Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Startup gets longer/slower and longer over time protection can't run at startup


  • This topic is locked This topic is locked
35 replies to this topic

#1 Burnsie

Burnsie

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 15 August 2017 - 07:33 PM

Don't know if it was software I installed or something I clicked (I'm quite experienced but just missed something).

 

"Asian Girliues" showed up on Google Search page. Whoops. Scanned with Avast and Malwarebytes. Didn't pick anything up. Updated etc. but I noticed I could change certain settings. Couldn't get a startup scan for either (check box greyed out). One or two times I couldn't get an update for one or both of those.

 

Uninstalled both, reinstalled both and scanned and still nothing picked up. Uninstalled Chrome and Firefox in that whole process and reinstalled. Seemed like I licked it but startup can now be 12 minutes and keeps getting longer. At times I get "Hardware Error - consult manufacturer" something like that. Have opened laptop (Windows 7 HP Pavillion6-7 years old) and checked physical connections and cleaning. Got it to work again.

 

Anyway, FRST logs below. I see a few things that suggest I do have a good bug. Not sure what to do. I think I did do CCleaner at beginning of this otherwise no significant other treatments other than mentioned.

 

Have used your help before so familiar with process.

 

Burnsie

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2017 01
Ran by Burnsie (administrator) on JBURNS (15-08-2017 20:05:48)
Running from C:\Users\Burnsie\Desktop
Loaded Profiles: Burnsie (Available Profiles: Burnsie)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\Systemy\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\Systemy\Avast\afwServ.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Flexera Software, Inc.) C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe
(Flexera Software, Inc.) C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(M-Audio) C:\Program Files (x86)\M-Audio\MIDISPORT\AudioDevMon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Malwarebytes) C:\Program Files\Systemy\Malwarebytes\mbamtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(AVAST Software) C:\Program Files\Systemy\Avast\avastui.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MBAMService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswidsagenta.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-01-04] (IDT, Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\SYSTEMY\MALWAREBYTES\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Systemy\Avast\AvLaunch.exe [213832 2017-08-10] (AVAST Software)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {080019e8-6019-11e3-bd2d-082e5f805e07} - F:\MotoCastSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {3b5aecd5-a6c7-11e3-b504-082e5f805e07} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {5ab116ce-6da5-11e4-a225-74e50b1ee6b0} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {6fc23f6b-5872-11e3-b7cb-74e50b1ee6b0} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {76ad1ee1-482f-11e5-bef6-082e5f805e07} - F:\VerizonWirelessUpgradeAssistantSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {7b4773ef-984f-11e4-832c-082e5f805e07} - F:\DTLplus_Launcher.exe
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {91b2f3e8-f699-11e6-bb41-082e5f805e07} - G:\VerizonWirelessUpgradeAssistantSetup.exe
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {caeef8de-80f0-11e6-9f1b-082e5f805e07} - F:\VerizonWirelessUpgradeAssistantSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {d1bfd608-0be7-11e3-aefc-74e50b1ee6b0} - F:\MotoCastSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {f6685e55-9ca3-11e3-9203-082e5f805e07} - I:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {f8fb48a3-c779-11e5-b5e9-082e5f805e07} - "F:\WD Drive Unlock.exe" autoplay=true
CHR HKU\S-1-5-21-379828563-891033583-2518000098-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-379828563-891033583-2518000098-1000] => localhost:8080
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{18D9577C-8323-444E-B835-D044FD1FA958}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{5C676548-6151-432D-B8D1-B953060FF100}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{60342FB6-B6F1-408E-8174-744204A11BC2}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A47A00AD-5CAF-416B-A462-27DEF06689F0}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{D252FB72-1C14-4B9D-8928-67FEF63DCB12}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-379828563-891033583-2518000098-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
HKU\S-1-5-21-379828563-891033583-2518000098-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.facebook.com/
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-01] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Systemy\Avast\aswWebRepIE64.dll [2017-08-10] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-01] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-01] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Systemy\Avast\aswWebRepIE.dll [2017-08-10] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-01] (Oracle Corporation)
DPF: HKLM {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect1263.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

FireFox:
========
FF ProfilePath: C:\Users\Burnsie\AppData\Roaming\Mozilla\Firefox\Profiles\x1fxsq3m.default [2017-08-15]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\x1fxsq3m.default -> Yahoo
FF Homepage: Mozilla\Firefox\Profiles\x1fxsq3m.default -> hxxps://www.google.com
FF NetworkProxy: Mozilla\Firefox\Profiles\x1fxsq3m.default -> type", 0
FF Extension: (Click-to-Play staged rollout) - C:\Program Files\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi [2017-08-09] [not signed]
FF Extension: (Follow-on Search Telemetry) - C:\Program Files\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2017-08-09] [not signed]
FF Extension: (Shield Recipe Client) - C:\Program Files\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi [2017-08-09] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-08-13] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-26] ()
FF Plugin: @cuminas.jp/DjVuPlugin -> C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-02-17] (Cuminas Corporation)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-01] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-26] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
FF Plugin-x32: @cuminas.jp/DjVuPlugin -> C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-02-17] (Cuminas Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 -> C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll [2013-03-11] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\Video\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\Video\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-05-11] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Burnsie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @talk.google.com/O1DPlugin -> C:\Users\Burnsie\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Burnsie\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-03-06] (Zoom Video Communications, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPSibelius.dll [2013-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\PDFNetC.dll [2010-03-31] (PDFTron Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchAxPlugin.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchPDFWrapper.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Users\Burnsie\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Burnsie\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

Chrome:
=======
CHR DefaultProfile: Default
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - <no Path/update_url>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ArcGIS License Manager; C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe [1408904 2012-01-05] (Flexera Software, Inc.)
R3 aswbIDSAgent; C:\Program Files\Systemy\Avast\x64\aswidsagenta.exe [7430992 2017-08-10] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\Systemy\Avast\AvastSvc.exe [263312 2017-08-10] (AVAST Software)
R2 avast! Firewall; C:\Program Files\Systemy\Avast\afwServ.exe [311592 2017-08-10] (AVAST Software)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [244720 2012-02-08] (CyberLink)
S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [795152 2016-05-05] (Garmin Ltd. or its subsidiaries)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2013-08-26] (Realsil Microelectronics Inc.) [File not signed]
R2 MBAMService; C:\Program Files\Systemy\Malwarebytes\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 MIDISPORTAudioDevMon; C:\Program Files (x86)\M-Audio\MIDISPORT\AudioDevMon.exe [1638704 2012-02-24] (M-Audio)
R2 MySQL56; C:\ProgramData\MySQL\MySQL Server 5.6\my.ini [14241 2013-10-06] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-08-10] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-08-10] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-08-10] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-08-10] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-08-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146704 2017-08-10] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2017-08-10] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [554528 2017-08-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-08-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-08-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015880 2017-08-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-08-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-08-10] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-08-10] (AVAST Software)
R3 easytether; C:\Windows\System32\DRIVERS\easytthr.sys [21704 2013-03-11] (Mobile Stream)
S3 MADFUMIDISPORT2010; C:\Windows\System32\DRIVERS\MAudioMIDISPORT_DFU.sys [30512 2012-02-24] (M-Audio)
S3 MAUSBMIDISPORT; C:\Windows\System32\DRIVERS\MAudioMIDISPORT.sys [201008 2012-02-24] (M-Audio)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-15] (Malwarebytes)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
S3 rcmirror; C:\Windows\System32\DRIVERS\rcmirror64.sys [13120 2012-08-13] (Windows ® Win 7 DDK provider)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-15 20:05 - 2017-08-15 20:06 - 000021060 _____ C:\Users\Burnsie\Desktop\FRST.txt
2017-08-15 20:05 - 2017-08-15 20:05 - 000000000 ____D C:\Users\Burnsie\Desktop\FRST-OlderVersion
2017-08-15 20:04 - 2017-08-15 20:04 - 000000000 ____D C:\Users\Burnsie\Desktop\Old FRST Logs
2017-08-15 19:53 - 2017-08-15 19:53 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-08-15 19:04 - 2017-08-10 18:12 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-08-12 14:02 - 2017-08-13 14:04 - 000000000 ____D C:\Users\Burnsie\AppData\LocalLow\Mozilla
2017-08-12 13:43 - 2017-08-15 22:57 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-12 13:43 - 2017-08-15 22:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-11 09:27 - 2017-08-10 17:39 - 001942042 _____ C:\Users\Burnsie\Documents\bookmarks-2017-08-10_14245_Dp822IOyhReQkNAZOC+r3A==.jsonlz4
2017-08-10 18:17 - 2017-08-15 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-08-10 18:17 - 2017-08-10 18:17 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\AVAST Software
2017-08-10 18:13 - 2017-08-10 18:16 - 000146704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000585608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000361336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000198768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000084392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000046984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-08-10 18:12 - 2017-08-10 18:16 - 001015880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000554528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000110352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2017-08-10 18:06 - 2017-08-15 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-08-10 18:06 - 2017-08-15 19:54 - 000253856 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-10 18:06 - 2017-06-27 12:06 - 000077376 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-08-10 17:49 - 2017-08-10 17:49 - 006327051 _____ C:\Users\Burnsie\Documents\bookmarks Today.html
2017-08-10 17:05 - 2017-08-10 18:04 - 000069914 _____ C:\Users\Burnsie\Desktop\mb-clean-results.txt
2017-08-10 16:45 - 2017-08-10 16:47 - 000143016 _____ C:\Windows\ntbtlog.txt
2017-08-10 16:45 - 2017-08-10 16:45 - 000442624 _____ C:\Windows\Minidump\081017-25350-01.dmp
2017-08-10 12:38 - 2017-08-10 12:38 - 000000000 ____D C:\Users\Burnsie\Documents\ProcAlyzer Dumps
2017-08-10 12:37 - 2017-07-31 16:07 - 000458787 _____ C:\Windows\system32\Drivers\etc\hosts.20170810-123747.backup
2017-08-10 07:40 - 2017-08-10 07:41 - 000003734 _____ C:\Users\Burnsie\Documents\cc_20170810_074056.reg
2017-08-07 18:28 - 2017-08-15 20:05 - 000000000 ____D C:\FRST
2017-08-07 13:21 - 2017-08-07 13:21 - 000005930 _____ C:\Users\Burnsie\Documents\cc_20170807_132057 Probs.reg
2017-07-31 16:51 - 2017-08-15 20:05 - 002395648 _____ (Farbar) C:\Users\Burnsie\Desktop\FRST64.exe
2017-07-28 11:22 - 2017-07-28 11:22 - 000369105 _____ C:\unp306072851491690433.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000368884 _____ C:\unp306072851497150443.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000367843 _____ C:\unp306072851495902441.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000367238 _____ C:\unp306072851492938436.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000366992 _____ C:\unp306072851492314435.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000366948 _____ C:\unp306072851494186438.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365987 _____ C:\unp306072851495278440.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365841 _____ C:\unp306072851496526442.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365752 _____ C:\unp306072851494810439.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364617 _____ C:\unp306072851491222433.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364289 _____ C:\unp306072851493562437.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364192 _____ C:\unp306072851488882429.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363690 _____ C:\unp306072851489974430.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363683 _____ C:\unp306072851490598432.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363014 _____ C:\unp306072851489506430.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000361810 _____ C:\unp306072851484358421.mdmp
2017-07-28 11:02 - 2017-08-15 19:04 - 000003900 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-07-28 11:02 - 2017-07-28 11:01 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswe46b8228112615d4.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswaea66246faa573f7.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\asw6f6fcab1a884401e.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswd9c3083a2d3a778d.tmp
2017-07-28 10:43 - 2017-08-10 16:34 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\Documents\Sound Quest
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Sound Quest
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\IsolatedStorage
2017-07-27 13:43 - 2017-07-28 13:53 - 000000000 ____D C:\Program Files (x86)\AdBlocker
2017-07-27 09:29 - 2017-07-27 09:29 - 007873888 _____ (Tim Kosse) C:\Users\Burnsie\Downloads\FileZilla_3.27.0.1_win64-setup.exe
2017-07-25 20:20 - 2017-07-25 20:20 - 000029786 _____ C:\Users\Burnsie\Documents\cc_20170725_202042.reg
2017-07-24 16:06 - 2017-07-24 16:06 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\ebook_convert_20170724_160617
2017-07-23 14:38 - 1998-07-22 14:31 - 000033280 _____ C:\Windows\SysWOW64\octobe~1.dll
2017-07-23 14:38 - 1997-09-17 21:07 - 000204048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DBLIST32.OCX
2017-07-23 14:38 - 1997-07-19 17:00 - 000129808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.OCX
2017-07-23 14:38 - 1997-07-19 16:00 - 000604432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMCTL32.OCX
2017-07-23 14:38 - 1997-02-14 00:39 - 000113664 _____ (Desaware) C:\Windows\SysWOW64\apigid32.dll
2017-07-23 14:38 - 1997-01-24 01:00 - 000078608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.dll
2017-07-23 14:38 - 1996-12-05 01:00 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ODBCTL32.dll
2017-07-23 14:36 - 2017-07-23 14:39 - 000006867 _____ C:\Windows\ST5UNST.txt
2017-07-23 14:36 - 1997-07-19 16:55 - 001347344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVBVM50.dll
2017-07-23 14:36 - 1997-01-16 01:00 - 000071680 _____ (Microsoft Corporation) C:\Windows\ST5UNST.EXE
2017-07-23 14:36 - 1997-01-16 01:00 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5StKit.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-15 22:57 - 2015-12-22 23:41 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-08-15 22:57 - 2015-12-22 23:23 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-08-15 22:57 - 2014-08-28 21:07 - 000000000 ____D C:\Users\Burnsie\AppData\Local\LogMeIn Client
2017-08-15 22:57 - 2014-03-27 22:26 - 000000000 ____D C:\Windows\Minidump
2017-08-15 22:57 - 2013-08-26 19:18 - 000000000 ___HD C:\Windows\system32\WLANProfiles
2017-08-15 22:57 - 2013-08-14 23:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Web
2017-08-15 22:57 - 2013-08-13 23:07 - 000000000 ____D C:\ProgramData\FLEXnet
2017-08-15 22:57 - 2013-08-13 21:30 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Mozilla
2017-08-15 22:57 - 2013-07-27 19:39 - 000000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2017-08-15 22:57 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\system32\NDF
2017-08-15 22:57 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\inf
2017-08-15 22:56 - 2013-08-13 21:30 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Mozilla
2017-08-15 22:56 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\registration
2017-08-15 20:02 - 2009-07-14 00:45 - 000032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-15 20:02 - 2009-07-14 00:45 - 000032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-15 19:51 - 2009-07-14 01:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-15 19:04 - 2013-08-14 08:17 - 000000000 ____D C:\Users\LogMeInRemoteUser
2017-08-15 19:00 - 2016-05-19 14:31 - 000000000 ____D C:\Users\Burnsie
2017-08-13 13:53 - 2015-06-02 16:20 - 000000000 ____D C:\Users\Burnsie\Documents\Outlook Files
2017-08-10 18:12 - 2013-07-27 19:44 - 000000000 ____D C:\Program Files\Systemy
2017-08-10 18:10 - 2013-07-28 07:32 - 000000000 ____D C:\ProgramData\AVAST Software
2017-08-10 17:56 - 2015-12-03 10:12 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-10 17:56 - 2015-05-26 06:07 - 000000000 ____D C:\Program Files\avast software
2017-08-10 17:54 - 2016-11-18 10:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-08-10 17:22 - 2015-12-23 00:32 - 000000169 _____ C:\Windows\wininit.ini
2017-08-10 17:05 - 2016-02-19 11:22 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-08-10 07:34 - 2013-07-28 07:34 - 000000000 ____D C:\Program Files (x86)\Google
2017-08-10 07:23 - 2017-01-23 16:52 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-08-07 12:42 - 2015-01-13 20:08 - 000000000 ____D C:\Program Files (x86)\Applian Technologies
2017-08-06 14:14 - 2013-08-14 09:03 - 000000000 ____D C:\ProgramData\Skype
2017-08-01 20:20 - 2009-07-13 22:34 - 000000478 _____ C:\Windows\win.ini
2017-07-31 16:03 - 2016-03-23 06:18 - 000003882 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458728335
2017-07-28 14:29 - 2017-05-14 21:43 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Mael
2017-07-28 14:29 - 2015-11-29 10:07 - 000000000 ____D C:\ProgramData\Visan
2017-07-28 14:29 - 2013-07-28 07:52 - 000000000 ____D C:\Program Files\IDT
2017-07-28 14:29 - 2009-07-14 01:32 - 000000000 ____D C:\Program Files\Windows Sidebar
2017-07-28 14:26 - 2013-07-28 07:34 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Google
2017-07-28 11:02 - 2016-03-23 06:18 - 000041800 _____ (AVAST Software) C:\Windows\system32\Drivers\asw71edbdd4f9b98d4d.tmp
2017-07-28 11:02 - 2014-04-29 20:26 - 000046984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb4c0033c8e573298.tmp
2017-07-28 11:02 - 2014-01-01 11:21 - 000198768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswfb814c8491e32cdd.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 001015848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb3efa62624398dd9.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000585608 _____ (AVAST Software) C:\Windows\system32\Drivers\asw6e9cb885e66c1e24.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000361336 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 69c62023ff6973c.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000146696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswfd013cdd37ebfc83.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.150125417215503
2017-07-28 11:02 - 2013-07-28 07:34 - 000110352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswa65c0a7a4c2fa0e9.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000084392 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8d41232c33c777a4.tmp
2017-07-28 10:37 - 2013-07-27 17:14 - 000153864 _____ C:\Users\Burnsie\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-27 13:57 - 2015-03-01 15:32 - 000000000 ____D C:\Temp
2017-07-27 12:47 - 2013-09-03 23:29 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\FileZilla
2017-07-27 09:29 - 2017-06-20 16:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-07-26 17:16 - 2015-06-09 08:45 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-07-26 17:16 - 2015-06-09 08:45 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-07-26 17:16 - 2014-06-14 07:38 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Adobe
2017-07-26 17:16 - 2013-07-28 15:54 - 000000000 ____D C:\Windows\system32\Macromed
2017-07-26 17:16 - 2013-07-27 19:44 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-07-25 20:46 - 2009-07-14 01:13 - 000782010 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-25 16:42 - 2013-12-28 19:17 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Celemony Software GmbH
2017-07-24 16:08 - 2016-01-27 16:00 - 000000000 ____D C:\Users\Burnsie\Epubor
2017-07-24 16:07 - 2016-01-27 16:00 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\.Epubor
2017-07-24 16:06 - 2016-05-05 20:06 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\epubor_log
2017-07-23 11:58 - 2013-11-15 14:54 - 000000000 ____D C:\Users\Burnsie\Documents\Rollover
2017-07-23 11:54 - 2013-09-04 10:54 - 000000132 _____ C:\Users\Burnsie\AppData\Roaming\Adobe PNG Format CS5 Prefs
2017-07-19 15:50 - 2013-08-13 17:42 - 000000000 ____D C:\Users\Burnsie\Documents\Fishing
2017-07-19 12:40 - 2013-12-02 20:08 - 000774624 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

==================== Files in the root of some directories =======

2013-12-28 20:09 - 2013-12-28 20:10 - 000308699 _____ () C:\Program Files (x86)\unins000.dat
2013-12-28 20:09 - 2013-12-28 20:09 - 000722680 _____ () C:\Program Files (x86)\unins000.exe
2013-09-04 16:01 - 2017-05-30 18:34 - 000000132 _____ () C:\Users\Burnsie\AppData\Roaming\Adobe GIF Format CS5 Prefs
2013-09-04 10:54 - 2017-07-23 11:54 - 000000132 _____ () C:\Users\Burnsie\AppData\Roaming\Adobe PNG Format CS5 Prefs
2013-07-28 15:35 - 2013-07-28 15:36 - 000000173 _____ () C:\Users\Burnsie\AppData\Roaming\hpmirrordriver.log
2016-06-14 13:34 - 2016-06-14 13:35 - 000608540 _____ () C:\Users\Burnsie\AppData\Roaming\Scorch_Install.log
2013-09-21 22:04 - 2015-01-19 13:55 - 000001456 _____ () C:\Users\Burnsie\AppData\Local\Adobe Save for Web 12.0 Prefs
2013-12-08 00:07 - 2013-12-08 00:09 - 000004608 _____ () C:\Users\Burnsie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-02 12:46 - 2015-06-02 12:46 - 000002264 _____ () C:\Users\Burnsie\AppData\Local\IWDAudHelper.20150602.124640.txt
2013-09-25 22:49 - 2013-09-25 22:49 - 000001549 _____ () C:\Users\Burnsie\AppData\Local\PDLSetup.20130925.224924.txt
2013-12-08 15:52 - 2013-12-08 15:52 - 000001549 _____ () C:\Users\Burnsie\AppData\Local\PDLSetup.20131208.145202.txt
2016-04-05 15:00 - 2017-04-04 13:48 - 000000600 _____ () C:\Users\Burnsie\AppData\Local\PUTTY.RND
2013-08-31 18:47 - 2016-06-14 23:11 - 000007610 _____ () C:\Users\Burnsie\AppData\Local\Resmon.ResmonCfg
2015-06-02 12:46 - 2015-06-02 12:47 - 000010186 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.124604.txt
2015-06-02 12:48 - 2015-06-02 12:49 - 000028880 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.124807.txt
2015-06-02 12:50 - 2015-06-02 12:50 - 000002933 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.125001.txt
2015-11-21 23:02 - 2015-11-21 23:02 - 000000057 _____ () C:\ProgramData\Ament.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-11 00:23

==================== End of FRST.txt ============================

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2017 01
Ran by Burnsie (administrator) on JBURNS (15-08-2017 20:05:48)
Running from C:\Users\Burnsie\Desktop
Loaded Profiles: Burnsie (Available Profiles: Burnsie)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\Systemy\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\Systemy\Avast\afwServ.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Flexera Software, Inc.) C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe
(Flexera Software, Inc.) C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(M-Audio) C:\Program Files (x86)\M-Audio\MIDISPORT\AudioDevMon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Malwarebytes) C:\Program Files\Systemy\Malwarebytes\mbamtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(AVAST Software) C:\Program Files\Systemy\Avast\avastui.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MBAMService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswidsagenta.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-01-04] (IDT, Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\SYSTEMY\MALWAREBYTES\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Systemy\Avast\AvLaunch.exe [213832 2017-08-10] (AVAST Software)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {080019e8-6019-11e3-bd2d-082e5f805e07} - F:\MotoCastSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {3b5aecd5-a6c7-11e3-b504-082e5f805e07} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {5ab116ce-6da5-11e4-a225-74e50b1ee6b0} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {6fc23f6b-5872-11e3-b7cb-74e50b1ee6b0} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {76ad1ee1-482f-11e5-bef6-082e5f805e07} - F:\VerizonWirelessUpgradeAssistantSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {7b4773ef-984f-11e4-832c-082e5f805e07} - F:\DTLplus_Launcher.exe
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {91b2f3e8-f699-11e6-bb41-082e5f805e07} - G:\VerizonWirelessUpgradeAssistantSetup.exe
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {caeef8de-80f0-11e6-9f1b-082e5f805e07} - F:\VerizonWirelessUpgradeAssistantSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {d1bfd608-0be7-11e3-aefc-74e50b1ee6b0} - F:\MotoCastSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {f6685e55-9ca3-11e3-9203-082e5f805e07} - I:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {f8fb48a3-c779-11e5-b5e9-082e5f805e07} - "F:\WD Drive Unlock.exe" autoplay=true
CHR HKU\S-1-5-21-379828563-891033583-2518000098-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-379828563-891033583-2518000098-1000] => localhost:8080
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{18D9577C-8323-444E-B835-D044FD1FA958}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{5C676548-6151-432D-B8D1-B953060FF100}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{60342FB6-B6F1-408E-8174-744204A11BC2}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A47A00AD-5CAF-416B-A462-27DEF06689F0}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{D252FB72-1C14-4B9D-8928-67FEF63DCB12}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-379828563-891033583-2518000098-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
HKU\S-1-5-21-379828563-891033583-2518000098-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.facebook.com/
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-01] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Systemy\Avast\aswWebRepIE64.dll [2017-08-10] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-01] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-01] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Systemy\Avast\aswWebRepIE.dll [2017-08-10] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-01] (Oracle Corporation)
DPF: HKLM {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect1263.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

FireFox:
========
FF ProfilePath: C:\Users\Burnsie\AppData\Roaming\Mozilla\Firefox\Profiles\x1fxsq3m.default [2017-08-15]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\x1fxsq3m.default -> Yahoo
FF Homepage: Mozilla\Firefox\Profiles\x1fxsq3m.default -> hxxps://www.google.com
FF NetworkProxy: Mozilla\Firefox\Profiles\x1fxsq3m.default -> type", 0
FF Extension: (Click-to-Play staged rollout) - C:\Program Files\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi [2017-08-09] [not signed]
FF Extension: (Follow-on Search Telemetry) - C:\Program Files\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2017-08-09] [not signed]
FF Extension: (Shield Recipe Client) - C:\Program Files\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi [2017-08-09] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-08-13] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-26] ()
FF Plugin: @cuminas.jp/DjVuPlugin -> C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-02-17] (Cuminas Corporation)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-01] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-26] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
FF Plugin-x32: @cuminas.jp/DjVuPlugin -> C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-02-17] (Cuminas Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 -> C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll [2013-03-11] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\Video\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\Video\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-05-11] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Burnsie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @talk.google.com/O1DPlugin -> C:\Users\Burnsie\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Burnsie\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-03-06] (Zoom Video Communications, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPSibelius.dll [2013-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\PDFNetC.dll [2010-03-31] (PDFTron Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchAxPlugin.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchPDFWrapper.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Users\Burnsie\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Burnsie\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

Chrome:
=======
CHR DefaultProfile: Default
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - <no Path/update_url>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ArcGIS License Manager; C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe [1408904 2012-01-05] (Flexera Software, Inc.)
R3 aswbIDSAgent; C:\Program Files\Systemy\Avast\x64\aswidsagenta.exe [7430992 2017-08-10] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\Systemy\Avast\AvastSvc.exe [263312 2017-08-10] (AVAST Software)
R2 avast! Firewall; C:\Program Files\Systemy\Avast\afwServ.exe [311592 2017-08-10] (AVAST Software)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [244720 2012-02-08] (CyberLink)
S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [795152 2016-05-05] (Garmin Ltd. or its subsidiaries)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2013-08-26] (Realsil Microelectronics Inc.) [File not signed]
R2 MBAMService; C:\Program Files\Systemy\Malwarebytes\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 MIDISPORTAudioDevMon; C:\Program Files (x86)\M-Audio\MIDISPORT\AudioDevMon.exe [1638704 2012-02-24] (M-Audio)
R2 MySQL56; C:\ProgramData\MySQL\MySQL Server 5.6\my.ini [14241 2013-10-06] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-08-10] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-08-10] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-08-10] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-08-10] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-08-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146704 2017-08-10] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2017-08-10] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [554528 2017-08-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-08-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-08-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015880 2017-08-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-08-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-08-10] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-08-10] (AVAST Software)
R3 easytether; C:\Windows\System32\DRIVERS\easytthr.sys [21704 2013-03-11] (Mobile Stream)
S3 MADFUMIDISPORT2010; C:\Windows\System32\DRIVERS\MAudioMIDISPORT_DFU.sys [30512 2012-02-24] (M-Audio)
S3 MAUSBMIDISPORT; C:\Windows\System32\DRIVERS\MAudioMIDISPORT.sys [201008 2012-02-24] (M-Audio)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-15] (Malwarebytes)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
S3 rcmirror; C:\Windows\System32\DRIVERS\rcmirror64.sys [13120 2012-08-13] (Windows ® Win 7 DDK provider)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-15 20:05 - 2017-08-15 20:06 - 000021060 _____ C:\Users\Burnsie\Desktop\FRST.txt
2017-08-15 20:05 - 2017-08-15 20:05 - 000000000 ____D C:\Users\Burnsie\Desktop\FRST-OlderVersion
2017-08-15 20:04 - 2017-08-15 20:04 - 000000000 ____D C:\Users\Burnsie\Desktop\Old FRST Logs
2017-08-15 19:53 - 2017-08-15 19:53 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-08-15 19:04 - 2017-08-10 18:12 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-08-12 14:02 - 2017-08-13 14:04 - 000000000 ____D C:\Users\Burnsie\AppData\LocalLow\Mozilla
2017-08-12 13:43 - 2017-08-15 22:57 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-12 13:43 - 2017-08-15 22:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-11 09:27 - 2017-08-10 17:39 - 001942042 _____ C:\Users\Burnsie\Documents\bookmarks-2017-08-10_14245_Dp822IOyhReQkNAZOC+r3A==.jsonlz4
2017-08-10 18:17 - 2017-08-15 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-08-10 18:17 - 2017-08-10 18:17 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\AVAST Software
2017-08-10 18:13 - 2017-08-10 18:16 - 000146704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000585608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000361336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000198768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000084392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000046984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-08-10 18:12 - 2017-08-10 18:16 - 001015880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000554528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000110352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2017-08-10 18:06 - 2017-08-15 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-08-10 18:06 - 2017-08-15 19:54 - 000253856 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-10 18:06 - 2017-06-27 12:06 - 000077376 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-08-10 17:49 - 2017-08-10 17:49 - 006327051 _____ C:\Users\Burnsie\Documents\bookmarks Today.html
2017-08-10 17:05 - 2017-08-10 18:04 - 000069914 _____ C:\Users\Burnsie\Desktop\mb-clean-results.txt
2017-08-10 16:45 - 2017-08-10 16:47 - 000143016 _____ C:\Windows\ntbtlog.txt
2017-08-10 16:45 - 2017-08-10 16:45 - 000442624 _____ C:\Windows\Minidump\081017-25350-01.dmp
2017-08-10 12:38 - 2017-08-10 12:38 - 000000000 ____D C:\Users\Burnsie\Documents\ProcAlyzer Dumps
2017-08-10 12:37 - 2017-07-31 16:07 - 000458787 _____ C:\Windows\system32\Drivers\etc\hosts.20170810-123747.backup
2017-08-10 07:40 - 2017-08-10 07:41 - 000003734 _____ C:\Users\Burnsie\Documents\cc_20170810_074056.reg
2017-08-07 18:28 - 2017-08-15 20:05 - 000000000 ____D C:\FRST
2017-08-07 13:21 - 2017-08-07 13:21 - 000005930 _____ C:\Users\Burnsie\Documents\cc_20170807_132057 Probs.reg
2017-07-31 16:51 - 2017-08-15 20:05 - 002395648 _____ (Farbar) C:\Users\Burnsie\Desktop\FRST64.exe
2017-07-28 11:22 - 2017-07-28 11:22 - 000369105 _____ C:\unp306072851491690433.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000368884 _____ C:\unp306072851497150443.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000367843 _____ C:\unp306072851495902441.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000367238 _____ C:\unp306072851492938436.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000366992 _____ C:\unp306072851492314435.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000366948 _____ C:\unp306072851494186438.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365987 _____ C:\unp306072851495278440.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365841 _____ C:\unp306072851496526442.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365752 _____ C:\unp306072851494810439.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364617 _____ C:\unp306072851491222433.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364289 _____ C:\unp306072851493562437.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364192 _____ C:\unp306072851488882429.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363690 _____ C:\unp306072851489974430.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363683 _____ C:\unp306072851490598432.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363014 _____ C:\unp306072851489506430.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000361810 _____ C:\unp306072851484358421.mdmp
2017-07-28 11:02 - 2017-08-15 19:04 - 000003900 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-07-28 11:02 - 2017-07-28 11:01 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswe46b8228112615d4.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswaea66246faa573f7.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\asw6f6fcab1a884401e.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswd9c3083a2d3a778d.tmp
2017-07-28 10:43 - 2017-08-10 16:34 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\Documents\Sound Quest
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Sound Quest
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\IsolatedStorage
2017-07-27 13:43 - 2017-07-28 13:53 - 000000000 ____D C:\Program Files (x86)\AdBlocker
2017-07-27 09:29 - 2017-07-27 09:29 - 007873888 _____ (Tim Kosse) C:\Users\Burnsie\Downloads\FileZilla_3.27.0.1_win64-setup.exe
2017-07-25 20:20 - 2017-07-25 20:20 - 000029786 _____ C:\Users\Burnsie\Documents\cc_20170725_202042.reg
2017-07-24 16:06 - 2017-07-24 16:06 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\ebook_convert_20170724_160617
2017-07-23 14:38 - 1998-07-22 14:31 - 000033280 _____ C:\Windows\SysWOW64\octobe~1.dll
2017-07-23 14:38 - 1997-09-17 21:07 - 000204048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DBLIST32.OCX
2017-07-23 14:38 - 1997-07-19 17:00 - 000129808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.OCX
2017-07-23 14:38 - 1997-07-19 16:00 - 000604432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMCTL32.OCX
2017-07-23 14:38 - 1997-02-14 00:39 - 000113664 _____ (Desaware) C:\Windows\SysWOW64\apigid32.dll
2017-07-23 14:38 - 1997-01-24 01:00 - 000078608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.dll
2017-07-23 14:38 - 1996-12-05 01:00 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ODBCTL32.dll
2017-07-23 14:36 - 2017-07-23 14:39 - 000006867 _____ C:\Windows\ST5UNST.txt
2017-07-23 14:36 - 1997-07-19 16:55 - 001347344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVBVM50.dll
2017-07-23 14:36 - 1997-01-16 01:00 - 000071680 _____ (Microsoft Corporation) C:\Windows\ST5UNST.EXE
2017-07-23 14:36 - 1997-01-16 01:00 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5StKit.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-15 22:57 - 2015-12-22 23:41 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-08-15 22:57 - 2015-12-22 23:23 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-08-15 22:57 - 2014-08-28 21:07 - 000000000 ____D C:\Users\Burnsie\AppData\Local\LogMeIn Client
2017-08-15 22:57 - 2014-03-27 22:26 - 000000000 ____D C:\Windows\Minidump
2017-08-15 22:57 - 2013-08-26 19:18 - 000000000 ___HD C:\Windows\system32\WLANProfiles
2017-08-15 22:57 - 2013-08-14 23:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Web
2017-08-15 22:57 - 2013-08-13 23:07 - 000000000 ____D C:\ProgramData\FLEXnet
2017-08-15 22:57 - 2013-08-13 21:30 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Mozilla
2017-08-15 22:57 - 2013-07-27 19:39 - 000000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2017-08-15 22:57 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\system32\NDF
2017-08-15 22:57 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\inf
2017-08-15 22:56 - 2013-08-13 21:30 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Mozilla
2017-08-15 22:56 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\registration
2017-08-15 20:02 - 2009-07-14 00:45 - 000032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-15 20:02 - 2009-07-14 00:45 - 000032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-15 19:51 - 2009-07-14 01:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-15 19:04 - 2013-08-14 08:17 - 000000000 ____D C:\Users\LogMeInRemoteUser
2017-08-15 19:00 - 2016-05-19 14:31 - 000000000 ____D C:\Users\Burnsie
2017-08-13 13:53 - 2015-06-02 16:20 - 000000000 ____D C:\Users\Burnsie\Documents\Outlook Files
2017-08-10 18:12 - 2013-07-27 19:44 - 000000000 ____D C:\Program Files\Systemy
2017-08-10 18:10 - 2013-07-28 07:32 - 000000000 ____D C:\ProgramData\AVAST Software
2017-08-10 17:56 - 2015-12-03 10:12 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-10 17:56 - 2015-05-26 06:07 - 000000000 ____D C:\Program Files\avast software
2017-08-10 17:54 - 2016-11-18 10:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-08-10 17:22 - 2015-12-23 00:32 - 000000169 _____ C:\Windows\wininit.ini
2017-08-10 17:05 - 2016-02-19 11:22 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-08-10 07:34 - 2013-07-28 07:34 - 000000000 ____D C:\Program Files (x86)\Google
2017-08-10 07:23 - 2017-01-23 16:52 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-08-07 12:42 - 2015-01-13 20:08 - 000000000 ____D C:\Program Files (x86)\Applian Technologies
2017-08-06 14:14 - 2013-08-14 09:03 - 000000000 ____D C:\ProgramData\Skype
2017-08-01 20:20 - 2009-07-13 22:34 - 000000478 _____ C:\Windows\win.ini
2017-07-31 16:03 - 2016-03-23 06:18 - 000003882 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458728335
2017-07-28 14:29 - 2017-05-14 21:43 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Mael
2017-07-28 14:29 - 2015-11-29 10:07 - 000000000 ____D C:\ProgramData\Visan
2017-07-28 14:29 - 2013-07-28 07:52 - 000000000 ____D C:\Program Files\IDT
2017-07-28 14:29 - 2009-07-14 01:32 - 000000000 ____D C:\Program Files\Windows Sidebar
2017-07-28 14:26 - 2013-07-28 07:34 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Google
2017-07-28 11:02 - 2016-03-23 06:18 - 000041800 _____ (AVAST Software) C:\Windows\system32\Drivers\asw71edbdd4f9b98d4d.tmp
2017-07-28 11:02 - 2014-04-29 20:26 - 000046984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb4c0033c8e573298.tmp
2017-07-28 11:02 - 2014-01-01 11:21 - 000198768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswfb814c8491e32cdd.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 001015848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb3efa62624398dd9.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000585608 _____ (AVAST Software) C:\Windows\system32\Drivers\asw6e9cb885e66c1e24.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000361336 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 69c62023ff6973c.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000146696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswfd013cdd37ebfc83.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.150125417215503
2017-07-28 11:02 - 2013-07-28 07:34 - 000110352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswa65c0a7a4c2fa0e9.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000084392 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8d41232c33c777a4.tmp
2017-07-28 10:37 - 2013-07-27 17:14 - 000153864 _____ C:\Users\Burnsie\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-27 13:57 - 2015-03-01 15:32 - 000000000 ____D C:\Temp
2017-07-27 12:47 - 2013-09-03 23:29 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\FileZilla
2017-07-27 09:29 - 2017-06-20 16:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-07-26 17:16 - 2015-06-09 08:45 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-07-26 17:16 - 2015-06-09 08:45 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-07-26 17:16 - 2014-06-14 07:38 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Adobe
2017-07-26 17:16 - 2013-07-28 15:54 - 000000000 ____D C:\Windows\system32\Macromed
2017-07-26 17:16 - 2013-07-27 19:44 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-07-25 20:46 - 2009-07-14 01:13 - 000782010 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-25 16:42 - 2013-12-28 19:17 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Celemony Software GmbH
2017-07-24 16:08 - 2016-01-27 16:00 - 000000000 ____D C:\Users\Burnsie\Epubor
2017-07-24 16:07 - 2016-01-27 16:00 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\.Epubor
2017-07-24 16:06 - 2016-05-05 20:06 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\epubor_log
2017-07-23 11:58 - 2013-11-15 14:54 - 000000000 ____D C:\Users\Burnsie\Documents\Rollover
2017-07-23 11:54 - 2013-09-04 10:54 - 000000132 _____ C:\Users\Burnsie\AppData\Roaming\Adobe PNG Format CS5 Prefs
2017-07-19 15:50 - 2013-08-13 17:42 - 000000000 ____D C:\Users\Burnsie\Documents\Fishing
2017-07-19 12:40 - 2013-12-02 20:08 - 000774624 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

