 3576.81 MB
Total Virtual: 10904.75 MB
Available Virtual: 5220.68 MB
 
==================== Drives ================================
 
Drive c: (OS_Install) (Fixed) (Total:409.82 GB) (Free:66.18 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:273.21 GB) (Free:164.4 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: C557ADB8)
Partition 1: (Not Active) - (Size=15.5 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=27)
Partition 3: (Not Active) - (Size=409.8 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=273.2 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt ============================

Edited by hamluis, 15 October 2015 - 04:35 PM.
Moved from Am I Infected to Malware Removal Logs - Hamluis.


BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,733 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:02 PM

Posted 20 October 2015 - 04:25 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/593493 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 Mardez08

Mardez08
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 21 October 2015 - 09:34 AM

Problem: My problem is that i need to install 2 nvidia drivers by using Windows Update but evertime i try to download it it fails and gives me the error code  0x80073b01

I haven't done anything trying to make it work so im open for all ideas. But when i sent the last FRST log it said something about a code 31.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:18-10-2015
Ran by Gabba-MSI (administrator) on DESKTOP-SGSK6A1 (21-10-2015 16:29:08)
Running from C:\Users\Gabba-MSI\Downloads
Loaded Profiles: Gabba-MSI (Available Profiles: Gabba-MSI)
Platform: Windows 10 Home (X64) Language: Dansk (Danmark)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\S-Bar\MSIService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
() C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Micro-Star International Co.,Ltd.) C:\Program Files (x86)\S-Bar\S-Bar.exe
() C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe
(Application) C:\Program Files (x86)\KLM\KLM.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Razer, Inc.) C:\Users\Gabba-MSI\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\swriter.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.bin
(JamesR) C:\Users\Gabba-MSI\Desktop\Le Bot 8.4.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Gabba-MSI\Downloads\FRST64 (1).exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [593216 2015-08-11] (Razer Inc.)
HKLM-x32\...\Run: [S-Bar] => C:\Program Files (x86)\S-Bar\S-Bar.exe [5499392 2011-11-02] (Micro-Star International Co.,Ltd.)
HKLM-x32\...\Run: [VGAOCAP] => C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe [88576 2012-01-31] ()
HKLM-x32\...\Run: [KLM] => C:\Program Files (x86)\KLM\KLM.exe [1499784 2015-05-13] (Application)
Winlogon\Notify\igfxcui: c:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2901584 2015-10-14] (Valve Corporation)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [57981568 2015-09-28] (Skype Technologies S.A.)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-20] (GOG.com)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3638768 2015-10-11] (Electronic Arts)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\Run: [GoogleChromeAutoLaunch_ABBCDFD8526D0D8147045A98FFC271E7] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-08-08] (Google Inc.)
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\RunOnce: [Uninstall C:\Users\Gabba-MSI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Gabba-MSI\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\RunOnce: [Uninstall C:\Users\Gabba-MSI\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Gabba-MSI\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\MountPoints2: G - "G:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\MountPoints2: {478a26fc-5bf2-11e5-9c05-8c89a500566b} - "F:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1490353025-1406894430-964412238-1001\...\MountPoints2: {65cc329b-3c9c-11e5-9bc3-8c89a500566b} - "G:\HTC_Sync_Manager_PC.exe" 
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => No File
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-10-08]
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{4692B750-DE88-4DCF-9163-745AF5604B24}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2015-09-15]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3c198182-c327-4e76-9c49-ac14aa48f56a}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-10-19] (AO Kaspersky Lab)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-10-19] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-10-19] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-10-19] (AO Kaspersky Lab)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\Gabba-MSI\AppData\Roaming\Mozilla\Firefox\Profiles\00vbqbas.default
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1490353025-1406894430-964412238-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Gabba-MSI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox [2015-10-15] [not signed]
 