==================== Files in the root of some directories =======

2013-12-28 20:09 - 2013-12-28 20:10 - 000308699 _____ () C:\Program Files (x86)\unins000.dat
2013-12-28 20:09 - 2013-12-28 20:09 - 000722680 _____ () C:\Program Files (x86)\unins000.exe
2013-09-04 16:01 - 2017-05-30 18:34 - 000000132 _____ () C:\Users\Burnsie\AppData\Roaming\Adobe GIF Format CS5 Prefs
2013-09-04 10:54 - 2017-07-23 11:54 - 000000132 _____ () C:\Users\Burnsie\AppData\Roaming\Adobe PNG Format CS5 Prefs
2013-07-28 15:35 - 2013-07-28 15:36 - 000000173 _____ () C:\Users\Burnsie\AppData\Roaming\hpmirrordriver.log
2016-06-14 13:34 - 2016-06-14 13:35 - 000608540 _____ () C:\Users\Burnsie\AppData\Roaming\Scorch_Install.log
2013-09-21 22:04 - 2015-01-19 13:55 - 000001456 _____ () C:\Users\Burnsie\AppData\Local\Adobe Save for Web 12.0 Prefs
2013-12-08 00:07 - 2013-12-08 00:09 - 000004608 _____ () C:\Users\Burnsie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-02 12:46 - 2015-06-02 12:46 - 000002264 _____ () C:\Users\Burnsie\AppData\Local\IWDAudHelper.20150602.124640.txt
2013-09-25 22:49 - 2013-09-25 22:49 - 000001549 _____ () C:\Users\Burnsie\AppData\Local\PDLSetup.20130925.224924.txt
2013-12-08 15:52 - 2013-12-08 15:52 - 000001549 _____ () C:\Users\Burnsie\AppData\Local\PDLSetup.20131208.145202.txt
2016-04-05 15:00 - 2017-04-04 13:48 - 000000600 _____ () C:\Users\Burnsie\AppData\Local\PUTTY.RND
2013-08-31 18:47 - 2016-06-14 23:11 - 000007610 _____ () C:\Users\Burnsie\AppData\Local\Resmon.ResmonCfg
2015-06-02 12:46 - 2015-06-02 12:47 - 000010186 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.124604.txt
2015-06-02 12:48 - 2015-06-02 12:49 - 000028880 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.124807.txt
2015-06-02 12:50 - 2015-06-02 12:50 - 000002933 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.125001.txt
2015-11-21 23:02 - 2015-11-21 23:02 - 000000057 _____ () C:\ProgramData\Ament.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-11 00:23

==================== End of FRST.txt ============================



BC AdBot (Login to Remove)

 


#2 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,890 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:02:50 PM

Posted 19 August 2017 - 11:25 AM

Burnsie:

 
:welcome: to the Bleeping Computer Virus, Trojans, Spyware, and Malware Removal Logs Forum.  My name is Phil.  May I address you by your first name?
 
I will be assisting you with your computer issues.  I will endeavor to respond within a reasonable time, normally 48 hours after your last post.
 
I would ask that you please continue to copy and paste the contents of all requested log files directly into your replies.   Please do not use "code" or "quote" boxes.  Thank you for your anticipated cooperation.
 
Unfortunately, you pasted the FRST.txt log file twice. :(  I would like you to copy and paste the contents of the "Addition.txt" file as well, as soon as it is convenient.  I need both logs files to analyze your computer.
 
I will need some time to review your FRST logs.  That could take a day or two.  I will start working on your FRST.txt log right away while I am waiting for you to copy and paste the contents of the "Addition.txt" log file.
 
PLEASE DO NOT RUN ANY ADDITIONAL SCANS OR ANTI-MALWARE REMOVAL TOOLS UNTIL YOU HAVE RECEIVED A RESPONSE FROM ME.
Doing so would complicate the situation and it would cause further delays in resolving your issues.  It could also potentially result in harm to your computer because my "fix" will be based on the FRST scan logs you have already submitted.
 
Thank you and have a great day.
 
Regards,
-Phil

Graduate of the Bleeping Computer Malware Removal Study Hall


#3 Burnsie

Burnsie
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 19 August 2017 - 11:52 AM

Here's the Addition.txt from that scan.

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-08-2017 01
Ran by Burnsie (15-08-2017 20:06:37)
Running from C:\Users\Burnsie\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2013-07-27 21:13:03)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-379828563-891033583-2518000098-500 - Administrator - Disabled)
Burnsie (S-1-5-21-379828563-891033583-2518000098-1000 - Administrator - Enabled) => C:\Users\Burnsie
Guest (S-1-5-21-379828563-891033583-2518000098-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-379828563-891033583-2518000098-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20095 - Adobe Systems Incorporated)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.03 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.2 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Photoshop CS5.1 (HKLM-x32\...\{9158FF30-78D7-40EF-B83E-451AC5334640}) (Version: 12.1 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Amazing Slow Downer (remove only) (HKLM-x32\...\Amazing Slow Downer) (Version:  - )
ANT Drivers Installer x64 (HKLM\...\{AB456A86-C80C-4803-9393-B617E3157CCA}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Any Video Converter 5.7.9 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ArcGIS 10.1 Data Interoperability for Desktop (HKLM-x32\...\{D22FB55A-512D-425C-9EC2-9F2C738DB163}) (Version: 10.1.3035 - Environmental Systems Research Institute, Inc.) Hidden
ArcGIS 10.1 Data Interoperability for Desktop (HKLM-x32\...\Data Interoperability Extension) (Version: 10.1.3035 - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 for Desktop (HKLM-x32\...\{6C8365F4-1102-4064-B696-68842D20B933}) (Version: 10.1.3143 - Environmental Systems Research Institute, Inc.) Hidden
ArcGIS 10.1 for Desktop (HKLM-x32\...\ArcGIS 10.1 for Desktop) (Version: 10.1.3143 - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 for Desktop ArcGIS Administrator Patch (HKLM-x32\...\ArcGIS 10.1 for Desktop CR236139) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 for Desktop Loading Localized Help from Applications Patch (HKLM-x32\...\ArcGIS 10.1 for Desktop CR239397) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 for Desktop Parcel Editing General Maintenance Patch  (HKLM-x32\...\ArcGIS 10.1 for Desktop CR235654) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 License Manager (HKLM-x32\...\{1DD1D1E9-FC96-4B17-BE0A-A5481F8B0D67}) (Version: 10.1.2891 - Environmental Systems Research Institute, Inc.) Hidden
ArcGIS 10.1 License Manager (HKLM-x32\...\ArcGIS 10.1 License Manager) (Version: 10.1.2891 - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 SP1 for Desktop (HKLM-x32\...\ArcGIS 10.1 for Desktop SP1) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 SP1 for Desktop Batch Geocoding Results with Geocoding Service Patch (HKLM-x32\...\ArcGIS 10.1 for Desktop CR266093) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 SP1 for Desktop Geometric Network Reconcile Patch (HKLM-x32\...\ArcGIS 10.1 for Desktop CR262304) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 SP1 for Desktop Mosaic Dataset/Image Services Reprojection Patch (HKLM-x32\...\ArcGIS 10.1 for Desktop CR245682) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 SP1 for Desktop Schematic Datasets Migration Patch (HKLM-x32\...\ArcGIS 10.1 for Desktop CR256900) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 SP1 for Desktop SQL Server 2012 Support Patch (HKLM-x32\...\ArcGIS 10.1 for Desktop CR251961) (Version:  - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 SP1 for Desktop SQL Server User Names With Special Characters Patch (HKLM-x32\...\ArcGIS 10.1 for Desktop CR255235) (Version:  - Environmental Systems Research Institute, Inc.)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software)
calibre 64bit (HKLM\...\{FC12E3F8-E522-4E65-A416-D7BDF41FBBA7}) (Version: 2.68.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
ConvertHelper 3.1.1 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version:  - DownloadHelper)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5.3817 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.4.5527 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dimension Pro 1.5 (HKLM-x32\...\DimensionPro_x64_is1) (Version: 18.0 - Cakewalk Music Software)
Dimension Pro Free Expansion Packs 1-3 (HKLM-x32\...\Dimension Pro Free Expansion Packs 1-3_is1) (Version: 1.0 - Cakewalk)
Distortion Control Data (HKLM-x32\...\{B08B4896-886C-4644-8664-BBA4CE99D318}) (Version: 1.00.0000 - Nikon)
DjVuLibre DjView  3.5.27+4.10.4 (HKLM-x32\...\DjVuLibre+DjView) (Version: 3.5.27+4.10.4 - DjVuZone)
Document Express DjVu Plug-in (HKLM\...\{6BB443AD-4A5D-494C-BB9F-8A15BD99E0CD}) (Version: 6.1.35213 - Cuminas Corporation)
DX Manager 5 (HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\7d4b97d91087fa5e) (Version: 5.1.1.1 - FM-Alive)
EasyTether (HKLM\...\{0C1903A4-8F36-4F34-AC70-A595ADB51F37}) (Version: 1.1.18 - Mobile Stream) Hidden
EasyTether (HKLM-x32\...\{c751b7eb-df27-4668-b05f-7457d2fa9e00}) (Version: 1.1.18 - Mobile Stream)
EasyTether ADB USB driver (HKLM\...\{F45DA6A7-AD7C-489A-B9E2-CCFC70A46A2A}) (Version: 1.0.1 - Mobile Stream)
Elevated Installer (HKLM-x32\...\{05557A22-E458-4673-BDB1-1CB929673429}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
ePUBee Magic (HKLM-x32\...\ePUBee Magic) (Version: 1.0.0.11 - ePUBee)
Epubor (HKLM-x32\...\Epubor) (Version: 2.0.2.7 - Epubor Inc.)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
ESU for Microsoft Windows 7 SP1 (HKLM-x32\...\{B18BEB15-A9DA-43D7-BAE1-C6C67484C2C0}) (Version: 5.1.1 - Hewlett-Packard)
FileZilla Client 3.27.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.27.0.1 - Tim Kosse)
Garmin Express (HKLM-x32\...\{dee43f2c-65bf-40c0-97f2-b887178f63f4}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{EF8DE832-FCEE-48D6-85D0-716961D494A2}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (HKLM-x32\...\{10368821-483F-4EE9-8807-8A3DFB67F661}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GPSBabel 1.5.3 (HKLM-x32\...\{1B8FE958-A304-4902-BF7A-4E2F0F5B7017}_is1) (Version:  - GPSBabel)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{DFB497E0-CE3F-40FC-9596-FC7A48775DE4}) (Version: 4.1.16.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{5E63C0AB-19B0-47D4-842E-6B324EB0614B}) (Version: 4.1.23.1 - Hewlett-Packard Company)
HP DVB-T TV Tuner 8.0.64.43 (HKLM-x32\...\HP DVB-T TV Tuner) (Version: 8.0.64.43 - )
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{D79A5962-7305-41B9-A39E-A98AB598F372}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710n-z Help (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)
HP Officejet 6500 E710n-z Product Improvement Study (HKLM\...\{4207BD5E-6F51-4C57-BC86-A0EBE9088A30}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Quick Launch (HKLM-x32\...\{53B17A98-5BF0-40BC-AAFF-850A357975AC}) (Version: 2.7.2 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{962CB079-85E6-405F-8704-1C62365AE46F}) (Version: 4.5.10.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.2.8.25 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.4.18.7 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6381.0 - IDT)
Intel® Chipset Device Software (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel® Corporation) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation)
Intel® Driver Update Utility 2.0 (HKLM-x32\...\{59DB38EB-F864-4E10-841D-38CFBCF864B0}) (Version: 2.0.0.29 - Intel) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
Intel® WiDi (HKLM-x32\...\{7FCB8D5D-9396-4D17-8CFA-349D6D49CD32}) (Version: 3.0.13.0 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{a2a04474-104a-49b3-9bf5-33afee260030}) (Version: 17.14.0 - Intel Corporation)
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java SE Development Kit 7 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170250}) (Version: 1.7.0.250 - Oracle)
Java SE Development Kit 8 Update 73 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180730}) (Version: 8.0.730.2 - Oracle Corporation)
KMLCSV Converter (HKLM-x32\...\KMLCSV Converter) (Version: 2.2.1 - Choon-Chern Lim)
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 11.1.1.0 - Lightworks)
Macromedia Dreamweaver 8 (HKLM-x32\...\{0837A661-FEC3-48B3-876C-91E7D32048A9}) (Version: 8.0.0.2734 - Macromedia)
Macromedia Extension Manager (HKLM-x32\...\{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}) (Version: 1.7.240 - Macromedia, Inc.)
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
M-Audio MIDISPORT 6.1.3 (x64) (HKLM\...\{AED2A1D4-19B4-4692-8004-E1A3E8A9E85B}) (Version: 6.1.3 - M-Audio)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Melodyne Runtime 4.1 (x64) (HKLM\...\{53EE2829-E9DB-4913-B3EA-96F10F84E98B}) (Version: 1.0.1 - Celemony Software GmbH)
Melodyne singletrack (HKLM-x32\...\{16DF894D-FC3F-4B87-908D-671E201CD7A8}) (Version: 2.01.0202 - Celemony Software GmbH)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MIDI-OX (HKLM-x32\...\{A6457851-5EA9-45B0-AF1D-D2A0A4781CFB}) (Version: 7.02.372 - MIDIOX Computing)
Monkey's Audio (HKLM-x32\...\Monkey's Audio_is1) (Version:  - )
Moog Little Phatty SE 3.2.0 (HKLM-x32\...\Moog Little Phatty SE 3.2.0_is1) (Version:  - Moog Music)
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{B39A6825-EA20-43EA-AB2D-A6BC0298D9A1}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Music Collection 2.4.2.0 (HKLM-x32\...\{DE4BC92E-B3DD-4B7D-B4C7-CF7C175155CE}_is1) (Version:  - GSoft4U)
MySQL Installer (HKLM-x32\...\{9BF56AF8-3471-4EE2-889F-73733D492297}) (Version: 1.3.3.0 - Oracle Corporation)
MySQL Server 5.6 (HKLM\...\{23EEC459-9E65-4DCE-83B8-A1FDB44B9337}) (Version: 5.6.14 - Oracle Corporation)
Nikon Scan (HKLM-x32\...\{9AE4AC96-A5F4-4F19-9D13-066C8B3CE034}) (Version: 4.0 - )
PDF ePub DRM Removal version 4.16 (HKLM-x32\...\{B17EB9DB-FEFD-4943-94E5-5428B3A53467}_is1) (Version: 4.16 - eBook Converter Team)
PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
PreSonus Studio One 3 x64 (HKLM\...\PreSonus Studio One 3) (Version: 3.3.4.41933 - PreSonus Audio Electronics)
PX Profile Update (HKLM-x32\...\{56709CD7-06E8-B205-56A6-110DC5090A9A}) (Version: 1.00.1. - AMD) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
R for Windows 3.2.2 (HKLM\...\R for Windows 3.2.2_is1) (Version: 3.2.2 - R Core Team)
Rapture 1.2.2 (HKLM-x32\...\Rapture_x64_is1) (Version: 18.0 - Cakewalk Music Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
Recovery Manager (HKLM-x32\...\{DBCD5E64-7379-4648-9444-8A6558DCB614}) (Version: 2.0.0 - Hewlett-Packard) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
Rtools 3.3 (HKLM-x32\...\Rtools_is1) (Version:  - The R Foundation)
SafeZone Stable 1.48.2066.101 (HKLM-x32\...\SafeZone 1.48.2066.101) (Version: 1.48.2066.101 - Avast Software) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Sibelius Scorch (Firefox, Opera, Netscape, Chrome only) (HKLM-x32\...\{41626CC0-A854-4402-AD06-D7939515C282}) (Version: 6.2.0 - Sibelius Software, a division of Avid Technology, Inc.)
Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
SONAR X3 Producer (x64) (HKLM-x32\...\SONARX3Producer_x64_is1) (Version: 20.0 - Cakewalk Music Software)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
The Digital Tradition Folksong Database 3.1 (HKLM-x32\...\The Digital Tradition Folksong Database) (Version: 3.1 - The Mudcat Cafe)
Total Recorder Editor Pro v13.0.1 (HKLM-x32\...\Total Recorder Editor Pro_is1) (Version:  - AdvancedAudioSoft Co., Ltd.)
Trader's Little Helper 2.7.0 (HKLM-x32\...\TradersLittleHelper_is1) (Version: 2.7.0 - Robert Hoffmann)
Validity WBF DDK (HKLM\...\{79174AF2-6CB1-42F5-981E-66DCA49391D0}) (Version: 4.3.205.0 - Validity Sensors, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.6.0.0 - Azureus Software, Inc.)
Vuze Remote Toolbar v7.6 (HKLM-x32\...\{7FAA19D2-3CF3-4FF6-9746-C0B8DB88757D}) (Version: 7.6 - Spigot, Inc.) <==== ATTENTION
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
YAMAHA S80/S30 Voice Editor (HKLM-x32\...\{6BCE06DC-9963-4BCF-84CB-4A18A1B69155}) (Version:  - )
Zoom (HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\ZoomUMX) (Version: 4.0 - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-379828563-891033583-2518000098-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-379828563-891033583-2518000098-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Systemy\Malwarebytes\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-03-14] (Piriform Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-08-09] (Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Systemy\Malwarebytes\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-03-14] (Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02B76A9A-4658-4CDA-9BD3-6FE1DF8E30CD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {1A2070F7-2551-4879-9800-651964295CC9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {25A7FDEA-03AE-44CA-9233-1F54C0C32FC6} - System32\Tasks\AdobeAAMUpdater-1.0-jburns-Burnsie => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05] (Adobe Systems Incorporated)
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {426F9E9D-38AD-4BCD-972E-5052F23B7865} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Systemy\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {463155AE-9A53-40D6-9F41-AE03F80E473A} - System32\Tasks\HPCeeScheduleForBurnsie => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {46E74849-253B-4408-BC81-C35137981B9D} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {4E7F604B-5C35-4140-B358-5DBF62A45D39} - System32\Tasks\Avast Emergency Update => C:\Program Files\Systemy\Avast\AvEmUpdate.exe [2017-08-10] (AVAST Software)
Task: {514BBAC1-2F12-4C26-9DBF-4962ED98C4E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {5A913FA4-A052-4B21-B363-FC5767C1197D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-26] (Adobe Systems Incorporated)
Task: {68F993D9-918C-46D0-82AB-B9AF51A3336B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {79CC704E-5F3F-4229-BE02-52F17CC53DD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {8BE23C8A-A3E8-4875-BC13-18628DB7292F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {8DAC30A6-54F4-4F87-A945-5D33A6929549} - System32\Tasks\{EC9886DC-4D26-44DB-B9A0-E5F840E22D0C} => C:\Windows\system32\pcalua.exe -a C:\Users\Burnsie\AppData\Local\Temp\jre-8u77-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {8E99561F-391A-4AC7-8EFB-34D4273B2B81} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {94EE22A1-C6DC-4A61-B609-EE3D7E9C232D} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e91f46715178 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {9AA6099E-65D2-44ED-8AA5-E1082D1C62BA} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {9BEC8B71-2542-43F5-AAAA-A7053EC97446} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {AF9546A5-1B07-4134-B7B7-A17F03FE7B80} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-07-27] (CyberLink)
Task: {AFA6516C-D4FF-46D6-BC33-FD80D18A39FC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {B0E3630B-ADC5-4C43-A789-EC673308BCD4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {BA267917-E535-45B6-87AC-FA58E75E5027} - System32\Tasks\{5A2CBC74-F1F9-485B-B0DE-05D2CA37AE28} => C:\Windows\system32\pcalua.exe -a C:\Users\Burnsie\AppData\Local\Temp\jre-8u131-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {BBBF3367-4F93-4EBD-8A13-27A9908C0F2C} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e91f46d54b44 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {D6CD6E61-46A9-4F38-B270-6501B674D08F} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-05-05] ()
Task: {EBBCCB35-0036-47D4-858F-1B78A25D1F4C} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {EC91FBA8-5AC5-4275-8867-E99C0702BDFD} - System32\Tasks\SafeZone scheduled Autoupdate 1458728335 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {EFAD845D-533C-48B4-9B1C-24F0547FF583} - System32\Tasks\{C13D1E98-B2A2-45AC-A95D-49709E8346EE} => C:\Windows\system32\pcalua.exe -a C:\Users\Burnsie\AppData\Local\Temp\jre-8u101-windows-au.exe -d "C:\Program Files\Java\jre1.8.0_91\bin" -c /installmethod=jau-m FAMILYUPGRADE=1 <==== ATTENTION
Task: {F2C30FB3-3BB8-4C92-905E-A48EC675F8D8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForBurnsie.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2013-09-05 01:17 - 2013-09-05 01:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 16:23 - 2010-10-20 16:23 - 008801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2017-07-19 12:18 - 2017-07-19 12:18 - 000076456 _____ () C:\Program Files (x86)\Web\FileZilla FTP Client\fzshellext_64.dll
2013-09-10 10:04 - 2013-09-10 10:04 - 012915712 _____ () C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe
2013-07-27 19:29 - 2011-04-14 23:16 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000162032 _____ () c:\Program Files\Systemy\Avast\x64\vaarclient.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000831664 _____ () C:\Program Files\Systemy\Avast\x64\ffl2.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000276808 _____ () c:\Program Files\Systemy\Avast\x64\StreamBack.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000170224 _____ () C:\Program Files\Systemy\Avast\JsonRpcServer.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000192664 _____ () C:\Program Files\Systemy\Avast\event_routing_rpc.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000224256 _____ () C:\Program Files\Systemy\Avast\tasks_core.dll
2017-08-15 19:09 - 2017-08-15 19:09 - 005895544 _____ () C:\Program Files\Systemy\Avast\defs\17081506\algo.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000689272 _____ () C:\Program Files\Systemy\Avast\ffl2.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000231664 _____ () C:\Program Files\Systemy\Avast\streamback.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001065936 _____ () C:\Program Files\Systemy\Avast\AvChrome.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 067109376 _____ () C:\Program Files\Systemy\Avast\libcef.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000292920 _____ () C:\Program Files\Systemy\Avast\gaming_mode_ui.dll
2017-05-13 16:21 - 2017-05-13 16:21 - 000172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1ec855392d1e10abdfe0e8e8bdb27f4b\IsdiInterop.ni.dll
2013-07-27 19:29 - 2011-05-20 10:05 - 000059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7936 more sites.

IE trusted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\driversupport.com -> hxxp://apps.driversupport.com
IE trusted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\driversupport.com -> hxxps://apps.driversupport.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\123simsen.com -> www.123simsen.com

There are 7936 more sites.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-09-30 21:16 - 2017-08-10 12:37 - 000459935 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns-5.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 ereg.adobe.com
127.0.0.1 ereg.wip.adobe.com
127.0.0.1 ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.wip4.adobe.com
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 practivate.adobe
127.0.0.1 practivate.adobe.com
127.0.0.1 practivate.adobe.ipp
127.0.0.1 practivate.adobe.newoa

There are 15753 more lines.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-379828563-891033583-2518000098-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Burnsie\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: SDWSCService => 2
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: HP Officejet 6500 E710n-z (NET) => "C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe" -deviceID "CN11R114RX05JW:NW" -scfn "HP Officejet 6500 E710n-z (NET)" -AutoStart 1
MSCONFIG\startupreg: HPOSD => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
MSCONFIG\startupreg: HughesNetStatusMeter => "C:\Program Files (x86)\Systemy\HughesNet Status Meter\HughesNet Status Meter.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\Video\Quicktime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{696A4B10-C560-4907-B7BD-E1C39C189DEA}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe
FirewallRules: [UDP Query User{C8B8ECDB-6777-4A8B-A115-E1DF631212B3}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe
FirewallRules: [TCP Query User{433E7627-4507-4860-BB72-60B612888E19}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{F7FDDFF0-F512-4E50-8738-17F6F341FFB4}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{9C22784A-27CD-4A64-9E95-C0990D9329DA}] => (Allow) LPort=3306
FirewallRules: [TCP Query User{7A713CC5-07EB-43F9-B28B-2F4958A69878}C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe
FirewallRules: [UDP Query User{CD7BB347-ED70-44B7-8793-2B31014B0FD7}C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe
FirewallRules: [{F93CBBC8-8414-4236-9424-206A41BB1AC7}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D3952A8D-B058-4E9A-846B-D43108642A64}] => (Allow) LPort=2869
FirewallRules: [{97392143-C97B-4671-908A-44DA521A787D}] => (Allow) LPort=1900
FirewallRules: [{4E88023C-F587-4FAC-B30F-FF9618E2AA73}] => (Allow) C:\Program Files (x86)\Video\Lightworks\Lightworks.exe
FirewallRules: [{26B57867-8138-4EFE-B3D0-B3B8B543DEB7}] => (Allow) C:\Program Files (x86)\Video\Lightworks\Lightworks.exe
FirewallRules: [{BBDB6551-5409-4DD0-85AB-BF0DEEA4B440}] => (Allow) C:\Program Files (x86)\Video\Lightworks\ntcardvt.exe
FirewallRules: [{3365C2C1-7CF4-4630-8144-906D5D0E5DE0}] => (Allow) C:\Program Files (x86)\Video\Lightworks\ntcardvt.exe
FirewallRules: [{C2207FED-DEA0-4181-9FDE-9E1384114CB2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{896E83F5-9978-4B4A-9C78-FD32FA3EBED1}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{8D135F52-899D-47FD-9046-3042F64712A7}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{CAF17F68-FF62-45D3-A127-E3DCFE74C0BF}] => (Allow) C:\Program Files (x86)\XLN Audio\Addictive Drums\Addictive Drums.exe
FirewallRules: [{CA7B27D1-77C9-477F-9F42-9A3428C98BAF}] => (Allow) C:\Program Files (x86)\XLN Audio\Addictive Drums\Addictive Drums.exe
FirewallRules: [{3A0283CA-7A40-42F2-A519-9638D262A70B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{4DF2A661-33FA-4B0F-9AFB-EE12813F0737}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{EC7BEADB-5112-4B65-9932-55A4D8920BB4}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{B810ECD8-9901-41FE-B718-A9817874FB1B}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\FaxApplications.exe
FirewallRules: [{E93D58FF-53F4-41F9-A70C-B764D350ADBE}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\DigitalWizards.exe
FirewallRules: [{DC4F004D-BC34-40FC-89B1-80132180B13B}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\SendAFax.exe
FirewallRules: [{61F76F52-4D67-4550-BB49-608AB38672CD}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\DeviceSetup.exe
FirewallRules: [{6A2882E2-98B4-41D0-8C1C-EBB2F67F785B}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicator.exe
FirewallRules: [{271450BC-0978-4FDE-9F45-4C509C253EBD}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{B1E0367F-5F1E-4BA2-B77C-5850F453DD31}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{6973CA4E-64A4-4A44-B768-D8CC4BD5A214}C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe
FirewallRules: [UDP Query User{FFD34BB1-9CA0-4801-8F1D-AFAA7893F12F}C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe
FirewallRules: [TCP Query User{142319EC-6F79-4ECD-9C56-AF55DBBC6313}C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe
FirewallRules: [UDP Query User{AC68476A-A520-4F21-A8B0-77034C2DDCF2}C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe
FirewallRules: [TCP Query User{522A21EE-CF39-439C-BD83-32D78AA2B999}C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe] => (Block) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe
FirewallRules: [UDP Query User{F2E2A817-BCA3-444B-879C-CB7AD53D7F52}C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe] => (Block) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe
FirewallRules: [{1DC9CC4D-4D79-4601-80C8-748BBA8170B6}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{53638367-2B7C-4CC8-B567-7FE3683C4550}] => (Allow) C:\Program Files\Music\Studio One 3\Studio One.exe

==================== Restore Points =========================

10-08-2017 22:11:58 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (08/15/2017 07:15:19 PM) (Source: HP Active Health) (EventID: 88) (User: )
Description: -- SECURITY WARNING -- ActiveHealthProperties.ini has been tampered with, resetting it

Error: (08/15/2017 07:06:45 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll".Error in manifest or policy file "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll" on line 9.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

Error: (08/15/2017 07:05:41 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\DjVuViewer.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.

Error: (08/13/2017 02:04:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program OUTLOOK.EXE version 14.0.7187.5000 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1818

Start Time: 01d3142196479e99

Termination Time: 0

Application Path: C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE

Report Id: da65fc05-8051-11e7-9d0d-082e5f805e07

Error: (08/13/2017 06:40:23 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll".Error in manifest or policy file "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll" on line 9.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

Error: (08/13/2017 06:40:14 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\DjVuViewer.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.

Error: (08/12/2017 07:18:24 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll".Error in manifest or policy file "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll" on line 9.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

Error: (08/12/2017 07:18:01 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\DjVuViewer.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.

Error: (08/11/2017 10:12:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.1.7600.16385, time stamp: 0x4a5bcc33
Faulting module name: IWMSSvc.dll, version: 17.14.0.0, time stamp: 0x546d0a0b
Exception code: 0xc0000005
Fault offset: 0x00000000000be036
Faulting process id: 0x728
Faulting application start time: 0x01d312a93612c229
Faulting application path: C:\Windows\system32\WLANExt.exe
Faulting module path: C:\Windows\System32\IWMSSvc.dll
Report Id: b59f1d79-7f03-11e7-8c03-082e5f805e07

Error: (08/11/2017 03:56:53 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll".Error in manifest or policy file "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll" on line 9.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

System errors:
=============
Error: (08/15/2017 07:54:55 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/15/2017 07:54:37 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The MySQL56 service hung on starting.

Error: (08/15/2017 07:52:47 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/15/2017 07:52:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Garmin Device Interaction Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/15/2017 07:52:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Garmin Device Interaction Service service to connect.

Error: (08/15/2017 04:26:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Garmin Device Interaction Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/15/2017 04:26:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Garmin Device Interaction Service service to connect.

Error: (08/13/2017 02:05:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\IWMSSvc.dll

Error: (08/13/2017 02:05:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\Windows\System32\IWMSSvc.dll

Error: (08/13/2017 06:36:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Garmin Device Interaction Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

CodeIntegrity:
===================================
  Date: 2016-01-16 10:05:06.874
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:05:04.164
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:05:03.843
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:05:03.330
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:03:25.560
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:03:25.482
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel® Core™ i7-2720QM CPU @ 2.20GHz
Percentage of memory in use: 37%
Total physical RAM: 8139.86 MB
Available physical RAM: 5079.1 MB
Total Virtual: 16277.9 MB
Available Virtual: 13300.97 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:681.2 GB) (Free:12.55 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (RECOVERY) (Fixed) (Total:17.14 GB) (Free:1.82 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: BE2F2B88)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=681.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=17.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 1.

==================== End of Addition.txt ============================



#4 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,890 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:02:50 PM

Posted 19 August 2017 - 12:42 PM

Burnsie:

 

Thank you for getting me the "Addition.txt" log so quickly.  I am about half way through analyzing your FRST.txt log file.

 

:step1: Unfortunately, in going over your logs, I see evidence of a software utility, or utilities, used to evade software licensing requirements for one or more programs.  You might not be aware of this/these program(s), so I am NOT accusing you of knowingly installing this/these program(s) on your computer.
 