Chrome: 
=======
CHR Profile: C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Præsentation) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-07]
CHR Extension: (Google Dokumenter) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-07]
CHR Extension: (Google Drev) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-07]
CHR Extension: (YouTube) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-07]
CHR Extension: (Adblock Plus) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-15]
CHR Extension: (Steam inventory helper) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2015-10-13]
CHR Extension: (Google-søgning) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-07]
CHR Extension: (Kaspersky-beskyttelse) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2015-10-18]
CHR Extension: (Google Ark) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-07]
CHR Extension: (LoungeDestroyer) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-08-15]
CHR Extension: (Hola Bedre Internet) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-09-20]
CHR Extension: (CS:GO Lounge Bump Bot) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhfkidfnhjcjjamcbdepeohblphlamgk [2015-08-15]
CHR Extension: (Skype Click to Call) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-08-20]
CHR Extension: (Betalinger i Chrome Webshop) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-07]
CHR Extension: (Gmail) - C:\Users\Gabba-MSI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-07]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx <not found>
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000 2015-08-19] (Kaspersky Lab ZAO)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1616440 2015-10-20] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6952504 2015-10-20] (GOG.com)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-08] (IObit)
R2 Micro Star SCM; C:\Program Files (x86)\S-Bar\MSIService.exe [160768 2011-11-02] (Micro-Star International Co., Ltd.) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2078216 2015-10-11] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-04-17] (Qualcomm Atheros) [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-07-22] ()
R2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2015-10-08] () [File not signed]
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [82608 2014-04-10] (Qualcomm Atheros, Inc.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 Ke2200; C:\Windows\System32\drivers\e22w8x64.sys [130224 2014-03-27] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2015-10-19] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227000 2015-07-04] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [925064 2015-10-19] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
S3 klkbdflt2; C:\Windows\system32\DRIVERS\klkbdflt2.sys [33456 2015-06-09] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-10-15] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87944 2015-10-19] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 L1C; C:\Windows\System32\drivers\e22w7x64.sys [161616 2012-03-08] (Qualcomm Atheros, Inc.)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
S3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [49880 2015-07-21] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [32792 2015-06-30] (SteelSeries ApS)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]
S3 MBfilt; \SystemRoot\system32\drivers\MBfilt64.sys [X]
S3 Trufos; system32\DRIVERS\Trufos.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-21 16:28 - 2015-10-21 16:28 - 02196992 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\FRST64 (1).exe
2015-10-21 16:18 - 2015-10-21 16:18 - 00000132 ____H C:\Users\Gabba-MSI\Downloads\.~lock.Status Rapport om familieliv.docx#
2015-10-20 21:49 - 2015-10-20 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tales from the Borderlands [GOG.com]
2015-10-18 22:13 - 2015-10-18 22:13 - 00001033 _____ C:\Users\Gabba-MSI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2015-10-18 22:13 - 2015-10-18 22:13 - 00001025 _____ C:\Users\Gabba-MSI\Desktop\osu!.lnk
2015-10-18 22:12 - 2015-10-18 22:17 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\osu!
2015-10-18 22:12 - 2015-10-18 22:12 - 03282488 _____ (ppy) C:\Users\Gabba-MSI\Downloads\osu!install.exe
2015-10-18 22:12 - 2015-10-18 22:12 - 00000000 ____D C:\Users\Gabba-MSI\Downloads\Localisation
2015-10-15 22:58 - 2015-10-15 22:59 - 00039801 _____ C:\Users\Gabba-MSI\Downloads\Addition.txt
2015-10-15 22:57 - 2015-10-21 16:29 - 00019392 _____ C:\Users\Gabba-MSI\Downloads\FRST.txt
2015-10-15 22:56 - 2015-10-21 16:29 - 00000000 ____D C:\FRST
2015-10-15 22:55 - 2015-10-15 22:56 - 02196480 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\FRST64.exe
2015-10-15 22:54 - 2015-10-15 22:55 - 01700352 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\FRST.exe
2015-10-15 17:52 - 2015-10-15 17:52 - 00002166 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2015-10-15 17:52 - 2015-10-15 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2015-10-15 17:52 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2015-10-15 17:51 - 2015-10-21 16:08 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-10-15 17:51 - 2015-10-19 16:36 - 00925064 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2015-10-15 17:51 - 2015-10-19 16:36 - 00181640 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2015-10-15 17:51 - 2015-10-15 17:51 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-10-15 17:51 - 2015-07-04 02:18 - 00227000 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2015-10-15 17:49 - 2015-10-15 17:51 - 172634312 _____ (Kaspersky Lab) C:\Users\Gabba-MSI\Downloads\kav16.0.0.614da-dk.exe
2015-10-15 16:56 - 2015-10-15 16:56 - 01131272 _____ (Developer Tribe (Pvt) Ltd. ) C:\Users\Gabba-MSI\Downloads\setup_rr.exe
2015-10-15 16:56 - 2015-10-15 16:56 - 00001189 _____ C:\Users\Public\Desktop\Registry Recycler.lnk
2015-10-15 12:47 - 2015-10-15 12:47 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-10-15 12:28 - 2015-10-15 12:28 - 00000000 ____D C:\NVIDIA
2015-10-14 23:44 - 2015-10-14 23:44 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\CrashRpt
2015-10-14 23:29 - 2015-10-14 23:29 - 00002520 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Gabba-MSI
2015-10-14 23:29 - 2015-10-14 23:29 - 00000318 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Gabba-MSI.job
2015-10-14 23:29 - 2015-10-14 23:29 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\ProductData
2015-10-14 23:29 - 2015-10-14 23:29 - 00000000 ____D C:\ProgramData\ProductData
2015-10-14 20:37 - 2015-10-14 20:37 - 00000000 ____D C:\Program Files (x86)\ESET
2015-10-14 20:36 - 2015-10-14 20:37 - 02870984 _____ (ESET) C:\Users\Gabba-MSI\Downloads\esetsmartinstaller_enu.exe
2015-10-14 20:31 - 2015-10-14 20:31 - 01801288 _____ (Malwarebytes) C:\Users\Gabba-MSI\Downloads\JRT.exe
2015-10-14 20:28 - 2015-10-14 20:28 - 00004129 _____ C:\Users\Gabba-MSI\Downloads\AdwCleaner[S1]5.txt
2015-10-14 20:23 - 2015-10-14 20:23 - 00004129 _____ C:\Users\Gabba-MSI\Downloads\AdwCleaner[C1].txt
2015-10-14 20:22 - 2015-10-14 20:28 - 00000000 ____D C:\AdwCleaner
2015-10-14 20:22 - 2015-10-14 20:22 - 00003845 _____ C:\Users\Gabba-MSI\Downloads\AdwCleaner[S1].txt
2015-10-14 20:21 - 2015-10-14 20:21 - 01682432 _____ C:\Users\Gabba-MSI\Downloads\AdwCleaner.exe
2015-10-14 20:17 - 2015-10-14 20:17 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Gabba-MSI\Downloads\tdsskiller.exe
2015-10-14 20:15 - 2015-10-14 20:15 - 00891392 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\MiniToolBox (1).exe
2015-10-14 20:11 - 2015-10-14 20:16 - 00035843 _____ C:\Users\Gabba-MSI\Downloads\MTB.txt
2015-10-14 20:10 - 2015-10-14 20:10 - 00891392 _____ (Farbar) C:\Users\Gabba-MSI\Downloads\MiniToolBox.exe
2015-10-14 00:50 - 2015-10-15 17:12 - 00000000 ____D C:\ProgramData\Avg
2015-10-13 22:27 - 2015-10-15 17:27 - 00008488 _____ C:\WINDOWS\PFRO.log
2015-10-13 21:59 - 2015-10-10 09:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-13 21:59 - 2015-10-10 08:40 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-13 21:59 - 2015-10-10 08:07 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-13 21:59 - 2015-10-06 05:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 21:59 - 2015-10-06 04:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-13 21:59 - 2015-10-01 06:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-13 21:59 - 2015-10-01 06:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-13 21:59 - 2015-10-01 06:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-13 21:59 - 2015-10-01 06:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-13 21:59 - 2015-10-01 06:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 21:59 - 2015-10-01 05:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-13 21:59 - 2015-09-25 06:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-13 21:59 - 2015-09-25 06:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-13 21:59 - 2015-09-25 05:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-13 21:59 - 2015-09-25 05:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-13 21:59 - 2015-09-25 05:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-13 21:59 - 2015-09-25 05:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-13 21:59 - 2015-09-25 05:17 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-13 21:59 - 2015-09-25 05:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 21:59 - 2015-09-25 05:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-13 21:59 - 2015-09-25 05:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-13 21:59 - 2015-09-25 05:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 21:59 - 2015-09-25 05:04 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-13 21:59 - 2015-09-25 05:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-13 21:59 - 2015-09-25 05:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 21:59 - 2015-09-25 05:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 21:59 - 2015-09-25 05:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-13 21:59 - 2015-09-25 05:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-13 21:59 - 2015-09-25 05:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-13 21:59 - 2015-09-25 05:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 21:59 - 2015-09-25 05:02 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-13 21:59 - 2015-09-25 05:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-13 21:59 - 2015-09-25 05:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-13 21:59 - 2015-09-25 05:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-13 21:59 - 2015-09-25 05:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-13 21:59 - 2015-09-25 05:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-13 21:59 - 2015-09-25 05:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 21:59 - 2015-09-25 04:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 21:59 - 2015-09-25 04:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-13 21:59 - 2015-09-25 04:48 - 19325952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-13 21:59 - 2015-09-25 04:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-13 21:59 - 2015-09-25 04:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-13 21:59 - 2015-09-25 04:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-13 21:59 - 2015-09-25 04:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-13 21:59 - 2015-09-25 04:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-13 21:59 - 2015-09-25 04:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-13 21:59 - 2015-09-25 04:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-13 21:59 - 2015-09-25 04:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-13 21:59 - 2015-09-25 04:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 21:59 - 2015-09-25 04:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-13 21:59 - 2015-09-25 04:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-13 21:59 - 2015-09-25 04:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-13 21:59 - 2015-09-25 04:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-13 21:59 - 2015-09-25 04:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-13 21:59 - 2015-09-25 04:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-13 21:02 - 2015-10-13 21:02 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-10-13 21:02 - 2015-10-13 21:02 - 00000000 _____ C:\WINDOWS\setupact.log