Bleeping Computer does not condone software piracy.  Downloading and using such software, apart from being illegal by infringing on copyrights, is a MAJOR attack vector for malware.  If you use such software, it is not a question of "IF" your computer will be infected, but only "WHEN", and by HOW MANY different variants of malware!
 
I am going to ask you to remove any and all software that you do not own, and to uninstall the software that is evading licensing requirements.  If you are not aware of these software utility, or utilities, then you will have to accept, that as a part of my "fix" for your computer, the disinfection scripts and utilities will remove/disable any, and all, such software, tasks, etc., designed to evade legal software licencing requirements detected in the scan logs.  Some of the anti-malware tools that I use will automatically quarantine software "cracks", without notice, so if you are not willing to take the chance of one or more "cracked" programs being disabled, please let me know right away.
 
If is agreeable to you to uninstall the "cracked" sofware, then after you have uninstalled any illicit software, please run the following scan for me.
 
If it is not agreeable to you, then please let me know and I will conclude your topic.
 
.
 
:step2: ckscanner.jpg Scan with CKScanner
 
Download CKScanner by askey127 and save it to your desktop.
 
  • Right-click on ckscanner.jpg icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • click Search For Files.
  • When finished, click Save List To File.
  • Remember to run this tool once only, if not asked to run it again.
 
Please copy and paste the content of CKFiles.txt into your next reply.
 
.
 
:step3:  Please run a fresh FRST scan.  Please copy and paste the contents of both the "FRST.txt" and "Addition.txt" scan logs into your next reply, or replies.  Sometimes, when the FRST logs are large, you have to post each log individually.
 
.
 
I hope to be able to provide you with an initial FRST "fixlist" script some time tomorrow afternoon.  Thank you for your patience.
 
Thank you and have a great day.
 
Regards,
-Phil
 

Graduate of the Bleeping Computer Malware Removal Study Hall


#5 Burnsie

Burnsie
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 19 August 2017 - 01:35 PM

I dumped what I knew friends had put on. They had done it years ago without problems, but these symptoms were more recent. Here's what I have.

 

CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
c:\cakewalk content\audio library\loops\loopmasters\house techno trance\john flemming and digital blonde\00db_tamb_cracking-dry_133.rx2
c:\cakewalk content\audio library\loops\sample magic\breakbusters\breaks_synthloop_130_digicrackler_f.rx2
c:\cakewalk content\audio library\loops\sample magic\nu-rave\nr_syn130_crackline2_gb.rx2
c:\program files\music\cakewalk\vstplugins\rxp\contents\loopmasters\rex loops\house techno trance\john flemming and digital blonde\00db_tamb_cracking-dry_133.rx2
c:\program files\music\cakewalk\vstplugins\rxp\contents\sample magic\rex loops\house techno trance\john flemming and digital blonde\00db_tamb_cracking-dry_133.rx2
c:\program files\r\r-3.2.2\library\survival\tests\data.cracks
c:\program files\r\rtools\mingw_32\opt\ssl\man\man3\evp_pkey_ctx_get_keygen_info.3
c:\program files\r\rtools\mingw_32\opt\ssl\man\man3\evp_pkey_ctx_set_rsa_keygen_pubexp.3
c:\program files\r\rtools\mingw_32\opt\ssl\man\man3\evp_pkey_ctx_set_rsa_rsa_keygen_bits.3
c:\program files\r\rtools\mingw_32\opt\ssl\man\man3\evp_pkey_keygen.3
c:\program files\r\rtools\mingw_32\opt\ssl\man\man3\evp_pkey_keygen_init.3
c:\program files\r\rtools\mingw_64\opt\ssl\man\man3\evp_pkey_ctx_get_keygen_info.3
c:\program files\r\rtools\mingw_64\opt\ssl\man\man3\evp_pkey_ctx_set_rsa_keygen_pubexp.3
c:\program files\r\rtools\mingw_64\opt\ssl\man\man3\evp_pkey_ctx_set_rsa_rsa_keygen_bits.3
c:\program files\r\rtools\mingw_64\opt\ssl\man\man3\evp_pkey_keygen.3
c:\program files\r\rtools\mingw_64\opt\ssl\man\man3\evp_pkey_keygen_init.3
c:\program files (x86)\music\digital tradition\tunes\crack90
c:\users\burnsie\documents\my music\my lyrics\stash\firecracker - ryan adams.doc
c:\users\burnsie\music\my lyrics\tim's tune library 3-07\firecracker - ryan adams.doc
c:\users\burnsie\music\my lyrics\tim's tune library 3-07\low - cracker.doc
hosts 127.0.0.1 3dns.adobe.com
hosts 127.0.0.1 3dns-1.adobe.com
hosts 127.0.0.1 3dns-2.adobe.com
hosts 127.0.0.1 3dns-3.adobe.com
hosts 127.0.0.1 3dns-4.adobe.com
hosts 127.0.0.1 3dns-5.adobe.com
hosts 127.0.0.1 activate.adobe.com
hosts 127.0.0.1 activate.wip1.adobe.com
hosts 127.0.0.1 activate.wip2.adobe.com
hosts 127.0.0.1 activate.wip3.adobe.com
hosts 127.0.0.1 activate.wip4.adobe.com
hosts 127.0.0.1 activate-sea.adobe.com
hosts 127.0.0.1 activate-sjc0.adobe.com
hosts 127.0.0.1 adobe-dns.adobe.com
hosts 127.0.0.1 adobe-dns-1.adobe.com
hosts 127.0.0.1 adobe-dns-2.adobe.com
hosts 127.0.0.1 adobe-dns-3.adobe.com
hosts 127.0.0.1 adobe-dns-4.adobe.com
hosts 127.0.0.1 adobeereg.com
hosts 127.0.0.1 ereg.adobe.com
hosts 127.0.0.1 ereg.wip.adobe.com
hosts 127.0.0.1 ereg.wip1.adobe.com
hosts 127.0.0.1 ereg.wip2.adobe.com
hosts 127.0.0.1 ereg.wip3.adobe.com
hosts 127.0.0.1 ereg.wip4.adobe.com
hosts 127.0.0.1 hl2rcv.adobe.com
hosts 127.0.0.1 practivate.adobe.com
hosts 127.0.0.1 wip.adobe.com
hosts 127.0.0.1 wip1.adobe.com
hosts 127.0.0.1 wip2.adobe.com
hosts 127.0.0.1 wip3.adobe.com
hosts 127.0.0.1 wip4.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip100.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip101.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip102.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip103.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip104.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip105.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip106.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip107.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip108.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip109.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip110.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip111.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip112.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip113.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip114.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip115.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip116.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip117.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip118.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip119.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip120.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip121.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip122.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip123.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip124.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip125.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip30.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip31.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip32.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip33.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip34.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip35.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip36.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip37.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip38.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip39.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip40.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip41.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip42.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip43.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip44.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip45.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip46.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip47.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip48.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip49.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip50.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip51.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip52.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip53.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip54.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip55.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip56.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip57.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip58.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip59.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip61.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip62.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip63.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip64.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip65.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip66.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip67.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip68.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip69.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip70.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip71.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip72.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip73.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip74.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip75.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip76.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip77.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip78.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip79.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip80.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip81.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip82.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip83.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip84.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip85.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip86.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip87.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip88.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip89.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip90.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip91.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip92.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip93.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip94.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip95.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip96.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip97.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip98.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip99.adobe.com
hosts 127.0.0.1 ood.opsource.net
hosts 127.0.0.1 adobe.activate.com
hosts 127.0.0.1 www.adobeereg.com
hosts 127.0.0.1 lm.licenses.adobe.com
hosts 127.0.0.1 lmlicenses.wip1.adobe.com
hosts 127.0.0.1 lmlicenses.wip2.adobe.com
hosts 127.0.0.1 lmlicenses.wip3.adobe.com
hosts 127.0.0.1 lmlicenses.wip4.adobe.com
hosts 127.0.0.1 209-34-83-73.ood.opsource.net
hosts 127.0.0.1 lmlicenses.wip4.adobe.com
hosts 127.0.0.1 lm.licenses.wip4.adobe.com
hosts 127.0.0.1 lmlicenses.adobe.com
hosts 127.0.0.1 lm.licenses.adobe.com
scanner sequence 3.ZZ.11.XHAPIZ
 ----- EOF -----
 



#6 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,890 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:02:50 PM

Posted 19 August 2017 - 01:41 PM

Burnsie:

 

Thank you for the CKScanner log.  There is evidence that one or more Adobe products were, or are, evading licensing requirements via the Hosts file.  If it is agreeable to you, I will reset your Hosts file as a part of FRST "fixlist" script, which will remove those entries from your Hosts file and reset it back to default.

 

I have analyzed over 700 lines of your FRST logs, so I will hopefully be able to respond back tomorrow afternoon with a FRST "fixlist" script.

 

Thank you for your cooperation and patience.  Have a great day.

 

Regards,

-Phil


Graduate of the Bleeping Computer Malware Removal Study Hall


#7 Burnsie

Burnsie
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 19 August 2017 - 02:04 PM

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-08-2017
Ran by Burnsie (administrator) on JBURNS (19-08-2017 14:36:07)
Running from C:\Users\Burnsie\Desktop
Loaded Profiles: Burnsie (Available Profiles: Burnsie)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\Systemy\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\Systemy\Avast\afwServ.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Malwarebytes) C:\Program Files\Systemy\Malwarebytes\mbamtray.exe
(AVAST Software) C:\Program Files\Systemy\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\Systemy\EaseUS Partition Master 12.5\bin\TrayPopupE\TrayTipAgentE.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(M-Audio) C:\Program Files (x86)\M-Audio\MIDISPORT\AudioDevMon.exe
() C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MBAMService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswidsagenta.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-01-04] (IDT, Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\SYSTEMY\MALWAREBYTES\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Systemy\Avast\AvLaunch.exe [213832 2017-08-10] (AVAST Software)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\Systemy\EaseUS Partition Master 12.5\bin\TrayPopupE\TrayTipAgentE.exe [255072 2014-11-18] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {080019e8-6019-11e3-bd2d-082e5f805e07} - F:\MotoCastSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {3b5aecd5-a6c7-11e3-b504-082e5f805e07} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {5ab116ce-6da5-11e4-a225-74e50b1ee6b0} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {6fc23f6b-5872-11e3-b7cb-74e50b1ee6b0} - F:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {76ad1ee1-482f-11e5-bef6-082e5f805e07} - F:\VerizonWirelessUpgradeAssistantSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {7b4773ef-984f-11e4-832c-082e5f805e07} - F:\DTLplus_Launcher.exe
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {91b2f3e8-f699-11e6-bb41-082e5f805e07} - G:\VerizonWirelessUpgradeAssistantSetup.exe
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {caeef8de-80f0-11e6-9f1b-082e5f805e07} - F:\VerizonWirelessUpgradeAssistantSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {d1bfd608-0be7-11e3-aefc-74e50b1ee6b0} - F:\MotoCastSetup.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {f6685e55-9ca3-11e3-9203-082e5f805e07} - I:\LaunchU3.exe -a
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\MountPoints2: {f8fb48a3-c779-11e5-b5e9-082e5f805e07} - "F:\WD Drive Unlock.exe" autoplay=true
CHR HKU\S-1-5-21-379828563-891033583-2518000098-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-379828563-891033583-2518000098-1000] => localhost:8080
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{18D9577C-8323-444E-B835-D044FD1FA958}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{5C676548-6151-432D-B8D1-B953060FF100}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A47A00AD-5CAF-416B-A462-27DEF06689F0}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{D252FB72-1C14-4B9D-8928-67FEF63DCB12}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-379828563-891033583-2518000098-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
HKU\S-1-5-21-379828563-891033583-2518000098-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-16] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Systemy\Avast\aswWebRepIE64.dll [2017-08-10] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-16] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-08-16] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Systemy\Avast\aswWebRepIE.dll [2017-08-10] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-16] (Oracle Corporation)
DPF: HKLM {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect1263.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

FireFox:
========
FF ProfilePath: C:\Users\Burnsie\AppData\Roaming\Mozilla\Firefox\Profiles\x1fxsq3m.default [2017-08-15]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\x1fxsq3m.default -> Yahoo
FF Homepage: Mozilla\Firefox\Profiles\x1fxsq3m.default -> hxxps://www.google.com
FF NetworkProxy: Mozilla\Firefox\Profiles\x1fxsq3m.default -> type", 0
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-08-13] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-26] ()
FF Plugin: @cuminas.jp/DjVuPlugin -> C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-02-17] (Cuminas Corporation)
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-16] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-26] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
FF Plugin-x32: @cuminas.jp/DjVuPlugin -> C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-02-17] (Cuminas Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-16] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 -> C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll [2013-03-11] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\Video\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\Video\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-05-11] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Burnsie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @talk.google.com/O1DPlugin -> C:\Users\Burnsie\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-379828563-891033583-2518000098-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Burnsie\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-03-06] (Zoom Video Communications, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPSibelius.dll [2013-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\PDFNetC.dll [2010-03-31] (PDFTron Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchAxPlugin.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchPDFWrapper.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Users\Burnsie\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Burnsie\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

Chrome:
=======
CHR DefaultProfile: Default
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - <no Path/update_url>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\Systemy\Avast\x64\aswidsagenta.exe [7430992 2017-08-10] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\Systemy\Avast\AvastSvc.exe [263312 2017-08-10] (AVAST Software)
R2 avast! Firewall; C:\Program Files\Systemy\Avast\afwServ.exe [311592 2017-08-10] (AVAST Software)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [244720 2012-02-08] (CyberLink)
S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [795152 2016-05-05] (Garmin Ltd. or its subsidiaries)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2013-08-26] (Realsil Microelectronics Inc.) [File not signed]
R2 MBAMService; C:\Program Files\Systemy\Malwarebytes\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 MIDISPORTAudioDevMon; C:\Program Files (x86)\M-Audio\MIDISPORT\AudioDevMon.exe [1638704 2012-02-24] (M-Audio)
R2 MySQL56; C:\ProgramData\MySQL\MySQL Server 5.6\my.ini [14241 2013-10-06] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-08-10] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-08-10] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-08-10] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-08-10] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-08-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146704 2017-08-10] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2017-08-10] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [554528 2017-08-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-08-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-08-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015880 2017-08-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-08-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-08-10] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-08-10] (AVAST Software)
R3 easytether; C:\Windows\System32\DRIVERS\easytthr.sys [21704 2013-03-11] (Mobile Stream)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [24056 2016-01-14] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [21496 2016-01-14] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2016-07-11] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [10208 2016-07-11] ()
S3 MADFUMIDISPORT2010; C:\Windows\System32\DRIVERS\MAudioMIDISPORT_DFU.sys [30512 2012-02-24] (M-Audio)
S3 MAUSBMIDISPORT; C:\Windows\System32\DRIVERS\MAudioMIDISPORT.sys [201008 2012-02-24] (M-Audio)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-19] (Malwarebytes)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 rcmirror; C:\Windows\System32\DRIVERS\rcmirror64.sys [13120 2012-08-13] (Windows ® Win 7 DDK provider)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-19 14:36 - 2017-08-19 14:37 - 000021655 _____ C:\Users\Burnsie\Desktop\FRST.txt
2017-08-16 16:52 - 2017-07-29 10:56 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-08-16 16:52 - 2017-07-21 10:26 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2017-08-16 16:52 - 2017-07-21 10:26 - 000409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexch40.dll
2017-08-16 16:52 - 2017-07-21 10:26 - 000290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll
2017-08-16 16:52 - 2017-07-21 10:26 - 000282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll
2017-08-16 16:52 - 2017-07-15 14:35 - 000394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-08-16 16:52 - 2017-07-15 13:52 - 000346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2017-08-16 16:52 - 2017-07-14 11:29 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-08-16 16:52 - 2017-07-14 11:12 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-08-16 16:52 - 2017-07-14 11:12 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-08-16 16:52 - 2017-07-14 11:11 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-08-16 16:52 - 2017-07-14 11:10 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-08-16 16:52 - 2017-07-14 11:10 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-08-16 16:52 - 2017-07-14 11:00 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-08-16 16:52 - 2017-07-14 11:00 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-08-16 16:52 - 2017-07-14 10:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-08-16 16:52 - 2017-07-14 10:59 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-08-16 16:52 - 2017-07-14 10:57 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-08-16 16:52 - 2017-07-14 10:50 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-08-16 16:52 - 2017-07-14 10:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2017-08-16 16:52 - 2017-07-14 03:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-08-16 16:52 - 2017-07-14 03:15 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-08-16 16:52 - 2017-07-14 02:49 - 025733632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-08-16 16:52 - 2017-07-14 02:47 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-08-16 16:52 - 2017-07-14 02:45 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-08-16 16:52 - 2017-07-14 02:45 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-08-16 16:52 - 2017-07-14 02:44 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-08-16 16:52 - 2017-07-14 02:44 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-08-16 16:52 - 2017-07-14 02:38 - 002899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-08-16 16:52 - 2017-07-14 02:29 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-08-16 16:52 - 2017-07-14 02:28 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-08-16 16:52 - 2017-07-14 02:22 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-08-16 16:52 - 2017-07-14 02:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-08-16 16:52 - 2017-07-14 02:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-08-16 16:52 - 2017-07-14 02:19 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-08-16 16:52 - 2017-07-14 02:19 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-08-16 16:52 - 2017-07-14 02:08 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-08-16 16:52 - 2017-07-14 02:02 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-08-16 16:52 - 2017-07-14 01:49 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-08-16 16:52 - 2017-07-14 01:48 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-08-16 16:52 - 2017-07-14 01:47 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-08-16 16:52 - 2017-07-14 01:42 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-08-16 16:52 - 2017-07-14 01:40 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-08-16 16:52 - 2017-07-14 01:35 - 005981184 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-08-16 16:52 - 2017-07-14 01:35 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-08-16 16:52 - 2017-07-14 01:33 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-08-16 16:52 - 2017-07-14 01:16 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-08-16 16:52 - 2017-07-14 01:11 - 000725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-08-16 16:52 - 2017-07-14 01:10 - 000806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-08-16 16:52 - 2017-07-14 01:09 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-08-16 16:52 - 2017-07-14 01:09 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-08-16 16:52 - 2017-07-14 00:40 - 015254016 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-08-16 16:52 - 2017-07-14 00:23 - 003240960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-08-16 16:52 - 2017-07-14 00:07 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-08-16 16:52 - 2017-07-13 23:58 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-08-16 16:52 - 2017-07-13 23:01 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-08-16 16:52 - 2017-07-13 22:54 - 020270080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-08-16 16:52 - 2017-07-13 22:48 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-08-16 16:52 - 2017-07-13 22:48 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-08-16 16:52 - 2017-07-13 22:48 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-08-16 16:52 - 2017-07-13 22:48 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-08-16 16:52 - 2017-07-13 22:47 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-08-16 16:52 - 2017-07-13 22:44 - 002290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-08-16 16:52 - 2017-07-13 22:42 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-08-16 16:52 - 2017-07-13 22:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-08-16 16:52 - 2017-07-13 22:39 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-08-16 16:52 - 2017-07-13 22:38 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-08-16 16:52 - 2017-07-13 22:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-08-16 16:52 - 2017-07-13 22:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-08-16 16:52 - 2017-07-13 22:30 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-08-16 16:52 - 2017-07-13 22:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-08-16 16:52 - 2017-07-13 22:25 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-08-16 16:52 - 2017-07-13 22:25 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-08-16 16:52 - 2017-07-13 22:23 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-08-16 16:52 - 2017-07-13 22:22 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-08-16 16:52 - 2017-07-13 22:21 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-08-16 16:52 - 2017-07-13 22:20 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-08-16 16:52 - 2017-07-13 22:17 - 004546048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-08-16 16:52 - 2017-07-13 22:13 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-08-16 16:52 - 2017-07-13 22:12 - 000693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-08-16 16:52 - 2017-07-13 22:11 - 002057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-08-16 16:52 - 2017-07-13 22:11 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-08-16 16:52 - 2017-07-13 22:09 - 013663744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-08-16 16:52 - 2017-07-13 21:53 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-08-16 16:52 - 2017-07-13 21:50 - 001314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-08-16 16:52 - 2017-07-13 21:48 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-08-16 16:52 - 2017-07-08 11:34 - 000370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-08-16 16:52 - 2017-07-08 11:00 - 003224064 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-08-16 16:52 - 2017-07-07 11:37 - 000631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-08-16 16:52 - 2017-07-07 11:33 - 005547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-08-16 16:52 - 2017-07-07 11:33 - 000706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-08-16 16:52 - 2017-07-07 11:33 - 000363752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2017-08-16 16:52 - 2017-07-07 11:33 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-08-16 16:52 - 2017-07-07 11:33 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-08-16 16:52 - 2017-07-07 11:31 - 001732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:15 - 004001000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-08-16 16:52 - 2017-07-07 11:15 - 003945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-08-16 16:52 - 2017-07-07 11:13 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-08-16 16:52 - 2017-07-07 11:11 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 11:02 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-08-16 16:52 - 2017-07-07 11:01 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-08-16 16:52 - 2017-07-07 11:01 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-08-16 16:52 - 2017-07-07 11:01 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-08-16 16:52 - 2017-07-07 10:58 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-08-16 16:52 - 2017-07-07 10:57 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-08-16 16:52 - 2017-07-07 10:54 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-08-16 16:52 - 2017-07-07 10:54 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-08-16 16:52 - 2017-07-07 10:54 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-08-16 16:52 - 2017-07-07 10:53 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-08-16 16:52 - 2017-07-07 10:53 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-08-16 16:52 - 2017-07-07 10:51 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-08-16 16:52 - 2017-07-07 10:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-08-16 16:52 - 2017-07-07 10:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-08-16 16:52 - 2017-07-07 10:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-08-16 16:52 - 2017-07-07 10:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-08-16 16:52 - 2017-07-07 10:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-08-16 16:52 - 2017-07-07 10:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 10:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 10:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-08-16 16:52 - 2017-07-07 10:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-08-16 16:52 - 2017-07-01 09:05 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll
2017-08-16 16:47 - 2017-08-16 16:45 - 000110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2017-08-16 16:44 - 2017-08-16 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2017-08-16 16:44 - 2017-08-16 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-08-16 14:30 - 2017-08-16 14:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EBooks
2017-08-16 14:11 - 2017-08-16 14:11 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\epm
2017-08-16 14:09 - 2017-08-16 14:09 - 000010780 _____ C:\Users\Burnsie\Documents\cc_20170816_140908.reg
2017-08-16 12:24 - 2017-08-08 17:49 - 004027072 _____ C:\Windows\system32\BootMan.exe
2017-08-16 12:24 - 2017-08-08 17:49 - 003037376 _____ C:\Windows\SysWOW64\BootMan.exe
2017-08-16 12:24 - 2016-07-11 10:01 - 000101984 _____ C:\Windows\system32\setupempdrvx64.exe
2017-08-16 12:24 - 2016-07-11 10:01 - 000088160 _____ C:\Windows\SysWOW64\setupempdrv03.exe
2017-08-16 12:24 - 2016-07-11 10:01 - 000010848 _____ C:\Windows\system32\EuGdiDrv.sys
2017-08-16 12:24 - 2016-07-11 10:01 - 000010208 _____ C:\Windows\SysWOW64\EuGdiDrv.sys
2017-08-16 12:24 - 2016-07-08 15:28 - 000248832 _____ C:\Windows\SysWOW64\epmntdrv.pdb
2017-08-16 12:24 - 2016-01-14 10:05 - 000024056 _____ C:\Windows\system32\epmntdrv.sys
2017-08-16 12:24 - 2016-01-14 10:05 - 000021496 _____ C:\Windows\SysWOW64\epmntdrv.sys
2017-08-16 12:24 - 2014-11-18 14:46 - 000021088 _____ C:\Windows\SysWOW64\EuEpmGdi.dll
2017-08-16 12:24 - 2014-11-18 14:46 - 000017504 _____ C:\Windows\system32\EuEpmGdi.dll
2017-08-16 12:01 - 2017-03-23 09:04 - 003547136 _____ C:\Windows\system32\pwNative.exe
2017-08-16 12:01 - 2013-09-30 15:26 - 000019152 _____ C:\Windows\system32\pwdrvio.sys
2017-08-16 12:01 - 2013-09-30 15:26 - 000012504 _____ C:\Windows\system32\pwdspio.sys
2017-08-16 08:31 - 2017-08-16 08:31 - 001649815 _____ C:\Users\Burnsie\Documents\IE bookmarks 170816.htm
2017-08-15 20:05 - 2017-08-19 14:35 - 000000000 ____D C:\Users\Burnsie\Desktop\FRST-OlderVersion
2017-08-15 20:04 - 2017-08-19 14:33 - 000000000 ____D C:\Users\Burnsie\Desktop\Old FRST Logs
2017-08-15 19:04 - 2017-08-10 18:12 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-08-12 14:02 - 2017-08-13 14:04 - 000000000 ____D C:\Users\Burnsie\AppData\LocalLow\Mozilla
2017-08-12 13:43 - 2017-08-15 22:57 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-12 13:43 - 2017-08-15 22:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-11 09:27 - 2017-08-10 17:39 - 001942042 _____ C:\Users\Burnsie\Documents\bookmarks-2017-08-10_14245_Dp822IOyhReQkNAZOC+r3A==.jsonlz4
2017-08-10 18:17 - 2017-08-10 18:17 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\AVAST Software
2017-08-10 18:13 - 2017-08-10 18:16 - 000146704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000585608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000361336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000198768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000084392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-08-10 18:13 - 2017-08-10 18:12 - 000046984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-08-10 18:12 - 2017-08-10 18:16 - 001015880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000554528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000110352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2017-08-10 18:06 - 2017-08-19 12:43 - 000253856 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-10 18:06 - 2017-06-27 12:06 - 000077376 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-08-10 17:49 - 2017-08-10 17:49 - 006327051 _____ C:\Users\Burnsie\Documents\bookmarks Today.html
2017-08-10 17:05 - 2017-08-10 18:04 - 000069914 _____ C:\Users\Burnsie\Desktop\mb-clean-results.txt
2017-08-10 12:38 - 2017-08-10 12:38 - 000000000 ____D C:\Users\Burnsie\Documents\ProcAlyzer Dumps
2017-08-10 12:37 - 2017-07-31 16:07 - 000458787 _____ C:\Windows\system32\Drivers\etc\hosts.20170810-123747.backup
2017-08-10 07:40 - 2017-08-10 07:41 - 000003734 _____ C:\Users\Burnsie\Documents\cc_20170810_074056.reg
2017-08-07 18:28 - 2017-08-19 14:36 - 000000000 ____D C:\FRST
2017-08-07 13:21 - 2017-08-07 13:21 - 000005930 _____ C:\Users\Burnsie\Documents\cc_20170807_132057 Probs.reg
2017-07-31 16:51 - 2017-08-19 14:35 - 002395648 _____ (Farbar) C:\Users\Burnsie\Desktop\FRST64.exe
2017-07-28 11:22 - 2017-07-28 11:22 - 000369105 _____ C:\unp306072851491690433.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000368884 _____ C:\unp306072851497150443.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000367843 _____ C:\unp306072851495902441.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000367238 _____ C:\unp306072851492938436.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000366992 _____ C:\unp306072851492314435.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000366948 _____ C:\unp306072851494186438.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365987 _____ C:\unp306072851495278440.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365841 _____ C:\unp306072851496526442.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000365752 _____ C:\unp306072851494810439.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364617 _____ C:\unp306072851491222433.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364289 _____ C:\unp306072851493562437.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000364192 _____ C:\unp306072851488882429.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363690 _____ C:\unp306072851489974430.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363683 _____ C:\unp306072851490598432.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000363014 _____ C:\unp306072851489506430.mdmp
2017-07-28 11:22 - 2017-07-28 11:22 - 000361810 _____ C:\unp306072851484358421.mdmp
2017-07-28 11:02 - 2017-08-17 13:43 - 000004158 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-07-28 11:02 - 2017-07-28 11:01 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswe46b8228112615d4.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswaea66246faa573f7.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\asw6f6fcab1a884401e.tmp
2017-07-28 11:02 - 2017-07-28 11:01 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswd9c3083a2d3a778d.tmp
2017-07-28 10:43 - 2017-08-15 21:11 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\Documents\Sound Quest
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Sound Quest
2017-07-27 14:48 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\IsolatedStorage
2017-07-27 13:43 - 2017-07-28 13:53 - 000000000 ____D C:\Program Files (x86)\AdBlocker
2017-07-27 09:29 - 2017-07-27 09:29 - 007873888 _____ (Tim Kosse) C:\Users\Burnsie\Downloads\FileZilla_3.27.0.1_win64-setup.exe
2017-07-25 20:20 - 2017-07-25 20:20 - 000029786 _____ C:\Users\Burnsie\Documents\cc_20170725_202042.reg
2017-07-24 16:06 - 2017-07-24 16:06 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\ebook_convert_20170724_160617
2017-07-23 14:38 - 1998-07-22 14:31 - 000033280 _____ C:\Windows\SysWOW64\octobe~1.dll
2017-07-23 14:38 - 1997-09-17 21:07 - 000204048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DBLIST32.OCX
2017-07-23 14:38 - 1997-07-19 17:00 - 000129808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.OCX
2017-07-23 14:38 - 1997-07-19 16:00 - 000604432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMCTL32.OCX
2017-07-23 14:38 - 1997-02-14 00:39 - 000113664 _____ (Desaware) C:\Windows\SysWOW64\apigid32.dll
2017-07-23 14:38 - 1997-01-24 01:00 - 000078608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.dll
2017-07-23 14:38 - 1996-12-05 01:00 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ODBCTL32.dll
2017-07-23 14:36 - 2017-07-23 14:39 - 000006867 _____ C:\Windows\ST5UNST.txt
2017-07-23 14:36 - 1997-07-19 16:55 - 001347344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVBVM50.dll
2017-07-23 14:36 - 1997-01-16 01:00 - 000071680 _____ (Microsoft Corporation) C:\Windows\ST5UNST.EXE
2017-07-23 14:36 - 1997-01-16 01:00 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5StKit.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-19 14:33 - 2015-06-02 16:20 - 000000000 ____D C:\Users\Burnsie\Documents\Outlook Files
2017-08-19 13:04 - 2009-07-14 00:45 - 000032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-19 13:04 - 2009-07-14 00:45 - 000032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-19 12:50 - 2009-07-14 01:13 - 000782010 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-19 12:50 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\inf
2017-08-19 12:42 - 2009-07-14 01:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-17 09:10 - 2016-10-03 09:45 - 000000000 ____D C:\Windows\rescache
2017-08-16 22:31 - 2013-08-14 23:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Web
2017-08-16 17:11 - 2015-06-05 19:45 - 000000000 ____D C:\Users\Burnsie\AppData\Local\CrashDumps
2017-08-16 17:05 - 2009-07-14 00:45 - 005055440 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-16 16:59 - 2013-07-27 17:57 - 000000000 ____D C:\Windows\system32\MRT
2017-08-16 16:53 - 2013-07-27 17:37 - 140394280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-08-16 16:47 - 2015-11-21 18:55 - 000000000 ____D C:\Program Files (x86)\Java
2017-08-16 16:47 - 2013-09-08 21:37 - 000000000 ____D C:\Program Files\Java
2017-08-16 16:45 - 2016-03-07 20:21 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-08-16 16:44 - 2015-11-21 18:55 - 000097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-08-16 14:08 - 2014-03-27 22:26 - 000000000 ____D C:\Windows\Minidump
2017-08-16 12:24 - 2013-08-14 07:19 - 000000000 ____D C:\Program Files (x86)\Systemy
2017-08-16 12:01 - 2013-07-27 19:44 - 000000000 ____D C:\Program Files\Systemy
2017-08-15 22:57 - 2015-12-22 23:41 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-08-15 22:57 - 2015-12-22 23:23 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-08-15 22:57 - 2014-08-28 21:07 - 000000000 ____D C:\Users\Burnsie\AppData\Local\LogMeIn Client
2017-08-15 22:57 - 2013-08-26 19:18 - 000000000 ___HD C:\Windows\system32\WLANProfiles
2017-08-15 22:57 - 2013-08-13 23:07 - 000000000 ____D C:\ProgramData\FLEXnet
2017-08-15 22:57 - 2013-08-13 21:30 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Mozilla
2017-08-15 22:57 - 2013-07-27 19:39 - 000000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2017-08-15 22:57 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\system32\NDF
2017-08-15 22:56 - 2013-08-13 21:30 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Mozilla
2017-08-15 22:56 - 2009-07-13 23:20 - 000000000 ____D C:\Windows\registration
2017-08-15 21:02 - 2015-04-13 21:29 - 000000000 ____D C:\Users\Burnsie\AppData\Local\ElevatedDiagnostics
2017-08-15 19:04 - 2013-08-14 08:17 - 000000000 ____D C:\Users\LogMeInRemoteUser
2017-08-15 19:00 - 2016-05-19 14:31 - 000000000 ____D C:\Users\Burnsie
2017-08-10 18:10 - 2013-07-28 07:32 - 000000000 ____D C:\ProgramData\AVAST Software
2017-08-10 17:56 - 2015-12-03 10:12 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-10 17:56 - 2015-05-26 06:07 - 000000000 ____D C:\Program Files\avast software
2017-08-10 17:54 - 2016-11-18 10:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-08-10 17:22 - 2015-12-23 00:32 - 000000169 _____ C:\Windows\wininit.ini
2017-08-10 17:05 - 2016-02-19 11:22 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-08-10 07:34 - 2013-07-28 07:34 - 000000000 ____D C:\Program Files (x86)\Google
2017-08-10 07:23 - 2017-01-23 16:52 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-08-07 12:42 - 2015-01-13 20:08 - 000000000 ____D C:\Program Files (x86)\Applian Technologies
2017-08-06 14:14 - 2013-08-14 09:03 - 000000000 ____D C:\ProgramData\Skype
2017-08-01 20:20 - 2009-07-13 22:34 - 000000478 _____ C:\Windows\win.ini
2017-07-31 16:03 - 2016-03-23 06:18 - 000003882 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458728335
2017-07-28 14:29 - 2017-05-14 21:43 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Mael
2017-07-28 14:29 - 2015-11-29 10:07 - 000000000 ____D C:\ProgramData\Visan
2017-07-28 14:29 - 2013-07-28 07:52 - 000000000 ____D C:\Program Files\IDT
2017-07-28 14:29 - 2009-07-14 01:32 - 000000000 ____D C:\Program Files\Windows Sidebar
2017-07-28 14:26 - 2013-07-28 07:34 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Google
2017-07-28 11:02 - 2016-03-23 06:18 - 000041800 _____ (AVAST Software) C:\Windows\system32\Drivers\asw71edbdd4f9b98d4d.tmp
2017-07-28 11:02 - 2014-04-29 20:26 - 000046984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb4c0033c8e573298.tmp
2017-07-28 11:02 - 2014-01-01 11:21 - 000198768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswfb814c8491e32cdd.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 001015848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb3efa62624398dd9.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000585608 _____ (AVAST Software) C:\Windows\system32\Drivers\asw6e9cb885e66c1e24.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000361336 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 69c62023ff6973c.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000146696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswfd013cdd37ebfc83.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.150125417215503
2017-07-28 11:02 - 2013-07-28 07:34 - 000110352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswa65c0a7a4c2fa0e9.tmp
2017-07-28 11:02 - 2013-07-28 07:34 - 000084392 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8d41232c33c777a4.tmp
2017-07-28 10:37 - 2013-07-27 17:14 - 000153864 _____ C:\Users\Burnsie\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-27 13:57 - 2015-03-01 15:32 - 000000000 ____D C:\Temp
2017-07-27 12:47 - 2013-09-03 23:29 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\FileZilla
2017-07-26 17:16 - 2015-06-09 08:45 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-07-26 17:16 - 2015-06-09 08:45 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-07-26 17:16 - 2014-06-14 07:38 - 000000000 ____D C:\Users\Burnsie\AppData\Local\Adobe
2017-07-26 17:16 - 2013-07-28 15:54 - 000000000 ____D C:\Windows\system32\Macromed
2017-07-26 17:16 - 2013-07-27 19:44 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-07-25 16:42 - 2013-12-28 19:17 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\Celemony Software GmbH
2017-07-24 16:08 - 2016-01-27 16:00 - 000000000 ____D C:\Users\Burnsie\Epubor
2017-07-24 16:07 - 2016-01-27 16:00 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\.Epubor
2017-07-24 16:06 - 2016-05-05 20:06 - 000000000 ____D C:\Users\Burnsie\AppData\Roaming\epubor_log
2017-07-23 11:58 - 2013-11-15 14:54 - 000000000 ____D C:\Users\Burnsie\Documents\Rollover
2017-07-23 11:54 - 2013-09-04 10:54 - 000000132 _____ C:\Users\Burnsie\AppData\Roaming\Adobe PNG Format CS5 Prefs