2015-10-13 20:33 - 2015-10-13 20:41 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Ubisoft Game Launcher
2015-10-13 20:33 - 2015-10-13 20:33 - 00001284 _____ C:\Users\Gabba-MSI\Desktop\Uplay.lnk
2015-10-13 20:33 - 2015-10-13 20:33 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-10-13 20:33 - 2015-10-13 20:33 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2015-10-13 20:30 - 2015-10-13 20:32 - 67153848 _____ (Ubisoft) C:\Users\Gabba-MSI\Downloads\UplayInstaller.exe
2015-10-13 17:54 - 2015-10-21 02:14 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-12 15:01 - 2015-10-21 07:04 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-10-12 14:56 - 2015-10-12 14:56 - 00002878 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-10-12 14:56 - 2015-10-12 14:56 - 00000873 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-12 14:56 - 2015-10-12 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-12 14:56 - 2015-10-12 14:56 - 00000000 ____D C:\Program Files\CCleaner
2015-10-12 14:24 - 2015-10-15 12:49 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-10-12 10:08 - 2015-10-12 10:23 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-10-11 23:36 - 2015-10-11 23:36 - 00000000 ____D C:\Users\Gabba-MSI\2FDD750F49B740C19D5ED2955BC0E2D8.TMP
2015-10-11 23:34 - 2015-10-11 23:35 - 60039168 _____ C:\Users\Gabba-MSI\Downloads\PhysX-9.14.0702-SystemSoftware.msi
2015-10-11 23:26 - 2015-10-12 14:54 - 00001460 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-10-11 21:14 - 2015-10-11 21:14 - 00000000 ____D C:\Users\Gabba-MSI\Downloads\x64
2015-10-11 21:00 - 2015-10-11 21:00 - 00000086 _____ C:\Users\Gabba-MSI\Documents\Gabbi on da bleep.txt
2015-10-11 19:29 - 2015-10-11 19:29 - 03391961 _____ C:\Users\Gabba-MSI\Downloads\Battery_Calibration_1.0.1405.0701.zip
2015-10-11 19:28 - 2015-10-11 22:53 - 15001939 _____ C:\Users\Gabba-MSI\Desktop\vga_1206_0601.zip
2015-10-11 19:28 - 2015-10-11 22:53 - 142814977 _____ C:\Users\Gabba-MSI\Desktop\vga_iib_9.17.10.2867_w764.zip
2015-10-11 19:26 - 2015-10-11 19:30 - 253678453 _____ C:\Users\Gabba-MSI\Desktop\vga_gt70_gf670_306.14_w764.zip
2015-10-11 17:13 - 2015-10-11 23:12 - 00000000 ____D C:\Users\Gabba-MSI\Documents\STAR WARS Battlefront Beta
2015-10-11 14:24 - 2015-10-11 14:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront Beta
2015-10-11 12:52 - 2015-10-11 12:52 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-10-11 12:50 - 2015-10-11 22:48 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Origin
2015-10-11 12:50 - 2015-10-11 12:52 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Origin
2015-10-11 12:46 - 2015-10-18 16:21 - 00000000 ____D C:\ProgramData\Origin
2015-10-11 12:46 - 2015-10-11 17:13 - 00000000 ____D C:\ProgramData\Electronic Arts
2015-10-11 12:46 - 2015-10-11 12:50 - 00000000 ____D C:\Program Files (x86)\Origin
2015-10-11 12:46 - 2015-10-11 12:46 - 00001058 _____ C:\Users\Public\Desktop\Origin.lnk
2015-10-11 12:46 - 2015-10-11 12:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-10-08 20:20 - 2015-10-08 20:20 - 00010752 _____ C:\WINDOWS\SetupAfterRebootService.exe
2015-10-08 19:32 - 2015-10-11 22:56 - 00020646 _____ C:\WINDOWS\system32\results.xml
2015-10-08 18:40 - 2015-10-08 18:41 - 00000000 ____D C:\Users\Gabba-MSI\Downloads\settings
2015-10-08 18:40 - 2015-10-08 16:50 - 01816576 _____ C:\Users\Gabba-MSI\Downloads\Display Driver Uninstaller.exe
2015-10-08 18:40 - 2015-10-08 16:50 - 00243200 _____ C:\Users\Gabba-MSI\Downloads\Display Driver Uninstaller.pdb
2015-10-08 18:39 - 2015-10-15 17:41 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-10-08 18:38 - 2015-10-08 18:38 - 00000000 ____D C:\WINDOWS\pss
2015-10-08 18:16 - 2015-10-08 18:40 - 01221844 _____ (Igor Pavlov) C:\Users\Gabba-MSI\Downloads\DDU v15.5.1.0.exe
2015-10-08 18:13 - 2015-10-08 18:14 - 00000000 ____D C:\ProgramData\Qualcomm
2015-10-08 18:13 - 2015-10-08 18:13 - 00002799 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk
2015-10-08 18:13 - 2015-10-08 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
2015-10-08 18:13 - 2015-10-08 18:13 - 00000000 ____D C:\ProgramData\Downloaded Installations
2015-10-08 18:13 - 2015-10-08 18:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros
2015-10-08 18:13 - 2015-10-08 18:13 - 00000000 _____ C:\Users\Gabba-MSI\AppData\Local\Driver_LOM_8161Present.flag
2015-10-08 18:02 - 2015-10-11 22:52 - 00000000 ____D C:\Program Files (x86)\Intel
2015-10-08 18:02 - 2011-12-06 16:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2015-10-08 18:01 - 2015-10-11 22:51 - 00000000 ____D C:\Intel
2015-10-08 17:51 - 2015-10-08 20:20 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-10-04 15:48 - 2015-10-16 05:10 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-04 15:48 - 2015-10-16 05:10 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-01 23:05 - 2015-10-01 23:05 - 00000074 _____ C:\Users\Gabba-MSI\Documents\New XML Autoer.xml