==================== Files in the root of some directories =======

2013-12-28 20:09 - 2013-12-28 20:10 - 000308699 _____ () C:\Program Files (x86)\unins000.dat
2013-12-28 20:09 - 2013-12-28 20:09 - 000722680 _____ () C:\Program Files (x86)\unins000.exe
2013-09-04 16:01 - 2017-05-30 18:34 - 000000132 _____ () C:\Users\Burnsie\AppData\Roaming\Adobe GIF Format CS5 Prefs
2013-09-04 10:54 - 2017-07-23 11:54 - 000000132 _____ () C:\Users\Burnsie\AppData\Roaming\Adobe PNG Format CS5 Prefs
2013-07-28 15:35 - 2013-07-28 15:36 - 000000173 _____ () C:\Users\Burnsie\AppData\Roaming\hpmirrordriver.log
2016-06-14 13:34 - 2016-06-14 13:35 - 000608540 _____ () C:\Users\Burnsie\AppData\Roaming\Scorch_Install.log
2013-09-21 22:04 - 2015-01-19 13:55 - 000001456 _____ () C:\Users\Burnsie\AppData\Local\Adobe Save for Web 12.0 Prefs
2013-12-08 00:07 - 2013-12-08 00:09 - 000004608 _____ () C:\Users\Burnsie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-02 12:46 - 2015-06-02 12:46 - 000002264 _____ () C:\Users\Burnsie\AppData\Local\IWDAudHelper.20150602.124640.txt
2013-09-25 22:49 - 2013-09-25 22:49 - 000001549 _____ () C:\Users\Burnsie\AppData\Local\PDLSetup.20130925.224924.txt
2013-12-08 15:52 - 2013-12-08 15:52 - 000001549 _____ () C:\Users\Burnsie\AppData\Local\PDLSetup.20131208.145202.txt
2016-04-05 15:00 - 2017-04-04 13:48 - 000000600 _____ () C:\Users\Burnsie\AppData\Local\PUTTY.RND
2013-08-31 18:47 - 2016-06-14 23:11 - 000007610 _____ () C:\Users\Burnsie\AppData\Local\Resmon.ResmonCfg
2015-06-02 12:46 - 2015-06-02 12:47 - 000010186 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.124604.txt
2015-06-02 12:48 - 2015-06-02 12:49 - 000028880 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.124807.txt
2015-06-02 12:50 - 2015-06-02 12:50 - 000002933 _____ () C:\Users\Burnsie\AppData\Local\WiDiSetupLog.20150602.125001.txt
2015-11-21 23:02 - 2015-11-21 23:02 - 000000057 _____ () C:\ProgramData\Ament.ini

Some files in TEMP:
====================
2017-08-16 16:41 - 2017-08-16 16:41 - 000740416 _____ (Oracle Corporation) C:\Users\Burnsie\AppData\Local\Temp\jre-8u144-windows-au.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-11 00:23

==================== End of FRST.txt ============================

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-08-2017
Ran by Burnsie (19-08-2017 14:37:44)
Running from C:\Users\Burnsie\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2013-07-27 21:13:03)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-379828563-891033583-2518000098-500 - Administrator - Disabled)
Burnsie (S-1-5-21-379828563-891033583-2518000098-1000 - Administrator - Enabled) => C:\Users\Burnsie
Guest (S-1-5-21-379828563-891033583-2518000098-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-379828563-891033583-2518000098-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20095 - Adobe Systems Incorporated)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.03 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.2 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Photoshop CS5.1 (HKLM-x32\...\{9158FF30-78D7-40EF-B83E-451AC5334640}) (Version: 12.1 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Amazing Slow Downer (remove only) (HKLM-x32\...\Amazing Slow Downer) (Version:  - )
ANT Drivers Installer x64 (HKLM\...\{AB456A86-C80C-4803-9393-B617E3157CCA}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Any Video Converter 5.7.9 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software)
calibre 64bit (HKLM\...\{FC12E3F8-E522-4E65-A416-D7BDF41FBBA7}) (Version: 2.68.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
ConvertHelper 3.1.1 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version:  - DownloadHelper)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5.3817 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.4.5527 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dimension Pro 1.5 (HKLM-x32\...\DimensionPro_x64_is1) (Version: 18.0 - Cakewalk Music Software)
Dimension Pro Free Expansion Packs 1-3 (HKLM-x32\...\Dimension Pro Free Expansion Packs 1-3_is1) (Version: 1.0 - Cakewalk)
Distortion Control Data (HKLM-x32\...\{B08B4896-886C-4644-8664-BBA4CE99D318}) (Version: 1.00.0000 - Nikon)
DjVuLibre DjView  3.5.27+4.10.4 (HKLM-x32\...\DjVuLibre+DjView) (Version: 3.5.27+4.10.4 - DjVuZone)
Document Express DjVu Plug-in (HKLM\...\{6BB443AD-4A5D-494C-BB9F-8A15BD99E0CD}) (Version: 6.1.35213 - Cuminas Corporation)
DX Manager 5 (HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\7d4b97d91087fa5e) (Version: 5.1.1.1 - FM-Alive)
EaseUS Partition Master 12.5 (HKLM-x32\...\EaseUS Partition Master_is1) (Version:  - EaseUS)
EasyTether (HKLM\...\{0C1903A4-8F36-4F34-AC70-A595ADB51F37}) (Version: 1.1.18 - Mobile Stream) Hidden
EasyTether (HKLM-x32\...\{c751b7eb-df27-4668-b05f-7457d2fa9e00}) (Version: 1.1.18 - Mobile Stream)
EasyTether ADB USB driver (HKLM\...\{F45DA6A7-AD7C-489A-B9E2-CCFC70A46A2A}) (Version: 1.0.1 - Mobile Stream)
Elevated Installer (HKLM-x32\...\{05557A22-E458-4673-BDB1-1CB929673429}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
ePUBee Magic (HKLM-x32\...\ePUBee Magic) (Version: 1.0.0.11 - ePUBee)
Epubor (HKLM-x32\...\Epubor) (Version: 2.0.2.7 - Epubor Inc.)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
ESU for Microsoft Windows 7 SP1 (HKLM-x32\...\{B18BEB15-A9DA-43D7-BAE1-C6C67484C2C0}) (Version: 5.1.1 - Hewlett-Packard)
FileZilla Client 3.27.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.27.0.1 - Tim Kosse)
Garmin Express (HKLM-x32\...\{dee43f2c-65bf-40c0-97f2-b887178f63f4}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{EF8DE832-FCEE-48D6-85D0-716961D494A2}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (HKLM-x32\...\{10368821-483F-4EE9-8807-8A3DFB67F661}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GPSBabel 1.5.3 (HKLM-x32\...\{1B8FE958-A304-4902-BF7A-4E2F0F5B7017}_is1) (Version:  - GPSBabel)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{DFB497E0-CE3F-40FC-9596-FC7A48775DE4}) (Version: 4.1.16.1 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{5E63C0AB-19B0-47D4-842E-6B324EB0614B}) (Version: 4.1.23.1 - Hewlett-Packard Company)
HP DVB-T TV Tuner 8.0.64.43 (HKLM-x32\...\HP DVB-T TV Tuner) (Version: 8.0.64.43 - )
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{D79A5962-7305-41B9-A39E-A98AB598F372}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710n-z Help (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)
HP Officejet 6500 E710n-z Product Improvement Study (HKLM\...\{4207BD5E-6F51-4C57-BC86-A0EBE9088A30}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Quick Launch (HKLM-x32\...\{53B17A98-5BF0-40BC-AAFF-850A357975AC}) (Version: 2.7.2 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{962CB079-85E6-405F-8704-1C62365AE46F}) (Version: 4.5.10.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.2.8.25 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.4.18.7 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6381.0 - IDT)
Intel® Chipset Device Software (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel® Corporation) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation)
Intel® Driver Update Utility 2.0 (HKLM-x32\...\{59DB38EB-F864-4E10-841D-38CFBCF864B0}) (Version: 2.0.0.29 - Intel) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
Intel® WiDi (HKLM-x32\...\{7FCB8D5D-9396-4D17-8CFA-349D6D49CD32}) (Version: 3.0.13.0 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{a2a04474-104a-49b3-9bf5-33afee260030}) (Version: 17.14.0 - Intel Corporation)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java SE Development Kit 7 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170250}) (Version: 1.7.0.250 - Oracle)
Java SE Development Kit 8 Update 73 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180730}) (Version: 8.0.730.2 - Oracle Corporation)
KMLCSV Converter (HKLM-x32\...\KMLCSV Converter) (Version: 2.2.1 - Choon-Chern Lim)
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 11.1.1.0 - Lightworks)
Macromedia Dreamweaver 8 (HKLM-x32\...\{0837A661-FEC3-48B3-876C-91E7D32048A9}) (Version: 8.0.0.2734 - Macromedia)
Macromedia Extension Manager (HKLM-x32\...\{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}) (Version: 1.7.240 - Macromedia, Inc.)
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
M-Audio MIDISPORT 6.1.3 (x64) (HKLM\...\{AED2A1D4-19B4-4692-8004-E1A3E8A9E85B}) (Version: 6.1.3 - M-Audio)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Melodyne Runtime 4.1 (x64) (HKLM\...\{53EE2829-E9DB-4913-B3EA-96F10F84E98B}) (Version: 1.0.1 - Celemony Software GmbH)
Melodyne singletrack (HKLM-x32\...\{16DF894D-FC3F-4B87-908D-671E201CD7A8}) (Version: 2.01.0202 - Celemony Software GmbH)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MIDI-OX (HKLM-x32\...\{A6457851-5EA9-45B0-AF1D-D2A0A4781CFB}) (Version: 7.02.372 - MIDIOX Computing)
MiniTool Partition Wizard Free 10.2.2 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
Monkey's Audio (HKLM-x32\...\Monkey's Audio_is1) (Version:  - )
Moog Little Phatty SE 3.2.0 (HKLM-x32\...\Moog Little Phatty SE 3.2.0_is1) (Version:  - Moog Music)
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{B39A6825-EA20-43EA-AB2D-A6BC0298D9A1}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Music Collection 2.4.2.0 (HKLM-x32\...\{DE4BC92E-B3DD-4B7D-B4C7-CF7C175155CE}_is1) (Version:  - GSoft4U)
MySQL Installer (HKLM-x32\...\{9BF56AF8-3471-4EE2-889F-73733D492297}) (Version: 1.3.3.0 - Oracle Corporation)
MySQL Server 5.6 (HKLM\...\{23EEC459-9E65-4DCE-83B8-A1FDB44B9337}) (Version: 5.6.14 - Oracle Corporation)
Nikon Scan (HKLM-x32\...\{9AE4AC96-A5F4-4F19-9D13-066C8B3CE034}) (Version: 4.0 - )
PDF ePub DRM Removal version 4.16 (HKLM-x32\...\{B17EB9DB-FEFD-4943-94E5-5428B3A53467}_is1) (Version: 4.16 - eBook Converter Team)
PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
PreSonus Studio One 3 x64 (HKLM\...\PreSonus Studio One 3) (Version: 3.3.4.41933 - PreSonus Audio Electronics)
PX Profile Update (HKLM-x32\...\{56709CD7-06E8-B205-56A6-110DC5090A9A}) (Version: 1.00.1. - AMD) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
R for Windows 3.2.2 (HKLM\...\R for Windows 3.2.2_is1) (Version: 3.2.2 - R Core Team)
Rapture 1.2.2 (HKLM-x32\...\Rapture_x64_is1) (Version: 18.0 - Cakewalk Music Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
Recovery Manager (HKLM-x32\...\{DBCD5E64-7379-4648-9444-8A6558DCB614}) (Version: 2.0.0 - Hewlett-Packard) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.19.0 - Renesas Electronics Corporation)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
Rtools 3.3 (HKLM-x32\...\Rtools_is1) (Version:  - The R Foundation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Sibelius Scorch (Firefox, Opera, Netscape, Chrome only) (HKLM-x32\...\{41626CC0-A854-4402-AD06-D7939515C282}) (Version: 6.2.0 - Sibelius Software, a division of Avid Technology, Inc.)
Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
SONAR X3 Producer (x64) (HKLM-x32\...\SONARX3Producer_x64_is1) (Version: 20.0 - Cakewalk Music Software)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
The Digital Tradition Folksong Database 3.1 (HKLM-x32\...\The Digital Tradition Folksong Database) (Version: 3.1 - The Mudcat Cafe)
Total Recorder Editor Pro v13.0.1 (HKLM-x32\...\Total Recorder Editor Pro_is1) (Version:  - AdvancedAudioSoft Co., Ltd.)
Trader's Little Helper 2.7.0 (HKLM-x32\...\TradersLittleHelper_is1) (Version: 2.7.0 - Robert Hoffmann)
Validity WBF DDK (HKLM\...\{79174AF2-6CB1-42F5-981E-66DCA49391D0}) (Version: 4.3.205.0 - Validity Sensors, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Vuze Remote Toolbar v7.6 (HKLM-x32\...\{7FAA19D2-3CF3-4FF6-9746-C0B8DB88757D}) (Version: 7.6 - Spigot, Inc.) <==== ATTENTION
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
YAMAHA S80/S30 Voice Editor (HKLM-x32\...\{6BCE06DC-9963-4BCF-84CB-4A18A1B69155}) (Version:  - )
Zoom (HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\ZoomUMX) (Version: 4.0 - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-379828563-891033583-2518000098-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-379828563-891033583-2518000098-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Burnsie\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll (Google Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Systemy\Malwarebytes\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-03-14] (Piriform Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-08-09] (Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Systemy\Avast\ashShA64.dll [2017-08-10] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Systemy\Malwarebytes\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-03-14] (Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02B76A9A-4658-4CDA-9BD3-6FE1DF8E30CD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {1A2070F7-2551-4879-9800-651964295CC9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {25A7FDEA-03AE-44CA-9233-1F54C0C32FC6} - System32\Tasks\AdobeAAMUpdater-1.0-jburns-Burnsie => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05] (Adobe Systems Incorporated)
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {426F9E9D-38AD-4BCD-972E-5052F23B7865} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Systemy\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {463155AE-9A53-40D6-9F41-AE03F80E473A} - System32\Tasks\HPCeeScheduleForBurnsie => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {4E7F604B-5C35-4140-B358-5DBF62A45D39} - System32\Tasks\Avast Emergency Update => C:\Program Files\Systemy\Avast\AvEmUpdate.exe [2017-08-10] (AVAST Software)
Task: {514BBAC1-2F12-4C26-9DBF-4962ED98C4E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {5A913FA4-A052-4B21-B363-FC5767C1197D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-26] (Adobe Systems Incorporated)
Task: {68F993D9-918C-46D0-82AB-B9AF51A3336B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {79CC704E-5F3F-4229-BE02-52F17CC53DD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {8BE23C8A-A3E8-4875-BC13-18628DB7292F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {8DAC30A6-54F4-4F87-A945-5D33A6929549} - System32\Tasks\{EC9886DC-4D26-44DB-B9A0-E5F840E22D0C} => C:\Windows\system32\pcalua.exe -a C:\Users\Burnsie\AppData\Local\Temp\jre-8u77-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {8E99561F-391A-4AC7-8EFB-34D4273B2B81} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {94EE22A1-C6DC-4A61-B609-EE3D7E9C232D} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e91f46715178 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {9AA6099E-65D2-44ED-8AA5-E1082D1C62BA} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {9BEC8B71-2542-43F5-AAAA-A7053EC97446} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {AF9546A5-1B07-4134-B7B7-A17F03FE7B80} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-07-27] (CyberLink)
Task: {AFA6516C-D4FF-46D6-BC33-FD80D18A39FC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {B0E3630B-ADC5-4C43-A789-EC673308BCD4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {B6681E9D-7CF5-4CE7-92DC-EB0B6100AA20} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {BA267917-E535-45B6-87AC-FA58E75E5027} - System32\Tasks\{5A2CBC74-F1F9-485B-B0DE-05D2CA37AE28} => C:\Windows\system32\pcalua.exe -a C:\Users\Burnsie\AppData\Local\Temp\jre-8u131-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
Task: {BBBF3367-4F93-4EBD-8A13-27A9908C0F2C} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e91f46d54b44 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {D6CD6E61-46A9-4F38-B270-6501B674D08F} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-05-05] ()
Task: {EBBCCB35-0036-47D4-858F-1B78A25D1F4C} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {EC91FBA8-5AC5-4275-8867-E99C0702BDFD} - System32\Tasks\SafeZone scheduled Autoupdate 1458728335 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {EFAD845D-533C-48B4-9B1C-24F0547FF583} - System32\Tasks\{C13D1E98-B2A2-45AC-A95D-49709E8346EE} => C:\Windows\system32\pcalua.exe -a C:\Users\Burnsie\AppData\Local\Temp\jre-8u101-windows-au.exe -d "C:\Program Files\Java\jre1.8.0_91\bin" -c /installmethod=jau-m FAMILYUPGRADE=1 <==== ATTENTION
Task: {F2C30FB3-3BB8-4C92-905E-A48EC675F8D8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForBurnsie.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2013-09-05 01:17 - 2013-09-05 01:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 16:23 - 2010-10-20 16:23 - 008801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2017-07-19 12:18 - 2017-07-19 12:18 - 000076456 _____ () C:\Program Files (x86)\Web\FileZilla FTP Client\fzshellext_64.dll
2013-07-27 19:29 - 2011-04-14 23:16 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-08-16 12:24 - 2014-11-18 14:44 - 000255072 _____ () C:\Program Files (x86)\Systemy\EaseUS Partition Master 12.5\bin\TrayPopupE\TrayTipAgentE.exe
2013-09-10 10:04 - 2013-09-10 10:04 - 012915712 _____ () C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000162032 _____ () c:\Program Files\Systemy\Avast\x64\vaarclient.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000831664 _____ () C:\Program Files\Systemy\Avast\x64\ffl2.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000276808 _____ () c:\Program Files\Systemy\Avast\x64\StreamBack.dll
2013-05-11 06:37 - 2013-05-11 06:37 - 004891368 _____ () C:\Program Files (x86)\Adobe\Acrobat 11.0\PDFMaker\Common\X64\AdobePDFMakerX.dll
2015-11-11 02:49 - 2015-11-11 02:49 - 001557160 _____ () C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
2017-03-14 19:13 - 2017-03-14 19:13 - 000176320 _____ () C:\Program Files\Microsoft Office\Office14\OUTLCTL.DLL
2017-08-10 18:12 - 2017-08-10 18:12 - 000170224 _____ () C:\Program Files\Systemy\Avast\JsonRpcServer.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000192664 _____ () C:\Program Files\Systemy\Avast\event_routing_rpc.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000224256 _____ () C:\Program Files\Systemy\Avast\tasks_core.dll
2017-08-17 08:13 - 2017-08-17 08:13 - 005895544 _____ () C:\Program Files\Systemy\Avast\defs\17081700\algo.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000689272 _____ () C:\Program Files\Systemy\Avast\ffl2.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000231664 _____ () C:\Program Files\Systemy\Avast\streamback.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 005895544 _____ () C:\Program Files\Systemy\Avast\defs\17081900\algo.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001065936 _____ () C:\Program Files\Systemy\Avast\AvChrome.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 067109376 _____ () C:\Program Files\Systemy\Avast\libcef.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000292920 _____ () C:\Program Files\Systemy\Avast\gaming_mode_ui.dll
2017-08-16 12:24 - 2014-02-13 15:27 - 000222792 _____ () C:\Program Files (x86)\Systemy\EaseUS Partition Master 12.5\bin\TrayPopupE\traynet.dll
2017-08-16 12:24 - 2014-02-13 15:27 - 000275528 _____ () C:\Program Files (x86)\Systemy\EaseUS Partition Master 12.5\bin\TrayPopupE\libcurl.dll
2017-08-16 12:24 - 2014-02-13 15:27 - 000113166 _____ () C:\Program Files (x86)\Systemy\EaseUS Partition Master 12.5\bin\TrayPopupE\zlib1.dll
2017-08-16 12:24 - 2014-02-13 15:27 - 000249928 _____ () C:\Program Files (x86)\Systemy\EaseUS Partition Master 12.5\bin\TrayPopupE\uexper.dll
2017-05-13 16:21 - 2017-05-13 16:21 - 000172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1ec855392d1e10abdfe0e8e8bdb27f4b\IsdiInterop.ni.dll
2013-07-27 19:29 - 2011-05-20 10:05 - 000059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7936 more sites.

IE trusted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\driversupport.com -> hxxp://apps.driversupport.com
IE trusted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\driversupport.com -> hxxps://apps.driversupport.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\123simsen.com -> www.123simsen.com

There are 7936 more sites.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-09-30 21:16 - 2017-08-10 12:37 - 000459935 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns-5.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 ereg.adobe.com
127.0.0.1 ereg.wip.adobe.com
127.0.0.1 ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.wip4.adobe.com
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 practivate.adobe
127.0.0.1 practivate.adobe.com
127.0.0.1 practivate.adobe.ipp
127.0.0.1 practivate.adobe.newoa

There are 15753 more lines.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-379828563-891033583-2518000098-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Burnsie\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: SDWSCService => 2
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: HP Officejet 6500 E710n-z (NET) => "C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe" -deviceID "CN11R114RX05JW:NW" -scfn "HP Officejet 6500 E710n-z (NET)" -AutoStart 1
MSCONFIG\startupreg: HPOSD => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
MSCONFIG\startupreg: HughesNetStatusMeter => "C:\Program Files (x86)\Systemy\HughesNet Status Meter\HughesNet Status Meter.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\Video\Quicktime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9C22784A-27CD-4A64-9E95-C0990D9329DA}] => (Allow) LPort=3306
FirewallRules: [TCP Query User{7A713CC5-07EB-43F9-B28B-2F4958A69878}C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe
FirewallRules: [UDP Query User{CD7BB347-ED70-44B7-8793-2B31014B0FD7}C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe
FirewallRules: [{F93CBBC8-8414-4236-9424-206A41BB1AC7}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D3952A8D-B058-4E9A-846B-D43108642A64}] => (Allow) LPort=2869
FirewallRules: [{97392143-C97B-4671-908A-44DA521A787D}] => (Allow) LPort=1900
FirewallRules: [{4E88023C-F587-4FAC-B30F-FF9618E2AA73}] => (Allow) C:\Program Files (x86)\Video\Lightworks\Lightworks.exe
FirewallRules: [{26B57867-8138-4EFE-B3D0-B3B8B543DEB7}] => (Allow) C:\Program Files (x86)\Video\Lightworks\Lightworks.exe
FirewallRules: [{BBDB6551-5409-4DD0-85AB-BF0DEEA4B440}] => (Allow) C:\Program Files (x86)\Video\Lightworks\ntcardvt.exe
FirewallRules: [{3365C2C1-7CF4-4630-8144-906D5D0E5DE0}] => (Allow) C:\Program Files (x86)\Video\Lightworks\ntcardvt.exe
FirewallRules: [{C2207FED-DEA0-4181-9FDE-9E1384114CB2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{CAF17F68-FF62-45D3-A127-E3DCFE74C0BF}] => (Allow) C:\Program Files (x86)\XLN Audio\Addictive Drums\Addictive Drums.exe
FirewallRules: [{CA7B27D1-77C9-477F-9F42-9A3428C98BAF}] => (Allow) C:\Program Files (x86)\XLN Audio\Addictive Drums\Addictive Drums.exe
FirewallRules: [{3A0283CA-7A40-42F2-A519-9638D262A70B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{4DF2A661-33FA-4B0F-9AFB-EE12813F0737}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{EC7BEADB-5112-4B65-9932-55A4D8920BB4}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{B810ECD8-9901-41FE-B718-A9817874FB1B}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\FaxApplications.exe
FirewallRules: [{E93D58FF-53F4-41F9-A70C-B764D350ADBE}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\DigitalWizards.exe
FirewallRules: [{DC4F004D-BC34-40FC-89B1-80132180B13B}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\SendAFax.exe
FirewallRules: [{61F76F52-4D67-4550-BB49-608AB38672CD}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\DeviceSetup.exe
FirewallRules: [{6A2882E2-98B4-41D0-8C1C-EBB2F67F785B}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicator.exe
FirewallRules: [{271450BC-0978-4FDE-9F45-4C509C253EBD}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{B1E0367F-5F1E-4BA2-B77C-5850F453DD31}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{6973CA4E-64A4-4A44-B768-D8CC4BD5A214}C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe
FirewallRules: [UDP Query User{FFD34BB1-9CA0-4801-8F1D-AFAA7893F12F}C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\web\dreamweaver 8\dreamweaver.exe
FirewallRules: [TCP Query User{142319EC-6F79-4ECD-9C56-AF55DBBC6313}C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe
FirewallRules: [UDP Query User{AC68476A-A520-4F21-A8B0-77034C2DDCF2}C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe
FirewallRules: [TCP Query User{522A21EE-CF39-439C-BD83-32D78AA2B999}C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe] => (Block) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe
FirewallRules: [UDP Query User{F2E2A817-BCA3-444B-879C-CB7AD53D7F52}C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe] => (Block) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpdevicedetection3.exe
FirewallRules: [{1DC9CC4D-4D79-4601-80C8-748BBA8170B6}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{53638367-2B7C-4CC8-B567-7FE3683C4550}] => (Allow) C:\Program Files\Music\Studio One 3\Studio One.exe

==================== Restore Points =========================

16-08-2017 15:47:47 Scheduled Checkpoint
16-08-2017 16:53:09 Windows Update

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (08/19/2017 12:47:21 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll".Error in manifest or policy file "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll" on line 9.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

Error: (08/19/2017 12:47:07 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\DjVuViewer.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.

Error: (08/17/2017 08:21:44 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll".Error in manifest or policy file "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll" on line 9.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

Error: (08/17/2017 08:21:22 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\DjVuViewer.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.

Error: (08/16/2017 05:11:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 11.0.9600.18763, time stamp: 0x59682223
Faulting module name: iertutil.dll, version: 11.0.9600.18763, time stamp: 0x59682ff5
Exception code: 0xc0000005
Fault offset: 0x0013696f
Faulting process id: 0x18d4
Faulting application start time: 0x01d316d3fe2814af
Faulting application path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Faulting module path: C:\Windows\syswow64\iertutil.dll
Report Id: 7a760c0f-82c7-11e7-ac3c-082e5f805e07

Error: (08/16/2017 12:22:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program partitionwizard.exe version 10.0.1.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1e34

Start Time: 01d316ab0ec43807

Termination Time: 29281

Application Path: C:\Program Files\Systemy\MiniTool Partition Wizard 10\partitionwizard.exe

Report Id:

Error: (08/16/2017 11:42:08 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.18739 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: e0

Start Time: 01d316a5bac17ed6

Termination Time: 0

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id:

Error: (08/16/2017 08:12:08 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll".Error in manifest or policy file "c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll" on line 9.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

Error: (08/16/2017 08:12:02 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\DjVuViewer.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.

Error: (08/15/2017 07:15:19 PM) (Source: HP Active Health) (EventID: 88) (User: )
Description: -- SECURITY WARNING -- ActiveHealthProperties.ini has been tampered with, resetting it

System errors:
=============
Error: (08/19/2017 12:43:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Garmin Device Interaction Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/19/2017 12:43:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Garmin Device Interaction Service service to connect.

Error: (08/17/2017 01:50:04 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (08/17/2017 01:45:19 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (08/17/2017 08:11:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Garmin Device Interaction Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/17/2017 08:11:54 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Garmin Device Interaction Service service to connect.

Error: (08/17/2017 08:11:05 AM) (Source: ACPI) (EventID: 10) (User: )
Description: ACPI: ACPI BIOS is attempting to write to an illegal PCI Operation Region (0x4), Please contact your system vendor for technical assistance.

Error: (08/17/2017 08:11:05 AM) (Source: ACPI) (EventID: 10) (User: )
Description: ACPI: ACPI BIOS is attempting to write to an illegal PCI Operation Region (0x3b), Please contact your system vendor for technical assistance.

Error: (08/17/2017 08:11:05 AM) (Source: ACPI) (EventID: 10) (User: )
Description: ACPI: ACPI BIOS is attempting to write to an illegal PCI Operation Region (0x3a), Please contact your system vendor for technical assistance.

Error: (08/17/2017 08:11:05 AM) (Source: ACPI) (EventID: 10) (User: )
Description: ACPI: ACPI BIOS is attempting to write to an illegal PCI Operation Region (0x39), Please contact your system vendor for technical assistance.

CodeIntegrity:
===================================
  Date: 2016-01-16 10:05:06.874
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:05:04.164
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:05:03.843
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:05:03.330
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:03:25.560
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-16 10:03:25.482
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel® Core™ i7-2720QM CPU @ 2.20GHz
Percentage of memory in use: 47%
Total physical RAM: 8139.86 MB
Available physical RAM: 4236.67 MB
Total Virtual: 16277.9 MB
Available Virtual: 12311.73 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:681.2 GB) (Free:11.74 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (RECOVERY) (Fixed) (Total:17.14 GB) (Free:1.82 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: BE2F2B88)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=681.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=17.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== End of Addition.txt ============================



#8 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,890 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:02:50 PM

Posted 20 August 2017 - 07:21 AM

Burnsie:

Thank you for your patience while I analyzed your FRST logs.

Before we start dealing with the problems you are experiencing, I would ask that you to take note of the following points:

  • I am a Bleeping Computer volunteer, so I ask you to be patient. I know it is frustrating when your computer is not working properly, but malware removal takes time.
  • Please also remember that I can only dedicate a limited number of hours a day to helping people. We may live in different time zones, which may cause delays in responding.
  • If I have not responded to you within 48 hours, please send me a personal message. Likewise, I expect you to respond within 48 hours, and sooner is better because we can fix your computer faster.
  • If I have not heard from you in three days, I will "bump" your post. After five days of no response, I will consider that you no longer need my assistance and this thread will be closed.
  • Logs can take a while to research, so please be patient.
  • Some issues just cannot be solved so you must be prepared for this.
  • Please read and follow the instructions in the exact sequence that they are posted to avoid making a bad situation worse.
  • Please print or copy and save the instructions.
  • Back up all your data and important files on another (external) drive before starting to run malware removal tools. Malware removal can cause unpredictable and unintended issues.
  • You should try to limit your browsing with this computer until you are given the "All Clear." Some malware applications steal passwords.
  • Please do not install or uninstall any applications, unless directed. Don't run any scripts or tools on your own because unsupervised usage may cause more harm than good.
  • Please use only the tools you have been instructed to use.
  • If you are using CD/DVD emulation software, this should be uninstalled or disabled as it can interfere with the removal of some malware. It can be turned off with Defogger and then turned back on when you get the "All Clear."
  • Please copy and paste the requested log files inside your post(s), unless otherwise instructed. Please do not use code or quote boxes.
  • There are no silly questions. Ask for clarification, if you have any questions or concerns.
  • Bleeping Computer does not support any piracy. Evidence of illegal OS, software, cracks/keygens, etc., will be revealed by scan logs, and if found, further assistance may be suspended. Uninstall such software before proceeding!
  • Any P2P software such as uTorrent, BitTorrent, Kazaa, etc. must be uninstalled or completely disabled. P2P software is a major security risk to your computer and may have been the route the malware used to infect your computer.
  • Failure to follow these guidelines may result in assistance being withdrawn and your thread being closed.
  • I am volunteering my time to help you, and I will need you to help me. Together, we can, hopefully, disinfect your computer and get if functioning properly again. That is my only aim.

.

OK, let's get started ...

.

:step1: The following entry appears in the FRST.txt log file:

 

ProxyServer: [S-1-5-21-379828563-891033583-2518000098-1000] => localhost:8080


Did you deliberately set that proxy server?

.

:step2: The "Addition.txt" file included this information.

 

Drive c: () (Fixed) (Total:681.2 GB) (Free:11.74 GB) NTFS ==>[system with boot components (obtained from drive)]


Windows requires at least ten to fifteen percent free space on the OS drive. You have less than two (2) percent free space. That will cause Windows to function very slowly and thrash around trying to execute commands. Please run CCleaner to remove unnecessary files. Any files not needed should be moved to other media. You should aim to have a minimum of 70 GB of free space; 100 GB of free space would be ideal.

 

Please do not use the CCleaner Registry Cleaner module, which the logs show that you have been using. The use of such utilities is not recommended. Please see this link for more information.

.


:step3: I am seeing remnants of Spybot Search & Destroy. quietman7, one of Bleeping Computer's foremost security experts, no longer recommends that program. Please see this link for more information.

 

2017-08-15 22:57 - 2015-12-22 23:41 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-08-15 22:57 - 2015-12-22 23:23 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
Task: {426F9E9D-38AD-4BCD-972E-5052F23B7865} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Systemy\Spybot - Search & Destroy 2\SDImmunize.exe

 

.

:step4: QuickTime is showing as installed on your computer. It is no longer being supported by Apple. It is considered a security vulnerability. Please see this link for more information. I recommend that you uninstall this program, unless you really need it. Please let me know what you decide to do.

 

QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)

.

:step5: In going over your logs I noticed that you have Vuze installed. Please consider the following advice to reduce the possibility of being infected when surfing the web.

  • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
  • They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
  • Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
  • The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.

It is pretty much certain that if you continue to use P2P programs, your computer will get infected again.
I would recommend that you uninstall Vuze, however that choice is up to you. If you choose to remove these programs, you can do so via Start > Control Panel > Add/Remove Programs.
If you wish to keep it, please do not use it until your computer is cleaned.

.

:step6: The "Addition.txt" file shows that you have Java installed. That program is considered vulnerable to malware. Unless you really need it for some older games or some other purpose, I would recommend that you uninstall it. Please let me know what you decide to do.

.

:step7: Please run a FRST fix for me.

NOTICE: This FRST "fixlist" script was written specifically for this user, for use on this individual computer. Running this on another computer may cause damage to your operating system.
 

Start::
CreateRestorePoint:
CloseProcesses:
Folder: C:\Program Files\Systemy
VirusTotal: C:\Program Files\Systemy\Avast\AvLaunch.exe;C:\Windows\SysWOW64\octobe~1.dll
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\Run: [AdobeBridge] => [X]
CHR HKU\S-1-5-21-379828563-891033583-2518000098-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - <no Path/update_url>
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> No File
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {9AA6099E-65D2-44ED-8AA5-E1082D1C62BA} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {EBBCCB35-0036-47D4-858F-1B78A25D1F4C} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
Hosts:
File: c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll
EmptyTemp:
End::
  • Please highlight the entire contents of the code box above, from the "Start::" line to the "End::" line, including both of those lines, right click, and select "Copy", which will copy the "fix" script into the Windows clipboard.
  • Right click FRST64.exe, and select "Run as Administrator".
  • Press Fix button once and wait.
  • Please reboot the computer, if requested.
  • A log file called "fixlog.txt" will be saved in the same folder as the FRST program is located.
  • Please copy and paste the contents of the "fixlog.txt" file into your next reply.

.


Thank you and have a great day.

Regards,
-Phil
 


Graduate of the Bleeping Computer Malware Removal Study Hall


#9 Burnsie

Burnsie
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 20 August 2017 - 08:40 AM

Am down to step 7. You don't indicate pasting the script into a window in FRST. Will it inherently pick up on what's copied to the clipboard? Haven't tried it yet as I didn't know what happens after I click Fix. Does it ask for a script?



#10 Burnsie

Burnsie
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 20 August 2017 - 10:01 AM

Thanks

 

1. No I didn't change Proxy.

2. Getting there. 30 GB so far. Have to work on trimming down and see what I've backed up.

3. Can't find Spybot S and D in Program List and have run CCleaner.

4. Uninstalled Quicktime.

5. Vuze Uninstalled

6. Java uninstalled.

7. Ran FRST with included script. Rebooted. Ran CCleaner again and ran the Registry Scan as well.

 

Firefox and Chrome are uninstalled and yet I see references to them still. Haven't touched anything.

 

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 20-08-2017
Ran by Burnsie (20-08-2017 10:34:23) Run:1
Running from C:\Users\Burnsie\Desktop
Loaded Profiles: Burnsie (Available Profiles: Burnsie)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {9AA6099E-65D2-44ED-8AA5-E1082D1C62BA} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {EBBCCB35-0036-47D4-858F-1B78A25D1F4C} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
Hosts:
File: c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll
EmptyTemp:

*****************

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsBackup\ConfigNotification => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9AA6099E-65D2-44ED-8AA5-E1082D1C62BA} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9AA6099E-65D2-44ED-8AA5-E1082D1C62BA} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC4E5ACF-89F7-4220-BA21-81EE183975E2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC4E5ACF-89F7-4220-BA21-81EE183975E2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\AitAgent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CEE64558-E1A7-4D9D-80A7-2001912BE5B5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CEE64558-E1A7-4D9D-80A7-2001912BE5B5} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MemoryDiagnostic\CorruptionDetector => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EBBCCB35-0036-47D4-858F-1B78A25D1F4C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EBBCCB35-0036-47D4-858F-1B78A25D1F4C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTask => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA2BC0A6-8D4B-458A-85C8-2B8C72487513} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA2BC0A6-8D4B-458A-85C8-2B8C72487513} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector => key removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========================= File: c:\program files\r\r-3.2.2\tcl\bin64\tk85.dll ========================

File not signed
MD5: A51E2E0BF119FD94879102A75C5A7A3E
Creation and modification date: 2015-10-30 13:43 - 2010-01-15 06:19
Size: 001780736
Attributes: ----A
Company Name: ActiveState Corporation
Internal Name:
Original Name: tk85.dll
Product: Tk 8.5 for Windows
Description: Tk DLL
File Version: 8.5.8
Product Version: 8.5.8
Copyright: Copyright © 2001 by ActiveState Corporation, et al
VirusTotal: https://www.virustotal.com/file/6478dc1ad3446be718bcefae800459ec6e099281a31ba1715f345d0eda582886/analysis/1491772478/

====== End of File: ======

=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10930079 B
Java, Flash, Steam htmlcache => 725 B
Windows/system/drivers => 132533544 B
Edge => 0 B
Chrome => 0 B
Firefox => 25421077 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 43307815 B
systemprofile32 => 77014 B
LocalService => 16384 B
NetworkService => 25145 B
Burnsie => 12700625 B
LogMeInRemoteUser => 0 B

RecycleBin => 0 B
EmptyTemp: => 226.6 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 10:34:31 ====



#11 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,890 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:02:50 PM

Posted 20 August 2017 - 12:31 PM

Burnsie:

Thank you for the updates and the fixlog.txt contents. It appears that you did not copy the entire FRST "fixlist" script to the Windows Clipboard because only a part of it executed. I am going to attach a FRST "fixlist.txt" script to this response. I want you to save the file to this folder, where FRST64.exe is located: C:\Users\Burnsie\Desktop.

The FRST utility was enhanced in recent months to permit it to grab a "fixlist" script directly from the Windows clipboard, negating the need to copy and paste a code box or save a "fixlist.txt" script to the folder where FRST is located. Since you indicated that you had been assisted here before, I presume that is where the confusion arose for you.

I am including the attached FRST "fixlist.txt" script in a code box in this reply only for my own information and for the assistance of others who might be reviewing this topic, thereby saving them the requirement to download it to see what was scripted. For your purposes, please save the attached "fixlist.txt" file to your Desktop and then run FRST64.exe as an Administrator.

Let's go through your list of responses.

:step1: The attached FRST "fixlist.txt" script will reset your proxy back to default since you indicated that you did not alter the default Internet settings.

:step2: That is a good start getting 30 GB free. :thumbup2: You reallly do want to try and maintain a minimum of 70 to 100 GB of free space on your Drive C: to optimize the performance of your computer.

:step3: I didn't see Spybot Search & Destroy listed as an installed program. I only saw remnants. The attached FRST "fixlist.txt" script will remove the remnants that I found. I didn't want to delete those items without your permission. It is your computer and the remnants are not malware.

:step4:, :step5:, :step6: I am pleased that you uninstalled those programs. They are a security vulnerability. :thumbup2:

:step7: I strongly recommend that you do not use the Registy Cleaning module in CCleaner. As I explained in my previous post, the use of registry cleaners is not recommended by Bleeping Computer, Microsoft, and other reputable websites. They are at best "snake oil" and at worst, they can damage your computer, potentially rendering it unbootable. Before I commenced my training here, I did formerly use registry cleaners myself, and I did wreak havoc on my main computer. I would not go near them now with a barge pole! :)

Neither the Chrome nor the Firefox entries are dangerous. It is quite usual to see them remaining when either or both programs are uninstalled via the Control Panel. That is why many folks, myself included, use Revo Uninstaller Pro to uninstall programs as it scans for remnants on the hard drive and for leftover registry entries, giving the user the option to delete some or all of the remnants.

I did note that you had installed Easeus Partition Master 12.5 between the time of the first and the second set of FRST logs. I would respectfully request that you avoid installing and uninstalling programs, except as I ask you to. It is hard to hit a moving target. The best results are obtained when the software configuration of the computer platform being worked on is stable. Thank you for anticipated cooperation.

.

:step8: Please copy the attached FRST "fixlist.txt" script file (located at the bottom left of this post) to your Desktop folder.  Just click the file to download it.  Right-click FRST64.exe and select "Run as Administrator". Ignore the code box below.

CreateRestorePoint:
CloseProcesses:
ProxyServer: [S-1-5-21-379828563-891033583-2518000098-1000] => localhost:8080
Folder: C:\Program Files\Systemy
VirusTotal: C:\Program Files\Systemy\Avast\AvLaunch.exe;C:\Windows\SysWOW64\octobe~1.dll
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\Run: [AdobeBridge] => [X]
CHR HKU\S-1-5-21-379828563-891033583-2518000098-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - <no Path/update_url>
2017-08-15 22:57 - 2015-12-22 23:41 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-08-15 22:57 - 2015-12-22 23:23 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
Task: {426F9E9D-38AD-4BCD-972E-5052F23B7865} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Systemy\Spybot - Search & Destroy 2\SDImmunize.exe
C:\Program Files (x86)\Systemy\Spybot - Search & Destroy 2
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> No File
  • Press Fix button once and wait.
  • Please reboot the computer, if requested.
  • A log file called "fixlog.txt" will be saved in the same folder as the FRST program is located.
  • Please copy and paste the contents of the "fixlog.txt" file into your next reply.

.

Thank you and have a great day.

Regards,
-Phil


Graduate of the Bleeping Computer Malware Removal Study Hall


#12 Burnsie

Burnsie
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 20 August 2017 - 12:59 PM

HAD TO POST IN 2 PARTS

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 20-08-2017
Ran by Burnsie (20-08-2017 13:41:29) Run:2
Running from C:\Users\Burnsie\Desktop
Loaded Profiles: Burnsie (Available Profiles: Burnsie)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CreateRestorePoint:
CloseProcesses:
ProxyServer: [S-1-5-21-379828563-891033583-2518000098-1000] => localhost:8080
Folder: C:\Program Files\Systemy
VirusTotal: C:\Program Files\Systemy\Avast\AvLaunch.exe;C:\Windows\SysWOW64\octobe~1.dll
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-379828563-891033583-2518000098-1000\...\Run: [AdobeBridge] => [X]
CHR HKU\S-1-5-21-379828563-891033583-2518000098-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - <no Path/update_url>
2017-08-15 22:57 - 2015-12-22 23:41 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-08-15 22:57 - 2015-12-22 23:23 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
Task: {426F9E9D-38AD-4BCD-972E-5052F23B7865} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Systemy\Spybot - Search & Destroy 2\SDImmunize.exe
C:\Program Files (x86)\Systemy\Spybot - Search & Destroy 2
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> No File

*****************

Restore point was successfully created.
Processes closed successfully.
HKU\S-1-5-21-379828563-891033583-2518000098-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully

========================= Folder: C:\Program Files\Systemy ========================