2015-10-01 15:07 - 2015-09-17 08:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-10-01 15:07 - 2015-09-17 08:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-01 15:07 - 2015-09-17 08:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-10-01 15:07 - 2015-09-17 08:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-01 15:07 - 2015-09-17 08:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-01 15:07 - 2015-09-17 08:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 15:07 - 2015-09-17 08:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-01 15:07 - 2015-09-17 08:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-10-01 15:07 - 2015-09-17 08:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 15:07 - 2015-09-17 08:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 15:07 - 2015-09-17 08:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 15:07 - 2015-09-17 08:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-10-01 15:07 - 2015-09-17 08:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 15:07 - 2015-09-17 08:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-10-01 15:07 - 2015-09-17 08:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-10-01 15:07 - 2015-09-17 08:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-10-01 15:07 - 2015-09-17 08:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-10-01 15:07 - 2015-09-17 08:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-10-01 15:07 - 2015-09-17 08:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-10-01 15:07 - 2015-09-17 08:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-10-01 15:07 - 2015-09-17 08:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-10-01 15:07 - 2015-09-17 08:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-10-01 15:07 - 2015-09-17 08:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-10-01 15:07 - 2015-09-17 08:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-10-01 15:07 - 2015-09-17 08:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-01 15:07 - 2015-09-17 08:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-10-01 15:07 - 2015-09-17 08:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-10-01 15:07 - 2015-09-17 08:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 15:07 - 2015-09-17 08:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 15:07 - 2015-09-17 08:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-01 15:07 - 2015-09-17 08:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 15:07 - 2015-09-17 08:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 15:07 - 2015-09-17 08:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 15:07 - 2015-09-17 07:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 15:07 - 2015-09-17 07:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-10-01 15:07 - 2015-09-17 07:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 15:07 - 2015-09-17 07:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 15:07 - 2015-09-17 07:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 15:07 - 2015-09-17 07:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-01 15:07 - 2015-09-17 07:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 15:07 - 2015-09-17 07:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 15:07 - 2015-09-17 07:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 15:07 - 2015-09-17 07:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-01 15:07 - 2015-09-17 07:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-10-01 15:07 - 2015-09-17 07:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 15:07 - 2015-09-17 07:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 15:07 - 2015-09-17 07:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 15:07 - 2015-09-17 07:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 15:07 - 2015-09-17 07:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-01 15:07 - 2015-09-17 07:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 15:07 - 2015-09-17 07:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-10-01 15:07 - 2015-09-17 07:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 15:07 - 2015-09-17 07:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-01 15:07 - 2015-09-17 07:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 15:07 - 2015-09-17 07:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-10-01 15:07 - 2015-09-17 07:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 15:07 - 2015-09-17 07:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 15:07 - 2015-09-17 07:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 15:07 - 2015-09-17 07:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 15:07 - 2015-09-17 07:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 15:07 - 2015-09-17 07:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 15:07 - 2015-09-17 07:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-01 15:07 - 2015-09-17 07:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 15:07 - 2015-09-17 07:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 15:07 - 2015-09-17 07:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-01 15:07 - 2015-09-17 07:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-10-01 15:07 - 2015-09-17 07:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-10-01 15:07 - 2015-09-17 07:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-01 15:07 - 2015-09-17 07:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-10-01 15:07 - 2015-09-17 07:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 15:07 - 2015-09-17 07:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-10-01 15:07 - 2015-09-17 07:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-10-01 15:07 - 2015-09-17 07:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-10-01 15:07 - 2015-09-17 07:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-10-01 15:07 - 2015-09-17 07:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-10-01 15:07 - 2015-09-17 07:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 15:07 - 2015-09-17 07:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-10-01 15:07 - 2015-09-17 07:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-10-01 15:07 - 2015-09-17 07:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-10-01 15:07 - 2015-09-17 07:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-10-01 15:07 - 2015-09-17 07:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-10-01 15:07 - 2015-09-17 07:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-10-01 15:07 - 2015-09-17 07:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-01 15:07 - 2015-09-17 07:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-10-01 15:07 - 2015-09-17 07:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-10-01 15:07 - 2015-09-13 04:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-01 15:07 - 2015-09-13 03:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-01 15:06 - 2015-09-19 07:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-10-01 15:06 - 2015-09-17 08:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-10-01 15:06 - 2015-09-17 08:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 15:06 - 2015-09-17 08:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-10-01 15:06 - 2015-09-17 08:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-10-01 15:06 - 2015-09-17 08:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-10-01 15:06 - 2015-09-17 08:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-10-01 15:06 - 2015-09-17 08:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-10-01 15:06 - 2015-09-17 08:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-10-01 15:06 - 2015-09-17 08:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-10-01 15:06 - 2015-09-17 08:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-10-01 15:06 - 2015-09-17 08:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-10-01 15:06 - 2015-09-17 08:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-01 15:06 - 2015-09-17 08:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-10-01 15:06 - 2015-09-17 08:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-10-01 15:06 - 2015-09-17 08:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-10-01 15:06 - 2015-09-17 08:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-10-01 15:06 - 2015-09-17 08:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 15:06 - 2015-09-17 08:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 15:06 - 2015-09-17 08:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-10-01 15:06 - 2015-09-17 08:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-10-01 15:06 - 2015-09-17 08:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 15:06 - 2015-09-17 08:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 15:06 - 2015-09-17 08:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 15:06 - 2015-09-17 08:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 15:06 - 2015-09-17 08:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 15:06 - 2015-09-17 08:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 15:06 - 2015-09-17 08:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 15:06 - 2015-09-17 08:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 15:06 - 2015-09-17 08:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 15:06 - 2015-09-17 08:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 15:06 - 2015-09-17 08:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 15:06 - 2015-09-17 08:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 15:06 - 2015-09-17 08:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 15:06 - 2015-09-17 08:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 15:06 - 2015-09-17 08:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 15:06 - 2015-09-17 08:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 15:06 - 2015-09-17 07:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 15:06 - 2015-09-17 07:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 15:06 - 2015-09-17 07:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-10-01 15:06 - 2015-09-17 07:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-10-01 15:06 - 2015-09-17 07:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-10-01 15:06 - 2015-09-17 07:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 15:06 - 2015-09-17 07:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 15:06 - 2015-09-17 07:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-10-01 15:06 - 2015-09-17 07:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-01 15:06 - 2015-09-17 07:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-10-01 15:06 - 2015-09-17 07:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-01 15:06 - 2015-09-17 07:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-10-01 15:06 - 2015-09-17 07:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-01 15:06 - 2015-09-17 07:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-10-01 15:06 - 2015-09-17 07:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-10-01 15:06 - 2015-09-17 07:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 15:06 - 2015-09-17 07:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-10-01 15:06 - 2015-09-17 07:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 15:06 - 2015-09-17 07:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 15:06 - 2015-09-17 07:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 15:06 - 2015-09-17 07:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 15:06 - 2015-09-17 07:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 15:06 - 2015-09-17 07:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 15:06 - 2015-09-17 07:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-01 15:06 - 2015-09-17 07:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-10-01 15:06 - 2015-09-17 07:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 15:06 - 2015-09-17 07:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-01 15:06 - 2015-09-17 07:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-10-01 15:06 - 2015-09-17 07:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-10-01 15:06 - 2015-09-17 07:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-10-01 15:06 - 2015-09-17 07:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 15:06 - 2015-09-17 07:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-10-01 15:06 - 2015-09-17 07:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 15:06 - 2015-09-17 07:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-10-01 15:06 - 2015-09-17 07:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-10-01 15:06 - 2015-09-17 07:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-09-30 21:24 - 2015-09-30 21:25 - 00000000 ____D C:\Users\Gabba-MSI\Documents\Heroes of the Storm
2015-09-30 19:19 - 2015-09-30 19:19 - 00001268 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2015-09-30 18:51 - 2015-10-20 16:14 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2015-09-29 18:27 - 2015-09-29 18:27 - 00898873 _____ (JamesR) C:\Users\Gabba-MSI\Desktop\Le Bot 8.4.exe
2015-09-28 22:11 - 2015-09-28 22:11 - 00000000 ____D C:\Users\Gabba-MSI\AppData\LocalLow\Unity
2015-09-28 22:11 - 2015-09-28 22:11 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Unity
2015-09-26 01:35 - 2015-09-26 01:35 - 00086966 _____ C:\Users\Gabba-MSI\Documents\DxDiag.txt
2015-09-24 19:06 - 2015-09-24 19:06 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\WinRAR
2015-09-24 19:06 - 2015-09-24 19:06 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-24 19:06 - 2015-09-24 19:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-24 19:06 - 2015-09-24 19:06 - 00000000 ____D C:\Program Files\WinRAR
2015-09-22 17:13 - 2015-10-14 00:47 - 00000356 _____ C:\WINDOWS\system32\config\afw_hm.conf
2015-09-22 17:13 - 2015-10-14 00:47 - 00000004 _____ C:\WINDOWS\system32\config\afw_db.conf
2015-09-22 17:04 - 2015-09-22 17:18 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\BullGuard
2015-09-22 17:02 - 2015-10-14 20:25 - 00000000 ____D C:\Program Files\BullGuard Ltd
2015-09-22 17:02 - 2015-09-22 17:02 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\QuickScan
2015-09-22 16:59 - 2015-10-14 00:47 - 00000000 ____D C:\ProgramData\BullGuard
2015-09-22 16:52 - 2015-09-22 16:52 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Avg2015
2015-09-22 16:47 - 2015-10-15 17:12 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\AvgSetupLog
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-21 16:13 - 2015-08-19 21:06 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Skype
2015-10-21 16:06 - 2015-08-07 02:58 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-21 15:56 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-21 15:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-21 07:03 - 2015-08-07 03:21 - 00000000 ____D C:\Program Files (x86)\Steam
2015-10-21 07:03 - 2015-08-07 02:58 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-21 07:03 - 2015-08-07 02:48 - 00000000 ____D C:\Users\Gabba-MSI
2015-10-21 02:08 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-21 02:08 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-21 02:06 - 2015-08-20 19:21 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Battle.net
2015-10-20 21:44 - 2012-10-05 23:05 - 05902656 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2015-10-20 21:43 - 2015-09-13 12:05 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-10-20 15:38 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-20 14:58 - 2015-08-20 19:31 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2015-10-19 19:53 - 2015-08-14 18:19 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Windows Live
2015-10-19 16:36 - 2015-06-26 23:58 - 00087944 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klwfp.sys
2015-10-18 17:23 - 2015-08-20 19:20 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-10-16 00:16 - 2015-08-07 03:38 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-10-15 18:03 - 2015-06-08 19:43 - 00041352 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpd.sys
2015-10-15 17:52 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-15 17:52 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-15 17:28 - 2015-08-18 21:11 - 00000000 ____D C:\ProgramData\MFAData
2015-10-15 12:39 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2015-10-13 22:25 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-13 22:01 - 2015-08-12 01:29 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-12 23:27 - 2015-08-19 20:58 - 00000000 ____D C:\ProgramData\Skype
2015-10-12 15:32 - 2015-08-07 03:16 - 00000000 ____D C:\Users\Gabba-MSI\Tracing
2015-10-12 15:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-10-12 12:00 - 2015-08-09 01:56 - 00000000 ____D C:\Users\Gabba-MSI\Documents\my games
2015-10-11 22:57 - 2012-10-05 23:05 - 00441152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2015-10-11 22:57 - 2012-10-05 23:05 - 00398656 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2015-10-11 22:56 - 2012-10-05 23:05 - 00170304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2015-10-11 22:49 - 2015-08-07 02:46 - 01406774 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-11 22:49 - 2015-07-10 18:56 - 00464834 _____ C:\WINDOWS\system32\perfh006.dat
2015-10-11 22:49 - 2015-07-10 18:56 - 00079560 _____ C:\WINDOWS\system32\perfc006.dat
2015-10-08 23:00 - 2015-09-01 22:07 - 00000000 ____D C:\Users\Gabba-MSI\Documents\Opgaver
2015-10-08 20:21 - 2015-09-02 17:31 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-10-08 19:36 - 2014-08-12 18:38 - 00000000 ____D C:\Temp
2015-10-08 18:14 - 2015-09-13 17:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-08 17:51 - 2015-08-07 03:27 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Steam
2015-10-06 15:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-04 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-10-03 00:06 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-30 21:24 - 2015-08-20 19:20 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-09-22 21:22 - 2015-08-27 21:41 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\Avg
2015-09-22 17:25 - 2015-08-14 19:44 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-22 17:04 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-09-22 17:01 - 2015-09-02 16:59 - 00000000 ____D C:\Users\admin
2015-09-22 17:00 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-09-22 16:50 - 2015-08-18 21:11 - 00000000 ____D C:\Users\Gabba-MSI\AppData\Local\MFAData
 