2017-08-10 18:12 - 2017-08-20 10:54 - 000000000 ____D () C:\Program Files\Systemy\Avast
2017-08-10 18:12 - 2017-08-10 18:16 - 004561704 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aavm4h.dll
2017-08-10 18:14 - 2017-08-10 18:16 - 000000223 _____ () C:\Program Files\Systemy\Avast\aavm4h.dll.sum
2017-08-10 18:12 - 2017-08-10 18:16 - 000390552 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aavmrpch.dll
2017-08-10 18:16 - 2017-08-10 18:16 - 000000223 _____ () C:\Program Files\Systemy\Avast\aavmrpch.dll.sum
2017-08-10 18:12 - 2017-08-10 18:12 - 000194200 _____ (AVAST Software) C:\Program Files\Systemy\Avast\afwCore.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000336464 _____ (AVAST Software) C:\Program Files\Systemy\Avast\afwCoreClient.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000586968 _____ (AVAST Software) C:\Program Files\Systemy\Avast\afwCoreServ.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000050728 _____ (AVAST Software) C:\Program Files\Systemy\Avast\afwGeoIP.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000143240 _____ (AVAST Software) C:\Program Files\Systemy\Avast\afwRpc.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000311592 _____ (AVAST Software) C:\Program Files\Systemy\Avast\afwServ.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000483464 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AhAScr.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000081416 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AhResIdp.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000109600 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AhResMai.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000081416 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AhResRsw.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000066840 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ahResSecDns.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000292856 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AhResStd.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000091896 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AhResWS2.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001225912 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashBase.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000112616 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashCmd.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000739144 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashMaiSv.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000088704 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashQuick.exe
2017-08-10 18:12 - 2017-08-10 18:15 - 002754744 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashserv.dll
2017-08-10 18:15 - 2017-08-10 18:15 - 000000223 _____ () C:\Program Files\Systemy\Avast\ashserv.dll.sum
2017-08-10 18:12 - 2017-08-10 18:12 - 001527760 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashShA64.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001210312 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashShell.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000530832 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashTask.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000582304 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashTaskEx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000341136 _____ (AVAST Software) C:\Program Files\Systemy\Avast\ashUpd.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000928216 _____ (AVAST Software) C:\Program Files\Systemy\Avast\asOutExt.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000029864 _____ (AVAST Software) C:\Program Files\Systemy\Avast\asulaunch.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000247144 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswAMSI.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000922464 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswAux.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000212808 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswChLic.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000835984 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswcmlx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000386912 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswCmnBS.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000349448 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswCmnIS.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000149504 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswCmnOS.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000925760 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswcommx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000804616 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswData.dll
2017-08-10 18:12 - 2017-08-10 18:16 - 003148600 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswdatascan.dll
2017-08-10 18:14 - 2017-08-10 18:16 - 000000223 _____ () C:\Program Files\Systemy\Avast\aswdatascan.dll.sum
2017-08-10 18:12 - 2017-08-10 18:12 - 000348080 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswdetallocatorx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000134360 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswDld.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000084544 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswDnsCache.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000090240 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswEngLdr.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000198400 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswhookx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000637464 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswidpmx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000724680 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswidpsdkx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000101624 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswIP.dll
2017-08-15 19:09 - 2017-08-15 19:09 - 000248104 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswJsFlt.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000355832 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswLog.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000597496 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswlogx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000119904 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswLSRun.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000906008 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswntsqlitex.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000707496 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswPatchMgt.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000691832 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswProperty.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000553256 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswpsicx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000033792 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswRec.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000166192 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswRemoteCache.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001696160 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswremovalx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001392032 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswRunDll.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000211272 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswRvrt.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001342448 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswsecapix.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000821240 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswSecDns.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000631992 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswSqLt.dll
2017-08-10 18:12 - 2017-08-10 18:15 - 001584408 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswstreamfilter.dll
2017-08-10 18:15 - 2017-08-10 18:15 - 000000223 _____ () C:\Program Files\Systemy\Avast\aswstreamfilter.dll.sum
2017-08-10 18:12 - 2017-08-10 18:12 - 000794712 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswStrm.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000984912 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswsysx.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000324056 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswUtil.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000191008 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswVmm.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000198352 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswW8ntf.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000774440 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswWebRepIE.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000896048 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswWebRepIE64.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000292000 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\aswwinamapix.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001880960 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswWrcIEBroker32.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 002040032 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswWrcIEBroker64.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000221120 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswWrcIELoader32.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000276744 _____ (AVAST Software) C:\Program Files\Systemy\Avast\aswWrcIELoader64.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000263312 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AvastSvc.exe
2017-08-10 18:12 - 2017-08-10 18:16 - 009138504 _____ (AVAST Software) C:\Program Files\Systemy\Avast\avastui.exe
2017-08-10 18:14 - 2017-08-10 18:16 - 000000223 _____ () C:\Program Files\Systemy\Avast\avastui.exe.sum
2017-08-10 18:12 - 2017-08-10 18:10 - 003166192 _____ (AVAST Software) C:\Program Files\Systemy\Avast\avBugReport.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 001065936 _____ () C:\Program Files\Systemy\Avast\AvChrome.dll
2017-08-10 18:12 - 2017-08-10 18:10 - 000647080 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AvDump32.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 002319448 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AvEmUpdate.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000213832 _____ (AVAST Software) C:\Program Files\Systemy\Avast\AvLaunch.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000405072 _____ (AVAST Software) C:\Program Files\Systemy\Avast\browser_pass.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000000042 _____ () C:\Program Files\Systemy\Avast\BrowserCleanup.ini
2017-08-10 18:12 - 2017-08-10 18:12 - 000945984 _____ (AVAST Software) C:\Program Files\Systemy\Avast\burger_client.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 006010288 _____ () C:\Program Files\Systemy\Avast\cef.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000283092 _____ () C:\Program Files\Systemy\Avast\cef_100_percent.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000396957 _____ () C:\Program Files\Systemy\Avast\cef_200_percent.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 003552095 _____ () C:\Program Files\Systemy\Avast\cef_extensions.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000434176 _____ (The Chromium Authors) C:\Program Files\Systemy\Avast\chrome_elf.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001198352 _____ (AVAST Software) C:\Program Files\Systemy\Avast\CommChannel.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 003794896 _____ (AVAST Software) C:\Program Files\Systemy\Avast\CommonRes.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000547968 _____ (AVAST Software) C:\Program Files\Systemy\Avast\custody.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000263312 _____ (AVAST Software) C:\Program Files\Systemy\Avast\event_manager.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000249760 _____ (AVAST Software) C:\Program Files\Systemy\Avast\event_manager_burger.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000657624 _____ (AVAST Software) C:\Program Files\Systemy\Avast\event_manager_ga.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000090808 _____ (AVAST Software) C:\Program Files\Systemy\Avast\event_manager_rpc.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000280448 _____ (AVAST Software) C:\Program Files\Systemy\Avast\event_routing.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000192664 _____ () C:\Program Files\Systemy\Avast\event_routing_rpc.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000689272 _____ () C:\Program Files\Systemy\Avast\ffl2.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000182632 _____ (AVAST Software) C:\Program Files\Systemy\Avast\gaming_hook.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000977632 _____ (AVAST Software) C:\Program Files\Systemy\Avast\gaming_mode.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000292920 _____ () C:\Program Files\Systemy\Avast\gaming_mode_ui.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000385376 _____ (AVAST Software) C:\Program Files\Systemy\Avast\gaming_probe.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000508968 _____ () C:\Program Files\Systemy\Avast\gaming_spy.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001257112 _____ (AVAST Software) C:\Program Files\Systemy\Avast\GrimeFighter2.dll
2017-08-10 18:12 - 2017-08-10 18:10 - 003563568 _____ (Terra Informatica Software, Inc., British Columbia, Canada.) C:\Program Files\Systemy\Avast\HTMLayout.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 010130464 _____ () C:\Program Files\Systemy\Avast\icudtl.dat
2017-08-10 18:12 - 2017-08-10 18:12 - 000170224 _____ () C:\Program Files\Systemy\Avast\JsonRpcServer.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 067109376 _____ () C:\Program Files\Systemy\Avast\libcef.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 002095104 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\Avast\libcrypto-1_1.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000381952 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\Avast\libssl-1_1.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 002552760 _____ (AVAST Software) C:\Program Files\Systemy\Avast\lim.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000131800 _____ (AVAST Software) C:\Program Files\Systemy\Avast\log.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000334730 _____ () C:\Program Files\Systemy\Avast\natives_blob.bin
2017-08-10 18:12 - 2017-08-10 18:12 - 000122008 _____ () C:\Program Files\Systemy\Avast\network_notifications.dll
2017-08-10 18:12 - 2017-08-10 18:17 - 004087408 _____ (AVAST Software) C:\Program Files\Systemy\Avast\pam.dll
2017-08-10 18:17 - 2017-08-10 18:17 - 000000223 _____ () C:\Program Files\Systemy\Avast\pam.dll.sum
2017-08-10 18:12 - 2017-08-10 18:12 - 000307944 _____ (AVAST Software) C:\Program Files\Systemy\Avast\process_monitor.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001360376 _____ (AVAST Software) C:\Program Files\Systemy\Avast\RegSvr.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000177000 _____ (AVAST Software) C:\Program Files\Systemy\Avast\sched.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000962888 _____ () C:\Program Files\Systemy\Avast\snapshot_blob.bin
2017-08-10 18:12 - 2017-08-10 18:12 - 000301112 _____ (AVAST Software) C:\Program Files\Systemy\Avast\snxhk.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000360952 _____ (AVAST Software) C:\Program Files\Systemy\Avast\snxhk64.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000231664 _____ () C:\Program Files\Systemy\Avast\StreamBack.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000224256 _____ () C:\Program Files\Systemy\Avast\tasks_core.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000217928 _____ (AVAST Software) C:\Program Files\Systemy\Avast\VisthAux.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000429552 _____ (AVAST Software) C:\Program Files\Systemy\Avast\wsc.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000057504 _____ (AVAST Software) C:\Program Files\Systemy\Avast\wsc_proxy.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000001193 _____ () C:\Program Files\Systemy\Avast\wsc_proxy.exe.manifest
2017-08-10 18:12 - 2017-08-15 19:54 - 000000000 ____D () C:\Program Files\Systemy\Avast\1033
2017-08-15 19:04 - 2017-08-19 12:44 - 000000829 _____ () C:\Program Files\Systemy\Avast\1033\aswClnTg.htm
2017-08-10 18:12 - 2017-08-10 18:12 - 000000112 _____ () C:\Program Files\Systemy\Avast\1033\aswClnTg.txt
2017-08-15 19:04 - 2017-08-15 19:04 - 000000640 _____ () C:\Program Files\Systemy\Avast\1033\aswInfTg.htm
2017-08-10 18:12 - 2017-08-10 18:12 - 000000453 _____ () C:\Program Files\Systemy\Avast\1033\aswInfTg.txt
2017-08-10 18:12 - 2017-08-10 18:12 - 000071960 _____ (AVAST Software) C:\Program Files\Systemy\Avast\1033\Base.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000031984 _____ (AVAST Software) C:\Program Files\Systemy\Avast\1033\Boot.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000368176 _____ (AVAST Software) C:\Program Files\Systemy\Avast\1033\uiLangRes.dll
2017-08-15 19:54 - 2017-08-19 12:44 - 000000821 _____ () C:\Program Files\Systemy\Avast\1033\WebShieldSgn.htm
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\Certificates
2017-08-10 18:12 - 2017-08-10 18:12 - 000001041 _____ () C:\Program Files\Systemy\Avast\Certificates\digicert_ca_77.der
2017-08-10 18:13 - 2017-08-20 10:39 - 000000000 ____D () C:\Program Files\Systemy\Avast\defs
2017-08-10 18:13 - 2017-08-20 10:39 - 000000032 _____ () C:\Program Files\Systemy\Avast\defs\aswdefs.ini
2017-08-19 12:46 - 2017-08-19 12:46 - 000000000 ____D () C:\Program Files\Systemy\Avast\defs\17081900
2017-08-19 12:46 - 2017-08-19 12:46 - 005895544 _____ () C:\Program Files\Systemy\Avast\defs\17081900\algo.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 007071248 _____ () C:\Program Files\Systemy\Avast\defs\17081900\algo64.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000109992 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\ArPot.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000240368 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswAR.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 002599440 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswBoot64.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000533576 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswCleanerDLL.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000513696 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswCmnBS.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000405072 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswCmnIS.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000505328 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswCmnIS64.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000153664 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswCmnOS.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 001495024 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswEngin.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000674184 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswFiDb.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 003619256 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswHds.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000084928 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswHdsKe.sys
2017-08-19 12:46 - 2017-08-19 12:46 - 000104624 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswHdsKe64.sys
2017-08-19 12:46 - 2017-08-19 12:46 - 000248104 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswJsFlt.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000258016 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswJsFlt64.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000496440 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswRawFS.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000585824 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswRawFS64.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000454488 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswRep.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000222720 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\aswScan.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 004258768 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\BCUEngine.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000361803 _____ () C:\Program Files\Systemy\Avast\defs\17081900\certs.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000033271 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_agdx.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000000247 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_as.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000020232 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_bank.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 001879085 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dex.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000031101 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dex.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 001393124 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dex.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 001863094 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dsign.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000019369 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dsql.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000000357 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dsql.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000041786 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dyna.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000002330 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dyna.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000037305 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_dyna.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 000022528 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_el.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000063911 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_elf.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000003467 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_elf.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000052071 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_elf.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 000036980 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_elfa.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000001598 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_elfa.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000030926 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_elfa.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 012568314 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_evope.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000000361 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_ext.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000372530 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_java.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000008286 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_java.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000350196 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_java.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 003702015 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_js.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000053194 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_js.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 002827952 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_js.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 000000979 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_mx4.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000000075 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_mx4.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000000764 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_mx4.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 000002306 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_mx95.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000000155 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_mx95.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000001963 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_mx95.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 000067665 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_o7.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000003964 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_o7.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000058862 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_o7.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 000014432 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_o7c.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000004026 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_o7c.map
2017-08-19 12:46 - 2017-08-19 12:46 - 005453376 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_ob2.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000021125 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_pay.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 031800576 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_pe3.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 001158216 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_sc.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000002123 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_sl.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000000059 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_sl.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000001831 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_sl.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 005816206 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_str.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000191215 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_str.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 004415276 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_str.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 000018835 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_swf.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000000799 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_swf.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000016574 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_swf.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 001371148 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_tx.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 003596062 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_u.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000005603 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_w6.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000000685 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_w6.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000005269 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_w6.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 000057440 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_w6c.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000006165 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_w6c.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000000992 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_wat.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000000048 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_wat.nmp
2017-08-19 12:46 - 2017-08-19 12:46 - 000000763 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_wat.sig
2017-08-19 12:46 - 2017-08-19 12:46 - 006370144 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_wh2.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000009519 _____ () C:\Program Files\Systemy\Avast\defs\17081900\db_xtn.map
2017-08-19 12:46 - 2017-08-19 12:46 - 000009295 _____ () C:\Program Files\Systemy\Avast\defs\17081900\def.ini
2017-08-19 12:46 - 2017-08-19 12:46 - 000028912 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\exts.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000055456 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\fwAux.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 009950819 _____ () C:\Program Files\Systemy\Avast\defs\17081900\gvma64.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 002181044 _____ () C:\Program Files\Systemy\Avast\defs\17081900\idp.dat
2017-08-19 12:46 - 2017-08-19 12:46 - 000002861 _____ () C:\Program Files\Systemy\Avast\defs\17081900\list_d.txt
2017-08-19 12:46 - 2017-08-19 12:46 - 000005165 _____ () C:\Program Files\Systemy\Avast\defs\17081900\list_i.txt
2017-08-19 12:46 - 2017-08-19 12:46 - 000773416 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\PushPin.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000975464 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\Sf2.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 001887792 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\SWCUEngine.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 002037352 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\swhealthex2.dll
2017-08-19 12:46 - 2017-08-19 12:46 - 000067408 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17081900\uiext.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000000000 ____D () C:\Program Files\Systemy\Avast\defs\17082000
2017-08-20 10:39 - 2017-08-20 10:39 - 005895544 _____ () C:\Program Files\Systemy\Avast\defs\17082000\algo.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 007071248 _____ () C:\Program Files\Systemy\Avast\defs\17082000\algo64.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000109992 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\ArPot.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000240368 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswAR.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 002599440 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswBoot64.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000533576 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswCleanerDLL.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000513696 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswCmnBS.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000405072 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswCmnIS.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000505328 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswCmnIS64.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000153664 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswCmnOS.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 001495024 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswEngin.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000674184 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswFiDb.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 003619256 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswHds.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000084928 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswHdsKe.sys
2017-08-20 10:39 - 2017-08-20 10:39 - 000104624 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswHdsKe64.sys
2017-08-20 10:39 - 2017-08-20 10:39 - 000248104 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswJsFlt.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000258016 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswJsFlt64.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000496440 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswRawFS.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000585824 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswRawFS64.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000454488 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswRep.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000222720 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\aswScan.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 004258768 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\BCUEngine.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000361803 _____ () C:\Program Files\Systemy\Avast\defs\17082000\certs.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000033271 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_agdx.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000000247 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_as.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000020232 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_bank.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 001838367 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dex.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000030688 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dex.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 001346241 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dex.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 001863588 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dsign.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000019369 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dsql.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000000357 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dsql.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000041677 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dyna.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000002321 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dyna.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000037178 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_dyna.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 000022528 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_el.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000064096 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_elf.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000003476 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_elf.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000052303 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_elf.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 000036989 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_elfa.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000001602 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_elfa.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000030946 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_elfa.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 012421191 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_evope.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000000361 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_ext.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000372417 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_java.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000008280 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_java.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000349985 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_java.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 003701278 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_js.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000053151 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_js.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 002827231 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_js.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 000000979 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_mx4.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000000075 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_mx4.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000000764 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_mx4.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 000002306 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_mx95.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000000155 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_mx95.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000001963 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_mx95.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 000067833 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_o7.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000003972 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_o7.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000059066 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_o7.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 000014432 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_o7c.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000004026 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_o7c.map
2017-08-20 10:39 - 2017-08-20 10:39 - 005447360 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_ob2.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000021125 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_pay.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 031984032 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_pe3.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 001158200 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_sc.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000002123 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_sl.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000000059 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_sl.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000001831 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_sl.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 005813042 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_str.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000191107 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_str.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 004412187 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_str.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 000018835 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_swf.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000000799 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_swf.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000016574 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_swf.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 001371148 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_tx.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 003592954 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_u.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000005603 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_w6.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000000685 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_w6.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000005269 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_w6.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 000057440 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_w6c.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000006165 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_w6c.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000000992 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_wat.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000000048 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_wat.nmp
2017-08-20 10:39 - 2017-08-20 10:39 - 000000763 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_wat.sig
2017-08-20 10:39 - 2017-08-20 10:39 - 006379866 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_wh2.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000009519 _____ () C:\Program Files\Systemy\Avast\defs\17082000\db_xtn.map
2017-08-20 10:39 - 2017-08-20 10:39 - 000009295 _____ () C:\Program Files\Systemy\Avast\defs\17082000\def.ini
2017-08-20 10:39 - 2017-08-20 10:39 - 000028912 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\exts.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000055456 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\fwAux.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 009950819 _____ () C:\Program Files\Systemy\Avast\defs\17082000\gvma64.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 002181836 _____ () C:\Program Files\Systemy\Avast\defs\17082000\idp.dat
2017-08-20 10:39 - 2017-08-20 10:39 - 000002861 _____ () C:\Program Files\Systemy\Avast\defs\17082000\list_d.txt
2017-08-20 10:39 - 2017-08-20 10:39 - 000005165 _____ () C:\Program Files\Systemy\Avast\defs\17082000\list_i.txt
2017-08-20 10:39 - 2017-08-20 10:39 - 000773416 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\PushPin.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000975464 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\Sf2.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 001887792 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\SWCUEngine.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 002037352 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\swhealthex2.dll
2017-08-20 10:39 - 2017-08-20 10:39 - 000067408 _____ (AVAST Software) C:\Program Files\Systemy\Avast\defs\17082000\uiext.dll
2017-08-20 08:45 - 2017-08-20 13:37 - 000000000 ____D () C:\Program Files\Systemy\Avast\defs\17082000_stream
2017-08-20 08:45 - 2017-08-20 08:45 - 000000709 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000000.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000003390 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000001.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000000683 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000002.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000003082 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000003.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000001308 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000004.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000002280 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000005.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000001768 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000006.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000000557 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000007.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000000253 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000008.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000001206 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000009.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000003072 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000000a.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000000596 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000000b.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000002277 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000000c.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004725 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000000d.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004858 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000000e.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004784 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000000f.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004741 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000010.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004835 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000011.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004707 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000012.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004760 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000013.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004712 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000014.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004772 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000015.bin
2017-08-20 08:45 - 2017-08-20 08:45 - 000004713 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000016.bin
2017-08-20 08:49 - 2017-08-20 08:49 - 000004716 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000017.bin
2017-08-20 08:56 - 2017-08-20 08:56 - 000004771 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000018.bin
2017-08-20 09:04 - 2017-08-20 09:04 - 000004714 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000019.bin
2017-08-20 09:12 - 2017-08-20 09:12 - 000004833 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000001a.bin
2017-08-20 09:18 - 2017-08-20 09:18 - 000004697 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000001b.bin
2017-08-20 09:25 - 2017-08-20 09:25 - 000004813 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000001c.bin
2017-08-20 09:32 - 2017-08-20 09:32 - 000004792 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000001d.bin
2017-08-20 09:39 - 2017-08-20 09:39 - 000005031 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000001e.bin
2017-08-20 09:43 - 2017-08-20 09:43 - 000000624 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000001f.bin
2017-08-20 09:47 - 2017-08-20 09:47 - 000000386 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000020.bin
2017-08-20 09:51 - 2017-08-20 09:51 - 000000250 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000021.bin
2017-08-20 09:55 - 2017-08-20 09:55 - 000001765 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000022.bin
2017-08-20 09:59 - 2017-08-20 09:59 - 000003283 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000023.bin
2017-08-20 10:05 - 2017-08-20 10:05 - 000001000 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000024.bin
2017-08-20 10:10 - 2017-08-20 10:10 - 000000736 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000025.bin
2017-08-20 10:37 - 2017-08-20 10:37 - 000004825 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000002b.bin
2017-08-20 10:41 - 2017-08-20 10:41 - 000004741 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000002c.bin
2017-08-20 10:51 - 2017-08-20 10:51 - 000004177 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000002d.bin
2017-08-20 10:52 - 2017-08-20 10:52 - 000003714 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000002e.bin
2017-08-20 10:57 - 2017-08-20 10:57 - 000000680 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000002f.bin
2017-08-20 11:01 - 2017-08-20 11:01 - 000001813 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000030.bin
2017-08-20 11:06 - 2017-08-20 11:06 - 000004455 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000031.bin
2017-08-20 11:12 - 2017-08-20 11:12 - 000000493 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000032.bin
2017-08-20 11:17 - 2017-08-20 11:17 - 000001372 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000033.bin
2017-08-20 11:21 - 2017-08-20 11:21 - 000000524 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000034.bin
2017-08-20 11:25 - 2017-08-20 11:25 - 000004800 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000035.bin
2017-08-20 11:31 - 2017-08-20 11:31 - 000002633 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000036.bin
2017-08-20 11:36 - 2017-08-20 11:36 - 000000445 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000037.bin
2017-08-20 11:41 - 2017-08-20 11:41 - 000004771 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000038.bin
2017-08-20 11:47 - 2017-08-20 11:47 - 000001482 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000039.bin
2017-08-20 11:52 - 2017-08-20 11:52 - 000000255 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000003a.bin
2017-08-20 11:55 - 2017-08-20 11:55 - 000000442 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000003b.bin
2017-08-20 12:02 - 2017-08-20 12:02 - 000003074 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000003c.bin
2017-08-20 12:07 - 2017-08-20 12:07 - 000001805 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000003d.bin
2017-08-20 12:11 - 2017-08-20 12:11 - 000003016 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000003e.bin
2017-08-20 12:15 - 2017-08-20 12:15 - 000000291 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000003f.bin
2017-08-20 12:18 - 2017-08-20 12:18 - 000000141 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000040.bin
2017-08-20 12:22 - 2017-08-20 12:22 - 000001275 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000041.bin
2017-08-20 12:26 - 2017-08-20 12:26 - 000002344 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000042.bin
2017-08-20 12:31 - 2017-08-20 12:31 - 000000189 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000043.bin
2017-08-20 12:35 - 2017-08-20 12:35 - 000002657 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000044.bin
2017-08-20 12:39 - 2017-08-20 12:39 - 000000230 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000045.bin
2017-08-20 12:42 - 2017-08-20 12:42 - 000000364 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000046.bin
2017-08-20 12:45 - 2017-08-20 12:45 - 000000238 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000047.bin
2017-08-20 12:49 - 2017-08-20 12:49 - 000001639 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000048.bin
2017-08-20 12:53 - 2017-08-20 12:53 - 000001497 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000049.bin
2017-08-20 12:56 - 2017-08-20 12:56 - 000000229 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000004a.bin
2017-08-20 12:59 - 2017-08-20 12:59 - 000000186 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000004b.bin
2017-08-20 13:03 - 2017-08-20 13:03 - 000000247 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000004c.bin
2017-08-20 13:06 - 2017-08-20 13:06 - 000002146 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000004d.bin
2017-08-20 13:10 - 2017-08-20 13:10 - 000001484 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000004e.bin
2017-08-20 13:14 - 2017-08-20 13:14 - 000000436 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg170820000000004f.bin
2017-08-20 13:17 - 2017-08-20 13:17 - 000000193 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000050.bin
2017-08-20 13:21 - 2017-08-20 13:21 - 000000248 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000051.bin
2017-08-20 13:25 - 2017-08-20 13:25 - 000003981 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000052.bin
2017-08-20 13:29 - 2017-08-20 13:29 - 000000272 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000053.bin
2017-08-20 13:33 - 2017-08-20 13:33 - 000000175 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000054.bin
2017-08-20 13:37 - 2017-08-20 13:37 - 000002236 _____ () C:\Program Files\Systemy\Avast\defs\17082000_stream\pkg1708200000000055.bin
2017-08-10 19:35 - 2017-08-10 19:35 - 000000000 ____D () C:\Program Files\Systemy\Avast\jsflt
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\License
2017-08-10 18:12 - 2017-08-10 18:12 - 000045353 _____ () C:\Program Files\Systemy\Avast\License\EULA.txt
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\locales
2017-08-10 18:12 - 2017-08-10 18:12 - 000385127 _____ () C:\Program Files\Systemy\Avast\locales\am.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000382073 _____ () C:\Program Files\Systemy\Avast\locales\ar.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000459485 _____ () C:\Program Files\Systemy\Avast\locales\bg.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000586465 _____ () C:\Program Files\Systemy\Avast\locales\bn.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000279165 _____ () C:\Program Files\Systemy\Avast\locales\ca.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000282819 _____ () C:\Program Files\Systemy\Avast\locales\cs.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000253053 _____ () C:\Program Files\Systemy\Avast\locales\da.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000275245 _____ () C:\Program Files\Systemy\Avast\locales\de.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000494250 _____ () C:\Program Files\Systemy\Avast\locales\el.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000226216 _____ () C:\Program Files\Systemy\Avast\locales\en-GB.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000226138 _____ () C:\Program Files\Systemy\Avast\locales\en-US.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000281053 _____ () C:\Program Files\Systemy\Avast\locales\es.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000275829 _____ () C:\Program Files\Systemy\Avast\locales\es-419.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000245069 _____ () C:\Program Files\Systemy\Avast\locales\et.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000394044 _____ () C:\Program Files\Systemy\Avast\locales\fa.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000260334 _____ () C:\Program Files\Systemy\Avast\locales\fi.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000281771 _____ () C:\Program Files\Systemy\Avast\locales\fil.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000298319 _____ () C:\Program Files\Systemy\Avast\locales\fr.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000552211 _____ () C:\Program Files\Systemy\Avast\locales\gu.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000324698 _____ () C:\Program Files\Systemy\Avast\locales\he.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000563348 _____ () C:\Program Files\Systemy\Avast\locales\hi.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000263923 _____ () C:\Program Files\Systemy\Avast\locales\hr.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000292727 _____ () C:\Program Files\Systemy\Avast\locales\hu.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000245033 _____ () C:\Program Files\Systemy\Avast\locales\id.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000270939 _____ () C:\Program Files\Systemy\Avast\locales\it.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000331863 _____ () C:\Program Files\Systemy\Avast\locales\ja.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000635842 _____ () C:\Program Files\Systemy\Avast\locales\kn.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000281001 _____ () C:\Program Files\Systemy\Avast\locales\ko.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000283901 _____ () C:\Program Files\Systemy\Avast\locales\lt.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000284520 _____ () C:\Program Files\Systemy\Avast\locales\lv.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000696528 _____ () C:\Program Files\Systemy\Avast\locales\ml.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000558484 _____ () C:\Program Files\Systemy\Avast\locales\mr.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000252783 _____ () C:\Program Files\Systemy\Avast\locales\ms.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000250688 _____ () C:\Program Files\Systemy\Avast\locales\nb.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000265035 _____ () C:\Program Files\Systemy\Avast\locales\nl.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000274026 _____ () C:\Program Files\Systemy\Avast\locales\pl.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000269777 _____ () C:\Program Files\Systemy\Avast\locales\pt-BR.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000273503 _____ () C:\Program Files\Systemy\Avast\locales\pt-PT.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000281089 _____ () C:\Program Files\Systemy\Avast\locales\ro.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000428400 _____ () C:\Program Files\Systemy\Avast\locales\ru.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000289109 _____ () C:\Program Files\Systemy\Avast\locales\sk.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000264897 _____ () C:\Program Files\Systemy\Avast\locales\sl.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000420536 _____ () C:\Program Files\Systemy\Avast\locales\sr.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000251984 _____ () C:\Program Files\Systemy\Avast\locales\sv.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000255169 _____ () C:\Program Files\Systemy\Avast\locales\sw.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000646191 _____ () C:\Program Files\Systemy\Avast\locales\ta.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000618837 _____ () C:\Program Files\Systemy\Avast\locales\te.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000538246 _____ () C:\Program Files\Systemy\Avast\locales\th.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000272046 _____ () C:\Program Files\Systemy\Avast\locales\tr.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000437247 _____ () C:\Program Files\Systemy\Avast\locales\uk.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000308861 _____ () C:\Program Files\Systemy\Avast\locales\vi.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000229731 _____ () C:\Program Files\Systemy\Avast\locales\zh-CN.pak
2017-08-10 18:12 - 2017-08-10 18:12 - 000231655 _____ () C:\Program Files\Systemy\Avast\locales\zh-TW.pak
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\OpenVPN
2017-08-10 18:12 - 2017-08-10 18:12 - 001286656 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\Avast\OpenVPN\libeay32.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000091184 _____ () C:\Program Files\Systemy\Avast\OpenVPN\libpkcs11-helper-1.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000105760 _____ () C:\Program Files\Systemy\Avast\OpenVPN\lzo2.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000661584 _____ (The OpenVPN Project) C:\Program Files\Systemy\Avast\OpenVPN\openvpn.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000280064 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\Avast\OpenVPN\ssleay32.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ____D () C:\Program Files\Systemy\Avast\OpenVPN\driver
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ____D () C:\Program Files\Systemy\Avast\OpenVPN\driver\win64
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\OpenVPN\driver\win64\ndis6
2017-08-10 18:12 - 2017-08-10 18:12 - 000000126 _____ () C:\Program Files\Systemy\Avast\OpenVPN\driver\win64\ndis6\addtap.bat
2017-08-10 18:12 - 2017-08-10 18:12 - 000018363 _____ () C:\Program Files\Systemy\Avast\OpenVPN\driver\win64\ndis6\aswTap.cat
2017-08-10 18:12 - 2017-08-10 18:12 - 000006961 _____ () C:\Program Files\Systemy\Avast\OpenVPN\driver\win64\ndis6\aswTap.inf
2017-08-10 18:12 - 2017-08-10 18:12 - 000053904 _____ (The OpenVPN Project) C:\Program Files\Systemy\Avast\OpenVPN\driver\win64\ndis6\aswTap.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000000154 _____ () C:\Program Files\Systemy\Avast\OpenVPN\driver\win64\ndis6\deltapall.bat
2017-08-10 18:12 - 2017-08-10 18:12 - 000088816 _____ (Windows ® Win 7 DDK provider) C:\Program Files\Systemy\Avast\OpenVPN\driver\win64\ndis6\tapinstall.exe
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\RescueDisk
2017-08-10 18:12 - 2017-08-10 18:12 - 000056024 _____ (AVAST Software) C:\Program Files\Systemy\Avast\RescueDisk\aswRegLib.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000131224 _____ (AVAST Software) C:\Program Files\Systemy\Avast\RescueDisk\aswShMin.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 001681984 _____ (AVAST Software) C:\Program Files\Systemy\Avast\RescueDisk\AvastPE2.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000071960 _____ (AVAST Software) C:\Program Files\Systemy\Avast\RescueDisk\Base.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000368176 _____ (AVAST Software) C:\Program Files\Systemy\Avast\RescueDisk\uiLangRes.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000003584 _____ () C:\Program Files\Systemy\Avast\RescueDisk\waikamd64.mst
2017-08-10 18:12 - 2017-08-10 18:12 - 000003584 _____ () C:\Program Files\Systemy\Avast\RescueDisk\waikx86.mst
2017-08-10 18:12 - 2017-08-16 12:50 - 000000000 ____D () C:\Program Files\Systemy\Avast\resources
2017-08-10 18:12 - 2017-08-10 18:12 - 000001104 _____ () C:\Program Files\Systemy\Avast\resources\airbond_setup.htm
2017-08-15 19:04 - 2017-08-15 19:06 - 000060387 _____ () C:\Program Files\Systemy\Avast\resources\AntiRansomware.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000033161 _____ () C:\Program Files\Systemy\Avast\resources\check_radio_sheet.png