==================== Files in the root of some directories =======
 
2015-10-08 18:13 - 2015-10-08 18:13 - 0000000 _____ () C:\Users\Gabba-MSI\AppData\Local\Driver_LOM_8161Present.flag
2015-09-13 16:26 - 2015-09-13 16:26 - 0000000 _____ () C:\Users\Gabba-MSI\AppData\Local\{2E99D73A-6798-4945-9C3E-F89308B32160}
 
Some files in TEMP:
====================
C:\Users\Gabba-MSI\AppData\Local\Temp\avg-53739c73-30b0-4a4f-997e-fd672545d154.exe
C:\Users\Gabba-MSI\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Gabba-MSI\AppData\Local\Temp\sqlite3.dll
C:\Users\Gabba-MSI\AppData\Local\Temp\UNINSTALL.exe
C:\Users\Gabba-MSI\AppData\Local\Temp\{E404050A-360A-4786-B7C0-946F2B0B8740}-GoogleUpdateSetup.exe
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-10-14 15:05
 
==================== End of FRST.txt ============================

Edited by Mardez08, 21 October 2015 - 09:37 AM.


#4 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,085 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:02 AM

Posted 26 October 2015 - 05:26 AM

Hi Mardez08,
 
Sorry about the delay, looks like your topic got missed.
 
Please download Farbar Service Scanner and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#5 Mardez08

Mardez08
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 27 October 2015 - 08:47 AM

Farbar Service Scanner Version: 26-07-2015
Ran by Gabba-MSI (administrator) on 27-10-2015 at 14:46:38
Running from "C:\Users\Gabba-MSI\Downloads"
Microsoft Windows 10 Home  (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""%ProgramFiles%\Windows Defender\MsMpEng.exe"".
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MsMpEng.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
 
 
**** End of log ****


#6 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,085 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:02 AM

Posted 31 October 2015 - 01:01 PM

Hi Mardez08,

 

Sorry about the delay. What make is your computer? (HP, Dell, Packard Bell, Lenovo e.t.c.)?

 

xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#7 Mardez08

Mardez08
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 02 November 2015 - 09:58 AM

The computer brands is MSI

The laptop model is MSI GT70 OMD



#8 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,085 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:02 AM

Posted 02 November 2015 - 10:35 AM

Hi Mardez08,
 
Please go to this link and download the 4th driver down (VGA). Follow the prompts and then reboot once you are done. Check for updates again, does the nvidia update still appear?
 
xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#9 Mardez08

Mardez08
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 03 November 2015 - 04:29 PM

I have already tried this but i only end up with the update failing

http://icecream.me/e1cc28ceb87179be250285c42385cf4d



#10 Mardez08

Mardez08
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 06 November 2015 - 04:07 PM

NVM it did work i just had to do it twice!



#11 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,085 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:02 AM

Posted 07 November 2015 - 01:01 PM

Hi Mardez08,
 
Ah, I am glad to hear that. Do you still get the windows update error? :)
 
xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~


#12 Mardez08

Mardez08
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 07 November 2015 - 07:04 PM

Yeah is stil have the error code 


Edited by Mardez08, 08 November 2015 - 05:15 AM.


#13 Mardez08

Mardez08
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 11 November 2015 - 11:06 AM

And everytime i try to update the driver it fails



#14 Mardez08

Mardez08
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:02:02 AM

Posted 12 November 2015 - 12:42 PM

is there anything else i can do?



#15 xXToffeeXx

xXToffeeXx

    Bleepin' Polar Bear


  • Malware Response Instructor
  • 6,085 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Arctic Circle
  • Local time:02:02 AM

Posted 12 November 2015 - 01:33 PM

Hi Mardez08,
 
Sorry about the delay, asking a colleague for some suggestions.
 
Please download this file and follow the prompts given.
 
--------------
 
Running sfc /scannow:

  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time.
  • Type cmd into the box that appears, a command prompt will open.
  • Type sfc /scannow into the command prompt and press Enter to run the command. 

Note: This may take a while to finish.

  • Wait until it reaches 100% and then take note of whether it was able to fix files properly or not.

xXToffeeXx~


~If I am helping you and you have not had a reply from me in two days, please send me a PM~

 

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic] - If we have helped you out and you want to support what we do, you can do so here

 

 ~Twitter~ | ~Malware Analyst at Emsisoft~





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users