2017-08-16 12:49 - 2017-08-16 12:49 - 000049197 _____ () C:\Program Files\Systemy\Avast\resources\CleanupPp.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000821 _____ () C:\Program Files\Systemy\Avast\resources\common.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000007286 _____ () C:\Program Files\Systemy\Avast\resources\Compatibility.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000350316 _____ () C:\Program Files\Systemy\Avast\resources\d3.js
2017-08-15 19:04 - 2017-08-16 12:49 - 000064222 _____ () C:\Program Files\Systemy\Avast\resources\Dashboard.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000067000 _____ () C:\Program Files\Systemy\Avast\resources\Debug.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000090 _____ () C:\Program Files\Systemy\Avast\resources\dragIcon.gif
2017-08-10 18:12 - 2017-08-10 18:12 - 000000129 _____ () C:\Program Files\Systemy\Avast\resources\empty_page.htm
2017-08-10 18:12 - 2017-08-10 18:12 - 000002995 _____ () C:\Program Files\Systemy\Avast\resources\expand.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000091100 _____ () C:\Program Files\Systemy\Avast\resources\Fusion.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000013373 _____ () C:\Program Files\Systemy\Avast\resources\Help.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000001120 _____ () C:\Program Files\Systemy\Avast\resources\icon_star.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000094843 _____ () C:\Program Files\Systemy\Avast\resources\jquery.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000030699 _____ () C:\Program Files\Systemy\Avast\resources\key.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000295 _____ () C:\Program Files\Systemy\Avast\resources\lens.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001849 _____ () C:\Program Files\Systemy\Avast\resources\loading.gif
2017-08-10 18:12 - 2017-08-10 18:12 - 000011650 _____ () C:\Program Files\Systemy\Avast\resources\loading.htm
2017-08-15 19:04 - 2017-08-16 12:50 - 008981247 _____ () C:\Program Files\Systemy\Avast\resources\Localization.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000521875 _____ () C:\Program Files\Systemy\Avast\resources\lodash.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000052288 _____ () C:\Program Files\Systemy\Avast\resources\logo-chrome.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000063793 _____ () C:\Program Files\Systemy\Avast\resources\logo-firefox.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000057876 _____ () C:\Program Files\Systemy\Avast\resources\logo-ie.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000002048 _____ () C:\Program Files\Systemy\Avast\resources\Macro.js
2017-08-15 19:04 - 2017-08-16 12:50 - 001264234 _____ () C:\Program Files\Systemy\Avast\resources\MainCss.css
2017-08-15 19:04 - 2017-08-16 12:50 - 000450828 _____ () C:\Program Files\Systemy\Avast\resources\MainFont.css
2017-08-15 19:04 - 2017-08-16 12:50 - 000115954 _____ () C:\Program Files\Systemy\Avast\resources\MainLayout.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000603618 _____ () C:\Program Files\Systemy\Avast\resources\MainUI.js
2017-08-15 19:04 - 2017-08-15 19:06 - 000010504 _____ () C:\Program Files\Systemy\Avast\resources\MainWindow.html
2017-08-15 19:04 - 2017-08-16 12:50 - 000500488 _____ () C:\Program Files\Systemy\Avast\resources\moment.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000136921 _____ () C:\Program Files\Systemy\Avast\resources\napi.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000031432 _____ () C:\Program Files\Systemy\Avast\resources\Notifications.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000001635 _____ () C:\Program Files\Systemy\Avast\resources\offline.htm
2017-08-10 18:12 - 2017-08-10 18:12 - 000003160 _____ () C:\Program Files\Systemy\Avast\resources\offline.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003825 _____ () C:\Program Files\Systemy\Avast\resources\offline_help.htm
2017-08-10 18:12 - 2017-08-10 18:12 - 000002786 _____ () C:\Program Files\Systemy\Avast\resources\offline_license.htm
2017-08-10 18:12 - 2017-08-10 18:12 - 000001854 _____ () C:\Program Files\Systemy\Avast\resources\ok.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003077 _____ () C:\Program Files\Systemy\Avast\resources\password_score_widget.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000074249 _____ () C:\Program Files\Systemy\Avast\resources\passwords_back.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000028693 _____ () C:\Program Files\Systemy\Avast\resources\passwords_backup.htm
2017-08-10 18:12 - 2017-08-10 18:12 - 000003867 _____ () C:\Program Files\Systemy\Avast\resources\passwords_browsers.htm
2017-08-10 18:12 - 2017-08-10 18:12 - 000004202 _____ () C:\Program Files\Systemy\Avast\resources\passwords_ico.png
2017-08-15 19:04 - 2017-08-15 19:06 - 000063645 _____ () C:\Program Files\Systemy\Avast\resources\PerformanceBcu.js
2017-08-15 19:04 - 2017-08-15 19:06 - 000115479 _____ () C:\Program Files\Systemy\Avast\resources\PerformanceCleanup.js
2017-08-16 12:50 - 2017-08-16 12:50 - 000030420 _____ () C:\Program Files\Systemy\Avast\resources\PerformanceDriverUpdater.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000109820 _____ () C:\Program Files\Systemy\Avast\resources\PerformanceGaming.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000077123 _____ () C:\Program Files\Systemy\Avast\resources\PrivacyDataShredder.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000376198 _____ () C:\Program Files\Systemy\Avast\resources\PrivacyPasswords.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000093886 _____ () C:\Program Files\Systemy\Avast\resources\PrivacySecureLine.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000463672 _____ () C:\Program Files\Systemy\Avast\resources\ractive.js
2017-08-15 19:04 - 2017-08-15 19:06 - 000015866 _____ () C:\Program Files\Systemy\Avast\resources\SecurityAntispam.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000293859 _____ () C:\Program Files\Systemy\Avast\resources\SecurityAntivirus.js
2017-08-15 19:04 - 2017-08-15 19:07 - 000035580 _____ () C:\Program Files\Systemy\Avast\resources\SecurityFirewall.js
2017-08-15 19:04 - 2017-08-15 19:07 - 000161887 _____ () C:\Program Files\Systemy\Avast\resources\SecurityNetwork.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000001171 _____ () C:\Program Files\Systemy\Avast\resources\SecurityNetworkIssues.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000012278 _____ () C:\Program Files\Systemy\Avast\resources\SecurityRescueDisk.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000068852 _____ () C:\Program Files\Systemy\Avast\resources\SecuritySandbox.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000179354 _____ () C:\Program Files\Systemy\Avast\resources\SecuritySecureDNS.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000066987 _____ () C:\Program Files\Systemy\Avast\resources\SecuritySoftware.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000092128 _____ () C:\Program Files\Systemy\Avast\resources\SensitiveData.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000060553 _____ () C:\Program Files\Systemy\Avast\resources\SettingsComponents.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000116957 _____ () C:\Program Files\Systemy\Avast\resources\SmartScan.js
2017-08-15 19:04 - 2017-08-16 12:50 - 000146080 _____ () C:\Program Files\Systemy\Avast\resources\Subscriptions.js
2017-08-15 19:04 - 2017-08-16 12:50 - 006681310 _____ () C:\Program Files\Systemy\Avast\resources\SvgFlags.css
2017-08-15 19:04 - 2017-08-16 12:50 - 000012447 _____ () C:\Program Files\Systemy\Avast\resources\updatefile.json
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ____D () C:\Program Files\Systemy\Avast\SafePrice
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\SafePrice\FF
2017-08-10 18:12 - 2017-08-10 18:12 - 000352827 _____ () C:\Program Files\Systemy\Avast\SafePrice\FF\sp@avast.com.xpi
2017-08-10 18:12 - 2017-08-20 10:54 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup
2017-08-10 18:10 - 2017-07-18 05:27 - 000000263 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_bpc-7e7.vpx
2017-08-10 18:10 - 2017-07-18 05:27 - 002991419 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_datascan-7d2.vpx
2017-08-10 18:10 - 2017-07-18 05:27 - 001133307 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_fw_x64-849.vpx
2017-08-10 18:10 - 2017-07-18 05:27 - 003255671 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_gamingmode-7e2.vpx
2017-08-10 18:10 - 2017-07-18 05:27 - 001462329 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_grimefighter-841.vpx
2017-08-10 18:10 - 2017-07-18 05:28 - 017300504 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_idp_x64-7e1.vpx
2017-08-10 18:10 - 2017-07-18 05:29 - 004320647 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_pwdman-811.vpx
2017-08-10 18:10 - 2017-07-18 05:29 - 002317673 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_rescuedisk-84b.vpx
2017-08-10 18:10 - 2017-07-18 05:29 - 000353059 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_safeprice-7d1.vpx
2017-08-10 18:10 - 2017-07-18 05:29 - 000821473 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_secdns_hlp-811.vpx
2017-08-10 18:10 - 2017-07-18 05:29 - 000067075 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_secdns-835.vpx
2017-08-10 18:10 - 2017-07-18 05:29 - 000335518 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_secureline_x64-7d0.vpx
2017-08-10 18:10 - 2017-07-18 05:29 - 002426251 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_secureline-7d9.vpx
2017-08-10 18:10 - 2017-07-18 05:30 - 000771674 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_swhealth-84b.vpx
2017-08-10 18:10 - 2017-07-18 05:30 - 005717552 _____ () C:\Program Files\Systemy\Avast\setup\ais_cmp_webrep-811.vpx
2017-08-10 18:10 - 2017-07-18 05:31 - 043360129 _____ () C:\Program Files\Systemy\Avast\setup\ais_core-84b.vpx
2017-08-10 18:10 - 2017-07-18 05:31 - 000720890 _____ () C:\Program Files\Systemy\Avast\setup\ais_dll_eng-84b.vpx
2017-08-10 18:10 - 2017-07-18 05:31 - 002748434 _____ () C:\Program Files\Systemy\Avast\setup\ais_fw-84b.vpx
2017-08-10 18:10 - 2017-07-18 05:31 - 002978098 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_crt_x64-825.vpx
2017-08-10 18:10 - 2017-07-18 05:31 - 007437999 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_crt_x86-824.vpx
2017-08-10 18:10 - 2017-07-18 05:33 - 108819576 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_gui_cef-817.vpx
2017-08-10 18:10 - 2017-07-18 05:32 - 009352711 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_gui-82b.vpx
2017-08-10 18:10 - 2017-07-18 05:34 - 003545483 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_openssl_x64-7d0.vpx
2017-08-10 18:10 - 2017-07-18 05:34 - 002477439 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_openssl-7e5.vpx
2017-08-10 18:10 - 2017-07-18 05:34 - 002106553 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_streamfilter_x64-849.vpx
2017-08-10 18:10 - 2017-07-18 05:34 - 001669338 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_streamfilter-84b.vpx
2017-08-10 18:10 - 2017-07-18 05:34 - 003522266 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_tools_x64-838.vpx
2017-08-10 18:10 - 2017-07-18 05:34 - 002752783 _____ () C:\Program Files\Systemy\Avast\setup\ais_gen_tools-838.vpx
2017-08-10 18:10 - 2017-07-18 05:35 - 024368633 _____ () C:\Program Files\Systemy\Avast\setup\ais_gui_res-7da.vpx
2017-08-10 18:10 - 2017-07-18 05:35 - 000112846 _____ () C:\Program Files\Systemy\Avast\setup\ais_pro-84b.vpx
2017-08-10 18:10 - 2017-07-18 05:35 - 014276781 _____ () C:\Program Files\Systemy\Avast\setup\ais_res-84b.vpx
2017-08-10 18:10 - 2017-07-18 05:36 - 014113027 _____ () C:\Program Files\Systemy\Avast\setup\ais_x64-84b.vpx
2017-08-15 19:01 - 2017-07-18 05:37 - 002330248 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\aswOfferTool.exe
2017-08-15 19:01 - 2017-07-18 05:37 - 003166192 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\avBugReport.exe
2017-08-10 18:10 - 2017-07-18 05:37 - 003166192 _____ (AVAST Software) C:\Program Files\Systemy\Avast\setup\avbugreport_ais-8ff.vpx
2017-08-10 18:10 - 2017-07-18 05:37 - 000797784 _____ (AVAST Software) C:\Program Files\Systemy\Avast\setup\avdump_x64_ais-8ff.vpx
2017-08-10 18:10 - 2017-07-18 05:37 - 000647080 _____ (AVAST Software) C:\Program Files\Systemy\Avast\setup\avdump_x86_ais-8ff.vpx
2017-08-15 19:01 - 2017-07-18 05:37 - 000647080 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\AvDump32.exe
2017-08-15 19:01 - 2017-07-18 05:37 - 000797784 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\AvDump64.exe
2017-08-20 10:40 - 2017-08-20 10:40 - 000009542 ____C () C:\Program Files\Systemy\Avast\setup\config.def
2017-08-10 18:12 - 2017-07-18 05:38 - 000003893 ____C () C:\Program Files\Systemy\Avast\setup\config.def.vpx
2017-08-10 18:12 - 2017-08-10 18:12 - 000000059 ____C () C:\Program Files\Systemy\Avast\setup\FwReboot.txt
2017-08-15 19:01 - 2017-07-18 05:37 - 003563568 ____C (Terra Informatica Software, Inc., British Columbia, Canada.) C:\Program Files\Systemy\Avast\setup\HTMLayout.dll
2017-08-10 18:10 - 2017-07-18 05:37 - 001312544 _____ (AVAST Software) C:\Program Files\Systemy\Avast\setup\instcont_ais-8ff.vpx
2017-08-15 19:01 - 2017-07-18 05:37 - 013042392 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Instup.dll
2017-08-15 19:01 - 2017-07-18 05:37 - 001312544 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\instup.exe
2017-08-10 18:10 - 2017-07-18 05:37 - 013042392 _____ (AVAST Software) C:\Program Files\Systemy\Avast\setup\instup_ais-8ff.vpx
2017-08-10 18:10 - 2017-07-18 04:17 - 000036825 _____ () C:\Program Files\Systemy\Avast\setup\iplugins-9.vpx
2017-08-20 10:37 - 2017-08-20 10:37 - 000985880 ____C () C:\Program Files\Systemy\Avast\setup\jrog2-1510.vpx
2017-08-10 18:17 - 2017-08-10 18:17 - 000000874 ____C () C:\Program Files\Systemy\Avast\setup\Offers.ini
2017-08-10 18:10 - 2017-07-18 05:37 - 002330248 _____ (AVAST Software) C:\Program Files\Systemy\Avast\setup\offertool_ais-8ff.vpx
2017-08-10 18:12 - 2017-08-20 10:37 - 000000228 ____C () C:\Program Files\Systemy\Avast\setup\part-iex-9.vpx
2017-08-20 10:37 - 2017-08-20 10:37 - 000000885 ____C () C:\Program Files\Systemy\Avast\setup\part-jrog2-1510.vpx
2017-08-10 18:12 - 2017-07-18 05:38 - 000016307 ____C () C:\Program Files\Systemy\Avast\setup\part-prg_ais-110508ff.vpx
2017-08-10 18:12 - 2017-07-18 05:38 - 000093148 ____C () C:\Program Files\Systemy\Avast\setup\part-setup_ais-110508ff.vpx
2017-08-20 10:37 - 2017-08-20 10:37 - 000004106 ____C () C:\Program Files\Systemy\Avast\setup\part-vps_win32-17082000.vpx
2017-08-10 18:12 - 2017-08-20 10:54 - 000000443 ____C () C:\Program Files\Systemy\Avast\setup\prod-pgm.vpx
2017-08-10 18:17 - 2017-08-20 10:54 - 001642183 ____C () C:\Program Files\Systemy\Avast\setup\products.def
2017-08-10 18:12 - 2017-08-20 10:54 - 000000455 ____C () C:\Program Files\Systemy\Avast\setup\prod-vps.vpx
2017-08-10 18:12 - 2017-08-16 16:57 - 000000190 ____C () C:\Program Files\Systemy\Avast\setup\Proxy.ini
2017-08-10 18:12 - 2017-08-20 10:54 - 000024963 ____C () C:\Program Files\Systemy\Avast\setup\servers.def
2017-08-10 18:17 - 2017-08-20 10:54 - 000024963 ____C () C:\Program Files\Systemy\Avast\setup\servers.def.lkg
2017-08-10 18:12 - 2017-08-20 10:54 - 000002847 ____C () C:\Program Files\Systemy\Avast\setup\servers.def.vpx
2017-08-10 18:10 - 2017-07-18 05:37 - 003563568 _____ (Terra Informatica Software, Inc., British Columbia, Canada.) C:\Program Files\Systemy\Avast\setup\setgui_ais-8ff.vpx
2017-08-10 18:17 - 2017-08-10 18:12 - 000006772 ____C () C:\Program Files\Systemy\Avast\setup\settings.ori
2017-08-10 18:12 - 2017-08-10 18:12 - 000006772 ____C () C:\Program Files\Systemy\Avast\setup\settings-8ff.ori
2017-08-20 10:54 - 2017-08-20 10:54 - 000019354 ____C () C:\Program Files\Systemy\Avast\setup\setup.ini
2017-08-10 18:17 - 2017-08-20 10:54 - 000001541 ____C () C:\Program Files\Systemy\Avast\setup\Stats.ini
2017-08-10 18:17 - 2017-08-20 10:54 - 000003778 ____C () C:\Program Files\Systemy\Avast\setup\Stats.txt
2017-08-10 18:12 - 2017-07-18 05:38 - 000001626 ____C () C:\Program Files\Systemy\Avast\setup\uat.vpx
2017-08-20 10:54 - 2017-08-20 10:54 - 000033289 ____C () C:\Program Files\Systemy\Avast\setup\usn_cache.tsv
2017-08-20 10:39 - 2017-08-20 10:39 - 090095757 ____C () C:\Program Files\Systemy\Avast\setup\vps_32-160f.vpx
2017-08-20 10:39 - 2017-08-20 10:39 - 010762539 ____C () C:\Program Files\Systemy\Avast\setup\vps_bootwin64-30c.vpx
2017-08-20 10:39 - 2017-08-20 10:39 - 021524443 ____C () C:\Program Files\Systemy\Avast\setup\vps_win32-1619.vpx
2017-08-20 10:39 - 2017-08-20 10:39 - 000363036 ____C () C:\Program Files\Systemy\Avast\setup\vps_win64-1284.vpx
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT
2017-08-10 18:12 - 2017-08-15 19:04 - 000691312 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\CRT\InstallCrt.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-console-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-datetime-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-debug-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000022208 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-file-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-file-l1-2-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-file-l2-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-handle-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-heap-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-interlocked-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000021184 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-localization-l1-2-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-memory-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000020672 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-processthreads-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-processthreads-l1-1-1.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018112 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-profile-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-string-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000020672 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-synch-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-synch-l1-2-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-timezone-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-core-util-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-conio-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000022720 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-convert-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-environment-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000020672 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-heap-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-locale-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000027840 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-math-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000026816 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000070848 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-private-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-process-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000023232 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-runtime-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000024768 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-stdio-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000024768 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-string-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000021184 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-time-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\api-ms-win-crt-utility-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018105 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\Avast.VC140.CRT.cat
2017-08-10 18:12 - 2017-08-15 19:04 - 000023789 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\Avast.VC140.CRT.manifest
2017-08-10 18:12 - 2017-08-15 19:04 - 000333632 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\concrt140.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000633152 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\msvcp140.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000992960 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\ucrtbase.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000087888 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\amd64\vcruntime140.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-console-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-datetime-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-debug-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-errorhandling-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000022208 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-file-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-file-l1-2-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-file-l2-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-handle-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-heap-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-interlocked-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-libraryloader-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000021184 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-localization-l1-2-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-memory-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-namedpipe-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-processenvironment-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000020672 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-processthreads-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-processthreads-l1-1-1.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018112 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-profile-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018112 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-string-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000020672 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-synch-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-synch-l1-2-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-sysinfo-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-timezone-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018624 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-core-util-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-conio-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000022720 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-convert-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-environment-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000020672 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-filesystem-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-heap-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-locale-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000029376 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-math-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000026816 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-multibyte-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000073408 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-private-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019648 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-process-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000023232 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-runtime-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000024768 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-stdio-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000024768 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-string-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000021184 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-time-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000019136 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\api-ms-win-crt-utility-l1-1-0.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000018105 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\Avast.VC140.CRT.cat
2017-08-10 18:12 - 2017-08-15 19:04 - 000023787 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\Avast.VC140.CRT.manifest
2017-08-10 18:12 - 2017-08-15 19:04 - 000244032 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\concrt140.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000440120 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\msvcp140.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000921280 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\ucrtbase.dll
2017-08-10 18:12 - 2017-08-15 19:04 - 000083784 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.crt\x86\vcruntime140.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.mfc
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.mfc\x86
2017-08-10 18:12 - 2017-08-15 19:04 - 000018105 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.mfc\x86\Avast.VC140.MFC.cat
2017-08-10 18:12 - 2017-08-15 19:04 - 000001232 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.mfc\x86\Avast.VC140.MFC.manifest
2017-08-10 18:12 - 2017-08-15 19:04 - 004775736 ____C (Microsoft Corporation) C:\Program Files\Systemy\Avast\setup\CRT\data\avast.vc140.mfc\x86\mfc140u.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.crt
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.crt\amd64
2017-08-10 18:12 - 2017-08-15 19:04 - 000018105 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.crt\amd64\Policy.14.0.Avast.VC140.CRT.cat
2017-08-10 18:12 - 2017-08-15 19:04 - 000000764 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.crt\amd64\Policy.14.0.Avast.VC140.CRT.manifest
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.crt\x86
2017-08-10 18:12 - 2017-08-15 19:04 - 000018105 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.crt\x86\Policy.14.0.Avast.VC140.CRT.cat
2017-08-10 18:12 - 2017-08-15 19:04 - 000000760 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.crt\x86\Policy.14.0.Avast.VC140.CRT.manifest
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.mfc
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.mfc\x86
2017-08-10 18:12 - 2017-08-15 19:04 - 000018105 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.mfc\x86\Policy.14.0.Avast.VC140.MFC.cat
2017-08-10 18:12 - 2017-08-15 19:04 - 000000760 ____C () C:\Program Files\Systemy\Avast\setup\CRT\data\policy.14.0.avast.vc140.mfc\x86\Policy.14.0.Avast.VC140.MFC.manifest
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\Inf
2017-08-10 18:12 - 2017-08-10 18:12 - 000008885 ____C () C:\Program Files\Systemy\Avast\setup\Inf\aswNetNd6.cat
2017-08-10 18:12 - 2017-08-10 18:12 - 000003576 ____C () C:\Program Files\Systemy\Avast\setup\Inf\aswNetNd6.inf
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\Inf\x64
2017-08-10 18:12 - 2017-08-10 18:12 - 000173016 ____C (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswbdiska.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000320008 ____C (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswbidsdrivera.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000198976 ____C (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswbidsha.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000343288 ____C (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswbloga.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000400464 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswBoot.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000057728 ____C (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswbuniva.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000046984 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswHwid.sys
2017-08-10 18:12 - 2017-08-10 18:16 - 000146704 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswmonflt.sys
2017-08-10 18:14 - 2017-08-10 18:16 - 000000223 ____C () C:\Program Files\Systemy\Avast\setup\Inf\x64\aswmonflt.sys.sum
2017-08-10 18:12 - 2017-08-10 18:12 - 000038152 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswNetNd6.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000554528 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswNetSec.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000110352 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswRdr2.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000084392 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswRvrt.sys
2017-08-10 18:12 - 2017-08-10 18:16 - 001015880 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswsnx.sys
2017-08-10 18:16 - 2017-08-10 18:16 - 000000223 ____C () C:\Program Files\Systemy\Avast\setup\Inf\x64\aswsnx.sys.sum
2017-08-10 18:12 - 2017-08-10 18:12 - 000585608 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswSP.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000198768 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswStm.sys
2017-08-10 18:12 - 2017-08-10 18:12 - 000361336 ____C (AVAST Software) C:\Program Files\Systemy\Avast\setup\Inf\x64\aswVmm.sys
2017-08-10 18:13 - 2017-08-10 18:13 - 000000000 ___DC () C:\Program Files\Systemy\Avast\setup\iplugins
2017-08-10 18:13 - 2017-08-10 18:13 - 000036576 ____C (AVAST Software s. r. o.) C:\Program Files\Systemy\Avast\setup\iplugins\IStats.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\FF
2017-08-10 18:12 - 2017-08-10 18:12 - 000694121 _____ () C:\Program Files\Systemy\Avast\WebRep\FF\wrc@avast.com.xpi
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ar
2017-08-10 18:12 - 2017-08-10 18:12 - 000018623 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ar\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\be
2017-08-10 18:12 - 2017-08-10 18:12 - 000020336 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\be\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\bg
2017-08-10 18:12 - 2017-08-10 18:12 - 000019311 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\bg\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\bn
2017-08-10 18:12 - 2017-08-10 18:12 - 000024467 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\bn\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ca
2017-08-10 18:12 - 2017-08-10 18:12 - 000016195 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ca\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\cs
2017-08-10 18:12 - 2017-08-10 18:12 - 000016152 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\cs\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\da
2017-08-10 18:12 - 2017-08-10 18:12 - 000015564 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\da\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\de
2017-08-10 18:12 - 2017-08-10 18:12 - 000016503 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\de\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\el
2017-08-10 18:12 - 2017-08-10 18:12 - 000021284 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\el\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\en
2017-08-10 18:12 - 2017-08-10 18:12 - 000015105 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\en\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\en_GB
2017-08-10 18:12 - 2017-08-10 18:12 - 000015103 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\en_GB\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\es
2017-08-10 18:12 - 2017-08-10 18:12 - 000016021 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\es\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\et
2017-08-10 18:12 - 2017-08-10 18:12 - 000015580 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\et\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\fa
2017-08-10 18:12 - 2017-08-10 18:12 - 000019161 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\fa\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\fi
2017-08-10 18:12 - 2017-08-10 18:12 - 000015993 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\fi\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\fr
2017-08-10 18:12 - 2017-08-10 18:12 - 000016536 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\fr\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\he
2017-08-10 18:12 - 2017-08-10 18:12 - 000017274 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\he\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\hi
2017-08-10 18:12 - 2017-08-10 18:12 - 000023686 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\hi\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\hr
2017-08-10 18:12 - 2017-08-10 18:12 - 000015875 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\hr\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\hu
2017-08-10 18:12 - 2017-08-10 18:12 - 000016961 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\hu\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\id
2017-08-10 18:12 - 2017-08-10 18:12 - 000015673 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\id\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\it
2017-08-10 18:12 - 2017-08-10 18:12 - 000016158 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\it\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ja
2017-08-10 18:12 - 2017-08-10 18:12 - 000018142 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ja\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ko
2017-08-10 18:12 - 2017-08-10 18:12 - 000016821 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ko\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\lv
2017-08-10 18:12 - 2017-08-10 18:12 - 000016252 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\lv\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ms
2017-08-10 18:12 - 2017-08-10 18:12 - 000015936 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ms\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\nb
2017-08-10 18:12 - 2017-08-10 18:12 - 000015676 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\nb\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\nl
2017-08-10 18:12 - 2017-08-10 18:12 - 000015958 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\nl\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\pl
2017-08-10 18:12 - 2017-08-10 18:12 - 000016664 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\pl\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\pt_BR
2017-08-10 18:12 - 2017-08-10 18:12 - 000016075 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\pt_BR\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\pt_PT
2017-08-10 18:12 - 2017-08-10 18:12 - 000015856 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\pt_PT\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ro
2017-08-10 18:12 - 2017-08-10 18:12 - 000016214 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ro\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ru
2017-08-10 18:12 - 2017-08-10 18:12 - 000020605 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ru\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\sk
2017-08-10 18:12 - 2017-08-10 18:12 - 000016203 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\sk\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\sl
2017-08-10 18:12 - 2017-08-10 18:12 - 000016091 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\sl\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\sr
2017-08-10 18:12 - 2017-08-10 18:12 - 000015830 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\sr\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\sv
2017-08-10 18:12 - 2017-08-10 18:12 - 000015945 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\sv\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\th
2017-08-10 18:12 - 2017-08-10 18:12 - 000024483 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\th\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\tr
2017-08-10 18:12 - 2017-08-10 18:12 - 000016234 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\tr\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\uk
2017-08-10 18:12 - 2017-08-10 18:12 - 000020754 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\uk\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ur
2017-08-10 18:12 - 2017-08-10 18:12 - 000019730 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\ur\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\vi
2017-08-10 18:12 - 2017-08-10 18:12 - 000017664 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\vi\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\zh_CN
2017-08-10 18:12 - 2017-08-10 18:12 - 000014872 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\zh_CN\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\zh_TW
2017-08-10 18:12 - 2017-08-10 18:12 - 000015140 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\_locales\zh_TW\messages.json
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\mocks
2017-08-10 18:12 - 2017-08-10 18:12 - 000000000 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\mocks\empty.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000444 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\mocks\ga.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000439 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\mocks\gpt.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000605 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\mocks\map.json
2017-08-10 18:12 - 2017-08-10 18:12 - 000000778 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\mocks\omniture.js
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates
2017-08-10 18:12 - 2017-08-10 18:12 - 000001794 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\bal.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000037828 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\clear_page.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000003013 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\credentials_watcher.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000061630 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\extension.css
2017-08-10 18:12 - 2017-08-10 18:12 - 000001739 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\ial.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000092556 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\jquery.1.8.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000015912 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\jquery.mustache.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000093436 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\jquery-1.8.2.min.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000230338 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\lodash.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000738 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\main.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000110 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\quirks_fix.css
2017-08-10 18:12 - 2017-08-10 18:12 - 000011061 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\searchresults.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000341 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\searchresults_document_ready.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000316 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\show_blocker_dialog.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000320 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\show_phishing_dialog.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000004718 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\show_safeshop_toolbar.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000580 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\show_safezone_toolbar.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000533 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\show_sitecorrect_dialog.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000002137 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\show_slidebar.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000320 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\show_welcome_page.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000018510 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\templates.js
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\blocker
2017-08-10 18:12 - 2017-08-10 18:12 - 000001218 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\blocker\blocker.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000001098 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\blocker\blocker.js
2017-08-10 18:12 - 2017-08-15 19:03 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\credentials
2017-08-10 18:12 - 2017-08-10 18:12 - 000001238 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\credentials\credentials.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000001196 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\credentials\credentials.js
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img
2017-08-10 18:12 - 2017-08-10 18:12 - 000001550 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\arrow.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003327 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\fblike.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003594 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\flattr.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003615 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\google+.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001441 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\grey0-16.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000357 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_bug.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000665 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_bug@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000227 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_check.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000358 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_check@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000002066 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_checkbig.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000004506 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_checkbig@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000463 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_close.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000724 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_close@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000470 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_close_small.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000875 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_close_small@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000144 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_exclamationmark.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000182 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_exclamationmark@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000451 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_extensiontop.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000465 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_extensiontop_green.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000490 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_extensiontop_orange.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000471 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_extensiontop_red.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000343 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_eye.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000646 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_eye@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000159 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_interm.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000367 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_maleware.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000646 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_maleware@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000002314 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_norating_big.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000005071 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_norating_big@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000002268 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_norating_big2.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000005055 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_norating_big2@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000215 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_rates.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000264 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_rates@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001952 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_siteforward.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000004424 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_siteforward@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000002227 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_thumbdown_big.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000004932 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_thumbdown_big@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000287 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_thumblearn.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000450 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_thumblearn@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000002264 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_thumbright_big.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000004963 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_thumbright_big@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000002233 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_thumbup_big.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000004889 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_thumbup_big@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000294 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_unknown.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001812 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_warning.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000004160 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icn_warning@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000470 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icnclose_small.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000260 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icnthumbdownsmall.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000470 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icnthumbdownsmall@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000259 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icnthumbsmall.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000436 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icnthumbsmall@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000002850 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icon128.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000007040 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icon256.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001174 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icon48.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001631 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\icon64.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000017735 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\img_bg.jpg
2017-08-10 18:12 - 2017-08-10 18:12 - 000004302 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\inshare.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000951 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\logo_webrep.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000626 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\logo_webrepblack.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000996 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\logo_webrepblack@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001967 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\logo_webrepcolor.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003604 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\logo_webrepcolor@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000497 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\logo_webrepsmall.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000762 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\logo_webrepsmall@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003658 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\pin.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001200 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\sas_close.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000580 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\sas_conf.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000307 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\sas_drop.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000532 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\sas_help.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000540 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\sas_logo.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000566 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\se_icn_green.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000619 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\se_icn_grey.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001825 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\se_icn_norating.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000413 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\se_icn_orange.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000481 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\se_icn_red.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001733 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\se_icn_thumbdown.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001729 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\se_icn_thumbneutral.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001690 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\se_icn_thumbup.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000909 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_dotgreen.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001693 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_dotgreen@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000812 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_dotorange.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001638 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_dotorange@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000862 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_dotred.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001683 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_dotred@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000559 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_greenbg.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001057 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_greenbg@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000556 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_orangebg.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001082 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_orangebg@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000557 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_redbg.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001023 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switcher_redbg@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000679 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switchersmall_dotgreen.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001274 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switchersmall_dotgreen@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000653 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switchersmall_dotred.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001288 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\switchersmall_dotred@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000000162 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\transparent-bg.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000004207 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\tumblr.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003963 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\tweet.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003571 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\vklike.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001866 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\webrep-logo.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000001727 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\webreplogo@2x.png
2017-08-10 18:12 - 2017-08-10 18:12 - 000003932 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\img\xinglike.png
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\phishing
2017-08-10 18:12 - 2017-08-10 18:12 - 000001221 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\phishing\phishing.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000001216 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\phishing\phishing.js
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safeshop
2017-08-10 18:12 - 2017-08-10 18:12 - 000208910 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safeshop\csl.parser.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000001222 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safeshop\safeshop.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000015979 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safeshop\safeshop.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000000354 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safeshop\safeshop_query.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000001222 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safeshop\safeshophelper.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000265058 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safeshop\webrep.min.js
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safezone
2017-08-10 18:12 - 2017-08-10 18:12 - 000000938 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safezone\safezone.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000001492 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\safezone\safezone.js
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\settings
2017-08-10 18:12 - 2017-08-10 18:12 - 000001389 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\settings\options.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000004842 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\settings\options.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000002674 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\settings\settings.css
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\sitecorrect
2017-08-10 18:12 - 2017-08-10 18:12 - 000001228 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\sitecorrect\sitecorrect.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000001557 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\sitecorrect\sitecorrect.js
2017-08-10 18:12 - 2017-08-15 19:04 - 000000000 ____D () C:\Program Files\Systemy\Avast\WebRep\IE\templates\winbar
2017-08-10 18:12 - 2017-08-10 18:12 - 000011974 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\winbar\test_messages.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000002803 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\winbar\test_winbar.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000001670 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\winbar\winbar.html
2017-08-10 18:12 - 2017-08-10 18:12 - 000018898 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\winbar\winbar.js
2017-08-10 18:12 - 2017-08-10 18:12 - 000045651 _____ () C:\Program Files\Systemy\Avast\WebRep\IE\templates\winbar\winext.css
2017-08-10 18:12 - 2017-08-15 19:09 - 000000000 ____D () C:\Program Files\Systemy\Avast\x64
2017-08-10 18:12 - 2017-08-10 18:16 - 000433136 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\aavmrpch.dll
2017-08-10 18:16 - 2017-08-10 18:16 - 000000223 _____ () C:\Program Files\Systemy\Avast\x64\aavmrpch.dll.sum
2017-08-10 18:12 - 2017-08-10 18:12 - 000885176 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\asOutExt.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000268552 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\aswAMSI.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001681128 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswcerta.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000959072 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswcmla.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000471056 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\aswCmnBS.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000455456 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\aswCmnIS.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000183264 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\aswCmnOS.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001146600 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswcomma.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000386056 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswdetallocatora.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000480168 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswfilevaulta.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000212464 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswhooka.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 007430992 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswidsagenta.exe
2017-08-15 19:09 - 2017-08-15 19:09 - 000258016 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\aswJsFlt.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000712840 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswloga.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001210024 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswnetclia.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001095648 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswntsqlitea.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000874640 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\aswProperty.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000676464 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswpsica.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001145008 _____ (AVAST Software s.r.o.) C:\Program Files\Systemy\Avast\x64\aswsysa.dll
2017-08-10 18:12 - 2017-08-10 18:10 - 000797784 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\AvDump64.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 001428080 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\CommChannel.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000831664 _____ () C:\Program Files\Systemy\Avast\x64\ffl2.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000227896 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\gaming_hook.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000569264 _____ () C:\Program Files\Systemy\Avast\x64\gaming_spy.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000197784 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\Gf2Vss.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 003026944 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\Avast\x64\libcrypto-1_1-x64.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000518144 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\Avast\x64\libssl-1_1-x64.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000157248 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\log.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 001773928 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\RegSvr.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 001747960 _____ (AVAST Software) C:\Program Files\Systemy\Avast\x64\SetupInf.exe
2017-08-10 18:12 - 2017-08-10 18:12 - 000276808 _____ () C:\Program Files\Systemy\Avast\x64\StreamBack.dll
2017-08-10 18:12 - 2017-08-10 18:12 - 000162032 _____ () C:\Program Files\Systemy\Avast\x64\vaarclient.dll
 



#13 Burnsie

Burnsie
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 20 August 2017 - 01:01 PM

PART 2 NO EDITING

 

2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy
2016-06-11 20:59 - 2016-05-05 01:55 - 000008445 _____ () C:\Program Files\Systemy\DriverEasy\ClassGuidMap.xml
2016-06-11 20:59 - 2016-05-09 03:52 - 002615152 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\DriverEasy.exe
2016-06-11 20:59 - 2016-05-05 01:54 - 000000263 _____ () C:\Program Files\Systemy\DriverEasy\DriverEasy.exe.config
2016-06-11 20:59 - 2016-05-09 03:52 - 000039792 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\Easeware.CheckScheduledScan.exe
2016-06-11 20:59 - 2016-05-05 09:48 - 000001584 _____ () C:\Program Files\Systemy\DriverEasy\Easeware.CheckScheduledScan.exe.config
2016-06-11 20:59 - 2016-05-09 03:52 - 000016752 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\Easeware.ConfigLanguageFromSetup.exe
2016-06-11 20:59 - 2016-05-05 09:48 - 000001584 _____ () C:\Program Files\Systemy\DriverEasy\Easeware.ConfigLanguageFromSetup.exe.config
2016-06-11 20:59 - 2016-05-09 03:52 - 000056688 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\Easeware.Driver.Backup.dll
2016-06-11 20:59 - 2016-05-09 03:52 - 000601968 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\Easeware.Driver.Core.dll
2016-06-11 20:59 - 2016-05-09 03:52 - 000396656 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\Easeware.DriverInstall.exe
2016-06-11 20:59 - 2016-05-05 09:48 - 000001584 _____ () C:\Program Files\Systemy\DriverEasy\Easeware.DriverInstall.exe.config
2016-06-11 20:59 - 2016-05-09 03:52 - 000093040 _____ ( ) C:\Program Files\Systemy\DriverEasy\Interop.WUApiLib.dll
2016-06-11 20:59 - 2016-05-09 03:51 - 002610030 _____ () C:\Program Files\Systemy\DriverEasy\Map.xml
2016-06-11 20:59 - 2016-06-11 20:59 - 000027221 _____ () C:\Program Files\Systemy\DriverEasy\unins000.dat
2016-06-11 20:59 - 2016-06-11 20:58 - 001369968 _____ () C:\Program Files\Systemy\DriverEasy\unins000.exe
2016-06-11 20:59 - 2016-06-11 20:59 - 000022719 _____ () C:\Program Files\Systemy\DriverEasy\unins000.msg
2016-06-11 20:59 - 2016-05-09 03:52 - 000253296 _____ () C:\Program Files\Systemy\DriverEasy\UnRAR.exe
2016-06-11 20:59 - 2013-09-29 07:14 - 000001509 _____ () C:\Program Files\Systemy\DriverEasy\UnRAR_license.txt
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\ar
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\ar\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\cs
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\cs\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\da
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\da\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\de
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\de\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\el-GR
2016-06-11 20:59 - 2016-05-09 03:52 - 000012656 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\el-GR\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\es-AR
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\es-AR\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\fr
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\fr\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\HardwareInfo
2016-06-11 20:59 - 2016-05-09 03:51 - 001098096 _____ (CPUID) C:\Program Files\Systemy\DriverEasy\HardwareInfo\HardwareInfo.dll
2016-06-11 20:59 - 2016-05-09 03:52 - 001291632 _____ (CPUID) C:\Program Files\Systemy\DriverEasy\HardwareInfo\HardwareInfo64.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\hu
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\hu\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\it
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\it\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\ko
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\ko\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\nl
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\nl\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\pl
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\pl\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\pt-BR
2016-06-11 20:59 - 2016-05-09 03:52 - 000013168 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\pt-BR\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\uk
2016-06-11 20:59 - 2016-05-09 03:52 - 000013680 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\uk\Easeware.DriverInstall.resources.dll
2016-06-11 20:59 - 2016-06-11 20:59 - 000000000 ____D () C:\Program Files\Systemy\DriverEasy\zh-CN
2016-06-11 20:59 - 2016-05-09 03:52 - 000012656 _____ (Easeware) C:\Program Files\Systemy\DriverEasy\zh-CN\Easeware.DriverInstall.resources.dll
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter
2014-01-28 19:31 - 2014-01-28 19:31 - 000007267 _____ () C:\Program Files\Systemy\KMLCSV Converter\artifacts.xml
2014-01-28 19:31 - 2014-01-28 19:31 - 000043520 _____ () C:\Program Files\Systemy\KMLCSV Converter\kmlcsv.exe
2014-01-28 19:31 - 2014-01-28 19:31 - 000000159 _____ () C:\Program Files\Systemy\KMLCSV Converter\kmlcsv.ini
2016-02-27 14:32 - 2016-02-27 14:32 - 000066205 _____ (Choon-Chern Lim) C:\Program Files\Systemy\KMLCSV Converter\uninstall.exe
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration
2016-02-27 14:32 - 2016-02-27 14:32 - 000001883 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\1456597970822.log
2014-01-28 19:31 - 2014-01-28 19:31 - 000002431 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\config.ini
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime
2016-02-27 14:32 - 2016-02-27 14:32 - 000000555 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.contributions.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000000638 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.contributors.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000013929 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.extraData.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000081061 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.mainData.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000000699 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.namespaces.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000000004 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.orphans.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000005512 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.table.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.manager
2016-02-27 14:32 - 2016-02-27 14:32 - 000000159 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.manager\.fileTable.7
2016-02-27 14:32 - 2016-02-27 14:32 - 000000159 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.manager\.fileTable.8
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.core.runtime\.manager\.fileTableLock
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.equinox.app
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.equinox.app\.manager
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.equinox.app\.manager\.fileTableLock
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.equinox.launcher
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.equinox.launcher\com.choonchernlim.kmlcsv_2.2.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000720056 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.equinox.launcher\com.choonchernlim.kmlcsv_2.2.1\splash.bmp
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.equinox.source
2014-01-28 19:31 - 2014-01-28 19:31 - 000000158 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.equinox.source\source.info
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi
2016-02-27 14:32 - 2016-02-27 14:32 - 000012497 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\.bundledata.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000082708 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\.lazy.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000007617 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\.state.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\.manager
2016-02-27 14:32 - 2016-02-27 14:32 - 000000094 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\.manager\.fileTable.4
2016-02-27 14:32 - 2016-02-27 14:32 - 000000094 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\.manager\.fileTable.5
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\.manager\.fileTableLock
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1\1
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1\1\.cp
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1\1\.cp\lib
2016-02-27 14:32 - 2016-02-27 14:32 - 000026875 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1\1\.cp\lib\commons-csv-20080514.jar
2016-02-27 14:32 - 2016-02-27 14:32 - 000261809 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1\1\.cp\lib\commons-lang-2.4.jar
2016-02-27 14:32 - 2016-02-27 14:32 - 000226915 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1\1\.cp\lib\jaxen-1.1.1.jar
2016-02-27 14:32 - 2016-02-27 14:32 - 000153115 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1\1\.cp\lib\jdom-1.1.jar
2016-02-27 14:32 - 2016-02-27 14:32 - 000367444 _____ () C:\Program Files\Systemy\KMLCSV Converter\configuration\org.eclipse.osgi\bundles\1\1\.cp\lib\log4j-1.2.14.jar
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.core
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.core\cache
2014-01-28 19:31 - 2014-01-28 19:31 - 000000975 _____ () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.core\cache\artifacts.xml
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.core\cache\binary
2014-01-28 19:31 - 2014-01-28 19:31 - 000022014 _____ () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.core\cache\binary\com.choonchernlim.kmlcsv.product_root.win32.win32.x86_64_2.2.1
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\.settings
2014-01-28 19:31 - 2014-01-28 19:31 - 000002159 _____ () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.artifact.repository.prefs
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\profileRegistry
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\profileRegistry\profile.profile
2014-01-28 19:31 - 2014-01-28 19:31 - 000000000 _____ () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\profileRegistry\profile.profile\.lock
2014-01-28 19:31 - 2014-01-28 19:31 - 000000298 _____ () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\profileRegistry\profile.profile\1390951888831.profile.gz
2014-01-28 19:31 - 2014-01-28 19:31 - 000000301 _____ () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\profileRegistry\profile.profile\1390951888947.profile.gz
2014-01-28 19:31 - 2014-01-28 19:31 - 000010750 _____ () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\profileRegistry\profile.profile\1390951890767.profile.gz
2014-01-28 19:31 - 2014-01-28 19:31 - 000010747 _____ () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\profileRegistry\profile.profile\1390951890860.profile.gz
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\p2\org.eclipse.equinox.p2.engine\profileRegistry\profile.profile\.data
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\plugins
2014-01-28 19:31 - 2014-01-28 19:31 - 001195143 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\com.choonchernlim.kmlcsv_2.2.1.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 006701203 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\com.ibm.icu_4.4.2.v20110823.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000107303 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.commands_3.6.0.I20110111-0800.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000091961 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.contenttype_3.4.100.v20110423-0524.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000296139 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.databinding.observable_1.4.0.I20110222-0800.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000167964 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.databinding.property_1.4.0.I20110222-0800.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000200967 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.databinding_1.4.0.I20110111-0800.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000086992 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.expressions_3.4.300.v20110228.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000091069 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.jobs_3.5.101.v20120113-1953.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000022838 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.runtime.compatibility.auth_3.2.200.v20110110.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000070526 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.core.runtime_3.7.0.v20110110.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000085218 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.app_1.3.100.v20110321.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000105624 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.common_3.6.0.v20110523.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000189350 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.ds_1.3.1.R37x_v20110701.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000047262 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher_1.2.0.v20110502.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000113791 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.preferences_3.4.2.v20120111-2020.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000183035 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.registry_3.5.101.R37x_v20110810-1611.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000076820 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.util_1.0.300.v20110502.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000257403 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.help_3.5.100.v20110426.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000275458 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.jface.databinding_1.5.0.I20100907-0800.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 001077135 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.jface_3.7.0.v20110928-1505.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000071157 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.osgi.services_3.3.0.v20110513.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 001364409 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.osgi_3.7.2.v20120110-1415.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 002395154 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.swt.win32.win32.x86_64.source_3.7.2.v3740f.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 002607389 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.swt.win32.win32.x86_64_3.7.2.v3740f.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000017332 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.swt_3.7.2.v3740f.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 004166247 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.ui.workbench_3.7.1.v20120104-1859.jar
2014-01-28 19:31 - 2014-01-28 19:31 - 000153179 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.ui_3.7.0.v20110928-1505.jar
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502
2007-07-30 14:58 - 2007-07-30 14:58 - 000001445 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502\about.html
2011-03-21 17:05 - 2011-03-21 17:05 - 000056832 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502\eclipse_1406.dll
2011-05-02 12:39 - 2011-05-02 12:39 - 000000620 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502\launcher.win32.win32.x86_64.properties
2016-02-27 14:32 - 2016-02-27 14:32 - 000000000 ____D () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502\META-INF
2011-06-29 10:29 - 2011-06-29 10:29 - 000000076 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502\META-INF\eclipse.inf
2011-06-29 10:29 - 2011-06-29 10:29 - 000005638 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502\META-INF\ECLIPSEF.RSA
2011-06-29 10:29 - 2011-06-29 10:29 - 000000479 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502\META-INF\ECLIPSEF.SF
2011-06-29 10:29 - 2011-06-29 10:29 - 000000982 _____ () C:\Program Files\Systemy\KMLCSV Converter\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.100.v20110502\META-INF\MANIFEST.MF
2017-08-10 18:06 - 2017-08-15 22:57 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes
2017-08-10 18:06 - 2017-05-09 17:40 - 001606656 _____ (Igor Pavlov) C:\Program Files\Systemy\Malwarebytes\7z.dll
2017-08-10 18:06 - 2017-08-16 10:40 - 004096464 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\Actions.dll
2017-08-10 18:06 - 2017-06-27 12:07 - 001930192 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\ActionsShim.dll
2017-08-10 18:06 - 2017-06-27 12:05 - 002844616 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\AEControllerImpl.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 001922504 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\AeShim.dll
2017-08-10 18:06 - 2017-06-27 12:05 - 003237832 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\ArwControllerImpl.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 003004872 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\arwlib.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 001908176 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\ArwSdkShim.dll
2017-08-10 18:06 - 2017-05-09 17:43 - 000736208 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\assistant.exe
2017-08-10 18:06 - 2017-05-09 17:39 - 000002180 _____ () C:\Program Files\Systemy\Malwarebytes\changes.txt
2017-08-10 18:06 - 2017-06-27 12:05 - 004795344 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\CleanControllerImpl.dll
2017-08-10 18:06 - 2017-06-27 12:05 - 003390416 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\CloudControllerImpl.dll
2017-08-10 18:06 - 2017-05-09 17:40 - 001622528 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\Malwarebytes\libeay32.dll
2017-08-10 18:06 - 2017-06-27 12:05 - 003374536 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\LicenseControllerImpl.dll
2017-08-10 18:06 - 2017-05-09 17:43 - 000735696 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\malwarebytes_assistant.exe
2017-08-10 18:06 - 2017-06-27 12:06 - 000399304 _____ (Malwarebytes Corporation) C:\Program Files\Systemy\Malwarebytes\mbae.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 000481224 _____ (Malwarebytes Corporation) C:\Program Files\Systemy\Malwarebytes\mbae64.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 002268104 _____ (Malwarebytes Corporation) C:\Program Files\Systemy\Malwarebytes\mbae-api-na.dll
2017-08-10 18:06 - 2017-05-09 17:41 - 008534480 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\mbam.exe
2017-08-10 18:06 - 2017-08-16 10:40 - 004618192 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MBAMCore.dll
2017-08-10 18:06 - 2017-05-09 17:40 - 000006144 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MbamPt.exe
2017-08-10 18:06 - 2017-05-09 17:40 - 004470736 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MBAMService.exe
2017-08-10 18:06 - 2017-06-27 12:07 - 001962960 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MBAMShim.dll
2017-08-10 18:06 - 2017-05-09 17:42 - 003146704 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\mbamtray.exe
2017-08-10 18:06 - 2017-06-27 12:07 - 002071704 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MBAMWsc.exe
2017-08-10 18:06 - 2017-05-09 17:40 - 002063488 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\mbshlext.dll
2017-08-10 18:06 - 2013-10-05 02:38 - 000455328 _____ (Microsoft Corporation) C:\Program Files\Systemy\Malwarebytes\msvcp120.dll
2017-08-10 18:06 - 2013-10-05 02:38 - 000970912 _____ (Microsoft Corporation) C:\Program Files\Systemy\Malwarebytes\msvcr120.dll
2017-08-10 18:06 - 2017-06-27 12:05 - 003040720 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MWACControllerImpl.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 002260432 _____ () C:\Program Files\Systemy\Malwarebytes\MwacLib.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 001925576 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\MwacSdkShim.dll
2017-08-10 18:06 - 2017-06-27 12:05 - 002275104 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\PoliciesControllerImpl.dll
2017-08-10 18:06 - 2017-05-09 17:33 - 004793344 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt5Core.dll
2017-08-10 18:06 - 2017-04-11 14:42 - 005093888 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt5Gui.dll
2017-08-10 18:06 - 2017-04-11 14:41 - 000672768 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt5Network.dll
2017-08-10 18:06 - 2017-04-11 14:46 - 002514432 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt5Qml.dll
2017-08-10 18:06 - 2017-04-11 14:47 - 002567168 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt5Quick.dll
2017-08-10 18:06 - 2017-04-11 14:44 - 000247808 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt5Svg.dll
2017-08-10 18:06 - 2017-04-11 14:43 - 004481024 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt5Widgets.dll
2017-08-10 18:06 - 2017-04-11 14:50 - 000206336 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt5WinExtras.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 002042320 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\rtp.dll
2017-08-10 18:06 - 2017-06-27 12:07 - 002874312 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\RTPControllerImpl.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 001918408 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\RtpShim.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 003857864 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\ScanControllerImpl.dll
2017-08-10 18:06 - 2017-06-27 12:07 - 002156488 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\SelfProtectionSdk.dll
2017-08-10 18:06 - 2017-06-27 12:07 - 001952200 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\SelfProtectionShim.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000583 _____ () C:\Program Files\Systemy\Malwarebytes\ServiceConfig.json
2017-08-10 18:06 - 2017-06-27 12:06 - 002440656 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\SPControllerImpl.dll
2017-08-10 18:06 - 2017-05-09 17:40 - 000321024 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\Malwarebytes\ssleay32.dll
2017-08-10 18:06 - 2017-05-09 17:41 - 002273232 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\suhlpr.dll
2017-08-10 18:06 - 2017-06-27 12:07 - 002280392 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\Swissarmy.dll
2017-08-10 18:06 - 2017-06-27 12:07 - 001960904 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\SwissarmyShim.dll
2017-08-10 18:06 - 2017-06-27 12:06 - 003585488 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\TelemetryControllerImpl.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000040904 _____ () C:\Program Files\Systemy\Malwarebytes\unins000.dat
2017-08-10 18:06 - 2017-08-10 18:05 - 001192400 _____ () C:\Program Files\Systemy\Malwarebytes\unins000.exe
2017-08-10 18:06 - 2017-08-10 18:06 - 000022709 _____ () C:\Program Files\Systemy\Malwarebytes\unins000.msg
2017-08-10 18:06 - 2017-06-27 12:06 - 003341264 _____ (Malwarebytes) C:\Program Files\Systemy\Malwarebytes\UpdateControllerImpl.dll
2017-08-10 18:06 - 2017-05-09 17:40 - 000081408 _____ () C:\Program Files\Systemy\Malwarebytes\zlib.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\iconengines
2017-08-10 18:06 - 2017-04-11 14:45 - 000030208 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\iconengines\qsvgicon.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\imageformats
2017-08-10 18:06 - 2017-04-11 14:44 - 000038912 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qdds.dll
2017-08-10 18:06 - 2017-04-11 14:44 - 000024576 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qgif.dll
2017-08-10 18:06 - 2017-04-11 14:44 - 000031232 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qicns.dll
2017-08-10 18:06 - 2017-04-11 14:44 - 000025088 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qico.dll
2017-08-10 18:06 - 2017-04-11 14:44 - 000242176 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qjpeg.dll
2017-08-10 18:06 - 2017-04-11 14:45 - 000019968 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qsvg.dll
2017-08-10 18:06 - 2017-04-11 14:44 - 000018944 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qtga.dll
2017-08-10 18:06 - 2017-04-11 14:44 - 000318976 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qtiff.dll
2017-08-10 18:06 - 2017-04-11 14:44 - 000017920 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qwbmp.dll
2017-08-10 18:06 - 2017-04-11 14:45 - 000328704 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\imageformats\qwebp.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\Languages
2017-08-10 18:06 - 2017-05-09 17:18 - 000188037 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_bg.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000185833 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_cs.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000183271 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_da.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000196011 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_de.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000130369 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_en_GB.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000006981 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_en_US.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000192427 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_es.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000190015 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_fi.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000197103 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_fr.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000194966 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_hr.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000189472 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_hu.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000190601 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_it.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000142532 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_ja.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000139252 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_ko.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000187931 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_nl.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000181809 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_no.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000194693 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_pl.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000190899 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_pt_BR.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000190917 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_pt_PT.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000198952 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_ro.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000199250 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_ru.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000189583 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_sk.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000195608 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_sl.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000182471 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_sv.qm
2017-08-10 18:06 - 2017-05-09 17:18 - 000128542 _____ () C:\Program Files\Systemy\Malwarebytes\Languages\lang_zh_TW.qm
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\platforms
2017-08-10 18:06 - 2017-04-11 14:44 - 000992768 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\platforms\qwindows.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\Qt
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\Qt\labs
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\Qt\labs\folderlistmodel
2017-08-10 18:06 - 2017-04-11 14:36 - 000012407 _____ () C:\Program Files\Systemy\Malwarebytes\Qt\labs\folderlistmodel\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000128 _____ () C:\Program Files\Systemy\Malwarebytes\Qt\labs\folderlistmodel\qmldir
2017-08-10 18:06 - 2017-04-11 14:48 - 000044032 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt\labs\folderlistmodel\qmlfolderlistmodelplugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\Qt\labs\settings
2017-08-10 18:06 - 2017-04-11 14:36 - 000000518 _____ () C:\Program Files\Systemy\Malwarebytes\Qt\labs\settings\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000107 _____ () C:\Program Files\Systemy\Malwarebytes\Qt\labs\settings\qmldir
2017-08-10 18:06 - 2017-04-11 14:49 - 000022528 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\Qt\labs\settings\qmlsettingsplugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQml
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQml\Models.2
2017-08-10 18:06 - 2017-04-11 14:48 - 000013312 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQml\Models.2\modelsplugin.dll
2017-08-10 18:06 - 2017-04-11 14:36 - 000021799 _____ () C:\Program Files\Systemy\Malwarebytes\QtQml\Models.2\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000090 _____ () C:\Program Files\Systemy\Malwarebytes\QtQml\Models.2\qmldir
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick.2
2017-08-10 18:06 - 2017-04-11 14:36 - 000177432 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick.2\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000111 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick.2\qmldir
2017-08-10 18:06 - 2017-04-11 14:49 - 000013312 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick.2\qtquick2plugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls
2017-08-10 18:06 - 2017-04-11 14:36 - 000135655 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000191 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls\qmldir
2017-08-10 18:06 - 2017-04-11 14:52 - 000697344 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls\qtquickcontrolsplugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls\Styles
2017-08-10 18:06 - 2017-04-11 14:36 - 000001575 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls\Styles\qmldir
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls\Styles\Flat
2017-08-10 18:06 - 2017-04-11 14:36 - 000000106 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls\Styles\Flat\qmldir
2017-08-10 18:06 - 2017-04-11 14:51 - 000809472 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick\Controls\Styles\Flat\qtquickextrasflatplugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\Dialogs
2017-08-10 18:06 - 2017-04-11 14:52 - 000172544 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick\Dialogs\dialogplugin.dll
2017-08-10 18:06 - 2017-04-11 14:36 - 000116824 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Dialogs\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000239 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Dialogs\qmldir
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\Dialogs\Private
2017-08-10 18:06 - 2017-04-11 14:52 - 000035328 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick\Dialogs\Private\dialogsprivateplugin.dll
2017-08-10 18:06 - 2017-04-11 14:36 - 000012302 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Dialogs\Private\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000128 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Dialogs\Private\qmldir
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\Extras
2017-08-10 18:06 - 2017-04-11 14:36 - 000029879 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Extras\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000144 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Extras\qmldir
2017-08-10 18:06 - 2017-04-11 14:52 - 000121344 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick\Extras\qtquickextrasplugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\Layouts
2017-08-10 18:06 - 2017-04-11 14:36 - 000003777 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Layouts\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000130 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Layouts\qmldir
2017-08-10 18:06 - 2017-04-11 14:51 - 000069632 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick\Layouts\qquicklayoutsplugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\PrivateWidgets
2017-08-10 18:06 - 2017-04-11 14:36 - 000011103 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\PrivateWidgets\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000120 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\PrivateWidgets\qmldir
2017-08-10 18:06 - 2017-04-11 14:52 - 000096768 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick\PrivateWidgets\widgetsplugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtQuick\Window.2
2017-08-10 18:06 - 2017-04-11 14:36 - 000010394 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Window.2\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:36 - 000000122 _____ () C:\Program Files\Systemy\Malwarebytes\QtQuick\Window.2\qmldir
2017-08-10 18:06 - 2017-04-11 14:49 - 000013312 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtQuick\Window.2\windowplugin.dll
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\QtWinExtras
2017-08-10 18:06 - 2017-04-11 14:36 - 000002279 _____ () C:\Program Files\Systemy\Malwarebytes\QtWinExtras\JumpListDestination.qml
2017-08-10 18:06 - 2017-04-11 14:36 - 000002748 _____ () C:\Program Files\Systemy\Malwarebytes\QtWinExtras\JumpListLink.qml
2017-08-10 18:06 - 2017-04-11 14:36 - 000002071 _____ () C:\Program Files\Systemy\Malwarebytes\QtWinExtras\JumpListSeparator.qml
2017-08-10 18:06 - 2017-04-11 14:36 - 000014616 _____ () C:\Program Files\Systemy\Malwarebytes\QtWinExtras\plugins.qmltypes
2017-08-10 18:06 - 2017-04-11 14:51 - 000074752 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\QtWinExtras\qml_winextras.dll
2017-08-10 18:06 - 2017-04-11 14:36 - 000000171 _____ () C:\Program Files\Systemy\Malwarebytes\QtWinExtras\qmldir
2017-08-10 18:06 - 2017-08-10 18:06 - 000000000 ____D () C:\Program Files\Systemy\Malwarebytes\scenegraph
2017-08-10 18:06 - 2017-04-11 14:53 - 000104960 _____ (The Qt Company Ltd) C:\Program Files\Systemy\Malwarebytes\scenegraph\softwarecontext.dll
2017-08-16 12:01 - 2017-08-16 12:01 - 000000000 ____D () C:\Program Files\Systemy\MiniTool Partition Wizard 10
2017-08-16 12:01 - 2015-08-08 06:26 - 001369936 _____ (Microsoft Corporation) C:\Program Files\Systemy\MiniTool Partition Wizard 10\dbghelp.dll
2017-08-16 12:01 - 2017-07-27 13:55 - 000015360 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\idriver.dll
2017-08-16 12:01 - 2017-07-27 13:53 - 000270848 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\ikernel.dll
2017-08-16 12:01 - 2017-08-16 12:01 - 000000024 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\lang.ini
2017-08-16 12:01 - 2017-03-09 14:54 - 000359936 _____ (The curl library, https://curl.haxx.se/) C:\Program Files\Systemy\MiniTool Partition Wizard 10\libcurl.dll
2017-08-16 12:01 - 2017-03-07 23:22 - 001659904 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\MiniTool Partition Wizard 10\libeay32.dll
2017-08-16 12:01 - 2017-08-16 13:14 - 000008423 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\log.txt
2017-08-16 12:01 - 2016-07-07 01:45 - 000659616 _____ (Microsoft Corporation) C:\Program Files\Systemy\MiniTool Partition Wizard 10\msvcp120.dll
2017-08-16 12:01 - 2016-07-07 01:45 - 000963240 _____ (Microsoft Corporation) C:\Program Files\Systemy\MiniTool Partition Wizard 10\msvcr120.dll
2017-08-16 12:01 - 2017-07-27 14:00 - 011613880 _____ (MiniTool Solution Ltd.) C:\Program Files\Systemy\MiniTool Partition Wizard 10\partitionwizard.exe
2017-08-16 12:01 - 2017-07-27 14:00 - 000001192 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\partitionwizard.exe.mfh
2017-08-16 12:01 - 2016-12-13 08:51 - 000000920 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\pas.cnf
2017-08-16 12:01 - 2017-07-27 13:54 - 000214528 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\Pas2.dll
2017-08-16 12:01 - 2017-07-27 13:52 - 000115200 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\PASServer.dll
2017-08-16 12:01 - 2017-02-09 11:54 - 025218518 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\pw.chm
2017-08-16 12:01 - 2017-07-20 09:42 - 026174572 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\pw_ja.chm
2017-08-16 12:01 - 2017-07-25 13:41 - 000179930 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\pw_ja.qm
2017-08-16 12:01 - 2016-06-13 08:20 - 000129904 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\qt_ja.qm
2017-08-16 12:01 - 2017-03-13 14:10 - 005562368 _____ (The Qt Company Ltd) C:\Program Files\Systemy\MiniTool Partition Wizard 10\Qt5Core.dll
2017-08-16 12:01 - 2017-03-13 14:14 - 003894272 _____ (The Qt Company Ltd) C:\Program Files\Systemy\MiniTool Partition Wizard 10\Qt5Gui.dll
2017-08-16 12:01 - 2017-03-13 14:11 - 001041920 _____ (The Qt Company Ltd) C:\Program Files\Systemy\MiniTool Partition Wizard 10\Qt5Network.dll
2017-08-16 12:01 - 2017-03-13 14:18 - 005429760 _____ (The Qt Company Ltd) C:\Program Files\Systemy\MiniTool Partition Wizard 10\Qt5Widgets.dll
2017-08-16 12:01 - 2017-03-12 08:10 - 011041280 _____ (The Qt Company Ltd) C:\Program Files\Systemy\MiniTool Partition Wizard 10\Qt5Widgetsd.dll
2017-08-16 12:01 - 2017-03-07 23:22 - 000322048 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\Systemy\MiniTool Partition Wizard 10\ssleay32.dll
2017-08-16 12:01 - 2017-08-16 12:01 - 000015927 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\unins000.dat
2017-08-16 12:01 - 2017-08-16 12:00 - 001553888 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\unins000.exe
2017-08-16 12:01 - 2017-08-16 12:01 - 000022709 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\unins000.msg
2017-08-16 12:01 - 2017-08-16 12:01 - 000000000 ____D () C:\Program Files\Systemy\MiniTool Partition Wizard 10\imageformats
2017-08-16 12:01 - 2017-03-12 23:52 - 000029696 _____ (The Qt Company Ltd) C:\Program Files\Systemy\MiniTool Partition Wizard 10\imageformats\qgif.dll
2017-08-16 12:01 - 2017-08-16 12:01 - 000000000 ____D () C:\Program Files\Systemy\MiniTool Partition Wizard 10\platforms
2017-08-16 12:01 - 2017-03-12 23:52 - 001150976 _____ (The Qt Company Ltd) C:\Program Files\Systemy\MiniTool Partition Wizard 10\platforms\qwindows.dll
2017-08-16 12:01 - 2017-08-16 12:01 - 000000000 ____D () C:\Program Files\Systemy\MiniTool Partition Wizard 10\resources
2017-08-16 12:01 - 2017-07-17 14:58 - 000080076 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\resources\advertisement-v10-sm-button.png
2017-08-16 12:01 - 2017-07-17 14:58 - 000076149 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\resources\backup.png
2017-08-16 12:01 - 2017-07-17 14:58 - 000098712 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\resources\whats-new-v10-button-test.png
2017-08-16 12:01 - 2017-08-16 12:01 - 000000000 ____D () C:\Program Files\Systemy\MiniTool Partition Wizard 10\x64
2017-08-16 12:01 - 2013-09-30 15:26 - 000019152 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\x64\pwdrvio.sys
2017-08-16 12:01 - 2013-09-30 15:26 - 000012504 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\x64\pwdspio.sys
2017-08-16 12:01 - 2017-03-23 09:04 - 003547136 _____ () C:\Program Files\Systemy\MiniTool Partition Wizard 10\x64\pwNative.exe
2013-07-27 19:44 - 2017-01-05 02:15 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag
2014-11-23 10:50 - 2017-01-05 02:15 - 000000344 _____ () C:\Program Files\Systemy\UltraDefrag\gui.ini
2017-01-05 02:09 - 2016-12-17 00:20 - 000057344 _____ (UltraDefrag Development Team) C:\Program Files\Systemy\UltraDefrag\hibernate4win.exe
2015-12-23 00:15 - 2016-12-16 00:29 - 000058572 _____ () C:\Program Files\Systemy\UltraDefrag\HISTORY.TXT
2017-01-05 02:09 - 2016-12-17 00:20 - 000402432 _____ () C:\Program Files\Systemy\UltraDefrag\lua5.1a.dll
2015-12-23 06:59 - 2016-12-17 00:20 - 000118272 _____ () C:\Program Files\Systemy\UltraDefrag\lua5.1a.exe
2015-12-23 06:59 - 2016-12-17 00:20 - 000150528 _____ () C:\Program Files\Systemy\UltraDefrag\lua5.1a_gui.exe
2016-02-14 09:30 - 2016-12-17 00:27 - 000017725 _____ () C:\Program Files\Systemy\UltraDefrag\options.lua
2015-12-23 07:05 - 2016-12-17 00:27 - 000000526 _____ () C:\Program Files\Systemy\UltraDefrag\README.TXT
2016-02-14 09:31 - 2017-01-05 02:11 - 000000416 _____ () C:\Program Files\Systemy\UltraDefrag\reports.lng
2017-01-05 02:09 - 2016-12-17 00:20 - 000079360 _____ (UltraDefrag Development Team) C:\Program Files\Systemy\UltraDefrag\udefrag.dll
2017-01-05 02:09 - 2016-12-17 00:21 - 001603584 _____ (UltraDefrag Development Team) C:\Program Files\Systemy\UltraDefrag\udefrag.exe
2017-01-05 02:09 - 2016-12-17 00:23 - 000178176 _____ (UltraDefrag Development Team) C:\Program Files\Systemy\UltraDefrag\udefrag-dbg.exe
2015-12-23 07:01 - 2016-12-17 00:23 - 005121536 _____ (UltraDefrag Development Team) C:\Program Files\Systemy\UltraDefrag\ultradefrag.exe
2017-01-05 02:09 - 2016-12-17 00:20 - 000371712 _____ (UltraDefrag Development Team) C:\Program Files\Systemy\UltraDefrag\zenwinx.dll
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\handbook
2017-01-05 02:09 - 2016-12-17 00:26 - 000000668 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\bc_s.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000147 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\bdwn.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000159 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Blank.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000010688 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Boot.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000133 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\closed.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000165 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Compressed.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000017591 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Console.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000036717 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Credits.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000270 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Credits.js
2017-01-05 02:09 - 2016-12-17 00:26 - 000001864 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\custom_doxygen.css
2017-01-05 02:09 - 2016-12-17 00:26 - 000000504 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\defrag.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000010065 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Development.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000165 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Directory.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000020509 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\doxygen.css
2017-01-05 02:09 - 2016-12-17 00:26 - 000002983 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\dynsections.js
2017-01-05 02:09 - 2016-12-17 00:26 - 000008989 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\FAQ.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000020829 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\FDL.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000156 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\fixed.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000163 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Fragmented.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000161 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\FreeSpace.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000086 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2blank.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000460 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2cl.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000752 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2doc.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000636 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2folderclosed.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000640 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2folderopen.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000086 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2lastnode.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000752 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2link.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000245 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2mlastnode.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000245 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2mnode.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000405 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2mo.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000086 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2node.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000390 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2ns.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000228 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2plastnode.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000228 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2pnode.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000311 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2splitbar.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000086 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\ftv2vertline.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000273 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\full.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000529 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\gear.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000596 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\glass.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000018523 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\GPL.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000015386 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\GUI.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000924 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\help.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000005454 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\index.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000008168 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Installation.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000008209 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Introduction.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000136515 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\jquery.js
2017-01-05 02:09 - 2016-12-17 00:26 - 000007548 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\languages.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000029123 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\LGPL_2_0.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000011540 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\LGPL_3_0.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000698 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\light.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000394 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\mft.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000167 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\MFTzone.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000156 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\nav_f.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000095 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\nav_g.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000099 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\nav_h.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000002036 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\navtree.css
2017-01-05 02:09 - 2016-12-17 00:26 - 000014969 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\navtree.js
2017-01-05 02:09 - 2016-12-17 00:26 - 000000420 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\navtreeindex0.js
2017-01-05 02:09 - 2016-12-17 00:26 - 000000163 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\NotFragmented.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000123 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\open.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000007061 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\pages.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000234 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\pause.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000398 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\quick.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000184 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\removable.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000328 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\repeat.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000251 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\report.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000004848 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Reports.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000002657 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\resize.js
2017-01-05 02:09 - 2016-12-17 00:26 - 000004262 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Schedule.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000706 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\script.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000840 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\sflogo.gif
2017-01-05 02:09 - 2016-12-17 00:26 - 000000753 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\star.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000592 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\stop.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000848 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\sync_off.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000838 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\sync_on.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000165 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\System.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000146 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\tab_a.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000169 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\tab_b.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000177 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\tab_h.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000000187 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\tab_s.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000001163 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\tabs.css
2017-01-05 02:09 - 2016-12-17 00:26 - 000000485 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\terminal.png
2017-01-05 02:09 - 2016-12-17 00:26 - 000009480 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Tips.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000004601 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Translation.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000004671 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\Troubleshooting.html
2017-01-05 02:09 - 2016-12-17 00:26 - 000000246 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\udefrag80x15-colored-light.gif
2017-01-05 02:09 - 2016-12-17 00:26 - 000000161 _____ () C:\Program Files\Systemy\UltraDefrag\handbook\UnusedBlock.png
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ach
2017-01-05 02:09 - 2016-12-17 00:27 - 000000531 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ach\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ar
2017-01-05 02:09 - 2016-12-17 00:27 - 000006477 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ar\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ar_EG
2017-01-05 02:09 - 2016-12-17 00:27 - 000000608 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ar_EG\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ar_SA
2017-01-05 02:09 - 2016-12-17 00:27 - 000000532 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ar_SA\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\be
2017-01-05 02:09 - 2016-12-17 00:27 - 000006152 _____ () C:\Program Files\Systemy\UltraDefrag\locale\be\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\bg
2017-01-05 02:09 - 2016-12-17 00:27 - 000005864 _____ () C:\Program Files\Systemy\UltraDefrag\locale\bg\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\bn
2017-01-05 02:09 - 2016-12-17 00:27 - 000007389 _____ () C:\Program Files\Systemy\UltraDefrag\locale\bn\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\bs
2017-01-05 02:09 - 2016-12-17 00:27 - 000004640 _____ () C:\Program Files\Systemy\UltraDefrag\locale\bs\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ca
2017-01-05 02:09 - 2016-12-17 00:27 - 000006663 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ca\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\cs
2017-01-05 02:09 - 2016-12-17 00:27 - 000006633 _____ () C:\Program Files\Systemy\UltraDefrag\locale\cs\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\da
2017-01-05 02:09 - 2016-12-17 00:27 - 000006501 _____ () C:\Program Files\Systemy\UltraDefrag\locale\da\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\de
2017-01-05 02:09 - 2016-12-17 00:27 - 000006802 _____ () C:\Program Files\Systemy\UltraDefrag\locale\de\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\el
2017-01-05 02:09 - 2016-12-17 00:27 - 000008804 _____ () C:\Program Files\Systemy\UltraDefrag\locale\el\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\en_GB
2017-01-05 02:09 - 2016-12-17 00:27 - 000006330 _____ () C:\Program Files\Systemy\UltraDefrag\locale\en_GB\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\en_US
2017-01-05 02:09 - 2016-12-17 00:27 - 000006336 _____ () C:\Program Files\Systemy\UltraDefrag\locale\en_US\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\es
2017-01-05 02:09 - 2016-12-17 00:27 - 000006717 _____ () C:\Program Files\Systemy\UltraDefrag\locale\es\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\es_AR
2017-01-05 02:09 - 2016-12-17 00:27 - 000005340 _____ () C:\Program Files\Systemy\UltraDefrag\locale\es_AR\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\es_MX
2017-01-05 02:09 - 2016-12-17 00:27 - 000006891 _____ () C:\Program Files\Systemy\UltraDefrag\locale\es_MX\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\et
2017-01-05 02:09 - 2016-12-17 00:27 - 000004703 _____ () C:\Program Files\Systemy\UltraDefrag\locale\et\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\eu
2017-01-05 02:09 - 2016-12-17 00:27 - 000000511 _____ () C:\Program Files\Systemy\UltraDefrag\locale\eu\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\eu_ES
2017-01-05 02:09 - 2016-12-17 00:27 - 000000525 _____ () C:\Program Files\Systemy\UltraDefrag\locale\eu_ES\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\fa
2017-01-05 02:09 - 2016-12-17 00:27 - 000007337 _____ () C:\Program Files\Systemy\UltraDefrag\locale\fa\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\fi
2017-01-05 02:09 - 2016-12-17 00:27 - 000006682 _____ () C:\Program Files\Systemy\UltraDefrag\locale\fi\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\fr
2017-01-05 02:09 - 2016-12-17 00:27 - 000006930 _____ () C:\Program Files\Systemy\UltraDefrag\locale\fr\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\gl
2017-01-05 02:09 - 2016-12-17 00:27 - 000004794 _____ () C:\Program Files\Systemy\UltraDefrag\locale\gl\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\he
2017-01-05 02:09 - 2016-12-17 00:27 - 000005199 _____ () C:\Program Files\Systemy\UltraDefrag\locale\he\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\hi
2017-01-05 02:09 - 2016-12-17 00:27 - 000007824 _____ () C:\Program Files\Systemy\UltraDefrag\locale\hi\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\hr
2017-01-05 02:09 - 2016-12-17 00:27 - 000006694 _____ () C:\Program Files\Systemy\UltraDefrag\locale\hr\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\hu
2017-01-05 02:09 - 2016-12-17 00:27 - 000006873 _____ () C:\Program Files\Systemy\UltraDefrag\locale\hu\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\hy
2017-01-05 02:09 - 2016-12-17 00:27 - 000007163 _____ () C:\Program Files\Systemy\UltraDefrag\locale\hy\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\id
2017-01-05 02:09 - 2016-12-17 00:27 - 000006565 _____ () C:\Program Files\Systemy\UltraDefrag\locale\id\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ilo
2017-01-05 02:09 - 2016-12-17 00:27 - 000006562 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ilo\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\is
2017-01-05 02:09 - 2016-12-17 00:27 - 000005087 _____ () C:\Program Files\Systemy\UltraDefrag\locale\is\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\it
2017-01-05 02:09 - 2016-12-17 00:27 - 000006887 _____ () C:\Program Files\Systemy\UltraDefrag\locale\it\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ja
2017-01-05 02:09 - 2016-12-17 00:27 - 000007106 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ja\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\jv
2017-01-05 02:09 - 2016-12-17 00:27 - 000005105 _____ () C:\Program Files\Systemy\UltraDefrag\locale\jv\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ka
2017-01-05 02:09 - 2016-12-17 00:27 - 000009864 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ka\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ko
2017-01-05 02:09 - 2016-12-17 00:27 - 000007061 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ko\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\la
2017-01-05 02:09 - 2016-12-17 00:27 - 000005249 _____ () C:\Program Files\Systemy\UltraDefrag\locale\la\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\lt
2017-01-05 02:09 - 2016-12-17 00:27 - 000006701 _____ () C:\Program Files\Systemy\UltraDefrag\locale\lt\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\lv
2017-01-05 02:09 - 2016-12-17 00:27 - 000005441 _____ () C:\Program Files\Systemy\UltraDefrag\locale\lv\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\mk
2017-01-05 02:09 - 2016-12-17 00:27 - 000006665 _____ () C:\Program Files\Systemy\UltraDefrag\locale\mk\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ms
2017-01-05 02:09 - 2016-12-17 00:27 - 000005128 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ms\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\my
2017-01-05 02:09 - 2016-12-17 00:27 - 000009569 _____ () C:\Program Files\Systemy\UltraDefrag\locale\my\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\nl
2017-01-05 02:09 - 2016-12-17 00:27 - 000006922 _____ () C:\Program Files\Systemy\UltraDefrag\locale\nl\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\no
2017-01-05 02:09 - 2016-12-17 00:27 - 000005142 _____ () C:\Program Files\Systemy\UltraDefrag\locale\no\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\pam
2017-01-05 02:09 - 2016-12-17 00:27 - 000003406 _____ () C:\Program Files\Systemy\UltraDefrag\locale\pam\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\pl
2017-01-05 02:09 - 2016-12-17 00:27 - 000006803 _____ () C:\Program Files\Systemy\UltraDefrag\locale\pl\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\pt
2017-01-05 02:09 - 2016-12-17 00:27 - 000006593 _____ () C:\Program Files\Systemy\UltraDefrag\locale\pt\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\pt_BR
2017-01-05 02:09 - 2016-12-17 00:27 - 000006715 _____ () C:\Program Files\Systemy\UltraDefrag\locale\pt_BR\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ro
2017-01-05 02:09 - 2016-12-17 00:27 - 000005473 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ro\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ru
2017-01-05 02:09 - 2016-12-17 00:27 - 000008779 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ru\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\si_LK
2017-01-05 02:09 - 2016-12-17 00:27 - 000000550 _____ () C:\Program Files\Systemy\UltraDefrag\locale\si_LK\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\sk
2017-01-05 02:09 - 2016-12-17 00:27 - 000006723 _____ () C:\Program Files\Systemy\UltraDefrag\locale\sk\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\sl
2017-01-05 02:09 - 2016-12-17 00:27 - 000005442 _____ () C:\Program Files\Systemy\UltraDefrag\locale\sl\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\sq
2017-01-05 02:09 - 2016-12-17 00:27 - 000006271 _____ () C:\Program Files\Systemy\UltraDefrag\locale\sq\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\sr
2017-01-05 02:09 - 2016-12-17 00:27 - 000006410 _____ () C:\Program Files\Systemy\UltraDefrag\locale\sr\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\sv
2017-01-05 02:09 - 2016-12-17 00:27 - 000006638 _____ () C:\Program Files\Systemy\UltraDefrag\locale\sv\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\szl
2017-01-05 02:09 - 2016-12-17 00:27 - 000000593 _____ () C:\Program Files\Systemy\UltraDefrag\locale\szl\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\ta
2017-01-05 02:09 - 2016-12-17 00:27 - 000008043 _____ () C:\Program Files\Systemy\UltraDefrag\locale\ta\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\th
2017-01-05 02:09 - 2016-12-17 00:27 - 000007912 _____ () C:\Program Files\Systemy\UltraDefrag\locale\th\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\tl
2017-01-05 02:09 - 2016-12-17 00:27 - 000006613 _____ () C:\Program Files\Systemy\UltraDefrag\locale\tl\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\tr
2017-01-05 02:09 - 2016-12-17 00:27 - 000006866 _____ () C:\Program Files\Systemy\UltraDefrag\locale\tr\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\uk
2017-01-05 02:09 - 2016-12-17 00:27 - 000008566 _____ () C:\Program Files\Systemy\UltraDefrag\locale\uk\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\uz@Latn
2017-01-05 02:09 - 2016-12-17 00:27 - 000007127 _____ () C:\Program Files\Systemy\UltraDefrag\locale\uz@Latn\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\vi
2017-01-05 02:09 - 2016-12-17 00:27 - 000007518 _____ () C:\Program Files\Systemy\UltraDefrag\locale\vi\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\war
2017-01-05 02:09 - 2016-12-17 00:27 - 000004502 _____ () C:\Program Files\Systemy\UltraDefrag\locale\war\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\yi
2017-01-05 02:09 - 2016-12-17 00:27 - 000006109 _____ () C:\Program Files\Systemy\UltraDefrag\locale\yi\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\zh_CN
2017-01-05 02:09 - 2016-12-17 00:27 - 000006383 _____ () C:\Program Files\Systemy\UltraDefrag\locale\zh_CN\UltraDefrag.mo
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\locale\zh_TW
2017-01-05 02:09 - 2016-12-17 00:27 - 000006587 _____ () C:\Program Files\Systemy\UltraDefrag\locale\zh_TW\UltraDefrag.mo
2017-01-05 02:09 - 2017-01-05 02:11 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\logs
2017-01-05 02:09 - 2017-01-05 02:15 - 000004963 _____ () C:\Program Files\Systemy\UltraDefrag\logs\ultradefrag.log
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\po
2017-01-05 02:09 - 2016-12-17 00:27 - 000008259 _____ () C:\Program Files\Systemy\UltraDefrag\po\ach.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010860 _____ () C:\Program Files\Systemy\UltraDefrag\po\ar.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000008336 _____ () C:\Program Files\Systemy\UltraDefrag\po\ar_EG.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000008260 _____ () C:\Program Files\Systemy\UltraDefrag\po\ar_SA.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000011061 _____ () C:\Program Files\Systemy\UltraDefrag\po\be.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010773 _____ () C:\Program Files\Systemy\UltraDefrag\po\bg.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000011859 _____ () C:\Program Files\Systemy\UltraDefrag\po\bn.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009762 _____ () C:\Program Files\Systemy\UltraDefrag\po\bs.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010370 _____ () C:\Program Files\Systemy\UltraDefrag\po\ca.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010396 _____ () C:\Program Files\Systemy\UltraDefrag\po\cs.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010243 _____ () C:\Program Files\Systemy\UltraDefrag\po\da.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010531 _____ () C:\Program Files\Systemy\UltraDefrag\po\de.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000012549 _____ () C:\Program Files\Systemy\UltraDefrag\po\el.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010003 _____ () C:\Program Files\Systemy\UltraDefrag\po\en_GB.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009918 _____ () C:\Program Files\Systemy\UltraDefrag\po\en_US.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010538 _____ () C:\Program Files\Systemy\UltraDefrag\po\es.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009934 _____ () C:\Program Files\Systemy\UltraDefrag\po\es_AR.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010582 _____ () C:\Program Files\Systemy\UltraDefrag\po\es_MX.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009593 _____ () C:\Program Files\Systemy\UltraDefrag\po\et.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000008239 _____ () C:\Program Files\Systemy\UltraDefrag\po\eu.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000008253 _____ () C:\Program Files\Systemy\UltraDefrag\po\eu_ES.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000011223 _____ () C:\Program Files\Systemy\UltraDefrag\po\fa.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010467 _____ () C:\Program Files\Systemy\UltraDefrag\po\fi.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010901 _____ () C:\Program Files\Systemy\UltraDefrag\po\fr.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009658 _____ () C:\Program Files\Systemy\UltraDefrag\po\gl.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010063 _____ () C:\Program Files\Systemy\UltraDefrag\po\he.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000012294 _____ () C:\Program Files\Systemy\UltraDefrag\po\hi.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010427 _____ () C:\Program Files\Systemy\UltraDefrag\po\hr.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010653 _____ () C:\Program Files\Systemy\UltraDefrag\po\hu.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000011579 _____ () C:\Program Files\Systemy\UltraDefrag\po\hy.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010491 _____ () C:\Program Files\Systemy\UltraDefrag\po\id.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010301 _____ () C:\Program Files\Systemy\UltraDefrag\po\ilo.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009676 _____ () C:\Program Files\Systemy\UltraDefrag\po\is.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010607 _____ () C:\Program Files\Systemy\UltraDefrag\po\it.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010914 _____ () C:\Program Files\Systemy\UltraDefrag\po\ja.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009677 _____ () C:\Program Files\Systemy\UltraDefrag\po\jv.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000013857 _____ () C:\Program Files\Systemy\UltraDefrag\po\ka.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010692 _____ () C:\Program Files\Systemy\UltraDefrag\po\ko.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009845 _____ () C:\Program Files\Systemy\UltraDefrag\po\la.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010351 _____ () C:\Program Files\Systemy\UltraDefrag\po\lt.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009889 _____ () C:\Program Files\Systemy\UltraDefrag\po\lv.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000011213 _____ () C:\Program Files\Systemy\UltraDefrag\po\mk.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009744 _____ () C:\Program Files\Systemy\UltraDefrag\po\ms.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000013718 _____ () C:\Program Files\Systemy\UltraDefrag\po\my.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010614 _____ () C:\Program Files\Systemy\UltraDefrag\po\nl.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009729 _____ () C:\Program Files\Systemy\UltraDefrag\po\no.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009146 _____ () C:\Program Files\Systemy\UltraDefrag\po\pam.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010610 _____ () C:\Program Files\Systemy\UltraDefrag\po\pl.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010330 _____ () C:\Program Files\Systemy\UltraDefrag\po\pt.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010610 _____ () C:\Program Files\Systemy\UltraDefrag\po\pt_BR.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009857 _____ () C:\Program Files\Systemy\UltraDefrag\po\ro.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000012510 _____ () C:\Program Files\Systemy\UltraDefrag\po\ru.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000008278 _____ () C:\Program Files\Systemy\UltraDefrag\po\si_LK.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010431 _____ () C:\Program Files\Systemy\UltraDefrag\po\sk.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009912 _____ () C:\Program Files\Systemy\UltraDefrag\po\sl.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010344 _____ () C:\Program Files\Systemy\UltraDefrag\po\sq.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010958 _____ () C:\Program Files\Systemy\UltraDefrag\po\sr.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010406 _____ () C:\Program Files\Systemy\UltraDefrag\po\sv.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000008321 _____ () C:\Program Files\Systemy\UltraDefrag\po\szl.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000012591 _____ () C:\Program Files\Systemy\UltraDefrag\po\ta.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000012436 _____ () C:\Program Files\Systemy\UltraDefrag\po\th.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010406 _____ () C:\Program Files\Systemy\UltraDefrag\po\tl.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010481 _____ () C:\Program Files\Systemy\UltraDefrag\po\tr.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000012324 _____ () C:\Program Files\Systemy\UltraDefrag\po\uk.po
2017-01-05 02:09 - 2016-01-09 07:21 - 000008630 _____ () C:\Program Files\Systemy\UltraDefrag\po\UltraDefrag.pot
2017-01-05 02:09 - 2016-12-17 00:27 - 000010753 _____ () C:\Program Files\Systemy\UltraDefrag\po\uz@Latn.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000011252 _____ () C:\Program Files\Systemy\UltraDefrag\po\vi.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000009508 _____ () C:\Program Files\Systemy\UltraDefrag\po\war.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010657 _____ () C:\Program Files\Systemy\UltraDefrag\po\yi.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010124 _____ () C:\Program Files\Systemy\UltraDefrag\po\zh_CN.po
2017-01-05 02:09 - 2016-12-17 00:27 - 000010261 _____ () C:\Program Files\Systemy\UltraDefrag\po\zh_TW.po
2016-12-17 00:27 - 2016-12-17 00:27 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\scripts
2017-01-05 02:09 - 2016-01-09 07:21 - 000000701 _____ () C:\Program Files\Systemy\UltraDefrag\scripts\udreport.css
2017-01-05 02:09 - 2016-05-29 17:16 - 000013286 _____ () C:\Program Files\Systemy\UltraDefrag\scripts\udreportcnv.lua
2017-01-05 02:09 - 2016-01-09 07:21 - 000004348 _____ () C:\Program Files\Systemy\UltraDefrag\scripts\udsorting.js
2017-01-05 02:09 - 2016-05-29 17:16 - 000024424 _____ () C:\Program Files\Systemy\UltraDefrag\scripts\upgrade-options.lua
2017-01-05 02:09 - 2017-01-05 02:09 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\tmp
2017-01-05 02:09 - 2017-01-05 02:11 - 000000000 ____D () C:\Program Files\Systemy\UltraDefrag\tmp\data

====== End of Folder: ======

VirusTotal: C:\Program Files\Systemy\Avast\AvLaunch.exe => https://www.virustotal.com/file/5f3fdd7842d2680371c081d76c22ffbbec37754cf6cb85b2822109e6e619730e/analysis/1503140867/
VirusTotal: C:\Windows\SysWOW64\octobe~1.dll => https://www.virustotal.com/file/42d372afec45352b5d482759f36d78551710b4bd7a3f470072e8f4b46b2434a1/analysis/1267485775/
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => key removed successfully
HKU\S-1-5-21-379828563-891033583-2518000098-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
HKU\S-1-5-21-379828563-891033583-2518000098-1000\SOFTWARE\Policies\Google => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh => key removed successfully
C:\Program Files (x86)\Spybot - Search & Destroy 2 => moved successfully
C:\ProgramData\Spybot - Search & Destroy => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{426F9E9D-38AD-4BCD-972E-5052F23B7865} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{426F9E9D-38AD-4BCD-972E-5052F23B7865} => key removed successfully
C:\Windows\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => key removed successfully
C:\Program Files (x86)\Systemy\Spybot - Search & Destroy 2 => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => key removed successfully
HKLM\Software\Classes\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000} => key not found.

The system needed a reboot.

==== End of Fixlog 13:42:30 ====



#14 garioch7

garioch7

    RCMP Veteran


  • Malware Response Instructor
  • 3,890 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Port Hood, Nova Scotia, Canada
  • Local time:02:50 PM

Posted 20 August 2017 - 01:42 PM

Burnsie:
 
Thank you for your fixlog.txt.  It looks good, although I did not get a VirusTotal result that I could access in the fixlog.txt.
 
Would you please upload the file: C:\Windows\SysWOW64\octobe~1.dll to VirusTotal and press the "Scan it!" button.  Please copy and paste the URL of the results page into your next reply so that I can check the VT results.
 
I see a lot of entries in your second post dealing with DriverEasy and UltraDefrag.  Neither program is listed as installed on your computer and there are a lot of file that are taking up a lot of hard drive space.  Do you know about those two programs?  Bleeping Computer does recommend the use of driver updaters, see this link for more information; and, the Windows Defragmentation program is completely adequate.  I use it myself on my laptop.

 

.
 
:step1: ESET Online Scanner using Internet Explorer:

Note: You will need to disable your currently installed Anti-Virus, how to do so can be found here.

  • Download esetsmartinstaller_enu.exe and save it to your Desktop.
  • Double click the icon.
  • Check YES, I accept the Terms of Use.
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Then select: "Enable detection of potentially unwanted applications" - Yes.
  • Click Advanced settings.
  • Check the following items.

Enable detection of potentially unwanted applications
Remove found threats
Scan archives
Scan for potentially unsafe applications
Enable Anti-Stealth technology

  • Click Change next to Current scan targets:
  • Place a check mark in any additional drive you wish to scan then click OK.
  • Click Start.
  • ESET will then download updates and begin scanning your computer.
  • If no threats are found simply click Uninstall application on close and hit Finish.
  • If threats are found click List of found threats.
  • Click Export to text file.
  • Save the file on your Desktop as ESET.txt.
  • Click Back.
  • Check Uninstall application on close and Delete quarantined files.
  • Click Finish.
  • Close the ESET Online Scanner window.
  • Copy and paste the contents of ESET.txt into your reply, if any threats were detected.

Don't forget to re-enable your antivirus when finished!

.

I am signing off for the rest of the day. I have to leave home tomorrow morning at 07:30 to take my wife to the hospital for tests which I expect to take most of the day. I might get a chance before I leave home, if I get up early enough, to respond; but, if not, I will be back in touch tomorrow in the late afternoon.

Thank you for your understanding and patience. Have a great day.

Regards,
-Phil


Graduate of the Bleeping Computer Malware Removal Study Hall


#15 Burnsie

Burnsie
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:50 PM

Posted 20 August 2017 - 01:52 PM

Driver Easy - dumped it years ago. Terrible idea. Had a problem with drivers and thought it might be good solution. Wrong. Don't know how to get rid of bits.

Ultradefrag was good but got rid of it as well. Love to clean up.

 

Octob~.dll analysis    https://www.virustotal.com/en/file/42d372afec45352b5d482759f36d78551710b4bd7a3f470072e8f4b46b2434a1/analysis/

 

Doing the other. Good luck with the Mrs. Best to her.

 

B






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users